Thomson Reuters may share your personal data with service providers, partners, and other companies, and may transfer it to a new owner if Thomson Reuters itself is acquired or sells a business unit.
This analysis describes what Thomson Reuters's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
In a corporate transaction, your personal data could be transferred to a new entity whose privacy practices differ from Thomson Reuters', and the protections available to you may change as a result.
If Thomson Reuters is acquired or merges with another company, your personal information may be transferred to the acquiring entity, which may operate under different policies and practices than those described in this statement.
How other platforms handle this
We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.
By using our Services, you agree to be bound by this Privacy Policy.
We may share your information with third-party advertising partners to provide you with targeted advertising. We also work with third-party analytics providers who help us understand how users interact with our Services. These third parties may use cookies, web beacons, and similar tracking technolo...
Monitoring
Thomson Reuters has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"We may share your personal information with third-party service providers who perform services on our behalf, business partners, affiliated entities, and in connection with a merger, acquisition, reorganisation, sale of assets, or other corporate transaction. In such cases, we will require recipients to protect your personal information in a manner consistent with this Privacy Statement.— Excerpt from Thomson Reuters's Thomson Reuters Privacy
REGULATORY LANDSCAPE: Corporate transaction data sharing engages GDPR requirements for lawful basis for onward transfers (legitimate interests or contract performance are commonly asserted), notification obligations to data subjects, and the requirement that the new controller honour existing data subject rights. CCPA and CPRA impose disclosure requirements for data sharing in corporate transactions. The FTC has examined data asset transfers in mergers and acquisitions. GOVERNANCE EXPOSURE: Medium. The provision is standard in corporate privacy policies but operationally significant for enterprise customers who rely on Thomson Reuters as a processor, since a change of control could affect the legal entity responsible for their data processing agreements and the jurisdiction of processing. The statement asserts contractual protection requirements for recipients but does not specify enforcement mechanisms. JURISDICTION FLAGS: EU and EEA users may have enhanced rights in corporate transaction contexts, including the right to be informed of a change of controller. California users should note that CPRA requires disclosure of data transfers in corporate transactions. The UK ICO has published guidance on data sharing in mergers and acquisitions. CONTRACT AND VENDOR IMPLICATIONS: Enterprise customers' DPAs should include provisions addressing change of control, including notification obligations, rights to terminate the agreement, and data return or deletion obligations in the event of an acquisition. Procurement teams should assess whether existing DPAs contain adequate change of control protections. COMPLIANCE CONSIDERATIONS: Compliance teams should ensure their vendor management programmes flag Thomson Reuters as a key vendor subject to change of control monitoring, and review DPAs for assignment restrictions or notification requirements that would be triggered by a Thomson Reuters corporate transaction.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
ConductAtlas detected a major restructuring of Meta’s privacy policy that removed detailed consumer rights disclosures and relocated them to separate documents.
Your genetic data may be transferred to a new owner as a business asset. Here is what the Terms of Service actually say and what you can do right now.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
In a corporate transaction, your personal data could be transferred to a new entity whose privacy practices differ from Thomson Reuters', and the protections available to you may change as a result.
If Thomson Reuters is acquired or merges with another company, your personal information may be transferred to the acquiring entity, which may operate under different policies and practices than those described in this statement.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Thomson Reuters.