If MetaMask or Consensys is sold or merges with another company, your personal data can be transferred to the new owner. The policy only commits to notifying you if the law requires it, not as a default.
This analysis describes what MetaMask's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
A corporate transaction could result in your wallet activity data, IP address history, and other personal information being acquired by an entity with entirely different privacy practices, and you may not receive advance notice before this happens.
In the event of a Consensys acquisition or asset sale, your financial metadata and identity-linked data could transfer to a new corporate owner whose privacy practices may differ significantly from those you agreed to, with notification contingent on legal requirements rather than as a default commitment.
How other platforms handle this
We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.
By using our Services, you agree to be bound by this Privacy Policy.
Where required by law, we provide adequate protection for the transfer of personal data in accordance with applicable law, such as by obtaining your consent, relying on the European Commission's adequacy decisions, or executing Standard Contractual Clauses. Where relevant, you may request a copy of ...
Monitoring
MetaMask has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"If Consensys is involved in a merger, acquisition, asset sale, or other corporate transaction, your personal information may be transferred to or acquired by a third party as part of that transaction. We will provide notice of any such change in ownership or control if required by applicable law.— Excerpt from MetaMask's MetaMask Privacy Policy
REGULATORY LANDSCAPE: GDPR Article 13 and 14 require data subjects to be informed of new data controllers when personal data is transferred; a corporate transaction transferring Consensys user data to a new entity may trigger notification obligations regardless of whether domestic law requires it. CCPA similarly requires businesses to notify consumers when personal information is transferred to a third party in a business transfer. The FTC has historically scrutinized whether privacy policies are honored after corporate acquisitions. GOVERNANCE EXPOSURE: Medium. This is a standard clause in technology company privacy policies, but the sensitivity of financial transaction metadata elevates the stakes compared to typical consumer app data. The conditional notification commitment ('if required by applicable law') falls below the proactive standard suggested by GDPR's transparency principles. JURISDICTION FLAGS: EU/EEA users have the strongest notification rights in acquisition scenarios under GDPR. California users have rights under CCPA/CPRA that may require opt-out opportunities before data is transferred to a new controller in a business sale context. CONTRACT AND VENDOR IMPLICATIONS: B2B customers or developers building on MetaMask infrastructure should assess whether their own downstream data handling obligations are affected by a potential Consensys transaction, particularly if they have made representations to their own users about data handling. COMPLIANCE CONSIDERATIONS: Compliance teams should flag this provision as a change-of-control data governance trigger and establish internal protocols to monitor for Consensys corporate transactions that would require assessment of the new entity's privacy practices and potential re-consent or notification obligations.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
ConductAtlas detected a major restructuring of Meta’s privacy policy that removed detailed consumer rights disclosures and relocated them to separate documents.
Your genetic data may be transferred to a new owner as a business asset. Here is what the Terms of Service actually say and what you can do right now.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
A corporate transaction could result in your wallet activity data, IP address history, and other personal information being acquired by an entity with entirely different privacy practices, and you may not receive advance notice before this happens.
In the event of a Consensys acquisition or asset sale, your financial metadata and identity-linked data could transfer to a new corporate owner whose privacy practices may differ significantly from those you agreed to, with notification contingent on legal requirements rather than as a default commitment.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by MetaMask.