What is the difference between a one-way (unilateral) and a mutual (bilateral) NDA?

A one-way NDA imposes confidentiality on one party — the receiving party — while the disclosing party shares information without reciprocal obligation. Common cases: a company hiring a freelancer, a startup pitching an investor, a vendor sending pricing to a customer. A mutual NDA imposes the same obligations on both parties because both will share confidential information. Common cases: two companies discussing a partnership, an acquisition, or a co-development project. Pick mutual when in doubt — receiving parties almost always prefer it, and disclosing parties rarely have a good reason to refuse.

How long should the confidentiality obligation last?

For ordinary business information, 2 to 5 years is the market standard. For genuine trade secrets — information that derives independent economic value from not being generally known and is the subject of reasonable secrecy measures — the obligation can be indefinite as long as the information remains a trade secret. Be precise: a fixed term that says "10 years" terminates the duty completely at year 10, even for trade secrets, unless the contract carves out trade secrets separately.

Does an NDA make information secret if it is not actually secret?

No. An NDA is a contractual promise not to disclose; it does not transform publicly available information into a trade secret. Courts routinely refuse to enforce NDAs against information that was already public, independently developed by the receiving party, or lawfully received from a third party — and most NDAs include explicit exceptions for these categories. The information itself has to actually be confidential.

Do I really need the DTSA whistleblower notice?

You need it in any NDA with an employee, contractor, or consultant if you might ever want to sue for trade-secret misappropriation under the federal Defend Trade Secrets Act. The DTSA, codified at 18 U.S.C. § 1833(b), grants immunity to whistleblowers who disclose trade secrets to government officials or attorneys when reporting suspected violations of law. The statute provides that an employer that fails to give the required notice in its confidentiality agreements forfeits the right to recover exemplary damages and attorney fees. The notice itself is short — under 100 words — and the cost of forgetting it is significant.

Is a free template legally binding, or do I need a lawyer?

A free template covering the eight clauses above is legally binding and enforceable for ordinary business situations. A lawyer is worth the spend when the underlying information is genuinely valuable (a patentable invention, a proprietary algorithm, a customer database with material economic value), when the counterparty has substantially more legal sophistication than you do, or when the agreement involves cross-border parties with conflict-of-law issues. For an NDA with a freelance designer or a small vendor, the template is enough.

Can both parties sign electronically?

Yes. The US ESIGN Act of 2000 makes electronic signatures legally equivalent to wet-ink signatures for NDAs as long as both parties consent to electronic execution. Most modern business NDAs are signed electronically by default. The most common workflow is to send the filled PDF to the counterparty, have them sign with a free tool and send their signed copy back, then keep both signed copies in your records.

What if the other side sends me their NDA instead — can I use this template to evaluate it?

Absolutely. Reading a counterparty NDA clause-by-clause against a template you trust is one of the highest-value uses of a free template. The template tells you what should be there (look for missing clauses) and what is standard (so unusual obligations stand out). Pay particular attention to the definition of confidential information, the term length, the governing-law clause, and any non-compete or non-solicit provisions hiding inside what is labelled an "NDA".

Free NDA template in 5 minutes (2026) — mutual and one-way

11 min read

Free NDA template in 5 minutes (2026) — mutual and one-way

By ScoutMyTool Editorial Team · Last updated: 2026-05-19

A quick note

This article is general information, not legal advice. For an NDA covering high-value information, cross-border parties, or a sophisticated counterparty, consult a business attorney. The template and the explanations below are aimed at ordinary, common business situations.

The first NDA I ever signed was three pages long, came from a Fortune 500 customer, and contained a clause assigning to them any "improvements" I made to my own product during the engagement. The clause was buried on page two between two ordinary confidentiality paragraphs. I signed it without reading carefully, because I assumed an NDA was just an NDA. It cost me six months of legal back-and-forth a year later. The lesson: read every NDA clause-by-clause against a template you trust. This article gives you that template, walks through the eight clauses that should be in every NDA, and flags the one most lawyers forget — the DTSA whistleblower notice.

One-way vs. mutual NDA — which one to use

Almost every NDA in the world is one of two structures: one-way (unilateral) or mutual (bilateral). The difference is who is sharing confidential information.

Question	One-way (unilateral)	Mutual (bilateral)
Who shares confidential info?	Only one side	Both sides
Typical use case	Hiring a contractor; pitching a vendor; sharing financials with a prospective investor	Partnership talks; M&A; co-development; reseller discussions
Length of document	Shorter (single set of obligations)	Slightly longer (parallel obligations)
Default for ScoutMyTool template	Available	Available — pick "mutual" in the template
Common term length	2–5 years	2–5 years
Required clauses	Same 5 core clauses	Same 5 core clauses, applied to both sides

Rule of thumb: if there is any plausible chance the receiving party will share their own confidential information back during the engagement, use a mutual NDA. The marginal cost of using mutual is zero, and it removes a common point of negotiation friction with the counterparty.

The eight clauses every NDA should have

An enforceable NDA is more about precision than length. Most three-page NDAs and most ten-page NDAs cover the same eight clauses; the ten-page ones just bury them in boilerplate. Here is what should be in yours, what each clause does, and the mistake people most commonly make on each one.

Clause	What it does	Common mistake
1. Parties (disclosing / receiving)	Identifies who is sharing the confidential information and who is receiving it. In a mutual NDA, both parties play both roles.	Naming an individual when the obligation should bind the company. Use the legal entity name and address — "John Smith of Acme LLC" is not the same as "Acme LLC".
2. Definition of "Confidential Information"	Spells out what is covered. Typically: business plans, financials, customer lists, source code, designs, unreleased product info. Often excludes: publicly known information, independently developed information, information lawfully received from a third party.	Either too narrow (only covers a specific document) or too broad (covers literally everything ever shared, which courts may reduce as unenforceable).
3. Term (duration of confidentiality)	How long the receiving party must keep the information confidential. Typical: 2–5 years. Trade secrets: indefinitely while the information remains a trade secret.	Confusing the term of the agreement with the term of the confidentiality obligation. Even a one-year NDA usually keeps the confidentiality duty alive for years after termination.
4. Permitted use / purpose	States the limited purpose for which the receiving party may use the information (e.g., "to evaluate a potential business relationship"). Use for any other purpose is a breach.	Omitting the purpose entirely. Without it, the receiving party can argue that any use is permitted as long as the information is not disclosed externally.
5. Governing law and venue	Specifies which state's law applies and where disputes are heard. State trade-secret law varies, so this matters.	Picking the disclosing party's home state without considering whether it is a forum where the receiving party can realistically litigate. A forum that is genuinely neutral or genuinely tied to the relationship is more enforceable.
6. DTSA whistleblower notice	Required by the federal Defend Trade Secrets Act of 2016 in any agreement that covers trade secrets with an employee, contractor, or consultant. Tells the recipient they have immunity for confidential disclosure of trade secrets to a government official or attorney in reporting illegal activity.	Omitting it. Without the notice, the disclosing party loses the right to recover exemplary damages and attorney fees under the DTSA in a trade-secret action against the recipient.
7. Remedies and injunctive relief	Acknowledges that money damages may be inadequate for a breach, so the disclosing party may seek an injunction in addition to damages.	Skipping the injunctive-relief clause. Courts can still issue injunctions without it, but the clause makes the path faster and clearer.
8. Signatures and date	Both parties sign, ideally with title and date. Signatures may be electronic under the US ESIGN Act.	One signature line and a date missing, or signing on behalf of an entity without printing the signer's title. Always include "Name / Title / Date".

Why the DTSA whistleblower notice deserves its own section

The federal Defend Trade Secrets Act of 2016 created a private right of action in federal court for trade-secret misappropriation, codified at 18 U.S.C. § 1836. To balance the new enforcement power against the public-interest concern that NDAs not be used to silence whistleblowers, Congress added 18 U.S.C. § 1833(b): an immunity for whistleblowers who disclose trade secrets confidentially to a government official or attorney for the purpose of reporting a suspected violation of law.¹

The catch — and the part most NDAs miss — is that the DTSA requires the disclosing party to give notice of this immunity in any contract or agreement with an employee, contractor, or consultant that governs the use of trade secrets or other confidential information. If the notice is missing, the disclosing party loses the right to recover exemplary damages and attorney fees under the DTSA in a future misappropriation action. The text of a compliant notice is short, plain English, and is included by default in the ScoutMyTool NDA template — but you should verify it is there before sending any NDA to a person who might later be classified as an employee or contractor.

An NDA does not turn information into a trade secret

One of the most common misconceptions about NDAs is that the act of signing one makes the underlying information a "trade secret". It does not. Under both the Uniform Trade Secrets Act (adopted by 47 states) and the federal DTSA, information qualifies as a trade secret only if it (a) derives independent economic value from not being generally known and (b) is the subject of reasonable measures to keep it secret.²

The NDA is one of those "reasonable measures", but it does not, by itself, suffice to create trade-secret status. If you also publish the information on your website, distribute it to every consultant who walks in the door without an NDA, or otherwise fail to mark and segregate it as confidential, a court can still rule that it is not a trade secret regardless of how many NDAs you have signed.

Filling the ScoutMyTool NDA template in five steps

Open the template. ScoutMyTool's NDA template loads in your browser and runs entirely client-side. Your information is never uploaded.
Pick mutual or one-way. The template asks you upfront which structure you need; the clauses adapt accordingly.
Fill the parties, purpose, term, and governing-law fields. Use full legal entity names with address. Be specific about the purpose ("evaluation of a potential reseller relationship", not "business discussions"). Pick a term — 3 years is a common middle ground for a routine commercial NDA.
Export to PDF or DOCX. The template renders as a clean, print-ready PDF (or DOCX if you need to mark up further). The DTSA notice and the standard injunctive-relief clause are included by default.
Sign and send. Use ScoutMyTool's Sign PDF tool to add your signature, send the file to the counterparty, and have them do the same. For particularly sensitive engagements, use Protect PDF to password-protect the document before emailing.

Employee NDAs are different — use the right template

A general commercial NDA between two companies is not the right document for an employee or full-time contractor. Employee NDAs typically include additional clauses on assignment of inventions, return of materials at termination, and (in some jurisdictions) non-solicit obligations. Non-compete clauses are unenforceable in an increasing number of states — California, Minnesota, North Dakota, and Oklahoma flat ban them, and several others narrow their scope — so be careful what you copy from older templates.

For employee relationships, use ScoutMyTool's Employee NDA template instead of the general NDA. It includes the additional employment-specific clauses and is structured to comply with the recent wave of state-level non-compete reforms.

Non-disclosure agreement — the main template this article walks through.
Employee NDA — the variant for employees and long-term contractors.
Independent contractor agreement — sometimes packaged with an NDA, sometimes the NDA is a separate exhibit.
Sign PDF — add a legally binding electronic signature.
Protect PDF — password-protect the signed NDA before emailing.
PDF Form Fill — fill PDF form fields without Adobe.
DocuSign free alternatives — signing options if the counterparty does not insist on a paid platform.

Frequently asked questions

What is the difference between a one-way (unilateral) and a mutual (bilateral) NDA?: A one-way NDA imposes confidentiality on one party — the receiving party — while the disclosing party shares information without reciprocal obligation. Common cases: a company hiring a freelancer, a startup pitching an investor, a vendor sending pricing to a customer. A mutual NDA imposes the same obligations on both parties because both will share confidential information. Common cases: two companies discussing a partnership, an acquisition, or a co-development project. Pick mutual when in doubt — receiving parties almost always prefer it, and disclosing parties rarely have a good reason to refuse.
How long should the confidentiality obligation last?: For ordinary business information, 2 to 5 years is the market standard. For genuine trade secrets — information that derives independent economic value from not being generally known and is the subject of reasonable secrecy measures — the obligation can be indefinite as long as the information remains a trade secret. Be precise: a fixed term that says "10 years" terminates the duty completely at year 10, even for trade secrets, unless the contract carves out trade secrets separately.
Does an NDA make information secret if it is not actually secret?: No. An NDA is a contractual promise not to disclose; it does not transform publicly available information into a trade secret. Courts routinely refuse to enforce NDAs against information that was already public, independently developed by the receiving party, or lawfully received from a third party — and most NDAs include explicit exceptions for these categories. The information itself has to actually be confidential.
Do I really need the DTSA whistleblower notice?: You need it in any NDA with an employee, contractor, or consultant if you might ever want to sue for trade-secret misappropriation under the federal Defend Trade Secrets Act. The DTSA, codified at 18 U.S.C. § 1833(b), grants immunity to whistleblowers who disclose trade secrets to government officials or attorneys when reporting suspected violations of law. The statute provides that an employer that fails to give the required notice in its confidentiality agreements forfeits the right to recover exemplary damages and attorney fees. The notice itself is short — under 100 words — and the cost of forgetting it is significant.
Is a free template legally binding, or do I need a lawyer?: A free template covering the eight clauses above is legally binding and enforceable for ordinary business situations. A lawyer is worth the spend when the underlying information is genuinely valuable (a patentable invention, a proprietary algorithm, a customer database with material economic value), when the counterparty has substantially more legal sophistication than you do, or when the agreement involves cross-border parties with conflict-of-law issues. For an NDA with a freelance designer or a small vendor, the template is enough.
Can both parties sign electronically?: Yes. The US ESIGN Act of 2000 makes electronic signatures legally equivalent to wet-ink signatures for NDAs as long as both parties consent to electronic execution. Most modern business NDAs are signed electronically by default. The most common workflow is to send the filled PDF to the counterparty, have them sign with a free tool and send their signed copy back, then keep both signed copies in your records.
What if the other side sends me their NDA instead — can I use this template to evaluate it?: Absolutely. Reading a counterparty NDA clause-by-clause against a template you trust is one of the highest-value uses of a free template. The template tells you what should be there (look for missing clauses) and what is standard (so unusual obligations stand out). Pay particular attention to the definition of confidential information, the term length, the governing-law clause, and any non-compete or non-solicit provisions hiding inside what is labelled an "NDA".

Generate your NDA, free

Mutual or one-way. DTSA notice included by default. Browser-only — your information is never uploaded.

Open the free NDA template →