Bluesky may share any data it holds about you with law enforcement, government agencies, or other parties if it believes doing so is required by law or appropriate for safety or legal reasons.
This analysis describes what Bluesky's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This provision authorizes Bluesky to share your data, including unencrypted direct messages, with law enforcement or government agencies based on the company's good faith belief, which extends beyond strictly legally compelled disclosures.
Because Bluesky's direct messages are unencrypted and stored, this provision means that law enforcement requests could result in the disclosure of private message content, profile data, IP addresses, and behavioral history.
How other platforms handle this
We may disclose your information if we believe that disclosure is in accordance with, or required by, any applicable law or legal process, including lawful requests by public authorities to meet national security or law enforcement requirements. We may also disclose your information if we believe it...
In the event of a merger, acquisition, reorganization, bankruptcy, or other similar event, your personal data may be transferred to a successor entity or third party as part of that transaction.
At Ledger, earning and maintaining our users' trust is a top priority. That's why we are deeply committed not only to protecting your privacy and securing your personal data, but also to being fully transparent about how we handle it.
Monitoring
Bluesky has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"Sharing to Protect Us or Others. We may access, preserve, and disclose any information we store if we, in good faith, believe doing so is required or appropriate to: (i) comply with law enforcement, regulatory, or national security requests and legal process, like a court order or subpoena; (ii) protect your, our, or others' rights, property, or safety; (iii) enforce our policies or contracts; (iv) collect amounts owed to us; or (v) assist with an investigation or prosecution of suspected or actual illegal activity.— Excerpt from Bluesky's Bluesky Privacy Policy
(1) REGULATORY LANDSCAPE: Law enforcement disclosure provisions implicate the Electronic Communications Privacy Act (ECPA) and Stored Communications Act (SCA) in the US, which govern when communications service providers may or must disclose user data to government authorities. GDPR Article 23 permits restrictions on data subject rights for law enforcement purposes but requires that disclosures be proportionate and legally grounded. The policy's use of 'good faith belief' language goes beyond strictly compelled legal process and may warrant evaluation under applicable law. (2) GOVERNANCE EXPOSURE: Medium. The 'good faith belief' standard is commonly used in industry but permits voluntary disclosures beyond legally mandated ones. The breadth of the clause, covering national security requests alongside standard legal process, is standard for a US-based platform but operationally significant given the unencrypted nature of direct messages. (3) JURISDICTION FLAGS: EU and UK users have GDPR and UK GDPR rights that may be engaged when data is disclosed to non-EU/UK authorities, and Standard Contractual Clauses may not cover disclosures compelled by non-EU law enforcement. The Schrems II decision context is relevant for transfers of EU user data to US authorities. Jurisdictions with strong data protection laws may require that users be notified of government data requests where legally permitted. (4) CONTRACT AND VENDOR IMPLICATIONS: Bluesky's law enforcement response policies and any transparency reporting practices are not described in this document. B2B customers and enterprise users should be aware that data they generate on Bluesky is subject to this disclosure authority. (5) COMPLIANCE CONSIDERATIONS: Compliance teams should confirm whether Bluesky publishes a transparency report disclosing the volume and nature of government data requests. For EU users, legal teams should assess whether the Standard Contractual Clauses in place adequately address government access scenarios consistent with post-Schrems II requirements.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Ad personalization controls removed. Contact scanning added. Advertiser data partnerships quietly dropped. A timeline of every change.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This provision authorizes Bluesky to share your data, including unencrypted direct messages, with law enforcement or government agencies based on the company's good faith belief, which extends beyond strictly legally compelled disclosures.
Because Bluesky's direct messages are unencrypted and stored, this provision means that law enforcement requests could result in the disclosure of private message content, profile data, IP addresses, and behavioral history.
ConductAtlas has identified this type of provision across 14 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Bluesky.