How Long Should an NDA Last? Understanding NDA Duration

Two clocks in every NDA

It helps to realize that most NDAs contain two separate time periods, and confusing them causes a lot of misreading. The first is the term of the agreement itself — how long you can keep exchanging confidential information under it. The second is the duration of the confidentiality obligation — how long you must keep the information secret after it is disclosed. These are often different, and the one that matters most for your long-term exposure is the second: how long the secrecy duty survives.

A common structure is a relatively short agreement term, say two years, paired with a confidentiality obligation that continues for a set number of years after each disclosure. Read both, and pay closest attention to how long your duty of secrecy actually lasts, because that is the obligation you carry forward.

What is a reasonable duration

For ordinary business information, confidentiality obligations of two to five years are common and generally seen as reasonable. The logic is that most commercial information loses its sensitivity over time — last year’s pricing or roadmap is rarely a secret worth protecting a decade later. A duration in that range balances protecting genuine secrets against not binding people forever over information that has gone stale. When you see a term in that range, the duration is probably fine.

The right number also depends on the kind of information and the industry. Fast-moving technical or market information may be effectively stale in a year or two, while certain strategic or financial details stay sensitive longer. If a counterparty asks for a longer term, it is fair to ask why — a specific, sensible reason is reasonable, while a long term applied reflexively to everything is the pattern to push back on.

The problem with perpetual NDAs

A perpetual or indefinite confidentiality obligation — one that never expires — is a frequent red flag. For one thing, it can follow you for the rest of your life over information that stopped being sensitive years ago. For another, courts in many jurisdictions are skeptical of perpetual obligations for ordinary confidential information and may decline to enforce them or cut them down to a reasonable period. So a perpetual term is often both unfair and unreliable: it overreaches, and it may not even hold up. If you see "in perpetuity" or "indefinitely," that is a clause to question.

The trade-secret exception

There is an important nuance. Genuine trade secrets are treated differently from ordinary confidential information. Under trade-secret law, a true trade secret can retain protection for as long as it remains secret, which may be indefinitely. So a clause that keeps confidentiality obligations running indefinitely specifically for trade secrets, while applying a defined term to everything else, is actually a reasonable and common structure. The red flag is a blanket perpetual term applied to all confidential information, not a tailored one that treats genuine trade secrets separately.

A well-drafted NDA often does exactly this split: ordinary confidential information is protected for a fixed number of years, and trade secrets are protected for as long as they qualify as trade secrets. That is a fair way to handle the difference, and it is worth asking for if the NDA you receive uses one blunt perpetual term for everything.

Duration interacts with the definition

How long the obligation lasts cannot be judged in isolation from how much it covers. A five-year term on a narrow, well-defined set of secrets is reasonable; the same five years on a sweeping definition that captures nearly everything you learn is far more burdensome. So when you assess duration, look at it alongside the definition of confidential information and the exclusions. A long term combined with a broad definition and missing standard exclusions is the combination that turns an NDA from a sensible protection into a long-running liability.

What happens when an NDA expires?

When the confidentiality period ends, your obligation to keep the specified information secret generally lapses — you are no longer bound by the NDA to protect it. That does not necessarily make the information free to misuse in every way, because other protections can still apply: genuine trade secrets remain protected under trade-secret law for as long as they stay secret, and separate obligations like non-solicitation or contractual confidentiality in other agreements may survive on their own terms. But the NDA itself stops constraining you for ordinary information once its clock runs out.

This is exactly why the duration matters so much. A reasonable term means your obligation has a clear, foreseeable end. A perpetual term means it never does, which is both a heavier burden and, for ordinary information, often an unenforceable overreach. Knowing when the obligation ends is part of knowing what you are actually agreeing to.

Return and destruction obligations

Duration is not only about how long you must stay silent — it is also about what you must do with the information when the relationship ends. Many NDAs require you to return or destroy all confidential materials on request or at termination, and to certify that you have done so. Read this carefully, because a sweeping version can be impractical: it may demand you purge information from backups, archives, and systems in ways that are technically difficult, and it can conflict with your legal obligations to retain certain records. A fair clause allows reasonable exceptions, such as retaining copies required by law or held in routine, inaccessible backups.

The interaction between return obligations and duration is worth noting. If you must destroy everything at termination, the long confidentiality term matters less in practice, because you no longer hold the information. If you are permitted to retain some material, the duration of your obligation to protect that retained material becomes the key question. Read the two clauses together.

How courts treat overlong NDAs

Reasonableness is a recurring theme in how courts handle confidentiality obligations, much as it is with non-competes. An obligation that is indefinite and applied to a sweeping definition of confidential information is more likely to draw judicial skepticism, and depending on the jurisdiction a court may decline to enforce it as written or narrow it to a reasonable scope and period. The practical lesson is not to assume a perpetual term is either fully binding or fully meaningless — it is uncertain, and uncertainty is its own cost. A clearly reasonable term avoids the fight entirely.

Employee and contractor NDAs

Duration deserves special attention in employment and contractor NDAs, because these obligations can shadow your career. An NDA that binds you indefinitely over a broad swath of what you learned at a job can, in practice, feel like a restraint on using your own accumulated knowledge and skills — which the law generally does not allow an employer to lock up. Courts distinguish between an employer’s genuine confidential information and trade secrets, which can be protected, and an employee’s general skill, knowledge, and experience, which you are free to carry to your next role.

So in an employment context, watch for a long or perpetual confidentiality term paired with a definition so broad it blurs that line. The reasonable version protects the company’s real secrets for a sensible period (or indefinitely for true trade secrets) while leaving you free to use the general expertise you developed. If the NDA seems to claim your know-how itself, that is a clause to question before you sign.

What to negotiate

If the duration concerns you, reasonable and common requests include:

• Replace a perpetual term with a defined period, often three to five years, for ordinary confidential information.
• If they need longer protection, limit the indefinite term to genuine trade secrets only.
• Make sure the standard exclusions apply, so the obligation ends for information that becomes public or that you independently develop.
• Confirm when the clock starts — on disclosure of each item, or on termination of the agreement.
• Allow reasonable exceptions to any return-or-destroy obligation, such as legally required records and routine backups.

The bottom line

How long an NDA should last comes down to the type of information: a defined two-to-five-year term is reasonable for ordinary confidential information, while genuine trade secrets can fairly be protected for as long as they stay secret. A blanket perpetual obligation over everything is a red flag — often unfair and frequently unenforceable. Read both the agreement term and the confidentiality duration, and judge them alongside the definition and exclusions. If you want a quick read on whether an NDA’s duration and scope are reasonable, ClauseAudit reviews it in about a minute, flags perpetual terms, broad definitions, and missing exclusions, and explains in plain English what you would be agreeing to.