If ClickUp is sold, merged, or acquired, your personal data may be transferred to the new owner as part of that transaction, potentially even during negotiation before any deal is finalized.
This analysis describes what ClickUp's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
Your data could be transferred to an entirely different company with different privacy practices, and the transfer may occur during negotiations before any acquisition is complete, giving you no opportunity to object in advance.
In the event of a ClickUp acquisition or merger, your personal data including account details, usage history, and workspace content may transfer to a new corporate owner without your individual consent, and the new entity's privacy practices may differ from ClickUp's current commitments.
How other platforms handle this
In connection with any reorganization, restructuring, merger or sale, or other transfer of assets, we will transfer information, including personal information, provided that the receiving party agrees to respect your personal information in a manner that is consistent with our Privacy Policy.
We may access, preserve, and share information with regulators, law enforcement, or others if we believe it is reasonably necessary to: detect, prevent, and address fraud and other illegal activity; protect ourselves, you, and others, including as part of investigations; and prevent death or imminen...
Where required by law, we provide adequate protection for the transfer of personal data in accordance with applicable law, such as by obtaining your consent, relying on the European Commission's adequacy decisions, or executing Standard Contractual Clauses. Where relevant, you may request a copy of ...
Monitoring
ClickUp has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company.— Excerpt from ClickUp's ClickUp Privacy Policy
(1) REGULATORY LANDSCAPE: Business transfer data sharing engages GDPR Article 6 lawful basis requirements and may require assessment under the legitimate interests basis, as well as notification obligations to data subjects in certain jurisdictions. CCPA/CPRA require that the acquiring entity honor existing consumer rights and privacy promises. The FTC has historically scrutinized asset sales where consumer data constitutes a primary business asset and pre-existing privacy promises are not maintained. (2) GOVERNANCE EXPOSURE: Medium. This clause is standard in SaaS privacy policies and consistent with general industry practice, but the reference to transfers occurring during negotiations rather than only upon completion is a nuance worth noting. Enterprise customers whose workspace data is subject to this clause should assess contractual continuity obligations and whether their data processing agreements survive a change of control. (3) JURISDICTION FLAGS: EU and UK users may have GDPR-based rights if a transfer to a non-adequate country results from an acquisition, as new standard contractual clauses or equivalent mechanisms would need to be assessed. California users retain CPRA rights against a successor entity. (4) CONTRACT AND VENDOR IMPLICATIONS: Enterprise contracts with ClickUp should include change-of-control provisions specifying data handling obligations on the acquirer, notification timelines, and termination rights if the acquiring entity does not meet agreed data protection standards. (5) COMPLIANCE CONSIDERATIONS: Legal teams should assess whether a ClickUp acquisition would trigger data transfer notification obligations under applicable law, and whether existing data processing agreements include appropriate change-of-control protections.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
ConductAtlas detected a major restructuring of Meta’s privacy policy that removed detailed consumer rights disclosures and relocated them to separate documents.
Your genetic data may be transferred to a new owner as a business asset. Here is what the Terms of Service actually say and what you can do right now.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
Your data could be transferred to an entirely different company with different privacy practices, and the transfer may occur during negotiations before any acquisition is complete, giving you no opportunity to object in advance.
In the event of a ClickUp acquisition or merger, your personal data including account details, usage history, and workspace content may transfer to a new corporate owner without your individual consent, and the new entity's privacy practices may differ from ClickUp's current commitments.
ConductAtlas has identified this type of provision across 5 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by ClickUp.