Which regulatory agencies enforce this type of clause?

{'agency': 'FTC', 'reason': 'FTC has historically intervened in M&A and asset sale scenarios where consumer data is transferred contrary to original privacy representations, under FTC Act Section 5', 'complaint_url': 'https://reportfraud.ftc.gov/'}

What is the severity of this clause?

ConductAtlas classifies this Business Transaction Data Sharing clause as medium severity. Severity reflects the magnitude of rights affected, the breadth of users impacted, and the degree of discretion the platform retains.

Business Transaction Data Sharing — Databricks

Share 𝕏 Share in Share 🔒 PDF

What it is

If Databricks is sold or merges with another company, your personal data could be transferred to the new owner, who may use it under different terms.

Consumer impact (what this means for users)

In the event of a merger, acquisition, or asset sale, your personal data — including contact details, behavioral data, and platform usage information — may be transferred to a new corporate owner who could use it under different terms, with only notice (not consent) required.

Cross-platform context

See how other platforms handle Business Transaction Data Sharing and similar clauses.

Compare across platforms →

Need full compliance memos? See Professional →

Why it matters (compliance & risk perspective)

A merger or acquisition could transfer your data to a company you've never interacted with and whose privacy practices may differ significantly from Databricks'.

View original clause language

We may share your personal information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company. In such cases, the acquirer may use your personal information in accordance with this Privacy Notice or a revised privacy notice of which you will be given notice.

Institutional analysis (Compliance & legal intelligence)

REGULATORY FRAMEWORK: Business transaction data sharing implicates GDPR Art. 6(1)(f) (legitimate interests as legal basis for transfer in M&A), Art. 14 (notification obligations when data is obtained from another controller), CCPA §1798.140(d) (business purpose exception may cover asset transfers), and FTC guidance on successor liability in data transactions. In the US, the FTC has specifically addressed M&A data transfers (Toysmart consent order; Radio Shack bankruptcy asset sale) where consumer data was treated as a corporate asset.

🔒

Compliance intelligence locked

Regulatory citations, enforcement risk, and due diligence action items.

Watcher $9.99/mo Professional $149/mo

Watcher: regulatory citations. Professional: full compliance memo.

Applicable agencies

FTC

FTC has historically intervened in M&A and asset sale scenarios where consumer data is transferred contrary to original privacy representations, under FTC Act Section 5
File a complaint →

Provision details

Document information

Document

Databricks Privacy Notice

Entity

Databricks

Document last updated

April 29, 2026

Tracking information

First tracked

April 30, 2026

Last verified

April 30, 2026

Record ID

CA-P-004414

Document ID

CA-D-00458

Evidence Provenance

Source URL

https://www.databricks.com/legal/privacynotice

Wayback Machine

View archived versions →

SHA-256

c2601098042d922e6c540b44624976b336394366f0003fd04e5ca853cfbadda2

Verified

✓ Snapshot stored ✓ Change verified

How to Cite

ConductAtlas Policy Archive
Entity: Databricks | Document: Databricks Privacy Notice | Record: CA-P-004414
Captured: 2026-04-30 10:03:00 UTC | SHA-256: c2601098042d922e…
URL: https://conductatlas.com/platform/databricks/databricks-privacy-notice/business-transaction-data-sharing/
Accessed: May 2, 2026

Classification

Severity

Medium

Business Transaction Data Sharing