Everyone is talking about the new rule approved by the Federal Trade Commission on April 23 (published[1] on May 7 and set to take effect – pending legal challenges[2] – on September 4, 2024[3]). It is referred to as the Non-Compete Clause Rule. The Non-Compete Clause Rule follows on the heels of several states effectively “outlawing” non-competition agreements. It prohibits, as “an unfair method of competition,” all non-competition clauses or agreements between workers and employers as of the effective date. Many fear that this rule means the end of protecting a company’s trade secrets. It does not.
Many companies that enter into non-competition agreements are not trying to keep employees from working, but rather trying to maintain the confidentiality of their trade secrets. They want to prevent other companies from obtaining, or their employees from using, their special sauce that sets the company apart from its competitors. Protecting trade secrets – the secret sauce – is a legitimate business goal. That goal can be achieved[4] without non-competition agreements that may (now) run afoul of various state and federal rules. Here are some practical tips to protect your trade secrets:
- IDENTIFY – What are your trade secrets?
You need to know what your company’s trade secrets are so that you can protect them. That means understanding what makes your business distinct, what gives it a competitive advantage, and what can be legally protected as a “trade secret.”
If your business hasn’t undertaken this exercise before, it’s a useful annual exercise to review at the senior management and board level. If this is your first time – or you need a refresher, these two steps are useful. First, have your core businesspeople identify what information is most important to how they do their jobs and bring value to the company. This could include customer lists,[5] pricing information,[6] manufacturing designs and processes,[7] or intellectual property. Second, work with your attorney to compare those confidential secrets with what is legally protectable by trade secrets law. That analysis includes questions around two main ideas: Is your information public? Is your information valuable?
Is your information public?
(1) Is the information known outside of your business?
(2) Is the information known by employees, contractors, and business partners?
Is your information valuable?
(3) What measures does your company take to guard the secrecy of the information?
(4) What is the value of the information to your company and your competitors?
(5) How much effort or money has your company spent to develop the information?
(6) How easy would it be for another company to duplicate or acquire the information?
- PROTECT, EDUCATE, AND MONITOR – Leverage your internal resources.
So, now you know what your trade secrets are. Great! The next step is to take reasonable measures to protect your trade secrets. Initially, you want to put in place electronic, physical, and conceptual protections to keep your trade secrets secret. And, reasonable measures are required in order to obtain any type of legal relief – you can’t just say, “it’s a trade secret,” and expect a court to agree. You’ve educated your people, so now it’s time to use them and your company’s resources to protect your secrets. You can use your HR team, IT team, legal team, and your sales/deals team.
Protections fall into two categories: external and internal. External include requiring non-disclosure or confidentiality agreements (NDAs) for any sharing of confidential, proprietary, or trade secret information. Tap into your sales and deals teams so that they reach out to your legal team to prepare appropriate agreements. NDAs provide some protection for your trade secrets and their breach can support claims that your company could bring under state and federal law.
Internal protection starts with educating your workforce about why your trade secrets are important. Your employees are the gatekeepers for your trade secrets. You need to educate your employees (and contractors if you use them) about the importance of safeguarding your company’s special sauce. They need to understand what types of information your company treats as trade secrets, the consequences of disclosing them to unauthorized individuals, and that your company takes protection seriously. Annual reminders and trainings will help establish your company’s culture of protection. Training for new employees and contractors is also important, as are confidentiality agreements[9] for each new hire. Encourage your employees to be active participants in protecting your trade secrets.
Internal protection and monitoring includes adding protections to files and documents that prevent their download or external emailing; view access only for highly sensitive materials; remote access/wipe permission if you allow employees to use their own devices for work; monitoring employee email/downloads; limiting access to employees who need to know the information; requiring passwords and encryption to protect electronic trade secrets; keycard access, security cameras, physical locks; and cyber security monitoring/protections. These measures require the support of your IT, HR, and security teams.
Another branch of internal protection and monitoring comes into play when bringing on new employees or when employees are leaving. Hiring managers and HR should be aware of these protections and help. For incoming (new) employees, you should confirm with them that they are not bringing any trade secrets from their prior employers. New employees can be required to reimburse the company for training if they leave within a short period. For outgoing/departing employees, you should remind them that they are not permitted to take company information with them (and possibly have in place a computer policy that prevents them from downloading or emailing documents) and obtain permission to take any personal information that may be stored on a company device (such as photos or personal documents) before departure. A team comprised of representatives from legal, business, and HR should also consider whether the departing employee has had access to trades secrets that will “inevitably” be sued in her or his new employment to provide a substantial advantage to a competitor.[10] Garden leave (a paid period before beginning a new job)[11] and severance pay may be considered as protectionary measures for senior employees with access to particularly sensitive information. If garden leave is part of an employee’s departure, HR and legal should review with the employee the terms of that leave. Departing employees should ideally sign a confirmation that they have not taken any trade secrets upon departure and have returned any information obtained during their employment; incoming employees should ideally sign a confirmation that they are not bringing someone else’s trade secrets with them. The same procedures can be followed for consultants.
A final aspect of protecting and monitoring is a combination of internal and external, focused on your relationships with external business partners. This is your sales and deals teams together with your legal team. By understanding the scope of the deal or project, you can limit the information shared to the minimum information required for that purpose. At the end of every project or business relationship, and whenever a project or relationship changes, materials should be returned/destroyed (with appropriate confirmations), continued access should be confirmed and/or taken away, and records should be made of who had access to what information and when that access was removed.
- CHECK-UP –Do your current policies and procedures protect your trade secrets?
Regularly review your trade secret protection policies. As your business grows, you may need to update your trade secret protection policies to ensure that they are still effective and protect what needs to be protected. Good corporate hygiene includes an annual check-up of your company’s policies, procedures, and agreements,[12] as well as check-ups when something significant occurs (for example, a new process is created, a new patent is filed, or a new contract is won). Significant events might require adding to the information considered trade secrets and how that information is protected. Annually you should also check on who has access to what information (see discussion in point 2) and which employees, contractors, or business partners no longer should have access to sensitive information.
- PLAN AHEAD – What happens if the worst happens?
Have a plan of action for what to do if your trade secrets are stolen or misused. You will want to act fast if you learn of the misuse of your trade secrets or if you suspect that they are being misused. In creating your plan, you should include your lawyer, IT, and HR. Legal options can include written demands for return of trade secrets, restraining orders obtained from a court, and state[13] and federal[14] litigation for damages (compensatory and punitive) resulting from the misuse and/or theft of trade secrets. You will also want to preserve records related to your trade secrets, including measures you took to protect the secrets, when/where/how the misappropriating party obtained secrets, and when/where/how you learned of the theft, misuse, and/or misappropriation of your trade secrets. This often involves IT obtaining email or download logs and security checking entry/access logs. Having a plan in place before anything happens can increase the chances of a positive outcome and the protection of your trade secrets.