Author: Adeline Balan
College: Lords Universal College
Abstract
Trade secrets have quietly become the most valuable form of intangible property for businesses operating in data-driven markets, yet India continues to protect them through a patchwork of contract law, equity, and criminal provisions rather than a dedicated statute. This article examines whether that patchwork remains adequate in an economy shaped by cloud infrastructure, remote work, and artificial intelligence. It traces the doctrinal basis of confidentiality protection in India, compares it with legislative models abroad, and evaluates whether the absence of codified trade secret law is now a genuine competitive disadvantage rather than a mere academic gap.
To the Point
A patent trades disclosure for a monopoly. A trade secret survives only as long as nobody else knows it. That single distinction explains why India’s reliance on confidentiality law, non-disclosure agreements, and scattered provisions under the Information Technology Act and the Bharatiya Nyaya Sanhita has worked tolerably well for ordinary commercial disputes but starts to strain under newer pressures. Data now moves across borders in seconds. Employees work from home networks the employer never configured. Machine-learning models are trained on datasets nobody can fully audit for leakage. Each of these developments tests assumptions the existing framework was never built to handle.
Use of Legal Jargon
A few terms recur through this discussion and deserve a plain-language gloss before the analysis proceeds. Breach of confidence is the equitable claim available when someone misuses information they received under an implied or express duty of secrecy. The springboard doctrine stops a person who obtained confidential information from using it to leapfrog competitors, even once the secrecy itself has technically expired. Reverse engineering, by contrast, is entirely lawful — it means working backward from a product already in the market to understand how it was made, without ever touching the owner’s confidential records. Non-compete and non-solicitation clauses restrict, respectively, an employee’s freedom to join a rival firm or approach former clients and colleagues; in India, their enforceability runs straight into Section 27 of the Indian Contract Act, 1872.
The Proof
Why does secrecy deserve legal protection at all? Because some information is worthless the instant it becomes public. A beverage formula disclosed to the world stops being an asset. A recommendation algorithm published in full stops giving its owner any edge. Patents solve a different problem — they reward inventors willing to disclose in exchange for a time-limited exclusivity. Copyright protects the particular expression of an idea, not the idea or process underneath it. Trademarks protect how a business is recognised in the market. Trade secrets sit apart from all three: the only shield available is secrecy itself, reinforced by whatever contractual and equitable tools the law provides.
That category has taken on outsized importance in digital businesses. Source code, model architecture, and proprietary training data now often carry more commercial weight than anything a software company could patent. A start-up’s customer database, assembled over years at real acquisition cost, can be copied onto a personal drive in the time it takes to close a laptop. Cloud infrastructure complicates matters further: information that once lived on a single controlled server now sits scattered across third-party data centres in jurisdictions the original owner never chose and cannot fully audit. Remote work adds yet another layer of exposure, since employees routinely reach confidential systems from home networks and personal devices that sit entirely outside any employer’s security perimeter.
Most Indian trade secret disputes, when they reach court, turn on employee movement rather than corporate espionage. Section 27 of the Contract Act voids any restraint on an employee’s freedom to work for a competitor once employment ends, so an employer cannot simply lock a departing employee out of the industry. What remains available is narrower: a restraint on using or disclosing specific confidential material, and only where that material meets a real threshold of secrecy and was guarded through concrete measures — restricted access, marked documents, signed undertakings. Judicial decisions have consistently drawn a distinction between an employee’s general knowledge, skills, and experience, which remain with the individual, and the employer’s confidential proprietary information, which continues to be protected.
Cyberattacks have reshaped what misappropriation actually looks like. It used to mean a departing employee copying files onto a disk on their way out. It now more often means an external actor breaching a network remotely to pull source code repositories, training datasets, or algorithmic models without ever setting foot on the premises. The Information Technology Act offers some response through its provisions on unauthorised access and data theft, but those provisions were drafted for computer misuse generally, not for trade secrets specifically, and the remedies they provide rarely move at the speed commercial harm demands.
Artificial intelligence raises questions Indian courts have not yet had occasion to answer. A trained model, its parameter weights, and the curated dataset behind it can each independently qualify for protection if kept secret and commercially valuable. Difficulties arise where a model blends proprietary data with third-party inputs, or where the prompts and fine-tuning techniques used to build it themselves encode confidential business judgment. Whether prompt design deserves trade secret status remains untested here, simply because no case has forced the question yet. What does not change is the underlying test: secrecy, commercial value flowing from that secrecy, and reasonable protective measures. Applying that test to a distributed training pipeline running across three cloud providers is conceptually straightforward; applying it in practice, when a court has to decide what “reasonable” looked like for a technology stack it has never encountered before, is another matter entirely.
Start-ups face a version of this problem compounded by resource constraints. Fundraising forces disclosure of proprietary business models to investors at exactly the stage when the company can least afford a leak. Rapid hiring often means confidentiality paperwork gets treated as a formality rather than a safeguard. Many founders learn the value of a properly drafted NDA only after a co-founder walks out the door with the one dataset the entire business depended on. Given how quickly talent circulates between competing ventures in the same sector, a codified and predictable standard would likely help under-resourced younger companies more than it helps large corporations that can already afford exhaustive contractual protection.
Relevant Statutory Provisions
No single Indian statute governs trade secrets; the protection available is stitched together from several sources, each covering part of the problem. Sections 27, 72, and 73 of the Indian Contract Act, 1872 govern the enforceability of confidentiality covenants and the remedies available on breach, with Section 27 specifically voiding post-employment restraints and leaving confidentiality obligations as the real enforceable tool. The Specific Relief Act, 1963 allows courts to injunct threatened or ongoing breaches of confidence, which remains the remedy most litigants actually seek. Sections 43 and 66 of the Information Technology Act, 2000 address unauthorised computer access and resulting data theft, providing a route against cyber-enabled misappropriation even though the statute was not written with trade secrets in mind. Where source code is copied outright, the Copyright Act, 1957 applies, since code is treated as a literary work — though copyright reaches only the specific expression, not the algorithm or logic underneath it. The Bharatiya Nyaya Sanhita, 2023 contributes criminal remedies through its provisions on theft, criminal breach of trust, and cheating, usable wherever misappropriation was dishonest rather than merely careless. At the international level, Article 39 of the TRIPS Agreement requires member states to protect undisclosed information against unfair commercial use; India satisfies this obligation indirectly, through common law and equity rather than dedicated legislation — a gap that continues to draw academic criticism.
Case Laws
John Richard Brady v. Chemical Process Equipments Pvt. Ltd. A former business collaborator continued using technical drawings after the underlying relationship had ended. The Delhi High Court restrained further use, holding that confidentiality obligations outlive the commercial relationship that created them when information was shared for a defined, limited purpose. The case remains the starting point for equitable relief against breach of confidence in India, decades before any statute addressed the issue directly.
American Express Bank Ltd. v. Priya Puri. A bank employee left to join a competitor, and the bank sought to restrain her. The Delhi High Court declined to grant the relief sought, observing that the knowledge, skills, and experience acquired by an employee during the course of employment remain the employee’s own. The Court further held that post-employment non-compete restrictions are unenforceable in view of Section 27 of the Indian Contract Act, 1872. The decision is now the standard citation for courts balancing employee mobility against confidentiality claims.
Diljeet Titus v. Alfred A. Adebare. A departing lawyer took client databases and work product compiled during his time at the firm. The Delhi High Court sided with the firm, holding that systematically assembled client information is protectable in its own right and that removing it without authorisation was actionable, regardless of whether any single piece of information within the database was itself secret.
Zee Telefilms Ltd. v. Sundial Communications Pvt. Ltd. A television concept allegedly found its way into a rival’s programme after having been shared in confidence. The Bombay High Court granted relief on breach of confidence principles, holding that a sufficiently developed creative concept, disclosed under circumstances that import an obligation of secrecy, can be protected independently of any copyright claim in the finished work.
Emergent Genetics India Pvt. Ltd. v. Shailendra Shivam. Former employees allegedly carried proprietary genetic breeding information to a new venture. The Delhi High Court examined what actually makes information a trade secret, holding that labelling something confidential is not enough — it must objectively possess secrecy and independent commercial value. The case is frequently cited for setting out a structured, testable definition of a trade secret under Indian law.
Read together, these decisions show a judiciary that has built a coherent framework through case law alone, even without legislative direction — consistent in reasoning, but still dependent on litigation to resolve questions a statute could settle in advance.
Conclusion
The problem in India is not an absence of legal reasoning; the case law above is coherent and largely predictable in its outcomes. The problem is the absence of codification, and with it, the absence of criminal deterrence calibrated to how trade secret theft actually happens now. Litigants still face real uncertainty over evidentiary thresholds, cross-border enforcement, and how digitally stored information should be treated differently from paper files. Given the scale of cyber-enabled misappropriation, the growing weight algorithms and datasets carry in enterprise value, and India’s own obligations under Article 39 of TRIPS, a standalone Trade Secrets Act — borrowing the civil remedies of the US Defend Trade Secrets Act and the definitional precision of the EU Trade Secrets Directive, adapted rather than copied wholesale — would cut down on litigation uncertainty without displacing the flexibility the common law currently offers. India is ready for such a law. Not because the present framework has failed, but because a data-driven economy deserves a sharper, more internationally consistent tool than contract and equity can provide on their own.
FAQs
1. Is there an Indian law specifically for trade secrets?
No. Protection comes from contract law, the equitable doctrine of breach of confidence, and provisions borrowed from the IT Act and the Bharatiya Nyaya Sanhita — not from any dedicated statute.
2. Can an employer legally stop someone from joining a competitor?
Generally not. Section 27 of the Contract Act voids post-employment non-compete clauses, though employers can still restrain the actual use of specific confidential information.
3. Can computer source code be legally protected as a trade secret?
Yes, if it is genuinely kept confidential and derives value from that secrecy — and it can hold copyright protection as a literary work at the same time.
4. Is reverse engineering against the law in India?
No. Reverse engineering a lawfully acquired product through independent analysis is permitted and does not amount to misappropriation.
5. Could an AI training dataset be treated as a trade secret?
Potentially, provided it is genuinely secret, commercially valuable because of that secrecy, and protected by reasonable security measures — though no Indian court has ruled on this directly yet.


