NDA enforceability

What Makes an NDA Void or Unenforceable in the UK?

Not every NDA is valid and enforceable. UK courts can refuse to enforce an NDA — or strike out specific clauses — where the agreement lacks consideration, defines confidential information too broadly, sets an unreasonable duration, or contains clauses that are unlawful under statute. This guide explains the conditions that void or limit an NDA under English law.

By Richard Wood, Founder8 min readUpdated 18 June 2026Last reviewed 18 June 2026NDAunenforceablevoid NDAUK law

When someone asks whether an NDA is enforceable, the honest answer is that it depends on the clauses. Most NDAs are valid and enforceable where they are well-drafted, proportionate, and cover genuine commercial confidentiality. But the same contracts frequently contain individual clauses that English courts will refuse to enforce — a definition of confidential information that is too wide, a duration that bears no relationship to the sensitivity of the information, or a restriction that Parliament has made unlawful by statute. Understanding which conditions void or limit an NDA matters both for the party relying on it and the party asked to sign.

This is general information, not legal advice

NDASafe is a document preparation service, not a law firm. Our templates are legally reviewed against applicable UK law at the point of release, but every situation is different. Where significant value, unusual risk or a cross-border element is involved, take independent legal advice before you sign.

Void versus unenforceable: the practical difference

English law distinguishes between an NDA that is entirely void — treated as if it never existed — and one that is unenforceable in respect of a particular clause or in particular circumstances. True voidness is rare and typically requires fraud, total absence of consideration, or a fundamentally illegal object. Unenforceability of a specific clause is far more common.

Where a clause is unenforceable, courts apply the doctrine of severance: the offending clause is deleted, and the rest of the NDA is enforced. An NDA with an excessively broad definition of confidential information might have that definition read down by the court, while all other obligations stand. Courts are reluctant to rewrite contracts, but they will sever a clause that can be removed without undermining the remainder.

For NDAs in an employment context, some clauses are not merely unenforceable — they are unlawful. A clause purporting to prevent a worker making a protected disclosure under the Public Interest Disclosure Act 1998 is void as a matter of statute, not merely unreasonable. The distinction matters because a void statutory clause cannot be cured by the parties agreeing otherwise.

Missing or insufficient consideration

An NDA, like any contract, requires consideration from both parties. In most commercial NDA contexts, consideration is unproblematic — both parties are entering a commercial relationship, sharing information, or receiving a benefit that supports the agreement. The standard recital ‘in consideration of the mutual exchange of confidential information and entry into the discussions described below’ is generally sufficient.

Consideration problems arise most often in employment situations. If an employer asks an existing employee to sign a new standalone NDA over work already in progress, and gives nothing new in return, the consideration is weak. The employee is already under implied and express confidentiality obligations; the additional NDA provides no new benefit to them. Courts have occasionally declined to enforce employment NDAs signed in these circumstances.

The practical fix is straightforward: where an NDA is signed by an existing employee or contractor, ensure something of value is given in exchange — a payment, an extension of contract, access to information they would not otherwise receive, or a clear recital tying the NDA to a new and specific disclosure.

Confidential information defined too broadly or too vaguely

The most common source of unenforceability in commercial NDAs is a definition of confidential information that is either too broad or insufficiently certain. Courts require that an obligation be defined clearly enough for the party bound to know what it covers.

A definition that purports to cover ‘all information of any kind’ with no categories, no subject-matter limitations, and no connection to a genuine commercial interest will not be enforced in full. A court may read it down to cover only information that was genuinely confidential in character.

Equally, a definition that is too narrow may fail to protect what the disclosing party needs: a definition covering only written documents marked ‘confidential’ will not extend to verbal disclosures, product demonstrations, or information shared without formal marking.

A robust definition names specific categories (financial data, client lists, pricing, technical drawings, source code, business plans), adds a general catch-all, and includes a mechanism for verbal disclosures — typically a confirmation in writing within a short period.

Duration that is unreasonably long

English courts will not enforce a confidentiality obligation over ordinary commercial information that runs indefinitely or for an unreasonably long period. The underlying principle is that confidentiality should last only as long as the information remains genuinely sensitive — an obligation extending beyond that point serves no legitimate purpose.

For general commercial information (pricing, client lists, business plans, financial data), courts typically view 2–5 years as a reasonable standard term. A 20-year or perpetual obligation over the same category is vulnerable to challenge.

Trade secrets are different. Information that qualifies as a trade secret under the Trade Secrets (Enforcement, etc.) Regulations 2018 can be protected indefinitely while it remains secret — the statute itself provides this. An NDA should distinguish between general confidential information (fixed term) and trade secrets (indefinite while secret).

The practical risk of a single long duration applied to everything is that a court asked to enforce the obligation over trade secrets may be reluctant to do so if the same NDA contains an unreasonable duration over ordinary information — creating unnecessary legal uncertainty.

Clauses that are unlawful under statute

A category of NDA clauses that English law makes void by statute, regardless of what the parties have agreed:

  • Preventing protected disclosures (PIDA 1998): A clause that purports to prevent a worker or employee making a qualifying protected disclosure under the Public Interest Disclosure Act 1998 is void. NDASafe's Employee and Freelancer NDAs carry this carve-out as a [mandatory] clause that cannot be removed.
  • Preventing reporting to regulators: Any clause that purports to restrict cooperation with the FCA, SFO, CMA, ICO, or any other statutory regulator is void. Regulatory reporting obligations cannot be contracted out of.
  • Preventing reporting a criminal offence: A clause purporting to prevent a party reporting a criminal offence to the police or other law enforcement is void as a matter of public policy.
  • Preventing victim disclosure (Victims and Prisoners Act 2024): A clause in an employee NDA purporting to prevent an employee reporting harassment, abuse, or a related criminal matter protected under the Victims and Prisoners Act 2024 is void.
  • Employment Rights Act 2025 (from commencement, expected 2027): Section 202A of the Employment Rights Act 2025, once commenced, will make void any NDA clause — in a settlement agreement or standalone NDA — that purports to prevent an employee or worker disclosing information about harassment, bullying, discrimination, or other relevant workplace conduct.
Illegal carve-out clauses cannot be fixed by the parties

Unlike an overly broad definition of confidential information — which a court may sever and read down — a clause that violates a statutory right is void by operation of law. The parties cannot agree to waive the protection. An employee who is told they 'can't' make a protected disclosure because of their NDA is entitled to do so regardless, and the NDA clause cannot be relied upon against them.

Non-compete clauses within an NDA: the restraint of trade test

NDAs sometimes include a non-compete or non-solicitation clause alongside the core confidentiality obligations. These clauses are treated differently from the confidentiality obligation itself: they are post-termination restraints of trade, governed by the principles in Tillman v Egon Zehnder Ltd [2019] UKSC 32.

A non-compete clause is enforceable only if it is reasonable: it must protect a legitimate business interest (trade secrets, client relationships, key staff) and go no further than necessary to protect that interest. A clause too wide in scope, too long in duration, or too wide geographically will not be enforced, and the court may sever it from the remainder of the NDA.

The practical implication: an NDA that includes an unreasonable non-compete is not thereby wholly void. The confidentiality obligations can be severed from the void restraint and enforced independently.

Duress, misrepresentation, and lack of capacity

Like any contract, an NDA can be voidable — capable of being set aside — where it was signed under duress, misrepresentation, undue influence, or without legal capacity.

Duress in an employment NDA context typically means the employer giving the employee no real choice but to sign — no time to consider the terms, no offer of independent legal advice, and the clear implication that refusal will result in dismissal or reputational harm. The minimum 10-day reflection period for settlement agreements exists precisely to address this pressure.

Misrepresentation arises where one party is induced to sign by a false statement of fact. If an employer represents that a settlement NDA ‘doesn’t prevent you disclosing anything important’ when it is intended to suppress a protected disclosure, the misrepresentation vitiates consent.

Lack of capacity is rare in commercial NDA contexts but can arise where a signatory was incapacitated at the time of signing or did not understand the document they were signing.

NDA templates with mandatory statutory carve-outs

NDASafe's Employee NDA includes [mandatory] carve-outs for whistleblowing (PIDA 1998), victim reporting (Victims and Prisoners Act 2024), and regulatory disclosure — clauses that cannot be removed without making the NDA unlawful. The Mutual NDA and One-Way NDAs are appropriate for commercial contexts where no employment relationship is involved. £29 each or £79 for all eight variants — editable Word documents delivered instantly.

Step by step

  1. 1
    Check whether confidential information is clearly defined

    A court will not enforce a confidentiality obligation over information that is not defined with sufficient precision. If the definition says ‘all information of any kind’ without categories, context, or boundaries, it is likely too broad. A well-drafted definition names specific categories — financial data, client lists, technical IP, source code — backed by a general catch-all.

  2. 2
    Verify the duration is proportionate

    Check the duration against the sensitivity of the information. For general commercial information, 2–5 years is the standard enforceable range. For trade secrets, indefinite protection is appropriate under the Trade Secrets (Enforcement, etc.) Regulations 2018. A blanket indefinite obligation over all information — not just trade secrets — is vulnerable to challenge.

  3. 3
    Confirm the mandatory statutory carve-outs are present

    In employment or contractor NDAs, certain carve-outs are required by statute. The NDA must not restrict a protected disclosure under the Public Interest Disclosure Act 1998, reporting a criminal offence, cooperation with a regulator, or (in employee NDAs) disclosure protected under the Victims and Prisoners Act 2024. If these carve-outs are absent in a workplace NDA, the offending clause is void.

  4. 4
    Check whether consideration is present

    A contract without consideration is not binding. In commercial NDA contexts, consideration is almost always present — the mutual exchange of information or entry into a commercial relationship. Problems arise where an employer asks a long-standing employee to sign a new NDA over historic information without any new benefit. If nothing new is given in return, the consideration position is weaker.

  5. 5
    Identify any clause that is unlawful as a matter of statute

    Beyond the whistleblowing carve-out, check for clauses that go further than the law permits. A non-compete in an NDA must satisfy the Tillman v Egon Zehnder reasonableness test or it is void as a restraint of trade. Under the Employment Rights Act 2025 (from commencement, expected 2027), any clause restricting disclosure of information about harassment or discrimination is void. If the NDA was signed under duress or misrepresentation, the whole agreement may be voidable.

Frequently asked questions

Can an NDA be void in part but still enforceable in part?

Yes. English courts apply the doctrine of severance: if a specific clause is unlawful or unenforceable, the court can delete it and enforce the remainder of the NDA. A duration that is unreasonably long may be read down to a reasonable period; a clause that attempts to restrict a statutory right is deleted. An entirely void NDA is rare — partial unenforceability is the more typical outcome.

Does an NDA need to be witnessed or notarised to be valid in the UK?

No. An NDA is a standard contract under English law and does not need to be witnessed or notarised to be binding. It only needs to be signed by both parties and supported by consideration — typically the commercial relationship itself, or a recital that consideration has been given. A deed, which does require witnessing, is rarely used for an NDA.

Can a very long duration make an NDA unenforceable?

Potentially. Courts will not enforce a perpetual confidentiality obligation over ordinary business information that will naturally enter the public domain. A 25-year NDA for standard commercial information is likely to be challenged. The enforceable approach is a fixed term of 2–5 years for general business information, with indefinite protection reserved for trade secrets — which qualify for indefinite protection under the Trade Secrets (Enforcement, etc.) Regulations 2018 while they remain secret.

What happens if an NDA tries to prevent me from reporting a crime or whistleblowing?

That clause is void and unenforceable under English law. The Public Interest Disclosure Act 1998 makes it unlawful to contractually prevent a worker making a protected disclosure. A clause purporting to prevent reporting a criminal offence to the police or cooperating with a regulator is also void. You cannot be held liable for breach of contract by making a protected disclosure or reporting a crime, regardless of what the NDA says.

Can duress or pressure from an employer make an NDA void?

Yes. A contract entered into under duress — where one party had no real choice but to sign — can be voidable at the option of the pressured party. If an employee is given no time to review, no opportunity for independent legal advice, and faces implicit threats of dismissal for refusing, this can ground a claim that consent was not freely given. This is a separate issue from the statutory independent legal advice requirement for settlement agreements.

Does the Employment Rights Act 2025 automatically void existing NDAs?

No — not immediately. Section 202A of the Employment Rights Act 2025 will, once commenced (expected 2027), make void any NDA clause that prevents an employee or worker disclosing information about workplace harassment or discrimination. Existing NDAs signed before commencement are not retrospectively voided on that date, but the offending clause will cease to be enforceable from commencement. Commercial NDAs covering trade secrets, financials, and IP are entirely unaffected.

Templates mentioned in this guide

Employee NDA

From £29

UK-compliant. Includes whistleblowing carve-outs. Optional IP assignment and non-solicitation.

View template

Mutual NDA

From £29

Both parties share information. The default for partnerships, joint ventures, and exploratory conversations.

View template

One-Way NDA, Sharing

From £29

You're sharing confidential information. Strong protection on outbound data.

View template

Related guides

Enforceability
Are NDAs Enforceable in the UK? What Holds Up and What Doesn't
Yes — a properly drafted NDA is an enforceable contract in the UK. Here are the conditions it has to meet, the clauses courts will not enforce, and the remedies available if confidence is breached.
Enforcement guide
What Happens if Someone Breaks an NDA in the UK?
Remedies for NDA breach under English law: how to recognise a breach, gather evidence, send a cease-and-desist, apply for an injunction, and claim damages — with practical guidance on when enforcement is worth pursuing.
Compliance
Whistleblowing and NDAs: What a UK NDA Can Never Stop
UK law protects whistleblowers, and no NDA can override it. The Employment Rights Act 2025 extended protection to sexual harassment disclosures from 6 April 2026. Here is what the carve-out must say and why it is mandatory.
Employment law update
Employment Rights Act 2025 and NDAs: What Changes for UK Employers
How the Employment Rights Act 2025 affects UK NDAs — the new s.202A void-NDA provision, which clauses are at risk, when it comes into force, and what employers and HR teams should do now.