If Medium is sold, merges with another company, or goes through bankruptcy, your personal data may be transferred to the new owner or successor entity as part of that transaction.
This analysis describes what Medium's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
A corporate transaction could result in your personal data being controlled by a different company with different privacy practices, and this policy gives you no opt-out right in that scenario.
In the event of a sale, merger, or bankruptcy involving Medium, your personal information, including account data, reading history, and payment details, may be transferred to a new entity whose privacy practices you have not reviewed or agreed to.
How other platforms handle this
We may share your personal information with our affiliates, meaning entities that control, are controlled by, or are under common control with Consensys. We also share information with service providers who assist in operating our services, subject to confidentiality obligations.
At Ledger, earning and maintaining our users' trust is a top priority. That's why we are deeply committed not only to protecting your privacy and securing your personal data, but also to being fully transparent about how we handle it.
Loyalty and partner program companies. We share information with our loyalty and partner program companies, like Ulta Beauty and Marriott.
Monitoring
Medium has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"If Medium is involved in a merger, acquisition, financing due diligence, reorganization, bankruptcy, receivership, sale of company assets, or transition of service to another provider, your personal information and other information may be shared in the diligence process or transferred to a successor or affiliate entity.— Excerpt from Medium's Medium Privacy Policy
REGULATORY LANDSCAPE: Business transfer provisions implicating user data are subject to FTC oversight under the FTC Act's prohibition on unfair or deceptive practices. The FTC has historically required that user data transferred in a business sale be used only in accordance with the privacy policy under which it was collected, unless users are given an opportunity to consent to new uses. GDPR may also apply where EU personal data is involved, as a change of data controller requires notice to data subjects. GOVERNANCE EXPOSURE: Medium. This provision is standard across the industry but creates practical risk for users because the successor entity's privacy practices are unknown at the time of account creation. There is no user notification or consent mechanism specified in this clause for the transfer event itself. JURISDICTION FLAGS: EU/EEA users are protected by GDPR requirements that any new data controller operating under different purposes must provide fresh notice and, where required, obtain new consent. California users have CCPA rights that may survive a business transfer. The policy does not specify what happens to user data in a bankruptcy scenario, which may create additional legal complexity. CONTRACT AND VENDOR IMPLICATIONS: Enterprise customers using Medium for corporate publishing should assess the implications of a potential business transfer on their own data obligations. If corporate employee or customer data is processed by Medium, a change of control could affect the legal basis for that processing. COMPLIANCE CONSIDERATIONS: Users who are concerned about the business transfer provision can export their data and consider whether account deletion is appropriate if a transaction is announced. Compliance teams should monitor for any announcements of corporate transactions involving Medium and assess whether notification obligations are triggered under applicable law.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
ConductAtlas detected a major restructuring of Meta’s privacy policy that removed detailed consumer rights disclosures and relocated them to separate documents.
Your genetic data may be transferred to a new owner as a business asset. Here is what the Terms of Service actually say and what you can do right now.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
A corporate transaction could result in your personal data being controlled by a different company with different privacy practices, and this policy gives you no opt-out right in that scenario.
In the event of a sale, merger, or bankruptcy involving Medium, your personal information, including account data, reading history, and payment details, may be transferred to a new entity whose privacy practices you have not reviewed or agreed to.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Medium.