TaskRabbit can share your personal data with law enforcement and government authorities when legally required, and also has discretion to share it when it believes there may have been an injury or interference with rights, even without a formal legal order.
This analysis describes what TaskRabbit's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
The second paragraph of this clause permits disclosure 'in our sole discretion' based on a subjective belief about potential injury or interference, which is broader than a mandatory legal compliance disclosure and does not require a court order or formal legal process.
Interpretive note: The scope of 'sole discretion' disclosures and whether they constitute a valid legal basis under GDPR or fall within CCPA exceptions depends on regulatory interpretation and operational context not fully specified in the document.
Your personal data, including sensitive categories such as identity documents and background check results, may be disclosed to third parties based on TaskRabbit's own judgment that an injury or rights interference may have occurred, without a requirement for formal legal process.
Cross-platform context
See how other platforms handle Legal Obligations and Discretionary Disclosure and similar clauses.
Compare across platforms →Monitoring
TaskRabbit has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"Legal Obligations. We may disclose your Personal Information to comply with applicable laws, or as requested by courts, law enforcement, governmental or public authorities, tax authorities, or authorized third parties, to the extent permitted under applicable laws, or where disclosure is reasonably necessary to address any activity that may expose us or a third party to legal or regulatory liability. We may also disclose your Personal Information to a relevant third party in our sole discretion, and to the extent permitted by applicable law, if we have reason to believe there has been an injury or an actual or possible interference with the rights of users, Taskrabbit and its parents, partners, or the general public.— Excerpt from TaskRabbit's TaskRabbit Privacy Policy
1. REGULATORY LANDSCAPE: Under GDPR Article 6, discretionary disclosures to third parties require a valid legal basis; legitimate interests is the most plausible basis for the non-mandatory disclosure described in the second paragraph, but requires a balancing test. The FTC Act applies to deceptive disclosures of personal data. U.S. state privacy laws including CCPA do not permit broad discretionary disclosures to third parties outside of recognized exceptions without user consent. 2. GOVERNANCE EXPOSURE: Medium. The 'sole discretion' language in the second paragraph extends beyond standard legal compliance disclosures and could be invoked in circumstances that a user would not reasonably anticipate. The phrase 'actual or possible interference with the rights of... Taskrabbit and its parents, partners' is notably broad and could encompass business disputes not directly involving the user. 3. JURISDICTION FLAGS: EEA and UK users have GDPR rights that limit discretionary disclosures to those supported by a documented legal basis; the legitimate interests basis for this type of disclosure requires a proportionality assessment. In California, CCPA exemptions for legal process disclosures are more narrowly scoped than this clause's language. 4. CONTRACT AND VENDOR IMPLICATIONS: Partners and affiliates who may receive discretionary disclosures under this clause should be assessed to confirm that any personal data received is subject to appropriate data use limitations. The reference to 'Taskrabbit and its parents, partners' as parties whose rights may trigger disclosure warrants scrutiny in any affiliate or partnership agreement review. 5. COMPLIANCE CONSIDERATIONS: Legal teams should document the criteria applied when invoking the discretionary disclosure provision, and should maintain records of disclosures made under this basis. For EEA operations, a legitimate interests assessment should be prepared and documented. The scope of 'partners' who can trigger a discretionary disclosure should be defined internally to limit overreach.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
The second paragraph of this clause permits disclosure 'in our sole discretion' based on a subjective belief about potential injury or interference, which is broader than a mandatory legal compliance disclosure and does not require a court order or formal legal process.
Your personal data, including sensitive categories such as identity documents and background check results, may be disclosed to third parties based on TaskRabbit's own judgment that an injury or rights interference may have occurred, without a requirement for formal legal process.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by TaskRabbit.