TaskRabbit can share your personal information with prospective buyers or merger partners even before any deal is finalized, during the negotiation phase.
This analysis describes what TaskRabbit's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This clause permits disclosure of personal data to third parties during pre-closing M&A negotiations without a completed transaction, meaning your data could be accessed by an entity that never ultimately acquires the business.
Your personal information, including sensitive data categories such as identity documents and background check results, may be shared with prospective acquirers or merger partners during deal negotiations, which could expose your data to a third party that does not ultimately complete the transaction.
How other platforms handle this
By issuing a chargeback or refund request for Premium subscriptions paid for through a third party, you agree to allow Telegram to release necessary data to that third party regarding your account status and Telegram Premium purchases.
We will share individual user information with companies, organizations or individuals outside of Google if we have a good-faith belief that access, use, preservation or disclosure of the information is reasonably necessary to: meet any applicable law, regulation, legal process or enforceable govern...
11 Inferences Conclusions that could be used to create a profile reflecting an individual's preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, aptitude. YES. YES
Monitoring
TaskRabbit has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"Merger or Acquisition. We may also share your Personal Information with interested parties in connection with, or during negotiations of, any proposed or actual merger, purchase, or sale of all or any portion of our assets to another business.— Excerpt from TaskRabbit's TaskRabbit Privacy Policy
1. REGULATORY LANDSCAPE: Under GDPR, disclosure of personal data to prospective acquirers during M&A due diligence requires a valid legal basis; legitimate interests under Article 6(1)(f) is commonly invoked but requires a balancing test demonstrating that the legitimate interest overrides data subject rights, particularly for sensitive data categories. The FTC has previously scrutinized data asset transfers in M&A contexts under Section 5. CCPA requires that data transferred in a merger qualify as a business purpose or that consumers be notified and given opt-out rights. 2. GOVERNANCE EXPOSURE: Medium. The clause's extension to 'negotiations of any proposed' transaction is broader in pre-closing scope than some comparable policies, and the absence of any stated contractual safeguard requirement (such as NDAs or data use limitations for prospective buyers) creates due diligence exposure. For EEA and UK users, sharing sensitive data categories with prospective acquirers during negotiations may require DPIA review. 3. JURISDICTION FLAGS: California residents may have CCPA rights triggered if personal data is transferred in a merger that constitutes an asset sale. EEA and UK users retain GDPR rights regardless of corporate restructuring, and any acquirer must be bound by equivalent data protection obligations. Canada's PIPEDA requires notification to affected individuals where personal information is being transferred for processing by a third party. 4. CONTRACT AND VENDOR IMPLICATIONS: M&A due diligence data rooms containing TaskRabbit user personal data should be governed by data room access agreements that limit use to evaluation purposes and require destruction of data if the transaction does not close. Acquirers should conduct privacy due diligence assessments covering the full scope of sensitive data categories disclosed in this policy. 5. COMPLIANCE CONSIDERATIONS: Compliance teams involved in any TaskRabbit transaction should assess whether user notification or opt-out rights are triggered under CCPA or state equivalents, and whether GDPR legitimate interests assessments have been documented for pre-closing data sharing. Post-closing, the acquirer's privacy policy obligations and any required user notifications should be evaluated before the transaction closes.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
ConductAtlas detected a major restructuring of Meta’s privacy policy that removed detailed consumer rights disclosures and relocated them to separate documents.
Your genetic data may be transferred to a new owner as a business asset. Here is what the Terms of Service actually say and what you can do right now.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This clause permits disclosure of personal data to third parties during pre-closing M&A negotiations without a completed transaction, meaning your data could be accessed by an entity that never ultimately acquires the business.
Your personal information, including sensitive data categories such as identity documents and background check results, may be shared with prospective acquirers or merger partners during deal negotiations, which could expose your data to a third party that does not ultimately complete the transaction.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by TaskRabbit.