Corporate & shareholders

NDA for Shareholders in the UK: Protecting Confidential Information Between Companies and Their Shareholders

Shareholders regularly receive sensitive board papers, financial data and strategic plans that are not yet public. This guide explains when UK companies need a shareholder NDA, what it must cover, and how it differs from a shareholders' agreement.

By Richard Wood, Founder8 min readUpdated 19 June 2026Last reviewed 19 June 2026NDAshareholderscompanycorporate

When a UK private company shares board papers, management accounts or strategic plans with its shareholders, it is disclosing commercially sensitive information to people who are not directors and have no statutory duty of confidence. A shareholder who receives that information is free, in the absence of any contractual obligation, to discuss it with others — including competitors, rival investors, or the press. A shareholder NDA closes that gap by creating a legally binding obligation of confidence from the moment information is shared.

This is general information, not legal advice

NDASafe is a document preparation service, not a law firm. Our templates are legally reviewed against applicable UK law at the point of release, but every situation is different. Where significant value, unusual risk or a cross-border element is involved, take independent legal advice before you sign.

Do shareholders have automatic confidentiality obligations in the UK?

Under UK company law, directors owe fiduciary duties to the company — including a duty to act in the company's interests and to keep confidential information confidential. Shareholders do not have equivalent statutory duties. A shareholder who is not also a director is not bound by the Companies Act 2006 fiduciary regime and can, in principle, share information they receive in their capacity as a shareholder unless restrained by contract.

The common law imposes a duty of confidence where information is disclosed in circumstances that make it obvious that confidence is expected, but that duty is uncertain in scope and difficult to enforce without a clear contractual agreement. A written NDA removes the uncertainty and gives the company a clear contractual right to seek an injunction and damages on breach.

Shareholder NDA vs confidentiality clause in a shareholders' agreement

Most professionally drafted shareholders' agreements include a confidentiality clause. If a shareholders' agreement is in place and all shareholders are parties to it, a separate standalone NDA may be unnecessary for ongoing shareholder relationships. However, a standalone NDA is essential in two situations:

  • Pre-investment, before the shareholders' agreement is signed: during due diligence and negotiation, the company shares sensitive financial and commercial information with a prospective investor before any formal agreement exists. A standalone NDA protects that pre-signature disclosure. The shareholders' agreement cannot protect information shared before it was signed.
  • New shareholders joining after the original agreement: a new investor or employee shareholder who acquires shares after the original shareholders' agreement was executed does not automatically become a party to it. Unless the agreement includes a deed of adherence mechanism — and the new shareholder executes a deed of adherence — a standalone NDA (or a separate confidentiality agreement) is the safer approach.
  • Where the shareholders' agreement is informal or missing clauses: many UK SME shareholders' agreements are skeleton documents that do not include a detailed confidentiality regime. A standalone NDA can supplement the shareholders' agreement where the confidentiality provisions are thin or absent.

What information does a shareholder typically receive?

Shareholders in UK private companies commonly receive the following categories of information that may require confidentiality protection:

  • Management accounts and financial data: monthly or quarterly unaudited accounts, cash flow forecasts, budget versus actual reports and EBITDA analysis.
  • Board minutes and papers: minutes of board meetings that may include strategic decisions, potential acquisitions, disputes, personnel matters and commercial plans.
  • Cap table and future fundraising plans: details of the current share structure, anticipated dilution, planned fundraising rounds, valuation discussions and option pool mechanics.
  • Strategic and commercial plans: product roadmaps, key customer and supplier relationships, competitive analysis, market expansion plans and M&A pipeline.
  • Personnel data: key employee arrangements, compensation structures, disputes and succession planning.
  • Legal and regulatory matters: ongoing litigation, regulatory investigations and compliance issues before they become public.
Pre-investment disclosures need an NDA before the shareholders' agreement is signed

A shareholders' agreement cannot protect information shared before it was signed. During fundraising and due diligence, companies typically share management accounts, strategic plans and financial models with prospective investors who have not yet committed. Without a standalone NDA signed before those disclosures, the information is shared without legal protection.

What a shareholder NDA must cover

A shareholder NDA protecting a UK private company should address the following provisions:

  • Confidential information definition: all information disclosed by the company to the shareholder in connection with their investment, whether in writing, electronically or verbally, together with a specific list of categories (financial data, board papers, strategic plans, cap table information, commercial contracts, personnel data).
  • Permitted purpose: the shareholder may use confidential information only for the purpose of managing and monitoring their investment in the company.
  • Non-use obligation: the shareholder must not use confidential information for any competitive purpose, to trade in securities of the company or associated companies, or for any purpose unconnected with their shareholding.
  • Permitted disclosees: the shareholder's own advisers (accountants, lawyers, fund managers, co-investors) may receive confidential information on equivalent terms, with the shareholder remaining responsible for any breach.
  • Regulatory carve-outs: the NDA must not prevent disclosure to the FCA, HMRC, Companies House, the Takeover Panel, or any other UK regulatory body where disclosure is required by law.
  • Post-exit survival: confidentiality obligations continue for two to five years after the shareholder ceases to hold shares, covering all information received during the period of shareholding.
  • Return or destruction on exit: the departing shareholder must return or destroy all confidential information promptly on ceasing to be a shareholder, with written confirmation of destruction on request.

Insider dealing and UK MAR: what an NDA cannot do

For UK-listed companies, the Market Abuse Regulation (UK MAR) imposes statutory obligations on anyone who holds inside information — information that is precise, not public, and likely to have a significant effect on share price if made public. Shareholders in listed companies who receive board papers or earnings information may hold inside information within the meaning of UK MAR.

An NDA cannot override UK MAR obligations. A shareholder who holds inside information is prohibited from dealing in the relevant shares, recommending that someone else deals, or disclosing the information to another person who might deal — regardless of what the NDA says. The Financial Services and Markets Act 2000 treats insider dealing as a criminal offence.

For private company shareholders, there is no equivalent statutory regime, but best practice is to include a non-use clause prohibiting the shareholder from using confidential financial information to trade in the company's shares or the shares of any associated business.

Confidentiality obligations when a shareholder exits

One of the most common drafting oversights in shareholder NDAs is the failure to address what happens when the shareholder sells their shares. Without a survival clause, the shareholder may argue that their obligations ended when their relationship with the company ended. In practice, this could mean that a departing shareholder — particularly one who is leaving in contentious circumstances — treats themselves as free to disclose board-level information once the sale of their shares is complete.

The NDA should expressly state that confidentiality obligations survive termination of the shareholding and continue for a defined period — typically two to five years. The obligations should extend to all information received during the entire period of the shareholder's investment, not just information received immediately before exit.

Return or destruction obligations are equally important on exit. The shareholder should be required to return all confidential documents (including electronic copies and notes) and confirm destruction in writing. Board-level information in the hands of a former shareholder who is now a competitor is a material commercial risk.

Which NDASafe template to use

The appropriate template depends on the relationship and information flow:

  • One-Way NDA, Disclosing (£29): use where only the company is sharing confidential information with the shareholder. The company is the disclosing party; the shareholder is the receiving party with confidentiality obligations. The most common structure for investor-shareholder relationships.
  • Mutual NDA (£29): use where the shareholder is also sharing confidential information with the company — for example, a strategic corporate investor sharing technical plans or acquisition intentions, or a co-development arrangement where both parties disclose IP.
  • Investor NDA (£29): designed specifically for pre-investment discussions at pitch and due diligence stage, before any shares are issued. Includes non-circumvention (12-month default) and no-poach provisions suitable for early-stage fundraising.
  • Complete NDA Bundle (£79): all eight NDA variants. Suitable for companies with multiple investor types at different stages, and for corporate solicitors and company secretaries who advise on recurring shareholder confidentiality situations.
UK shareholder NDA templates — legally reviewed, instant download

NDASafe's NDA templates are editable Word documents with permitted disclosees provisions, regulatory carve-outs, post-exit survival clauses and return-or-destroy obligations appropriate for UK private company shareholder relationships. Single template £29. Complete bundle (all 8 variants) £79. Delivered instantly as an editable .docx file.

Step by step

  1. 1
    Sign before sharing any confidential information

    A shareholder NDA must be signed before any sensitive information is disclosed — before the information memorandum is released during a fundraising, before board papers are shared with a new investor, and before any financial model is distributed to a prospective shareholder. Sharing information and then asking the recipient to sign is not best practice: retrospective confidentiality agreements are harder to enforce and leave a gap during which the information was unprotected.

  2. 2
    Define confidential information to match what shareholders actually receive

    Shareholders in a private UK company typically receive management accounts, board minutes, financial projections, strategic plans, information about key customers and suppliers, cap table data and future fundraising plans. The NDA's definition of confidential information should explicitly list these categories. A generic ‘all information shared by the company’ clause is a reasonable catch-all but is stronger when backed by a specific list that mirrors the actual documents and data the shareholder will receive.

  3. 3
    Restrict the permitted purpose carefully

    The shareholder NDA should state that the permitted purpose for receiving confidential information is evaluating and monitoring the shareholder's investment in the company. A non-use obligation — prohibiting the shareholder from using confidential information for any commercial purpose other than managing their shareholding — is essential, particularly where the shareholder is also active in the same sector or has competing investments.

  4. 4
    Address disclosure to co-investors, advisers and connected parties

    Shareholders often share information with their own advisers (accountants, lawyers, fund managers) and, in the case of institutional investors, with co-investors or limited partners. The NDA should include a permitted disclosees provision that allows sharing with these categories of recipient on the condition that they are subject to equivalent confidentiality obligations and the shareholder remains responsible for any breach by a permitted disclosee.

  5. 5
    Include post-exit survival and return-or-destroy obligations

    The confidentiality obligations must expressly survive the shareholder's exit and continue for a defined period — two to five years after the date the shareholder ceases to hold shares is standard. The NDA should require the departing shareholder to return or certifiably destroy all confidential information (including copies, notes and electronic records) promptly on exit. Survival of confidentiality obligations should be stated explicitly — without it, a court may infer that the obligations ended when the relationship ended.

Frequently asked questions

Do shareholders automatically have confidentiality obligations under UK company law?

No. UK company law does not impose a general duty of confidentiality on shareholders. Directors have a duty to act in the company's interests, but shareholders — including minority shareholders who receive board papers or financial information — have no equivalent statutory obligation. If the company wants shareholders to keep information confidential, it must create that obligation by contract: either through a shareholders' agreement, a standalone NDA, or a confidentiality clause in a share subscription agreement.

Should a shareholder NDA be mutual or one-way?

Usually one-way, with the company as the disclosing party and the shareholder as the receiving party. The company shares board papers, management accounts, strategic plans and financial projections; the shareholder's obligation is to keep those confidential. A mutual NDA is appropriate where the shareholder is also sharing sensitive information with the company — for example, a strategic investor sharing acquisition plans, or a corporate shareholder sharing proprietary technology as part of a joint development arrangement.

Is a confidentiality clause in a shareholders' agreement sufficient, or do we need a separate NDA?

A confidentiality clause in a well-drafted shareholders' agreement is usually sufficient for ongoing shareholder confidentiality obligations once the company is established. A standalone NDA is needed in two situations: (1) before the shareholders' agreement is signed — during due diligence and pre-investment discussions when confidential information is being shared but no formal agreement is yet in place; and (2) where a new shareholder joins after the original shareholders' agreement was signed and does not automatically become a party to it.

Can a shareholder NDA prevent a shareholder from disclosing information to a regulator or the press?

No. A UK shareholder NDA cannot prevent disclosure to a regulator (FCA, Companies House, HMRC, the Takeover Panel), cannot block a protected disclosure under the Public Interest Disclosure Act 1998, and cannot prevent a shareholder from reporting a criminal offence. Any clause purporting to restrict these disclosures is void. For listed companies, additional Disclosure Guidance and Transparency Rules (DTRs) apply, and an NDA cannot override a shareholder's legal obligations under those rules.

What happens to confidentiality obligations when a shareholder exits?

The confidentiality obligations should expressly survive the shareholder's exit and continue for a defined period — typically two to five years after the shareholder ceases to hold shares. Without a survival clause, a shareholder who has sold their shares may argue the NDA terminated when their relationship with the company ended. The surviving obligation should cover all confidential information received during the period of shareholding, not just information received immediately before exit.

Can a shareholder NDA prevent someone trading on inside information?

No — or not on its own. For listed companies, trading on inside information is regulated by the Market Abuse Regulation (UK MAR) and carries criminal penalties under the Financial Services and Markets Act 2000. An NDA creates a contractual obligation but does not override or substitute for UK MAR. For private companies, there is no equivalent insider trading regime, but an NDA can contractually prohibit a shareholder from using confidential financial information to trade the company's shares or the shares of an associated business.

Templates mentioned in this guide

One-Way NDA, Sharing

From £29

You're sharing confidential information. Strong protection on outbound data.

View template

Mutual NDA

From £29

Both parties share information. The default for partnerships, joint ventures, and exploratory conversations.

View template

Investor NDA

From £29

For pitch decks and fundraising materials. Non-circumvention and no-poach included.

View template

Related guides

Investor & startup
NDA for Investors UK: Should You Ask an Investor to Sign?
Most UK venture capitalists will not sign an NDA before a pitch. Angel investors, family offices and strategic partners often will. Here is when an investor NDA makes sense, what it should contain, and how to protect your business idea without killing the deal.
Private equity guide
NDA for Private Equity UK: Protecting Deal Information, Portfolio Data and Fund Terms
Private equity firms, portfolio companies, management teams and investors share sensitive deal information, financial data and fund terms before any transaction or investment agreement is signed. This guide explains when a UK private equity NDA is needed and how to protect pre-contract disclosures under English law.
M&A guide
NDA for M&A UK: Protecting Both Sides of a Business Acquisition
How NDAs work across the full M&A deal process in the UK — from the first approach through due diligence — covering mutual vs one-way, what an acquisition NDA must include, and when a template is enough.
Due diligence & M&A
NDA for Due Diligence in the UK: Protecting Confidential Information During Business Investigations
Before buyers, investors or lenders examine a company's books, an NDA is essential. This guide explains when to use a due diligence NDA in the UK, what it must cover, permitted disclosees, and how it differs from a standard confidentiality agreement.