Should Indemnity Obligations Be Capped or Uncapped?


Key Takeaways:

  • When negotiating on behalf a customer seeking services, you will want the vendor to be fully liable, without limits, for any out of pocket harm they cause you to incur via their indemnifiable misdeeds.
  • Vendors will often try to cap their liability, often including caps on their indemnification obligations.
  • This article explains not only why you should push back, but also gives you some suggested arguments to use when doing so.

Should Indemnity Obligations Be Capped or Uncapped? by Brian Heller

If you work with a lot of contracts, you may already know that most contracts include an ā€œindemnificationā€ clause. This is essentially an ā€œIā€™ll protect your backā€ clause, making the party giving the indemnity responsible to pay back the other party for things they might do wrong, bringing harm to the first party.

You may also know that most contracts also include a separate ā€œlimitation on liabilityā€ clause. This typically puts a maximum or cap on the amount each party might owe to other, for “direct damages,” often based the size of the deal. For example, it might say that the maximum liability of either party to the other is the ā€œamount paid or payable by the other party during the last 12 monthsā€. This makes perfect sense when you think about it — after all, why would you want to do a $100 deal where you risk losing $1mm. Therefore, it is common to limit each party’s risk to the size of the deal (or some reasonable multiple thereof).

But there is also typically a provision saying that, despite these caps on liability for ā€œdirectā€ damages, that liability will be uncapped (i.e., unlimited) for indemnifications and/or breaches of confidentiality. Why is that?

The potential for harm in a contract is not always proportional to the size of the deal ā€“ even small deals can have big consequences.

As lawyers, we often push back on liability limits, but donā€™t always know whatā€™s a reasonable position, or why, nor what arguments to use to best make our case. The goal of this article is to explain indemnity and limitation on liability, and how these provisions work together, so you can know whatā€™s fair, why you should care, and how best to argue when you want to push back.

Note on Roles:

This article is written assuming you are a customer negotiating for services from a vendor (whether itā€™s SaaS, , an SOW, or an Office Lease, etc.), and you need protection from liability caused by the vendorā€™s misdeeds.

However, the same issues apply in reverse. As a vendor negotiating with a customer, there may be fewer issues for which you need indemnification from the customer (e.g., the customer must have the rights and consents to give you any data, content or IP they provide), but when applicable, the exact same analysis and logic applies.

Direct Damages vs. Indemnification – What’s the Difference?:

Direct Damages:

Typically, direct damages are capped at the value of the deal. The value of the deal is often measured as the fees across one year. But this can go up or down depending on the specific circumstances.

What are ā€œdirect damages?ā€ Direct damages are how much one party can get from another because of the direct harm, to the party making the claim. These are damages directly between the two parties to the agreement. This makes sense to be capped because (as shown in the examples below) all you really need to recoup is the value you lost by not having the product or service you bargained for. As between the two parties themselves directly, the value of the deal should be in line with the amount of risk.

EXAMPLE of Direct Damages:

Think of a simple example: I bought a widget from you for $5; the widget was broken; I want my $5 back directly. I donā€™t need $1mm of coverage, I just need my $5 back. Or if I bought or licensed software from you, and it doesn’t work, all I need back is how much I paid you for the software. So for ā€œdirect damagesā€ (between the two parties directly involved in the deal), a cap on liability at the value of the deal (aka $5) makes sense.

Indemnification:

By contrast, indemnification for third party claims are typically uncapped. This means there is no limit to how much a party will be liable for a claim that is covered by indemnification.

What is an indemnification and how is it different than direct damages? Indemnification typically comes into play when a third party is somehow involved. This is no longer an issue solely between the two parties directly involved with the agreement. For example, assume some third party sues one of the parties or tries to collect damages from them, as a result of something in the contract. These are now out-of-pocket expenses paid to a third party rather than direct damages to the counterparty. Here, the potential harm might not necessarily be related to the size of the deal. Some specific examples are shown below, which will help illustrate.

Examples of Indemnification:

Here are some simple examples:

(1) I bought a widget from you for $5 and resold it (as permitted) to an end user; it blew up in their face; the end user sued me and I have to pay them $100 million, so I want you (not me) to pay the $100 million.

(2) I bought some software or technology from you for $5, and it turns out that this technology infringed a third partyā€™s patent; the third party sued me for $10 million and I want you to pay this $10 million.

(3) You bought an ad on my website for $5; The content in your ad violated the law, defamed someone, or used someone elseā€™s logo; As a result, I got sued by that third party (and/or fined by the government) for $5 million; I want you to pay the $5 million.

(4) I gave you data about my customers (to store or process), and you breached their privacy and violated privacy laws; my customers sue me (and/or the government fines me) for $20 million for that breach of privacy; I need you to protect me from all these fines and the lawsuits from my customers, plus pay the costs of notifying users and providing credit monitoring (which costs me an additional $5-10 million).

Practical Analysis:

In each of these examples, the extent of the liability is not necessarily correlated to the size of the deal, but rather, to the size of the harm caused.

In this case, each party should bear full responsibility for the harm it causes to the other party, to the extent the other party has exposure to any third parties. If your product or services or activities are what caused the liability, then you should be fully responsible for that, not me. Why should I help you pay a third party for any harm you cause to them, no matter how much?

In other words, if the other party puts a cap on their indemnity, they are effectively asking you to have uncapped liability for their mistakes.

Hypothetical Walk-Through:

Letā€™s walk through an example in more detail. Letā€™s assume you are a publisher or website and you accept a blog post written by someone else. You have a contract with the blogger saying that they will write content for you and you will publish it and promote it. They are responsible for the content, and you are responsible for making sure it appears on your website and gets promoted. This may even be a cashless deal (they give you content for free in exchange for the publicity).

Now assume there is something wrong with the content in their posting (perhaps it was copied from another writer verbatim), and you publish it. Assume further that you get sued for $1mm by the true content owner for publishing and distributing their content. It was the blogger’s fault, not yours. You were not responsible for any of the content or infringement. Yet, if the blogger’s liability is capped at $100k, and you are sued for $1mm for the infringement, the blogger would owe $100k and you would owe $900k, all because they stole the content and you were an innocent victim. You are paying their liability for them.

In a case like this, the blogger would likely owe these amounts to these third parties for infringement whether or not they did this deal with you. If they published this content on their own website or blog, instead of on your website, they would likely owe the full $1m amount for the infringement. So why should you participate in the blogger’s liability just because the content was published on your website instead of the blogger’s website?

Arguments to Use in Your Negotiations:

Armed with this information and logic, when you are the customer advocating for uncapped indemnity, and the vendor is asking for a cap, you can use their own logic against them.

The vendor will say that the reason they need the cap is because of risk management and the fact that they do not want to risk more than the value of the deal.

Argument #1:

You do not want uncapped liability either – especially not for their mistakes. You can explain that you agree 100% that neither party’s liability should exceed a reasonable multiple of the deal – and you do not want to have more liability than the value of the deal either. That is precisely why you need the cap, so that you are not bearing unlimited liability for their mistakes. You do not want to be their unintended insurance provider. Therefore, you must each have uncapped liability for indemnification.

Argument #2:

It is within their control, not yours. The other argument you can use on the other party is that they can and should be able to manage this risk simply by not breaching the agreement and not infringing. Itā€™s entirely within their control. As between the two of you, they have more control over whether or not they breach the agreement, violate confidentiality, or do something wrong that leads to an indemnity. To be clear, you are only asking them to pay if and to the extent they have ā€œdone something wrongā€ that caused harm to a third party. They are better equipped to control whether or not they ā€œdo something wrongā€ than you are.

Argument #3:

Fairness. As between the parties, it is more ā€œfairā€ to have them pay to the extent they have done something wrong, that costs you money out of your pocket due to their mistake.

In Conclusion, No.

For all the reasons above, I rarely agree to liability caps on indemnity. In extremely rare cases, where the counterpart can give a bona fide reason for a cap, the only way I’d even consider it is if it is in the order of magnitude of tens of millions of dollars, regardless of whether the deal is much smaller.

FYI, this applies in both directions, because these clauses are typically mutual. So if you expect their indemnities to you to be uncapped, be prepared to also have your indemnities to them uncapped as well. That is ā€œfairā€ and typical. But understand that. Before you decide how hard to fight, try to determine which party is more likely to infringe or cause third-party harm or liability.

So if the counterparty to an agreement negotiation asks to cap their liability for indemnity or breach of confidentiality, you can explain to them why that is inequitable. Aka it essentially requires you to insure them and gives you uncapped liability for their own mistakes.

About the Author

More Articles

About the Author

2 Responses

  1. Brian’s logic makes perfect sense, in terms of which party should be liable for third party claims resulting from that party’s acts or omissions. The bit that may not work in practice is the use of an indemnity to achieve this. Most commercial liability insurance (professional indemnity policies, in the UK) expressly exclude claims arising from “any liability voluntarily accepted under a contract that is greater than you would otherwise have at law”. This means that if you allocate risk for a 3rd party claim using an indemnity, you may be removing your access to your counterparty’s insurance (or your own, if you’re the breaching party). While you may not care if your counterparty has plenty of cash, and can afford to meet the liability from its own assets, that’s not the case for many businesses – they’ll need to call on their insurance to meet your claim. We recommend a ‘defend and settle’ approach, where the supplier agrees that in the event of any third party claim, they’ll defend and settle it at their own cost, but they won’t indemnify the customer for any extra costs they might incur outside of that activity (e.g. for the customer’s own legal costs, incurred voluntarily, or for their other damages). This makes sure that the party responsible for the breach carries the cost of the third party damage, allows them to pay for it using their insurance, and leaves the limit of liability in place for any direct damages incurred by their counterparty outside of the litigation defence/settlement.

Leave a Reply

Your email address will not be published. Required fields are marked *

Related Articles

Most Recent

Follow Contract Nerds

Ā© 2022 Contract Nerds United, LLC. All rights reserved.
The opinions expressed throughout this website are not intended to provide legal advice or create an attorney-client relationship.

Subscribe to our weekly newsletter!

By subscribing to our newsletter, you agree to ourĀ Terms of UseĀ and Privacy Policy. We promise not to spam you!

Contract Nerds Logo

Download PDF

[download id='9545']