Is there value in "Non-Disclosure Agreements (NDAs)? When you want to look at a demo, conduct a POC, or even purchase a solution, I mean, do they create a false sense of security? Are there many cases of people enforcing them? Maybe there is an easier way to go about it? It costs a lot of money and often requires a significant amount of time as well.

Contact Center & TelecomApplications & PlatformsData Center+9 more
3.8k views1 Upvote8 Comments
CTO in Services (non-Government), 1,001 - 5,000 employees
NDA is usually required if you are working on a unique idea that involves filing a patent in a near future, if it not an invention or a unique idea not available in the market, signing NDA may prove counterproductive as the idea, processes, product design and capabilities cross hands and minds. It also is weak in defining on individuals working on the project in the companies who may also change jobs.
Unless the NDA is well defined covering risks for a long duration, with adequate exit and non compete clauses, one should expend their energies, time and money in creating, developing and marketing the product or services.
Head of Programmes in Construction, 5,001 - 10,000 employees
With the continued and growing need in both the Public Sector and the Private Sectors, to demonstrate ethical behaviours and values (e.g. Non-Discrimination, Equal Treatment, Transparency, Value for Money, Integrity, Proportionality, Competition, Innovation, Sustainability, Best Practice), it is difficult to show the true value of NDA's.

Whilst I can appreciate how a Sales Team perceive there to be a benefit to the "protection" of "their" revenue stream.  Is there really a benefit to the Customer of Record?

Throughout my career, I have not seen a genuinely enforceable NDA or, an appetite to enforce it.  Likewise, when you really get under the covers of the Demo and/or, POC ... there's not a really a USP to protect.
Director of IT in Education, 1,001 - 5,000 employees
My experience dealing with NDA's has been protecting the vendor's product and any future offerings or updates they have on the horizon, as they share their goals and roadmaps with us.  These have alwasy occured during demonstrations and we have never had one during a POC, or during a RFX process.  

The NDA will give the vendor a course of action if they discover you shared confidential information with someone, which compromised their trust and ended up hurting the vendor somehow.  It is basically an "on my honor" doument.  The ones I have signed were at the time of or just slightly before a presentation, so not a costly issue.
CISO in Telecommunication, 1,001 - 5,000 employees
Think about what will happened without the NDA. Vendors will be freely to disclose what tools you are using, your POC results, your weakness or even your internal politics. You will find the NDA critical if you think this way.
CIO in Education, 501 - 1,000 employees
Yes, there is value. I don't believe it creates a false sense of security at all. 
CIO in Education, 201 - 500 employees
NDAs are there to protect intellectual properties/innovative ideas. Just like when I get a good idea that requires some kind of outsourcing, and I would not like to find it executed by someone I went to for help.
Personally, I do not find them counterproductive because they are just like the rough sketch. Until a solid valid contract has been signed, I do not worry about changing processes or designs.
In any case, the opinions vary depending on past or current experiences.
Strategic Banking IT advisor in Banking, 10,001+ employees
Many times, we do not only sign an NDA with a vendor but instead use a Mutual NDA form to protect both side.

Sometimes, vendors are touring the market with their products, hence presenting them to our competition.   We don't want anyone hear from what we're doing as it could even be sensitive internally.

In the past, as we are a very large organization, we've seen some vendors working a POC with one team, going to another team and discussing about the POC they were doing.

That's how we ended up having a MNDA agreement signed.   It's to keep things in a small circle.

Have we ever had/applied sanctions because the NDA/MNDA was broken?  Don't think so.   But it clearly gives levers to procurement.
Board Member in Healthcare and Biotech, 1,001 - 5,000 employees
NDAs have given way to Mutual NDA barring a few big vendors who still want you to sign their version of NDA.

With every discussion with a new partner, I have always insisted on a mNDA to safeguard interests on both sides. When we share non-public information with any new partner we want it to stay out of public view; it could have material impact on share price, company reputation, or simply open up the entire landscape of vendors knocking on your doors to sell what they believe is the solution to the problem/opportunity.

Content you might like

Which vendors/partners are essential to your ability to deliver applications to support your business?

Applications & PlatformsVendor/Product Assessment

Amazon47%

Google48%

IBM19%

Microsoft68%

Oracle21%

Red Hat13%

SAP13%

Vmware23%

None of these0%


401 PARTICIPANTS
903 views

How do you keep a team motivated in absence of leadership?

People & Leadership
Read More Comments
40.1k views29 Upvotes20 Comments

Which components of the Oracle Database environment do you plan to move to the cloud? (Select all that apply)

CloudApplications & PlatformsData & Analytics+7 more

Production45%

Backup65%

Replication33%

Non-production DBs (Dev, Training, QA, etc.)30%


216 PARTICIPANTS
1.5k views1 Upvote

Would anyone be willing to share best practices about how their organization deals with ensuring Cookie Compliance, specifically to GDPR rules? Where should this sort of compliance review sit in an organization? The particular issue we have is who should review new web deployments that use cookies and to make the decisions on whether Cookies are Strictly Necessary or Functionality Cookies. For example is a Cookie required for a Live Chat to work Functionality or Strictly Necessary? Our Security team does not consider taking on these compliance reviews as their domain, as Cookie Compliance is not an internal security matter and the Data Protection team has a limited interest as the GDPR rules around Cookies apply in case of any Cookie being used by a website, whether or not it contains personal data. 

Security & GRCRegulatory Compliance
271 views1 Comment

If you had a magic wand - what's the #1 daily business challenge you'd eliminate?

People & LeadershipStrategy & ArchitectureCloud+57 more
CTO in Software, 201 - 500 employees
Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.
142 19 Replies
Read More Comments
46.6k views133 Upvotes324 Comments