Employment in Financial Services

To keep the “fit and proper” authorisation, the concerned persons must ensure that they follow the relevant training.

Regarding the prevention of money laundering, financial institutions must ensure that personnel whose function requires it is aware of the legislation, knows the internal policies, is aware of the internal reporting procedure and receives special continuing education programmes (article 11, §1, Act of 18 September 2017).

At a sectoral level, JC Nos. 310 and 341 provide for an individual right to five days of training per year per full-time equivalent employee.

No uniform training is required by law, except for activities that require certification.

In general, "the employer shall ensure that employees are adapted to their workstation" and "shall ensure that their ability to hold a job is maintained, particularly with regard to changes in jobs, technologies and organizations". This general obligation is imposed on the employer if there is a change in the job description.

In addition, the FMA General Regulation requires all persons mentioned in article 325-24 of the Monetary and Financial Code, including investment service providers, salespersons, managers, and persons responsible for clearing financial instruments, to undergo annual training appropriate to their activity and experience.

Law 2016-1691 of 9 December 2016 on transparency, the fight against corruption and the modernisation of economic life also provides that in companies employing at least 500 people, or belonging to a group of companies whose parent company has its registered office in France and whose workforce includes at least 500 people, and whose revenue or consolidated revenue is more than €100 million, a training system must be set up for managers and staff most exposed to the risks of corruption and influence peddling.

Decree no. 2022-894 of 15 June 2022 on the conditions governing the exercise of the profession of intermediary in banking operations and payment services introduces a new obligation in terms of continuing training. From now on, all intermediaries in banking operations and payment services carrying out intermediary activities in real estate credit and their staff must update their professional knowledge and skills, as part of their continuing education, “through professional training of sufficient duration adapted to their activities, taking particular account of changes in the applicable legislation or regulations” (article L. 519-11-3 of of the Monetary and Financial Code). Finally, as we have seen, some positions in the financial services industry may require specific training and certification.

Qualification requirements exist for specific roles (eg, traders), and employers must ensure they comply with them by only contracting employees with the required skills, certifications and experience. The expertise of employees providing investment advice, sales representation, and compliance advice must also be continuously maintained and regularly updated.

SFC

Persons engaging in regulated activities are required to continuously update their knowledge and skills through continuous professional training (CPT). The “Guidelines on Continuous Professional Training” published by the SFC provides for the following CPT requirements:

• a minimum of 10 CPT hours a year for licensed representatives and relevant individuals; and
• a minimum of 12 CPT hours a year for responsible officers and executive officers (including 2 CPT hours on topics relating to regulatory compliance).

In addition, an individual should attend at least five CPT hours a year (out of the 10 hours for licensed representatives and relevant individuals and 12 hours for responsible officers and executive officers) on topics directly relevant to the regulated activities for which he or she is licensed at the time the CPT hours are undertaken.

HKMA

The HKMA has implemented the “Enhanced Competency Framework”(ECF) for banking practitioners. While the ECF is not a mandatory regime, banks are strongly encouraged to adopt it as the benchmark for enhancing the level of core competence and ongoing professional development of banking practitioners.

IA

Under the “Guideline on Continuing Professional Development for Licensed Insurance Intermediaries”, licensed insurance intermediaries who are individuals are required to receive training through CPD to preserve their professional competence and standards in providing service to policyholders and potential policyholders.

The minimum number of CPD hours for individual licensees is 15 CPD hours for each assessment period, including a minimum of three compulsory CPD hours on “Ethics or Regulations” courses.

Financial services employees are also required to receive training on anti-money laundering and counter-financing of terrorism. New staff should be required to attend initial training as soon as possible after being hired or appointed. Apart from the initial training, refresher training should be provided regularly to ensure that staff are reminded of their responsibilities and are kept informed of new developments.

Financial services employees may undergo necessary training once they are selected and onboarded.

Financial services sectors categorise employees as specialists and generalists. On one hand, those in charge of specialist roles are deployed in treasury, derivatives trading, IT, forex, risk management, service delivery groups, product roles, legal, etc., while on the other, the generalists are deployed in branches, administrative functions, finance, some areas of treasury, taxation, general management, operations, relationship or sales managing, etc. They should possess differentiated requisite academic qualifications with skill certifications (if any) or obtain competitive scores in recruitment tests.

As such, there are no legal requirements for prior training of employees in the financial services sector. There are various certificate courses, workshops and diplomas by financial institutions and agencies, which are recommended to be attended regularly to stay abreast of industry knowledge and to secure an edge in intra-organisational promotions.

Yes. A CF employee, subject to the Minimum Competency regime, will be required to complete CPD training. Evidence of meeting that CPD requirement is also a factor in determining a person's F&P. RFSPs must maintain records of CPD training provided to CFs to demonstrate compliance with the minimum competency regime.

The 2023 Act also introduces new training obligations for those subject to the Common and Additional Conduct Standards, with firms being required to train those persons on how these obligations apply to them and their new duties of responsibility. Attendance at, or completion of, training in respect of the Conduct Standards should be mandatory and such attendance should be carefully documented with refresher training rolled out periodically.

Employers within the scope of the Criminal Justice (Money Laundering and Terrorist Financing) Acts 2010 - 2021 (including RFSPs) are required to provide annual training to relevant staff and directors on its requirements and the RFSP must have procedures in place to comply with that legislation and associated guidance.

Depending on the RFSP's business, additional mandatory training may be needed annually, for example, on topics such as market abuse.

The designated person for responding to protected disclosures should be trained and competent in the identification and handling of protected disclosures.

The IoM FSA’s “Training and Competence Framework” sets the minimum standards that must be achieved by individuals working in the financial services industry. The framework sets out the IoM FSA’s expectations regarding competency, not only for employees who carry out a Controlled Function (and who are subject to fitness and propriety criteria) but for all staff.

The framework is split into two segments: general training and competence requirements for all staff; and training and competence expectations for Controlled Functions and Other Functions – essentially additional expectations for individuals undertaking or aspiring to undertake certain Controlled Functions or other designated functions.

The IoM FSA also sets requirements concerning continuing professional development (CPD) for different types of regulated entities and staff at different levels. For example, Rule 8.5 of the Rule Book specifies that directors and key persons within a licence holder must undertake a minimum of 25 hours of relevant CPD per year or meet the level prescribed by their professional body (where higher). There are further CPD requirements on individuals who provide investment advice to retail investors.

Even absent a prescribed minimum level of CPD, the IoM FSA believes that ongoing training and CPD for all financial services staff and officers is good practice. Such training and CPD should be relevant to the role of the individual and take account of new developments (ie, changes to tax legislation, new regulatory requirements and new products).

In terms of articles 132, 153-A to 153-X of the FLL, employers must provide employees with training so they can render their services and comply with the duties of their positions, and employees should receive such training under the plans and programmes formulated by mutual agreement of the employer and employees. Nevertheless, as indicated in previous questions, for employees to occupy certain positions, they must meet the requirements, and for brokerage houses proxies must be authorised to exercise their duties under their position within the brokerage houses.  

According to article 117 bis 9 of the general provisions applicable to brokerage houses, general managers are responsible for implementing, maintaining and distributing the continuity plan of the business within the brokerage house. Therefore, the general manager must establish a training programme outlining the actions to be carried out if an operation contingency arises.

On the other hand, the AMIB provides courses and training for interested individuals to obtain the necessary skills and capacity to perform the activities of proxies in brokerage houses, and thereafter, to obtain authorisation from the AMIB and CNBV to act and perform the corresponding duties of the position.  

A Finance Educational Committee has been created by several financial institutions, authorities, and the Bank of Mexico and is presided over by the SHCP. This committee is in charge of, among other things, defining a finance educational policy; preparing a national strategy for financial education and guidelines; and identifying new work areas and proposing new actions and programmes in financial education.

Please see question 4.

Examinations (see question 4) and continuing education requirements apply to certain employees in the capital markets services, financial advice and insurance sectors.

In general, regulated companies (eg, banks, insurance companies or asset managers) are required to set up and maintain an organisation that ensures compliance with applicable financial market laws. Given the organisational measures and depending on the regulatory status of the employing entity and the position and activities of the financial services employee, there are training requirements.

While Swiss financial market regulations do not have an exhaustive list of exact training requirements, FINMA requires, among others, that the highest bodies of supervised companies (eg, executives of board members of banks, securities firms, insurance and reinsurance companies, fund management companies, managers of collective assets or asset managers) can fulfil the requirements of the so-called fit and proper test. These requirements extend to all character-related and professional elements that enable an officeholder to manage a supervised company in compliance with applicable laws. Part of the professional elements are relevant work experience and education. In addition, persons holding key positions (eg, compliance and risk officers and their deputies) are required to demonstrate sufficient know-how because of their work experience and education.

That said, the Swiss financial services and insurance supervisory regulations provide for more concrete training requirements. In particular, client advisers of Swiss and foreign financial service providers (eg, investment advisers) may need to demonstrate that they have sufficient knowledge of the code of conduct rules of the Swiss financial services regulation and the necessary expertise required to perform their activities. In addition, insurance intermediaries registered with FINMA’s insurance intermediary register have to prove that they have undergone sufficient education and have sufficient qualifications. On its website, FINMA has published a list of different educational Swiss and foreign qualifications that it deems to be sufficient.

The DFSA General Rulebook requires authorised entities to ensure that the Senior Executive Officer, Compliance Officers, and Money Laundering Reporting Officer, must complete a minimum of 15 hours of continuing professional development in each calendar year.  This continuing professional development must be relevant to the employee’s role and professional skill and knowledge, and consist of structured activities, such as courses, seminars, lectures, conferences, workshops, web-based seminars or e-learning, which require a commitment of 30 minutes or more.  The employee must also ensure that they maintain adequate records to be able to demonstrate that these requirements have been met.

The FSRA General Rulebook requires an authorised entity to ensure that its directors and senior managers are fit and proper and its guidance suggests that whether any training has been untaken or is required should be considered.  In addition, an authorised entity should satisfy itself that an employee continues to be competent and capable of performing the role, has kept abreast of market, product, technology, legislative and regulatory developments that are relevant to the role, through training or other means, and is able to apply this knowledge.

The PRA and FCA training and competence regimes set the minimum standards that must be achieved by individuals working in the financial services industry. These regimes aim to ensure that authorised firms have arrangements in place to satisfy themselves that their employees are competent.

All FSMA-authorised firms are required to have adequately trained and competent senior management and employees. The training and competence requirements include:

• Threshold conditions on suitability – All firms must show that persons connected with the firm are fit and proper, taking into account all the circumstances. When assessing the suitability threshold of an employee, the FCA and the PRA will consider:
  • the nature of the regulated activity the firm carries on or is seeking to carry on;
  • the need to ensure that the firm's affairs are conducted soundly and prudently;
  • the need to ensure that the firm's affairs are conducted appropriately, considering especially the interests of consumers and the integrity of the UK financial system; and
  • whether those who manage the firm's affairs have adequate skills and experience and act with probity.

• FCA Principles for Businesses or PRA Fundamental Rules – These rules lay out the parameters of the “fit and proper” standard set for firms in the threshold condition on suitability, and require firms to undertake the following:
  • recruit staff in sufficient numbers;
  • provide employees with appropriate training, with competence assessed continuously;
  • make proper arrangements for employees involved with carrying on regulated activities to achieve, maintain and enhance competence; and
  • train employees to pay due regard to the interests of a firm’s customers and treat them fairly.

• Competent employees rule in chapters 3 and 5 of the Senior Management Arrangement Systems and Controls Sourcebook – This is the main employee competence requirement in the training and competence regime under the FSMA and applies to individuals engaged in a regulated activity in UK-regulated firms. The application of this rule can be complex and dependent upon the firm and the activities it undertakes, but in general, it provides that firms must employ personnel with the skills, knowledge and expertise necessary for the discharge of the responsibilities allocated to them.

• Detailed training and competence requirements in the FCA’s training and competence handbook (TC) – The TC rules are designed to supplement the competent employees rule, especially concerning retail activities carried on by firms. Among others, these rules include the following:
  • rules on assessing and maintaining competence;
  • supervision of employees who have not yet been assessed as competent;
  • appropriate qualifications; and
  • recordkeeping and reporting for firms within its scope, including how a firm assessed its employees as competent, and how it has ensured that its employees remain competent.

All employees in some states, including California and New York, are required to receive periodic sexual harassment training. Additionally, employees may be required to pass certain skills tests before registering with regulators or engage in continuing education programmes (most notably FINRA, see question 4).

Employees must not, both during and after the termination of the contract, obtain, use or unlawfully disclose a business secret he or she became aware of in the course of his or her professional activity, or disclose the secrecy of any matter of a personal or confidential nature of which he or she became aware in the course of his or her professional activity (article 17, 3°, a, Employment Contracts Act).

The company can include a NDA in the employment contract to underline what is considered confidential information. A penalty clause (with a lump sum to be paid) can be foreseen in case of a breach after the end of the employment contract, but not during the period of the employment relationship. This is because of the prohibition on restricting the rights of employees or increasing their obligations in comparison with what is foreseen by the Employment Contracts Act (article 6).

Yes, non-disclosure agreements (NDAs) are potentially lawful in Brazil. The applicable rules are the same as for any legal transaction: expression of will, legality of the object, and compliance with the law.

As a rule, NDAs are a consequence of professional activity and do not require specific consideration.

Protected information is specific to the contractor (employer) and shared with the employee during the execution of the contract (strategies, customers, commercial secrets, etc).       

General information belonging to the employee due to his or her academic training and previous professional experience is not included in NDAs.

All actors in the financial services sector are bound by strict professional and banking secrecy.

But beyond the professional secrecy that is inherent to the employment contract, there may be an interest in particular circumstances to strengthen this requirement and make it an obligation of absolute professional secrecy. This is legal under French law and generally takes the form of a confidentiality clause (non-disclosure) inserted in the employee's employment contract.

In principle, a confidentiality clause, which includes an obligation of professional secrecy to which the employee is bound as well as an obligation of discretion, is not subject to any particular conditions. In particular, it does not require the payment of any financial consideration.

On the other hand, when an employee by an agreement or transaction goes further and waives his freedom of expression, the case law sets stricter conditions of validity. The agreement must be adapted, necessary and proportionate to the aim sought.

Confidentiality clauses must also comply with any obligations in terms of transparency, the fight against corruption and influence peddling provided for by Law No. 2016-1691 of 9 December 2016.

The only entities against which banking secrecy cannot be invoked are the French Prudential Supervision and Resolution Authority, the Banque de France and the judicial authority acting in the context of criminal proceedings (article L. 511-33 of the Monetary and Financial Code). On the other hand, bank secrecy is enforceable in civil court proceedings, as confirmed by abundant case law.

Under German law, it is permissible to enter into non-disclosure and confidentiality agreements. In practice, NDAs are usually agreed upon in written or text form, although this is not legally required. If drafted for use in multiple cases, NDAs are subject to a particularly strict test to be effective: they must be transparent and may not unduly burden the employee under General Terms and Conditions legislation. NDAs should, therefore, only relate to very limited and specific information.

In practice, NDAs are difficult to enforce as it is the employer who must prove a culpable breach of contract, as well as damages resulting from such a breach. Employers should, therefore, also use other means to ensure data protection and confidentiality, such as properly defining and protecting business secrets under the Business Secrets Act; and implementing technical and organisational measures to limit access to certain information, which may include sharing information only on a need-to-know basis.

Non-disclosure agreements are legally enforceable in Hong Kong. They follow the contract law rules and there is no other particular form or rules. To be enforceable, a non-disclosure agreement must protect information that is both confidential and valuable. There are common exceptions where confidentiality will not apply to certain information, including information available in the public domain, information lawfully received from a third party without proprietary or confidentiality limitations, information known to the employee before first receipt of same from the employer, and information disclosed in circumstances required by law or regulatory requirement.

NDAs are governed by the Indian Contract Act, 1872 and are generally lawful in India.

Generally, post-contract restrictive covenants like non-compete clauses that restrain a person’s exercise of lawful trade, profession or business are declared void because of Section 27 of the Indian Contract Act.

The enforceability of NDAs may be affected if they restrain an employee from exercising a lawful profession, trade or business. Accordingly, an NDA crafted to protect the “confidential information” of the former employer but not to impose the above-mentioned restraints on the employee is saved from any clash with Section 27 of the Indian Contract Act and is, therefore, enforceable in the courts of law in India. If NDAs prohibit an employee from disclosing commercial or trade secrets, then they cannot be held to be in restraint of trade. This was observed by the Bombay High Court in VFS Global Services Pvt Ltd v Mr Suprit Roy[1].

Yes. It is possible to use NDAs in Ireland and it is quite common for them to be used, but there are some limitations on their use and enforceability.

Certain mandatory reporting obligations will override a contractual non-disclosure agreement, such as the requirement for PCFs under section 38(2) of the CBI (Supervision and Enforcement) Act 2013 to disclose certain matters to the CBI.

Further, an NDA cannot extinguish an employee's right to anti-retaliation protection where the employee makes a protected disclosure either internally or externally under the Protected Disclosures Act 2014 - 2022.

Yes, non-disclosure agreements are potentially lawful in the Isle of Man. A contract of employment may also contain confidentiality provisions for financial services employees. However, a non-disclosure agreement or confidentiality clause would not (and could not) prevent a financial services employee (or any employee) from making a protected disclosure, (ie, a disclosure made by an employee where they reasonably believe there is serious wrongdoing within the workplace (whistleblowing)).

A financial services employee may, furthermore, be subject to a legal requirement to disclose information in certain circumstances that might override an NDA. For example, an individual can be compelled to provide information by the IoM FSA during an interview, and such compulsion will generally override an employee’s duties of confidentiality. Alternatively, an individual can be subject to a requirement to disclose information in the context of legal proceedings (eg, by court order).

Non-disclosure provisions under Mexican law are applicable and enforceable. All information to which employees have access, given their position and services, regarding third parties and deemed sensitive or confidential (ie, non-public information) may not be disclosed at any time after the termination of employment or used for any other purposes.

The breach of non-disclosure obligations of confidential information and trade secrets may lead to economic sanctions or imprisonment. The disclosure of confidential information or using it to an employer’s detriment is an offence under criminal law. Also, employees that breach confidential obligations may have to pay damages to the affected party.

Pursuant to article 186 of the general provisions applicable to brokerage houses, internal policies must be in place to establish guidelines and procedures for the use, management, conservation and, as applicable, destruction of books, records, documents, and other information; and must guarantee the adequate use and control of documents containing the confidential information of clients. Also, these entities must establish strict controls to avoid the improper use of books, records, and documents in general.

According to the Law to Regulate Technological Finance Institutions, entities must include measures and policies to control operational risks within their filing for authorisation at the CNBV. They must also provide information security and confidentiality policies, with evidence of secure, trustable and precise technological support for their clients and with minimum standards of security to ensure the confidentiality, availability and integrity of information, as well as to prevent fraud and cyberattacks.

Additionally, financial entities must guarantee the security and integrity of the information, and implement security measures to preserve the integrity and confidentiality of the information generated, stored, or processed.

Lastly, under the Federal Law for the Prevention and Identity of Transactions with Illegally Obtained Resources, filing notices, information and documentation related to vulnerable activities to the SHCP does not qualify as a breach of confidentiality obligations.

Since there is no specific legislation on NDAs under Dutch law, the general principle is that NDAs are permitted.

NDAs may never prevent a financial sector employee from reporting or revealing suspected misconduct.

NDAs are generally lawful in Singapore, although the extent of their enforceability depends on their contents. For example, restrictive covenants can be subject to further scrutiny (see question 13). While not subject to any particular form or rules, employers should take particular care to specify the type of information protected under the NDA, so that employees have a clear understanding of the protected information – and to enhance the enforceability of the NDA.

Under Singapore common law, in addition to breach of contract, a party may also bring an action for breach of confidence. A plaintiff will have to show on the facts that the information is confidential and was imparted in circumstances giving rise to an obligation of confidence (including if confidential information has been accessed or acquired without a plaintiff’s knowledge or consent), which will then invoke the presumption of a breach of confidence. The burden will then fall on the defendant to rebut this presumption.

Non-disclosure agreements (NDAs) are generally lawful in Switzerland. However, NDAs are not regulated by statutory law and therefore do not have to follow any particular statutory form or rule. Nevertheless, most NDAs often contain a similar basic structure.

The core clauses of an NDA concern:

• manufacturing and business secrets or the scope of further confidentiality;
• the purpose of use;
• the return and destruction of devices containing confidential information; and
• post-contractual confidentiality obligations.

As a general rule, it is recommended to use the written form.

To ensure possible enforcement of an NDA in the employment context, the requirements of a post-contractual non-compete obligation (see below) must be met.

Non-disclosure agreements may be used in the UAE (including DIFC and ADGM free zones).  There are no particular requirements regarding the form or rules for those NDAs.

NDAs (also known as confidentiality agreements) are potentially lawful and enforceable in the UK. It is common to include NDAs in employment contracts (to protect the confidential information of the employer during and after employment) and in settlement agreements (to reiterate existing confidentiality obligations and to keep the circumstances of the settlement confidential).

NDAs do not need to follow a particular form, but they must be reasonable in scope. Following #MeToo, there has been considerable government, parliamentary, and regulatory scrutiny of the use of NDAs and their reasonableness in different circumstances.

The following limitations on NDAs should be noted:

• By law, any NDA purporting to prevent an individual from making a “protected disclosure” as defined in the Employment Rights Act 1996 (ie, blowing the whistle about a matter) is void.

• The regulatory body for solicitors in England and Wales, the Solicitors Regulation Authority (SRA), has issued a detailed warning notice and guidance to practitioners setting out – in its view – inappropriate or improper uses of NDAs. Failure to comply with the SRA’s warning notice may lead to disciplinary action. The SRA lists the following as examples of improper use of NDAs:

• • using an NDA as a means of preventing, or seeking to impede or deter, a person from:
    • cooperating with a criminal investigation or prosecution;
    • reporting an offence to a law enforcement agency;
    • reporting misconduct, or a serious breach of the SRA’s regulatory requirements, to the SRA, or making an equivalent report to any other body responsible for supervising or regulating the matters in question; and
    • making a protected disclosure;
    • using an NDA to influence the substance of such a report, disclosure or cooperation;
    • using an NDA to prevent any disclosure required by law;
    • using an NDA to prevent proper disclosure about the agreement or circumstances surrounding the agreement to professional advisers, such as legal or tax advisors, or medical professionals and counsellors, who are bound by a duty of confidentiality;
    • including or proposing clauses known to be unenforceable; and
    • using warranties, indemnities and clawback clauses in a way that is designed to, or has the effect of, improperly preventing or inhibiting permitted reporting or disclosures being made (for example, asking a person to warrant that they are not aware of any reason why they would make a permitted disclosure, in circumstances where a breach of warranty would activate a clawback clause).
       
• The Law Society of England and Wales, a professional association representing solicitors in England and Wales, has issued similar guidance (including a practice note) on the use of NDAs in the context of the termination of employment relationships.
• Other non-regulatory guidance on the use of NDAs has also been issued, including by the Advisory, Conciliation and Arbitration Service and by the UK Equality and Human Rights Commission.

Care should be taken accordingly to ensure that the wording of any NDA complies with prevailing guidance, especially from the SRA.

Non-disclosure agreements are currently permissible under United States law with some exceptions, typically pertaining to whistleblower, harassment, and discrimination matters. On 7 December 2022, President Joe Biden signed the Speak Out Act, which prohibits the enforcement of non-disclosure and non-disparagement provisions that were agreed to before an incident of workplace sexual assault or sexual harassment occurred. In other words, it does not prohibit these provisions in settlement or severance agreements.

Both Dodd-Frank and SOX prohibit employers from impeding an individual’s whistleblowing process. Confidentiality provisions should expressly authorise employee communications directly with, or responding to any inquiry from, or providing testimony before the SEC, FINRA, any other self-regulatory organisation or any other state or federal regulatory authority.

The United States Tax Cuts and Jobs Act of 2018 discourages NDAs in the settlement of sexual harassment claims. Under this law, employers settling claims alleging sexual harassment or abuse that include a confidentiality or non-disclosure provision in the settlement agreement cannot take a tax deduction for that settlement payment or related attorneys' fees.

Under the National Labor Relations Act, employees (except for supervisors) cannot be prohibited from discussing their compensation or working conditions

California

• California Law prohibits NDAs that would prevent employees from discussing or disclosing their compensation or discussing the wages of others. However, California permits the use of a non-disclosure provision that may preclude the disclosure of any amount paid in any separation or settlement agreement.
• California imposes restrictions on the use of non-disclosure provisions that are designed to restrict an employee's ability to disclose information about unlawful acts in the workplace, including information pertaining to harassment or discrimination or any other conduct the employee has reason to believe is unlawful in employment agreements, settlement agreements, and separation agreements.
• California employers cannot:
  • require employees, in exchange for a raise or a bonus, or as a condition of employment or for continued employment, to sign any non-disparagement or non-disclosure provision that denies the employee the right to disclose information about unlawful acts in the workplace;
  • include in any separation agreement a provision that prohibits the disclosure of information about unlawful acts in the workplace; or
  • include a provision within a settlement agreement that prevents or restricts the disclosure of factual information related to claims for sexual assault, sexual harassment, workplace harassment or discrimination, retaliation, or failure to prevent workplace harassment or discrimination that are filed in a civil or administrative action, unless the settlement agreement is negotiated, which means that the agreement is voluntary, deliberate, informed, provides consideration of value to the employee, and the employee is giving notice and an opportunity to retain an attorney or is represented by an attorney.

New York

• New York law prohibits NDAs that:
  • prevent an employee from discussing or disclosing their wages or the wages of another employee.
  • prevent an employee from disclosing factual information related to a future discrimination claim, unless the agreement notifies employees that it does not prevent them from speaking to the EEOC, the New York Department of Human Rights, and any local human rights commission or attorney retained by the individual.

New York law also prohibits employers from mandating confidentiality or non-disclosure provisions when settling sexual harassment claims (though allows such provisions where it is the employee’s preference to include them).