TaskRabbit can share your personal information with prospective buyers or merger partners even before any deal is finalized, during the negotiation phase.
This analysis describes what TaskRabbit's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This clause establishes the operational framework for handling personal information in corporate transaction scenarios. It permits data transfer to prospective acquirers without requiring separate user consent, treating personal information as a transferable business asset during ownership changes.
Your personal information, including sensitive data categories such as identity documents and background check results, may be shared with prospective acquirers or merger partners during deal negotiations, which could expose your data to a third party that does not ultimately complete the transaction.
Cross-platform context
See how other platforms handle Merger and Acquisition Data Disclosure and similar clauses.
Compare across platforms →Monitoring
TaskRabbit has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"Merger or Acquisition. We may also share your Personal Information with interested parties in connection with, or during negotiations of, any proposed or actual merger, purchase, or sale of all or any portion of our assets to another business.— Excerpt from TaskRabbit's TaskRabbit Privacy Policy
1. REGULATORY LANDSCAPE: Under GDPR, disclosure of personal data to prospective acquirers during M&A due diligence requires a valid legal basis; legitimate interests under Article 6(1)(f) is commonly invoked but requires a balancing test demonstrating that the legitimate interest overrides data subject rights, particularly for sensitive data categories. The FTC has previously scrutinized data asset transfers in M&A contexts under Section 5. CCPA requires that data transferred in a merger qualify as a business purpose or that consumers be notified and given opt-out rights. 2. GOVERNANCE EXPOSURE: Medium. The clause's extension to 'negotiations of any proposed' transaction is broader in pre-closing scope than some comparable policies, and the absence of any stated contractual safeguard requirement (such as NDAs or data use limitations for prospective buyers) creates due diligence exposure. For EEA and UK users, sharing sensitive data categories with prospective acquirers during negotiations may require DPIA review. 3. JURISDICTION FLAGS: California residents may have CCPA rights triggered if personal data is transferred in a merger that constitutes an asset sale. EEA and UK users retain GDPR rights regardless of corporate restructuring, and any acquirer must be bound by equivalent data protection obligations. Canada's PIPEDA requires notification to affected individuals where personal information is being transferred for processing by a third party. 4. CONTRACT AND VENDOR IMPLICATIONS: M&A due diligence data rooms containing TaskRabbit user personal data should be governed by data room access agreements that limit use to evaluation purposes and require destruction of data if the transaction does not close. Acquirers should conduct privacy due diligence assessments covering the full scope of sensitive data categories disclosed in this policy. 5. COMPLIANCE CONSIDERATIONS: Compliance teams involved in any TaskRabbit transaction should assess whether user notification or opt-out rights are triggered under CCPA or state equivalents, and whether GDPR legitimate interests assessments have been documented for pre-closing data sharing. Post-closing, the acquirer's privacy policy obligations and any required user notifications should be evaluated before the transaction closes.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This clause establishes the operational framework for handling personal information in corporate transaction scenarios. It permits data transfer to prospective acquirers without requiring separate user consent, treating personal information as a transferable business asset during ownership changes.
Your personal information, including sensitive data categories such as identity documents and background check results, may be shared with prospective acquirers or merger partners during deal negotiations, which could expose your data to a third party that does not ultimately complete the transaction.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by TaskRabbit.