Bluesky may share any data it holds about you with law enforcement, government agencies, or other parties if it believes doing so is required by law or appropriate for safety or legal reasons.
This analysis describes what Bluesky's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This provision authorizes Bluesky to share your data, including unencrypted direct messages, with law enforcement or government agencies based on the company's good faith belief, which extends beyond strictly legally compelled disclosures.
Because Bluesky's direct messages are unencrypted and stored, this provision means that law enforcement requests could result in the disclosure of private message content, profile data, IP addresses, and behavioral history.
How other platforms handle this
This Privacy Policy explains what Personal Information (as defined below) we collect, why we collect it, how we use and disclose it... [Gemini may share data with] government or law enforcement agencies upon request.
We may access, preserve, and share information with regulators, law enforcement, or others if we believe it is reasonably necessary to: detect, prevent, and address fraud and other illegal activity; protect ourselves, you, and others, including as part of investigations; and prevent death or imminen...
To the extent lawfully permissible, you acknowledge, consent and agree that Dun & Bradstreet shall also have the right to access, preserve and disclose your account information and content if required to do so by law or in a good faith belief that such access preservation or disclosure is reasonably...
Monitoring
Bluesky has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"Sharing to Protect Us or Others. We may access, preserve, and disclose any information we store if we, in good faith, believe doing so is required or appropriate to: (i) comply with law enforcement, regulatory, or national security requests and legal process, like a court order or subpoena; (ii) protect your, our, or others' rights, property, or safety; (iii) enforce our policies or contracts; (iv) collect amounts owed to us; or (v) assist with an investigation or prosecution of suspected or actual illegal activity.— Excerpt from Bluesky's Bluesky Privacy Policy
(1) REGULATORY LANDSCAPE: Law enforcement disclosure provisions implicate the Electronic Communications Privacy Act (ECPA) and Stored Communications Act (SCA) in the US, which govern when communications service providers may or must disclose user data to government authorities. GDPR Article 23 permits restrictions on data subject rights for law enforcement purposes but requires that disclosures be proportionate and legally grounded. The policy's use of 'good faith belief' language goes beyond strictly compelled legal process and may warrant evaluation under applicable law. (2) GOVERNANCE EXPOSURE: Medium. The 'good faith belief' standard is commonly used in industry but permits voluntary disclosures beyond legally mandated ones. The breadth of the clause, covering national security requests alongside standard legal process, is standard for a US-based platform but operationally significant given the unencrypted nature of direct messages. (3) JURISDICTION FLAGS: EU and UK users have GDPR and UK GDPR rights that may be engaged when data is disclosed to non-EU/UK authorities, and Standard Contractual Clauses may not cover disclosures compelled by non-EU law enforcement. The Schrems II decision context is relevant for transfers of EU user data to US authorities. Jurisdictions with strong data protection laws may require that users be notified of government data requests where legally permitted. (4) CONTRACT AND VENDOR IMPLICATIONS: Bluesky's law enforcement response policies and any transparency reporting practices are not described in this document. B2B customers and enterprise users should be aware that data they generate on Bluesky is subject to this disclosure authority. (5) COMPLIANCE CONSIDERATIONS: Compliance teams should confirm whether Bluesky publishes a transparency report disclosing the volume and nature of government data requests. For EU users, legal teams should assess whether the Standard Contractual Clauses in place adequately address government access scenarios consistent with post-Schrems II requirements.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
ConductAtlas detected a major restructuring of Meta’s privacy policy that removed detailed consumer rights disclosures and relocated them to separate documents.
Your genetic data may be transferred to a new owner as a business asset. Here is what the Terms of Service actually say and what you can do right now.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This provision authorizes Bluesky to share your data, including unencrypted direct messages, with law enforcement or government agencies based on the company's good faith belief, which extends beyond strictly legally compelled disclosures.
Because Bluesky's direct messages are unencrypted and stored, this provision means that law enforcement requests could result in the disclosure of private message content, profile data, IP addresses, and behavioral history.
ConductAtlas has identified this type of provision across 13 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Bluesky.