If AWS is sold, merged, or goes through a major corporate change, your personal data could be transferred to the new owner as part of the deal, though AWS states it will notify you of material changes.
This analysis describes what AWS's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
In a corporate transaction, your personal information becomes a transferable asset, and the new entity may have different privacy practices, potentially affecting how your data is used even if you did not consent to the change.
Interpretive note: The exact verbatim text was not available in the truncated document; the scope of notification obligations and opt-out rights in corporate transactions may vary by jurisdiction.
Your personal information held by AWS may be transferred to a third party in the event of a corporate acquisition or restructuring, with the receiving entity potentially operating under different privacy terms.
Cross-platform context
See how other platforms handle Corporate Transaction Disclosure and similar clauses.
Compare across platforms →Monitoring
AWS has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your personal information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our website of any change in ownership or uses of your personal information.— Excerpt from AWS's AWS Privacy Notice
REGULATORY LANDSCAPE: GDPR requires that data subjects be informed of changes in data controller identity and that lawful bases for processing be maintained through corporate transitions. The FTC has historically scrutinized whether privacy promises survive corporate transactions, and has taken action where successor entities materially deviated from original privacy commitments. CCPA does not prohibit transfers in corporate transactions but requires that the receiving entity honor the original privacy commitments or provide notice and opportunity to opt out. GOVERNANCE EXPOSURE: Low to Medium. The disclosure is standard in technology company privacy policies. The commitment to notify users via email or prominent website notice provides a degree of transparency. However, the practical ability of users to object to or opt out of such transfers is not guaranteed by the policy language. JURISDICTION FLAGS: EU and UK users have stronger protections under GDPR, which may require affirmative steps from any successor data controller to establish a lawful basis for continued processing. California users may have opt-out rights if the corporate transaction results in materially changed data use practices. CONTRACT AND VENDOR IMPLICATIONS: Enterprise customers should include provisions in their AWS contracts addressing data handling obligations in the event of a change of control, including requirements for notice and the right to terminate or retrieve data if the successor entity does not meet equivalent compliance standards. COMPLIANCE CONSIDERATIONS: Legal teams should monitor any announced corporate transactions involving AWS or Amazon and assess whether successor entity privacy practices are consistent with existing data processing agreements and customer-facing privacy commitments.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
In a corporate transaction, your personal information becomes a transferable asset, and the new entity may have different privacy practices, potentially affecting how your data is used even if you did not consent to the change.
Your personal information held by AWS may be transferred to a third party in the event of a corporate acquisition or restructuring, with the receiving entity potentially operating under different privacy terms.
ConductAtlas has identified this type of provision across 2 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by AWS.