This analysis describes what Substack's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
In a sale or bankruptcy scenario, your personal data — including your name, email, payment history, and message contents — could be acquired by an unknown third party whose privacy practices may differ materially from Substack's.
Substack now discloses that it shares account identifiers, such as email addresses and usernames, with trusted industry child safety organizations to detect and prevent online child sexual exploitati…
Substack collects a wide range of personal data including payment details, location, device identifiers, and direct message contents, and shares this data with service providers including generative AI services, creators, and industry child safety organizations. The lack of end-to-end encryption on direct messages is a meaningful privacy limitation for users who may assume private communications are protected, as Substack personnel may access message content and recipients can retain messages indefinitely even after deletion requests. You can request access to, correction of, or deletion of your personal data by emailing privacy@substackinc.com, and you can opt out of direct marketing through the unsubscribe mechanism in any marketing communication.
How other platforms handle this
In the event of a merger, acquisition, reorganization, bankruptcy, or other sale of all or a portion of our assets, any information we hold may be transferred to the acquiring entity or successor. You will be notified via email and/or a prominent notice on our website of any change in ownership or u...
We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company. In such transactions, user information generally is one of the transferred business assets.
If Medium is involved in a merger, acquisition, or sale of all or a portion of its assets, your information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our website of any change in ownership or uses of your personal information, as well a...
Monitoring
Substack has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"We may share and/or transfer customer information in connection with the sale or merger of our business or assets (subject to local laws). Also, if we go out of business, enter bankruptcy, or go through some other change of control.— Excerpt from Substack's Substack Privacy Policy
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
In a sale or bankruptcy scenario, your personal data — including your name, email, payment history, and message contents — could be acquired by an unknown third party whose privacy practices may differ materially from Substack's.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Substack.