Enforceability of Employer NDAs Against Whistleblowers

Non-disclosure agreements (NDAs) are standard fixtures in employment contracts, severance packages, and settlement agreements across U.S. industries. When those agreements contain language that could silence employees from reporting fraud, safety violations, or securities misconduct, federal and state law imposes firm limits on their enforceability. This page examines the legal framework governing the intersection of employer NDAs and whistleblower activity, including which disclosures remain protected despite signed confidentiality agreements, which agencies enforce those protections, and how courts have drawn the line between legitimate trade-secret protection and unlawful suppression of protected speech.

Definition and scope

An NDA, in the employment context, is a contractual obligation requiring an employee or former employee to refrain from disclosing specified categories of information to third parties. NDAs are generally enforceable under state contract law when they protect legitimately confidential business information — proprietary formulas, customer lists, financial models, and similar trade secrets.

The enforceability boundary shifts sharply, however, when an NDA purports to prohibit disclosures that federal or state law classifies as protected. A protected disclosure is a communication to a government agency, law enforcement body, or designated internal channel that concerns a violation of law, rule, or regulation. Federal statutes — not courts acting in equity — define which disclosures carry protection, and those statutes override conflicting contract terms.

The scope of NDA limitations spans four overlapping legal categories:

1. Securities and commodities fraud reporting — The Dodd-Frank Wall Street Reform and Consumer Protection Act (15 U.S.C. § 78u-6(h)) prohibits any action that "impede[s] an individual from communicating directly with the Commission's staff about a possible securities law violation." The SEC codified this in Rule 21F-17, which explicitly bars employer agreements that restrict employees from contacting the SEC (SEC Rule 21F-17, 17 C.F.R. § 240.21F-17).
2. Workplace safety and labor violations — The National Labor Relations Act (29 U.S.C. § 157) protects concerted activity among employees, including disclosures relevant to working conditions, which NDAs cannot eliminate.
3. Government contract fraud — The False Claims Act (31 U.S.C. §§ 3729–3733) qui tam framework allows relators to file under seal regardless of any NDA; the Department of Justice has taken the position that FCA anti-retaliation provisions supersede conflicting confidentiality clauses.
4. Federal agency whistleblower statutes — More than 20 federal whistleblower statutes administered through the OSHA Whistleblower Protection Program contain anti-waiver provisions that void contract terms attempting to waive statutory protections.

How it works

When an employee signs an NDA and later seeks whistleblower protection, the legal analysis follows a structured sequence:

1. Identify the governing statute. The applicable whistleblower law — Sarbanes-Oxley, Dodd-Frank, the False Claims Act, or a sector-specific statute — determines whether a non-waiver provision applies. Sarbanes-Oxley whistleblower protections (18 U.S.C. § 1514A), for example, expressly prohibit agreements that waive rights or remedies under that section.
2. Assess the scope of the NDA. Courts examine whether the NDA's plain language, or an employer's enforcement conduct, would have a "chilling effect" on protected disclosures. The SEC has brought enforcement actions specifically on this theory — in 2015, the Commission charged a company $130,000 for using severance agreements that required departing employees to represent they had not filed complaints with any government agency (SEC Press Release 2015-54).
3. Apply the anti-waiver rule. If the applicable statute contains an anti-waiver clause, the offending NDA provision is void ab initio — it has no legal effect regardless of whether the employee signed knowingly.
4. Distinguish trade-secret carve-outs. Even where an NDA is otherwise unenforceable as applied to protected disclosures, an employee may still be bound by provisions protecting legitimate trade secrets. The Defend Trade Secrets Act (18 U.S.C. § 1833(b)) specifically immunizes disclosures made confidentially to government officials or attorneys for the purpose of reporting a suspected violation of law — reinforcing that trade-secret protection cannot be weaponized to suppress lawful reporting.
5. Evaluate severability. Courts generally sever unenforceable provisions and leave the remainder of the NDA intact, meaning a whistleblower who successfully voids a gag clause does not automatically void the entire agreement.

Common scenarios

Severance agreements with no-complaint clauses. Employers sometimes include language requiring departing employees to affirm they have filed no charge, complaint, or proceeding with any government agency. The SEC and EEOC have both challenged such clauses. The EEOC's position under Title VII enforcement is that agreements waiving the right to file a charge are per se unenforceable (EEOC Enforcement Guidance on Non-Waivable Employee Rights, 1997).

Settlement agreements following internal complaints. An employee who raises an internal complaint — see internal vs. external whistleblowing for the structural distinction — and then accepts a settlement may be asked to sign broad confidentiality terms. Dodd-Frank's Rule 21F-17 prohibits employer actions that impede subsequent communications with the SEC, so a settlement NDA cannot bar a later SEC tip about the same underlying conduct, even if it can restrict disclosure to the press or the public.

Government contractor NDAs. Federal contractors are subject to the government contractor whistleblower rights framework under the National Defense Authorization Act (41 U.S.C. § 4712), which prohibits contractor agreements that restrict employees from lawfully reporting fraud to Congress, inspectors general, or the Department of Justice. The statute covers contracts funded by any federal agency.

Healthcare and pharmaceutical industry NDAs. In the healthcare fraud context — covered in depth under healthcare fraud whistleblower protections — qui tam relators under the False Claims Act have filed suits while subject to existing NDAs. Courts have consistently held that FCA qui tam rights are not contractually waivable because the government, as the real party in interest, did not consent to the waiver.

Decision boundaries

The operative distinction is not whether an NDA exists, but whether its enforcement would prohibit or penalize a disclosure that a federal statute affirmatively protects. Four boundary conditions govern most outcomes:

NDA enforceable: The agreement restricts disclosure of proprietary technical specifications, customer contract terms, or internal pricing to competitors, and no law requires or protects that specific disclosure. The employee retains the right to report underlying law violations to agencies without disclosing the trade-secret-protected specifics.

NDA unenforceable as applied: The employer's NDA contains a clause — whether an explicit no-complaint provision or an overbroad confidentiality definition — that would, on its face, deter or prohibit a protected disclosure to a federal agency. Under SEC Rule 21F-17 and analogous OSHA regulations at 29 C.F.R. Part 1980, such clauses are unenforceable.

NDA void with additional liability: If an employer actively enforces a void NDA clause against a whistleblower — through lawsuit, termination, or demotion — the conduct independently constitutes retaliation. Retaliation remedies and damages under Dodd-Frank include reinstatement, double back pay, and attorneys' fees (15 U.S.C. § 78u-6(h)(1)(C)).

State law variation: State whistleblower statutes may provide independent grounds to void NDA provisions. California Labor Code § 1102.5 and New Jersey's Conscientious Employee Protection Act are examples of state frameworks that independently prohibit employer retaliation regardless of contract language — addressed more fully in state whistleblower laws. Where federal and state protections overlap, the broader protection governs.

The Dodd-Frank whistleblower provisions and the anti-waiver sections embedded in statutes like Sarbanes-Oxley operate as a floor, not a ceiling. An NDA cannot reduce the statutory floor; it can only operate in the space that statutes leave open to private contract.

References

• SEC Rule 21F-17 — 17 C.F.R. § 240.21F-17 (eCFR)
• SEC Press Release 2015-54: SEC Charges Company with Violating Whistleblower Protection Rule
• Dodd-Frank Wall Street Reform and Consumer Protection Act — 15 U.S.C. § 78u-6 (Cornell LII)
• False Claims Act — 31 U.S.C. §§ 3729–3733 (Cornell LII)
• [Sarbanes-Oxley