Confidentiality Clause: What It Restricts, How Long It Lasts, and When to Push Back

Q: How long does a confidentiality clause last?

Most confidentiality clauses in commercial contracts last 2–5 years after the agreement ends. Some include a 'survival' provision that extends trade secret obligations indefinitely, even after the time-limited confidentiality period expires. Courts have occasionally voided indefinite confidentiality clauses as unreasonably overbroad, but this depends heavily on jurisdiction and whether the information genuinely qualifies as a trade secret.

Q: Can I talk about work I did for a client if there's a confidentiality clause?

It depends on what the clause covers. A standard confidentiality clause restricts disclosure of the client's non-public business information — strategies, financials, proprietary processes. It typically does NOT prohibit you from saying you worked with the client, stating generally what type of work you did, or displaying the deliverable in your portfolio (unless IP transfer or explicit non-disclosure of the engagement was included). Read the clause carefully before assuming you can't mention the client's name.

Q: What happens if you break a confidentiality clause?

Breaking a confidentiality clause exposes you to injunctive relief (a court order to stop the disclosure), actual damages for provable losses the client suffered, liquidated damages if the contract specifies a fixed penalty for breach, and attorney fee recovery if the contract includes a fee-shifting clause. For trade secrets, the federal Defend Trade Secrets Act (DTSA) allows for exemplary damages of up to twice actual damages and attorney fees in cases of willful and malicious misappropriation.

What is a confidentiality clause? A confidentiality clause legally obligates you to keep specified information about a client's business private — typically their strategies, financials, client lists, and proprietary processes. Most confidentiality clauses in freelance contracts protect the client's information exclusively, impose broad obligations on what qualifies as "confidential," and survive for years after the engagement ends.

A confidentiality clause is distinct from a non-disclosure agreement (NDA) only in form: the obligations are functionally identical. The clause appears as a section within a larger contract; the NDA is a standalone agreement. Under the Defend Trade Secrets Act (18 U.S.C. §1839), enacted in 2016, trade secret confidentiality obligations can now be enforced federally — which has expanded the practical enforceability of even standard clause-level confidentiality language.

According to the American Bar Association, confidentiality clauses are among the three most commonly litigated provisions in commercial contracts, alongside payment terms and IP ownership. The most common disputes arise from overbroad definitions of "confidential information" that were never seriously considered at signing.

What "Confidential Information" Actually Means in Your Contract

Most confidentiality clauses define "Confidential Information" broadly — often capturing everything the client shares with you, regardless of how it's labeled. A typical sweep definition:

That language captures virtually everything. A meeting note, a pricing discussion, a strategy document you didn't even know you were receiving — all potentially covered.

How to Find the Confidentiality Clause

Red Flags

Red Flag 1: No carve-outs for publicly available information
If information becomes publicly available (from any source other than your breach), you should have no continuing obligation to keep it confidential. A clause without this carve-out can obligate you to maintain secrecy about information the client has publicly disclosed themselves.

Red Flag 2: Indefinite survival period for non-trade-secret information
Routine business information should have a defined confidentiality period — 2 to 5 years is standard. Indefinite confidentiality for non-trade-secret information is overbroad and sometimes unenforceable — but "sometimes" is not a guarantee.

Red Flag 3: Hidden non-compete language within the confidentiality section
Some confidentiality clauses include a sentence like "Contractor agrees not to use Confidential Information in providing services to any client in [industry]." That's effectively a non-compete buried inside confidentiality language. Read every sentence.

Carve-Outs You Should Always Request

Duration: What's Reasonable

What Happens If You Upload the Contract to an AI Tool?

Carve-Out	What It Protects
Publicly available information	Removes obligation for information already in the public domain
Independent development	Protects information you develop independently without using client's confidential info
Prior knowledge	Protects information you already knew before the engagement
Legal disclosure	Allows disclosure required by court order, subpoena, or applicable law
Portfolio use	Allows you to reference the work in your portfolio (often separate from confidentiality clause)

Information Type	Reasonable Confidentiality Period
General business information	2–3 years post-engagement
Customer/client lists	3–5 years post-engagement
Technical specifications / source code	3–5 years post-engagement
Trade secrets	Indefinite (subject to trade secret law)

If your confidentiality clause restricts disclosure to "any third party," uploading the contract to a cloud-based AI tool may constitute a disclosure. See Is My Contract Confidential If I Upload It to AI? for a full analysis. NovaDocs runs entirely in your browser — nothing is uploaded to a server, eliminating this risk entirely.

Negotiation Scripts

Add the four standard carve-outs

"I'd like to add carve-outs for: (1) information that enters the public domain through no fault of mine; (2) information I independently develop without using your confidential information; (3) information I already knew before this engagement; and (4) disclosures required by law. These are standard in any well-drafted confidentiality clause."

Add a time limit for non-trade-secret information

"For information that doesn't qualify as a trade secret, I'd like to limit the confidentiality obligation to [3] years following termination of the engagement."

FAQ

What does a confidentiality clause do?

It legally obligates you to keep specified information about a client's business private — covering their strategies, financials, client lists, and proprietary processes. Most are one-sided: they protect the client's information, not yours.

How long does a confidentiality clause last?

Standard clauses last 2–5 years after the agreement ends. Trade secret obligations often survive indefinitely. Indefinite confidentiality for non-trade-secret information is sometimes challenged as overbroad.

Can I talk about work I did for a client if there's a confidentiality clause?

Usually yes, with limits. You can typically say you worked with the client and describe the general nature of the work. You cannot reveal their non-public business information, financials, strategies, or proprietary data. Portfolio use requires a separate license negotiated before signing.

What is the difference between a confidentiality clause and an NDA?

A confidentiality clause is a section within a larger contract. An NDA is a standalone agreement. Both create the same legal obligation. An NDA is typically signed before negotiations or project discussions begin.

What happens if you break a confidentiality clause?

You face injunctive relief, actual damages, liquidated damages (if specified), and attorney fees. Under the federal Defend Trade Secrets Act, willful trade secret misappropriation can result in exemplary damages of up to twice actual damages.

See what your confidentiality clause actually restricts — free, no login, nothing uploaded to any server.

Analyze your contract free →