If Atlassian is acquired or merges with another company, your personal data may be transferred to the new owner, and Atlassian states it will notify you by email or website notice and describe any changes in how your data is used.
This analysis describes what Atlassian's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This provision authorizes the transfer of your personal data to an acquiring entity in a corporate transaction, with post-transaction notification rather than prior consent as the stated mechanism for informing users of changes.
In a merger or acquisition, personal data including account information, usage history, and content may be transferred to a new corporate owner. The policy states Atlassian will provide notification and describe choices available, but does not guarantee that the acquiring entity will maintain identical data practices.
How other platforms handle this
In connection with any reorganization, restructuring, merger or sale, or other transfer of assets, we will transfer information, including personal information, provided that the receiving party agrees to respect your personal information in a manner that is consistent with our Privacy Policy.
If Canva is involved in a merger, acquisition, or sale of all or a portion of its assets, your information may be transferred as part of that transaction. We will notify you via email or a prominent notice on our website prior to your information becoming subject to a different privacy policy.
We may access, preserve, and share information with regulators, law enforcement, or others if we believe it is reasonably necessary to: detect, prevent, and address fraud and other illegal activity; protect ourselves, you, and others, including as part of investigations; and prevent death or imminen...
Monitoring
Atlassian has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"If we are involved in a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our website of any change in ownership or uses of your personal information, as well as any choices you may have regarding your personal information.— Excerpt from Atlassian's Atlassian Privacy Policy
(1) REGULATORY LANDSCAPE: GDPR requires a legal basis for data transfers including in business transaction scenarios; legitimate interests or contract performance may apply, but a change of controller following an acquisition may require fresh legal basis assessment and updated data subject notices. CCPA does not categorically prohibit business transfer data sharing but may require updated disclosures. (2) GOVERNANCE EXPOSURE: Low to medium. The post-notification approach is standard but the practical ability to enforce data use limitations after a transfer to an acquiring entity depends on contractual commitments in the acquisition agreement, which are not described in this policy. (3) JURISDICTION FLAGS: EU and UK users may have objection rights if an acquisition results in materially changed processing purposes. Regulators in those jurisdictions may scrutinize whether post-acquisition data use aligns with the original legal basis under which data was collected. (4) CONTRACT AND VENDOR IMPLICATIONS: Enterprise customers should include provisions in their DPA addressing what happens to their organization's data in the event of an Atlassian acquisition, including data return or deletion rights. (5) COMPLIANCE CONSIDERATIONS: Organizations should monitor Atlassian's corporate announcements and assess whether any business transfer triggers their own vendor reassessment obligations under internal third-party risk management programs.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
ConductAtlas detected a major restructuring of Meta’s privacy policy that removed detailed consumer rights disclosures and relocated them to separate documents.
Your genetic data may be transferred to a new owner as a business asset. Here is what the Terms of Service actually say and what you can do right now.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This provision authorizes the transfer of your personal data to an acquiring entity in a corporate transaction, with post-transaction notification rather than prior consent as the stated mechanism for informing users of changes.
In a merger or acquisition, personal data including account information, usage history, and content may be transferred to a new corporate owner. The policy states Atlassian will provide notification and describe choices available, but does not guarantee that the acquiring entity will maintain identical data practices.
ConductAtlas has identified this type of provision across 6 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Atlassian.