The NDA has gone from boilerplate to battleground. Once a routine attachment to offer letters and vendor contracts, NDAs now sit at the center of fights over harassment reporting, whistleblower rights, and severance terms. Three federal laws passed since 2022 (the Speak Out Act, the Ending Forced Arbitration of Sexual Assault and Sexual Harassment Act, and the SEC's expanded whistleblower protections) have narrowed what an NDA can legally prevent an employee from saying. For HR and legal teams, the drafting question isn't just whether the clause protects company information, but whether it still complies with current federal and state limits on confidentiality.
What an NDA Can Legally Protect The core of any enforceable NDA is a specific, well-defined category of confidential information. Courts enforce protection of trade secrets, proprietary processes, customer lists, pricing, unreleased products, and strategic plans. Courts are much more skeptical of over-broad definitions like 'all company information' that sweep in general business knowledge or publicly available facts.
NDAs typically take three forms. Unilateral (one party discloses, the other keeps it confidential), mutual (both parties disclose, both protect), and multilateral (three or more parties share information, common in M&A).
What an NDA Cannot Legally Cover in 2026 Federal law now carves out significant exceptions. The 2022 Speak Out Act prohibits pre-dispute NDAs that prevent disclosure of sexual harassment or sexual assault allegations, meaning a confidentiality clause signed before an incident occurs cannot silence the employee afterward. The Defend Trade Secrets Act requires NDAs to notify employees of their immunity for disclosing trade secrets to the government or in sealed court filings. SEC Rule 21F-17 prohibits any employment agreement or NDA that interferes with an employee's ability to report securities violations to the SEC.
Can an NDA Prevent an Employee from Reporting Discrimination or Harassment? Not broadly, and increasingly not at all. Federal law protects reporting to the EEOC, and a growing number of states (California, New York, New Jersey, Illinois, Washington) prohibit NDAs that cover discrimination, harassment , or retaliation claims. A blanket confidentiality clause in a severance agreement that purports to cover these topics will be unenforceable in many jurisdictions.
Where NDAs Break Down in Practice Three failure modes repeat across litigated cases. Over-broad scope: NDAs that try to protect everything protect nothing, because courts narrow them. Missing carve-outs: NDAs without the required whistleblower, government reporting, and Speak Out Act language face partial or total invalidity. And inconsistent enforcement: an NDA against a departing executive but not against a departing engineer in the same role suggests the employer was targeting the individual, which undermines the underlying claim that the agreement protects legitimate business interests.
Courts also strike NDAs attached to severance agreements that don't provide new consideration, or that are presented on a take-it-or-leave-it basis without reasonable review time.
Drafting a Non-Disclosure Agreement That Holds Up in 2026 Four practices separate defensible NDAs from the ones that collapse. Define 'confidential information' with specificity and include time limits on the obligation, not perpetual restriction. Include the required carve-outs for whistleblower reporting, Defend Trade Secrets Act immunity notice, and Speak Out Act compliance. Pair the NDA with the rest of the employment framework (offer letter, at-will employment disclaimer, employee handbook ) so the documents don't contradict each other. And build an employee reporting pathway that explicitly lives outside the NDA: a confidential channel for raising concerns about discrimination or harassment signals to employees that confidentiality applies to business information, not to protected workplace concerns. AllVoices customers use the whistleblower hotline and compliance solutions to run these channels separately from commercial NDAs so the two categories don't collide. See the SEC's guidance at sec.gov/whistleblower and the EEOC laws and guidance library for the federal rules that override NDA language.
.svg)
.svg)
