NDA Form In New Zealand: What To Include And How To Use It

If you’re running a small business, you’ll probably have moments where you need to share “behind-the-scenes” information to get work done - whether that’s with a potential client, a supplier, a freelancer, a business partner, or even your first employee.

That’s where an NDA form (a non-disclosure agreement) comes in. It’s a practical way to set expectations and protect your confidential information from day one, so you can collaborate without constantly worrying about your ideas, pricing, or data ending up in the wrong hands.

This article is general information only (not legal advice). NDAs can be highly context-specific, so it’s worth getting advice on your particular arrangement before relying on a template.

In this guide, we’ll break down what an NDA form is in New Zealand, what to include, when to use it, and how to make sure it actually works for your business (not just in theory).

What Is An NDA Form (And Is It Legally Binding In NZ)?

An NDA form is a written agreement where one party (or both parties) agrees to keep certain information confidential, and to only use it for an agreed purpose.

In New Zealand, an NDA can be legally binding if it’s properly documented as a contract (or executed as a deed). That usually means it needs the usual contract elements (like offer and acceptance, intention to create legal relations, and consideration where required), and the confidentiality obligations should be drafted clearly and applied in a way the law will treat as enforceable in the circumstances (including not being unnecessarily broad).

Most businesses use an NDA form to protect things like:

• pricing models, margins, supplier terms, and customer lists
• software, product roadmaps, and technical documentation
• marketing strategies and launch plans
• commercial proposals and tender documents
• internal processes and “how we do things” operational know-how

One important point: an NDA form isn’t just a “tick the box” document. If it’s vague, too broad, or doesn’t match the way you actually share information, it may not protect you the way you expect.

If you’re putting an NDA in place as part of a broader commercial relationship, it can also help to line it up with your other contracts - for example your Service Agreement or your customer-facing terms.

When Should You Use An NDA Form In Your Business?

A lot of business owners only think about confidentiality once something has already gone wrong. Realistically, the best time to use an NDA form is before you disclose anything valuable.

Here are common situations where an NDA form makes sense in NZ:

1) Talking To A Potential Buyer Or Investor

If you’re discussing selling your business, raising capital, or bringing in a new shareholder, you’ll likely be sharing sensitive financial and operational information. An NDA sets the ground rules early.

2) Bringing On A Contractor Or Freelancer

Contractors often need access to your systems, client details, and internal documents to do their job. While confidentiality clauses can sit inside a contractor agreement, sometimes a standalone NDA form is the cleanest solution (especially at the “trial project” stage).

3) Sharing A Proposal Or Pitch With Another Business

If you’re collaborating on a joint offer (for example, a bundled service), you may be sharing pricing, contacts, processes, or IP. An NDA can help keep everyone honest about what can and can’t be used later.

4) Hiring Staff (Especially In Key Roles)

Employment agreements often include confidentiality obligations, but if you’re sharing sensitive information before someone starts - or you’re engaging someone on a short-term basis - a separate NDA form can be useful.

It’s also worth ensuring your core employment paperwork is properly set up, including an Employment Contract with confidentiality provisions that match your business reality.

5) Access To Personal Information Or Customer Data

If the confidential information includes personal information (for example, customer lists with contact details), your NDA form should work alongside your privacy obligations under the Privacy Act 2020. In many cases, businesses also need a properly drafted Privacy Policy.

Confidentiality and privacy aren’t identical - one is about keeping business information secret, the other is about handling personal information lawfully - and your documents should reflect that difference. (This distinction matters more than people realise.)

What Should You Include In An NDA Form In New Zealand?

A strong NDA form is clear, specific, and practical. It should explain what information is protected, how it can be used, and what happens if the other party mishandles it.

Below are the clauses we typically recommend considering (depending on your situation).

1) Who The Parties Are (And Who Is Covered)

This sounds basic, but it’s often where problems start. Your NDA form should correctly identify:

• the legal entity disclosing the information (for example, your company name, not just your trading name)
• the recipient (and whether that includes their staff, contractors, and related entities)

If you’re a company, make sure the NDA is in the company’s name (not your personal name) so the protection stays with the business as it grows or changes hands.

2) A Clear Definition Of “Confidential Information”

This is the heart of your NDA form. Many templates define confidential information as “anything confidential” - which isn’t very helpful when you’re trying to enforce it later.

A better approach is to define confidential information as:

• information marked as confidential
• information that would reasonably be considered confidential in the circumstances
• specific categories of information (financials, customer data, pricing, designs, technical documents, source code, etc.)

If you have key intellectual property to protect, your NDA should line up with your broader IP strategy - including whether you need an IP Assignment (for example, where a contractor is creating assets for you).

3) The Purpose (Permitted Use)

Your NDA form should state why the information is being disclosed and how it can be used.

For example:

• “to evaluate a potential supplier relationship”
• “to perform services under a project”
• “to assess a potential acquisition of the business”

This matters because even if someone keeps the information “secret”, you also want to stop them from using it for their own benefit (for example, copying your model and competing with you).

4) Exclusions (What Is Not Confidential)

Most NDA forms include standard exclusions, such as information that:

• is already public (other than through a breach)
• was already known by the recipient before disclosure
• is independently developed without using your confidential information
• must be disclosed by law (for example, under a court order)

These exclusions help keep the NDA reasonable and more enforceable, because it’s not trying to lock down information that can’t realistically be kept confidential.

5) Duration (How Long Does The NDA Last?)

One of the most common questions we get is: “How long should an NDA last in NZ?”

There’s no one-size-fits-all answer, but most NDA forms deal with two timeframes:

• term of the agreement (how long you’ll be sharing information), and
• confidentiality period (how long the obligation to keep it confidential continues after the relationship ends)

In practice, many businesses choose a confidentiality period of several years, but some information (like trade secrets) might need longer protection. The key is ensuring it’s commercially reasonable for the context.

6) Security And Handling Obligations

A good NDA form doesn’t just say “keep it secret”. It explains how the recipient must protect the information, for example:

• only sharing it with staff who “need to know”
• storing it securely (password protection, limited access)
• not copying it unnecessarily
• not uploading it to unsecured third-party tools

This is especially important if your business deals with personal information or commercially sensitive client data. It also helps show you took reasonable steps to protect your information if there’s ever a dispute.

7) Return Or Destruction Of Information

If the deal doesn’t go ahead (or the project ends), you’ll often want the other party to return or destroy your documents. Your NDA form can require this and may also require the recipient to confirm in writing that they’ve complied.

Keep in mind: in real life, it can be hard to “delete everything” (backups, archived emails, cloud systems). A tailored NDA should reflect what’s realistic and still protects you.

8) Remedies If There’s A Breach

When confidential information leaks, money damages might not be enough - because the information can’t always be “unseen”. Many NDA forms include clauses acknowledging you may seek urgent court orders (such as injunctions) to help stop further misuse, where appropriate.

This is one area where a DIY template can fall short, because the wording needs to fit NZ contract principles and the commercial reality of what you’re trying to prevent.

9) Relationship With Other Documents

Sometimes an NDA form is standalone. Other times, confidentiality is built into another contract (for example, a services agreement, contractor agreement, or supply agreement).

What matters is that the documents don’t contradict each other. If you’re using a broader contract structure, you might also need clauses covering ownership of deliverables, liability, payment terms, and termination - not just confidentiality.

If both parties are sharing sensitive information, a Mutual NDA is often more appropriate than a one-way NDA, because it makes the confidentiality obligations balanced and clear.

How Do You Use An NDA Form Properly (So It Actually Protects You)?

Having an NDA form is one thing. Using it properly is what makes it valuable.

Here’s a practical process you can follow.

Step 1: Identify What You’re Actually Sharing

Before sending an NDA form, get clear internally on what you’re disclosing. Ask yourself:

• Is it a trade secret, a pricing model, a customer list, or technical information?
• Are you sharing personal information (which brings privacy obligations into play)?
• Are you sharing information that belongs to someone else (for example, a client’s data)?

This helps you tailor the definition of confidential information and avoid gaps.

Step 2: Choose The Right Type Of NDA

Most businesses use either:

• one-way NDA (only the recipient has confidentiality obligations), or
• mutual NDA (both parties are sharing and both must keep information confidential)

If you’re not sure which one fits, it’s usually a sign the NDA should be reviewed in the context of the broader deal, not treated as a standalone template.

Step 3: Get It Signed Before You Share Anything Valuable

This is a big one. If you disclose your information first, you’re relying on trust - and it becomes much harder to argue later that confidentiality obligations were agreed upfront.

A practical approach is:

• share high-level information first (non-sensitive)
• send the NDA form
• only share the detailed numbers/documents once it’s signed

Step 4: Mark Confidential Information Clearly

Even if your NDA form covers “information that would reasonably be confidential”, it helps to label documents “Confidential” and keep your disclosures organised (for example, by email thread or data room folder).

This reduces grey areas if there’s ever a dispute about what was covered.

Step 5: Limit Access And Keep Records

If you end up needing to enforce your NDA, it helps to have a record of:

• what was shared
• when it was shared
• who it was shared with
• the stated purpose

This is also just good governance for your business as you scale.

Common NDA Form Mistakes Small Businesses Should Avoid

NDAs are common, but we still see the same issues come up again and again - especially for founders moving fast (which is most small businesses).

Using A Generic NDA Form That Doesn’t Match Your Deal

Templates can be a helpful starting point, but they often:

• don’t define confidential information properly
• don’t deal with IP ownership (which is often the real issue)
• don’t match how you actually share data (cloud systems, collaborators, subcontractors)
• include unrealistic obligations that are hard to comply with or enforce

If your NDA form doesn’t fit the relationship, it may create a false sense of security.

Assuming An NDA Replaces Other Contracts

An NDA form protects confidentiality. It usually doesn’t cover:

• what you’re paying and when
• who owns the work product
• warranties and liability
• termination rights

For many commercial relationships, an NDA is just one piece of the puzzle - and the main agreement still needs to do the heavy lifting.

Forgetting About Privacy Compliance

Even a perfectly drafted NDA won’t automatically make it “OK” to share personal information. If you’re disclosing customer or employee personal information, you need to think about Privacy Act 2020 obligations (like only sharing what’s necessary, ensuring there’s a lawful purpose, and keeping data secure).

This is where businesses often need both an NDA form and solid privacy documentation, such as a Privacy Policy and internal procedures.

Not Thinking Through “What Happens If Things Go Wrong?”

If negotiations break down or a contractor relationship ends badly, you want clear rights to:

• stop the other party using your information
• require return/destruction of documents
• protect any intellectual property created during the engagement

This is why NDAs should be tailored - and why businesses often pair them with clear IP documentation (like an IP Assignment for creative or technical work).

Key Takeaways

• An NDA form helps protect your business’s confidential information by setting clear rules around disclosure, use, and protection.
• In New Zealand, NDAs can be legally binding if they’re properly documented (as a contract or deed) and drafted in a way that’s enforceable in the circumstances.
• A strong NDA form should clearly define confidential information, set the permitted purpose, include exclusions, set a duration, and deal with return/destruction and breach remedies.
• You’ll usually want an NDA signed before sharing sensitive information - not after.
• If personal information is involved, your NDA form should sit alongside your Privacy Act 2020 compliance and documents like a Privacy Policy.
• Many businesses need more than just an NDA - such as a tailored Service Agreement, an Employment Contract, or IP documents - depending on what’s being shared and created.

If you’d like help preparing or reviewing an NDA form for your business (or setting up confidentiality protections across your contracts), you can reach us at 0800 002 184 or team@sprintlaw.co.nz for a free, no-obligations chat.