Is there value in "Non-Disclosure Agreements (NDAs)? When you want to look at a demo, conduct a POC, or even purchase a solution, I mean, do they create a false sense of security? Are there many cases of people enforcing them? Maybe there is an easier way to go about it? It costs a lot of money and often requires a significant amount of time as well.

LeadershipArchitecture
4.2k viewscircle icon1 Upvotecircle icon8 Comments
Sort by:
Board Member in Healthcare and Biotech2 years ago

NDAs have given way to Mutual NDA barring a few big vendors who still want you to sign their version of NDA.

With every discussion with a new partner, I have always insisted on a mNDA to safeguard interests on both sides. When we share non-public information with any new partner we want it to stay out of public view; it could have material impact on share price, company reputation, or simply open up the entire landscape of vendors knocking on your doors to sell what they believe is the solution to the problem/opportunity.

Strategic Banking IT advisor in Banking2 years ago

Many times, we do not only sign an NDA with a vendor but instead use a Mutual NDA form to protect both side.

Sometimes, vendors are touring the market with their products, hence presenting them to our competition.   We don't want anyone hear from what we're doing as it could even be sensitive internally.

In the past, as we are a very large organization, we've seen some vendors working a POC with one team, going to another team and discussing about the POC they were doing.

That's how we ended up having a MNDA agreement signed.   It's to keep things in a small circle.

Have we ever had/applied sanctions because the NDA/MNDA was broken?  Don't think so.   But it clearly gives levers to procurement.

CIO in Education2 years ago

NDAs are there to protect intellectual properties/innovative ideas. Just like when I get a good idea that requires some kind of outsourcing, and I would not like to find it executed by someone I went to for help.
Personally, I do not find them counterproductive because they are just like the rough sketch. Until a solid valid contract has been signed, I do not worry about changing processes or designs.
In any case, the opinions vary depending on past or current experiences.

CIO in Education2 years ago

Yes, there is value. I don't believe it creates a false sense of security at all. 

CISO in Telecommunication2 years ago

Think about what will happened without the NDA. Vendors will be freely to disclose what tools you are using, your POC results, your weakness or even your internal politics. You will find the NDA critical if you think this way.

Content you might like

The application security testing processes in my org are airtight.

Strongly agree6%

Agree58%

Neutral20%

Disagree11%

Strongly disagree2%

Not sure

View Results

What "tells" have you noticed for AI-generated text (i.e., typical words/phrases, or other patterns indicative of GenAI)?

Read More Comments

What do you consider a best practice for retaining/releasing unnecessary domain names? In this case, specialized domains tied to marketing campaigns. 

While the expense is small and there is some possibility for a bad actor to acquire and use for malicious activity, I question keeping domains of this sort "forever."

How do you handle this?

I'm curious to hear about your experiences with onboarding as you've moved into new roles or joined new companies. A smooth onboarding process can make a world of difference in how quickly we settle into our new responsibilities and feel like part of the team. 

How would you rate your onboarding experience at your most recent role or when you last joined a new company?

Excellent - Comprehensive9%

Good - Covered the basics76%

Fair - Lacked structure7%

Poor - Limited resources6%

View Results

How can the risk management function be strengthened to counterbalance overly aggressive executive decisions?