What Does "In Confidence" Mean?

“Can you keep this in confidence?” You probably hear this a lot in business - during sales calls, with suppliers, or when discussing new product ideas.

But what does “in confidence” actually mean in Australia, and how do you protect your business if confidential information is shared with you (or by you)?

Handled well, confidentiality builds trust and smooth deals. Handled poorly, it can trigger disputes, reputational damage and lost opportunities. In this guide, we’ll unpack what “in confidence” means in practice, when you can disclose information, and the simple legal steps to protect your business.

What Does “In Confidence” Mean In Business?

“In confidence” is a promise that information will be kept private and used only for a specific purpose (for example, to evaluate a partnership or quote on a project).

In Australian law, confidential information generally has these features:

• It’s not public knowledge (for example, pricing models, client lists, a new design or business strategy).
• It’s disclosed in circumstances that suggest secrecy (for example, an introductory call where you’re asked to keep it private, a meeting with a confidentiality slide, or an email marked “Confidential”).
• It has commercial value that could be damaged if it leaks (for example, a tender response or technical know-how).

Importantly, a casual “in confidence” label on its own doesn’t create airtight legal protection. To avoid ambiguity, put a clear confidentiality framework in place - ideally a written Non-Disclosure Agreement (NDA) before any sensitive exchange.

When Can You Share Information Marked “In Confidence”?

Most confidentiality commitments are not absolute. In practice, there are common exceptions where disclosure is allowed - and your NDA should spell these out. Typical exceptions include:

• Consent: The discloser agrees in writing that you can share the information (for example, with a subcontractor).
• Public domain: The info is already public, or later becomes public through no fault of yours.
• Independently developed: You already knew it, or developed it separately without using the confidential information.
• Professional advisers: You can brief your lawyers, accountants or insurers who are also bound to keep it confidential.
• Required by law: You must disclose to comply with law, a regulator, stock exchange rules or a court order (usually after giving notice to the discloser where possible).

If you need to pass confidential information downstream (for example, to a subcontractor, manufacturer or consultant), make sure they’re bound by equivalent obligations. A good NDA will allow disclosure on a strict “need-to-know” basis and require you to ensure those third parties keep it confidential, too.

Also, don’t confuse “in confidence” with the negotiation label “without prejudice” - they serve different purposes. “Without prejudice” protects settlement communications from being used as evidence in disputes, whereas confidentiality restricts use and disclosure of the information itself. If you’re unsure about that distinction, see our plain-English explainer on without prejudice.

How To Protect Confidential Information In Your Business

You don’t need to overcomplicate confidentiality. A few practical steps will go a long way to managing risk and setting expectations with staff and partners.

1) Use NDAs Before You Share

Wherever possible, sign a simple, tailored Non-Disclosure Agreement before exchanging sensitive information. This creates clear obligations (what’s confidential, how it can be used, who can see it, and for how long). For two-way discussions, a mutual version can be used so both sides are protected.

2) Label and Limit Access

• Mark documents and emails “Confidential” and state the purpose of disclosure.
• Store confidential files in restricted folders or virtual data rooms with access logs.
• Share on a “need-to-know” basis and remove access when it’s no longer needed.

3) Build Confidentiality Into Everyday Contracts

Include confidentiality clauses in your standard agreements with employees, contractors, suppliers and partners. This closes gaps where a standalone NDA isn’t practical for day-to-day work.

4) Train Your Team

Explain what counts as confidential, how to handle it and who to ask if unsure. Short, focused training at onboarding plus periodic refreshers helps prevent accidental leaks.

5) Set Clear Email Footers and Processes

Use an appropriate email disclaimer and simple internal rules for forwarding or downloading sensitive files (for example, no forwarding outside company domains without approval).

6) Have an Incident Playbook

If something goes wrong - an email to the wrong person, a lost laptop, or a suspected data scrape - move quickly. An internal protocol and a data breach response plan will help you assess risk, contain the issue and meet any reporting obligations.

Do You Need An NDA Or Other Legal Documents?

Most businesses will benefit from a small set of core documents to protect confidential information effectively. The right mix depends on how you operate, but the following are common:

• Non-Disclosure Agreement (NDA): A short agreement that sets out how confidential information can be used and shared, and for how long. Use a one-way NDA if only one party shares information, or a mutual NDA if both sides will share. Start with a tailored Non-Disclosure Agreement and keep it on hand for future discussions.
• Employment Contract: Confidentiality should be built into staff contracts, along with IP ownership, return-of-materials and post-employment restrictions where appropriate. Ensure your template Employment Contract includes robust confidentiality terms.
• Restraint of Trade: For senior staff and key contractors, consider reasonable non-compete and non-solicit clauses. These are highly technical and need to be tailored by role and location; get guidance via Restraint of Trade advice.
• Privacy Policy and Collection Notices: If you collect or handle personal information (which most businesses do), a compliant Privacy Policy and collection notices set out how you handle data and build customer trust.
• IP Assignment or Licence: If contractors create materials for you (designs, code, copy), ensure confidentiality and ownership are covered. Where ownership needs to move across, use an IP Assignment or licence so there’s no uncertainty later.

You may not need every document from day one, but getting key protections in place early helps you scale safely and avoids awkward negotiations later.

Managing Confidentiality With Staff, Contractors And Partners

Confidentiality isn’t just a legal document - it’s a habit. The way you operationalise it with your team and third parties matters as much as the wording in your contracts.

Hiring And Onboarding

• Make confidentiality a standard part of your onboarding checklist.
• Issue role-based permissions to systems and files (and remove access fast when people change roles or exit).
• Walk through practical examples: what can be shared with a client, what must stay internal, and how to escalate questions.

Contractors And Suppliers

• Use NDAs early during scoping so you can speak freely.
• In your services or supply agreements, include confidentiality clauses, data handling rules and return-or-destruction obligations on termination.
• If third parties handle customer data, include privacy and security requirements that match your own obligations.

Sales And Partnerships

• Agree the purpose of disclosure upfront (for example, “to assess a channel partnership”).
• Limit what you share before an NDA - provide just enough detail to explore the opportunity, then share specifics once protections are in place.
• Keep a clean audit trail of what was shared, when, and with whom (especially in competitive tenders).

Exiting Staff And Ending Projects

• Have a clean handover process: revoke access, retrieve devices, and confirm return or destruction of confidential material.
• Remind departing staff of ongoing confidentiality obligations and any post-employment restraints (where lawful and reasonable).

What Happens If Confidentiality Is Breached?

Even with good processes, mistakes and breaches can happen. Act quickly and proportionately.

Immediate Steps

• Contain the issue: disable access, recall emails where possible, and ask recipients to delete errant files.
• Notify internal stakeholders and, where relevant, your insurers and legal advisers.
• Assess whether personal information is involved and whether privacy notifications are required under your Privacy Policy or Australian privacy law.

Legal Options

Depending on the situation, options can include enforcing the NDA, seeking undertakings, negotiating practical remedies (for example, the return of documents), or in serious cases, seeking court orders to stop further use (injunctions) and claiming damages or an account of profits.

Where the breach stems from a staff exit or competitor activity, consider whether your post-employment restraints and confidentiality clauses are enforceable in the circumstances. Getting early advice can help you move quickly and choose the most effective path.

Common Misunderstandings About “In Confidence”

• “We said it was confidential, so we’re covered.” Verbal assurances help, but a signed NDA sets clear rules and is far easier to enforce.
• “It’s in my head, so it’s not protected.” Confidential information can be protected whether written or oral if shared in circumstances of confidence.
• “If the other side breaches, I own their IP.” A breach gives you remedies, but it typically doesn’t transfer ownership. If ownership is important, address it explicitly with an IP Assignment or licence clause.
• “Confidentiality and ‘without prejudice’ are the same.” They’re different tools. Confidentiality restricts use and disclosure of information. “Without prejudice” relates to settlement discussions and their admissibility, explained here: without prejudice.
• “My privacy policy covers commercial secrets.” Your Privacy Policy covers how you handle personal information. It doesn’t replace NDAs or confidentiality clauses for commercial information.

Practical Clauses To Include In Your NDA

When you put an NDA in place, make sure it addresses the real-world scenarios you’ll face. Clauses to consider include:

• Purpose-limited use: The recipient can only use the information to evaluate or perform the agreed purpose - nothing else.
• Need-to-know access: Allow disclosure only to specified people (staff, contractors, advisers) who are also bound to keep it confidential.
• Security standards: Reasonable steps to protect the information (storage, access controls, cybersecurity practices).
• Return or destruction: What happens to the information when discussions end or on request.
• Duration: How long confidentiality lasts (often several years, with trade secrets protected indefinitely).
• Exclusions and legal disclosure: Clear exceptions for public domain info, prior knowledge, independent development and compelled disclosures.
• Remedies: Acknowledgement that damages may be insufficient and that urgent relief (injunctions) may be sought.

If you’re regularly in discussions with potential investors, enterprise customers or strategic partners, keep a short, plain-English NDA ready to go so opportunities aren’t delayed.

Key Takeaways

• “In confidence” means information is shared for a specific purpose and must be kept private - but a written NDA makes those obligations clear and enforceable.
• Confidentiality has sensible exceptions (consent, public information, independent development, advisers and legal requirements), which should be spelled out in your agreement.
• Protect confidential information with simple habits: use NDAs, label documents, limit access, train your team and keep a response plan ready.
• Build confidentiality into your everyday contracts, including your Employment Contract, supplier agreements and partnership documents.
• Your Privacy Policy manages personal information; it doesn’t replace commercial confidentiality - use the right tool for each job.
• If a breach occurs, act quickly to contain it and consider legal options under your NDA, along with any privacy obligations.

If you’d like a review or a tailored Non-Disclosure Agreement so you can share information “in confidence” with confidence, you can reach us at 1800 730 617 or team@sprintlaw.com.au for a free, no-obligations chat.