When to use this
Use this checklist to review NDA/confidentiality agreement needs, content, signing, enforceability, and review status.
Related controls
- A.6.6 Confidentiality or Non-Disclosure Agreements
- Confidentiality Agreement Register
- A.5.31 Legal, Statutory, Regulatory and Contractual Requirements
Checklist
- Confidentiality requirements are identified from legal, contractual, risk, classification, asset, and information-exchange needs.
- Agreement type matches the party and information flow.
- Agreement was signed and dated before access or exchange.
- Agreement terms reflect current business and information-protection needs.
- Legal enforceability was reviewed where appropriate.
- Agreement does not conflict with applicable law, regulation, or existing contracts.
- Review date and owner are assigned.
- Exceptions are recorded and risk-treated.
- Evidence location is recorded in Confidentiality Agreement Register.
Review table
| Agreement | Party | Information covered | Legal review needed? | Review status | Action | Owner |
|---|---|---|---|---|---|---|
| TBD | TBD | TBD | Yes / No | TBD | TBD | TBD |
- Template
- Iso27001
- Confidentiality
- Non disclosure
Note Metadata
Aliases: NDA Review Checklist
Source: 90 Templates/Confidentiality Agreement Review Checklist.md
Related Notes
- ISO 27001 A.5.31 - Legal, Statutory, Regulatory and Contractual Requirements
- ISO 27001 A.6.6 - Confidentiality or Non-Disclosure Agreements
- A.6 People Controls MOC
- A.6.6 Audit Evidence Pack
- A.6 People Controls Implementation Guide
- A.6 People Controls Implementation Audit Risk Mapping
- A.6.6 Audit Checklist
- Confidentiality Agreement Register
- Templates MOC