Most sellers treat a confidentiality agreement like a speed bump. Sign it, move on, get to the real conversation about price.

That instinct is wrong, and it costs people money. A confidentiality agreement in a business sale is one of the few documents that actually protects you from the moment your financials leave your hands. And the uncomfortable truth is that most sellers never read it closely enough to know what it covers. Or, more importantly, what it does not.

Here is what a confidentiality agreement does in a business sale, why it matters more than sellers realize, and how buyers and their advisory teams think about it from our side of the table.

What a Confidentiality Agreement in a Business Sale Actually Covers

A confidentiality agreement (also called a non-disclosure agreement, or NDA) in a business sale is a legally binding contract between a seller and a prospective buyer. It restricts the buyer from disclosing information they receive during the evaluation process and typically limits how that information can be used.

At its core, the agreement addresses three things:

  • What counts as confidential. This is usually defined broadly: financial statements, customer lists, vendor contracts, employee information, operational details, and any other non-public information shared during due diligence.
  • Who the buyer can share it with. The NDA typically permits disclosure to advisors like attorneys, accountants, and lenders on a need-to-know basis, but prohibits sharing with competitors, employees, or the general public.
  • What happens if the buyer violates it. Most agreements include specific performance clauses and sometimes liquidated damages, which is a pre-agreed dollar amount the buyer owes if they breach.

What it typically does not cover: information that was already public, information the buyer knew independently before signing, or information the buyer obtained from another source entirely. Worth understanding before you get too deep into any deal.

Why Sellers Underestimate the Risk Before Signing

Your employees do not know you are selling. Your customers do not know. Your suppliers do not know.

The moment any of that changes, your business starts losing value. Sometimes quickly.

Employees get nervous and start looking for other jobs. Key staff leave before the deal closes (and often take institutional knowledge with them, which is a whole separate problem). Customers who catch wind of a potential sale begin building backup supplier relationships. Competitors use the news to poach accounts you spent years building.

This is the real reason a confidentiality agreement matters. It is not about trade secrets in the abstract. It is about protecting business continuity during a sale process that takes 60 to 90 days minimum, and sometimes much longer when SBA financing is involved.

We review 120 to 150 deals per week. The ones that collapse fastest are often the ones where word got out too early. A buyer who discovers mid-process that three key employees have already started interviewing elsewhere has a fundamentally different view of the deal than they had at signing. The multiple drops, the structure gets renegotiated, or the buyer walks entirely.

So yes, the NDA matters before the first spreadsheet changes hands.

What Buyers and Their Advisors Actually Look for in an NDA

When a buyer’s advisory team reviews a confidentiality agreement, they are not just skimming for red flags. There are specific provisions that determine whether the NDA is workable or whether it creates friction that slows the deal down.

Scope of the definition. If the confidential information definition is overly broad, covering things like publicly available information or widely known industry data, that creates enforceability problems. A well-drafted NDA defines confidentiality precisely. Vague language does not protect you better. It makes the document weaker.

Related: Keeping Business Sale Confidential: What Sellers Must Know

The non-solicitation clause. Many seller NDAs include a provision preventing the buyer from hiring your employees or poaching customers if the deal falls apart. Standard and reasonable. Buyers expect it. What we watch for is language so broad it would prevent the buyer from conducting normal business in related markets. That kind of overreach tends to get pushed back immediately.

The standstill clause. Some NDAs include a standstill provision preventing the buyer from making a hostile acquisition attempt or purchasing shares directly. More relevant for larger deals, but sellers should know it exists as an option.

The term. Most confidentiality agreements in business sales last 12 to 24 months. Shorter than 12 months rarely provides enough protection given typical deal timelines. Longer than 24 months starts to feel aggressive on the buy side, and some advisors will flag it.

Mutual vs. one-way. Most seller-side NDAs are one-way, meaning only the buyer has obligations. Some sellers request mutual NDAs where both parties agree to confidentiality. This is more common when the seller is also evaluating the buyer’s financial background or personal net worth statements. Either structure works.

The CIM Comes After the NDA. Not Before.

One of the most common mistakes sellers and their brokers make is sharing the Confidential Information Memorandum before the NDA is executed.

The CIM contains everything a buyer needs to evaluate your business. Revenue trends. EBITDA or SDE. Customer concentration. Key employees. Geographic markets. Operational dependencies. It is, in a real sense, the entire case for your business laid out in one document.

It goes out after the NDA is signed.

Not before. Not while the NDA is being reviewed. After.

From the buy side, we know this and expect it. If a seller or their broker is sharing detailed financials without an executed NDA in place, that raises serious questions about how the process is being managed. It suggests either inexperience or a rushed process, and neither is a good sign.

Sellers working with brokers should confirm this sequence is being followed. If someone is asking pointed questions about your revenue, margins, or customer base before any paperwork is signed, slow down.

How SBA-Financed Deals and NDAs Interact

Here is where it gets practical.

Related: Confidentiality When Selling a Business

Most buyers using SBA 7(a) financing to acquire a business will need to share your confidential information with their lender during underwriting. The SBA lender needs to review your financial statements, tax returns, and other business records to approve the loan. There is no way around this.

A well-drafted NDA anticipates it. The agreement should include a carve-out allowing the buyer to share information with their financing sources, attorneys, and accountants, subject to those parties understanding the confidential nature of what they are receiving.

If the NDA does not include this carve-out, the deal stalls. The buyer cannot get their SBA commitment letter without sharing your financials with the bank, and sharing those financials would technically violate an NDA that does not account for it. We have seen this hold up deals by weeks, which is time neither side can afford.

When our team works with buyers on NDA review, we make sure this language is present. If you are working without a broker and drafting your own confidentiality agreement, have your attorney include a standard advisor carve-out provision. It is a small addition that prevents a real problem.

What Actually Happens When a Buyer Violates a Confidentiality Agreement

In theory, you sue them.

In practice, it is complicated. Proving damages from a breach of confidentiality is genuinely difficult. If a buyer signed your NDA and then shared your revenue numbers with a competitor, you have to prove the competitor received the information, acted on it, and caused measurable harm to your business. That is a high bar, and the legal costs of getting there are not small.

This is why the structure of the NDA matters more than simply having one. Specific performance clauses (which force the buyer to stop using the information) are sometimes easier to enforce than damages claims. Some agreements include liquidated damages provisions, setting a pre-agreed dollar amount and removing the need to prove actual harm in court.

But the better protection, honestly, is being careful about who you share information with in the first place. An NDA is a deterrent and a legal backstop. Not a guarantee.

Serious, well-advised buyers do not breach NDAs. They have their own reputation and legal exposure to protect. The buyers most likely to misuse your information are the unqualified ones who should never have received a CIM in the first place. That is a screening problem, not a legal one.

Protecting Yourself Beyond the NDA

All of the above matters, but a signed confidentiality agreement is only your first layer of protection. A few additional practices give you practical protection that no legal document can replicate on its own.

Share information in stages. Do not send the full CIM with three years of tax returns to every person who signs an NDA. Start with summary financials. Share detailed records only when a buyer has demonstrated serious interest, typically after an initial call or meeting and some basic qualification.

Related: NDA for Selling a Business: What Sellers Need to Know

Know who you are dealing with. Before sharing anything, understand who the buyer is, how they are financing the acquisition, and who is advising them. A buyer backed by an experienced advisory team with a track record of closed deals is a very different counterparty than an anonymous inquiry through a listing site on BizBuySell.

Keep a log. Track who signed the NDA, when, and what information was shared with them. If there is ever a dispute, this documentation is what your attorney will ask for first.

Work with counsel. Your attorney should review any NDA before you sign or send it. Most business sale NDAs are relatively standard, but small differences in language around remedies, scope, and carve-outs can matter in ways that are not obvious until there is a problem.

As a seller, you pay nothing to work with Regalis-backed buyers. No fees, no commissions, no obligations. And when our buyers sign an NDA, they do so with full knowledge of what the document means and what they are committing to.

Frequently Asked Questions

What is a confidentiality agreement in a business sale?

A confidentiality agreement (or NDA) in a business sale is a legally binding contract that prevents a prospective buyer from disclosing or misusing information received during evaluation. It typically covers financial statements, customer data, employee details, and operational records. Most agreements last 12 to 24 months and should be signed before any detailed financial information changes hands.

When should a seller get a confidentiality agreement signed?

Before sharing anything material. That means before the CIM goes out, before detailed financial statements, and before any documentation that would let a buyer identify customers, employees, or specific operational details. A signed NDA should be the first document exchanged in any serious sale process. No exceptions.

Does an NDA prevent a buyer from sharing financials with their SBA lender?

Only if the NDA is poorly drafted. A proper confidentiality agreement includes an advisor carve-out allowing the buyer to share information with their lender, attorney, and accountant, subject to those parties maintaining confidentiality. If your NDA lacks this provision, have your attorney add it before execution.

How long does a confidentiality agreement last in a business sale?

Most NDAs in business sales run 12 to 24 months. That gives enough coverage for the full sale process, including due diligence and SBA financing timelines (which typically run 60 to 90 days from signed LOI to close), plus additional time if the deal is renegotiated or restarts with a different buyer.

Can a seller sue a buyer for violating an NDA?

Yes, but enforcement is difficult in practice because you must prove confidential information was disclosed and that disclosure caused measurable harm. Agreements with specific performance clauses or pre-agreed liquidated damages provisions are generally easier to enforce than those relying solely on compensatory damages. Work with your attorney to make sure your NDA includes remedies that actually hold up.

Selling Your Business? Know Who You Are Dealing With First

Regalis Capital works with serious, pre-qualified buyers who use SBA 7(a) financing to acquire businesses. Our buyers sign NDAs understanding exactly what they are committing to, and our advisory team structures deals that actually close.

There is no cost to you as the seller. No fees, no commissions, no obligation.

If you want to connect with a well-funded, well-advised buyer who will treat your confidential information with the care it deserves, start the conversation here.