Your personal data, and potentially information about your usage patterns and stored content metadata, moves to third parties beyond Dropbox itself, which expands the surface area of who holds and can act on your information.
Sharing with third-party service providers and business partners expands the pool of organizations that hold your personal information, each with their own privacy and security practices, and creates downstream data handling risks.
Fastly
· Fastly Privacy Policy
The clause establishes multiple pathways for data disclosure to third parties without requiring advance notice in all categories. The provision distinguishes between disclosures requiring consent (business partners) and those permitted without consent (legal compliance, corporate transactions, service provider relationships), defining the scope of Fastly's data sharing authority.
The policy authorizes data sharing with resellers and channel partners who deliver Atlassian products, which may mean your employer's Atlassian reseller receives information about your account depending on the delivery arrangement.
The terms authorize disclosure of personal data to a range of third-party categories, including advertising partners and potential acquirers, which affects how your data may be used beyond Stability AI's own systems.
Adyen
· Adyen Privacy Policy
The clause establishes the scope of permitted data recipients across payment processing, risk management, regulatory compliance, and internal group operations. This authorization defines the operational boundaries for personal data flows throughout Adyen's service delivery infrastructure.
Miro
· Miro Privacy Policy
This provision establishes that personal data collected from users of the Miro platform may be disclosed to advertising and analytics vendors, which is operationally significant for enterprise customers whose employees use the platform for sensitive collaboration.
ADP
· ADP Privacy Statement
Your personal data including payroll figures and health information may be shared with a broad range of entities, and in the event of a merger or acquisition, it could transfer to a new owner whose privacy practices may differ.
Figma
· Figma Privacy Policy
This provision establishes the scope of third-party access to user personal information within Figma's operational framework. The clause identifies both service provider categories (vendors performing backend functions) and business partner categories (entities providing products or services), defining the mechanisms through which user data flows beyond Figma's direct control.
Fly.io
· Fly.io Privacy Policy
Your data is not limited to Fly.io's own systems; it flows to multiple third-party vendors, each of which has its own data practices and security posture.
Ledger
· Ledger Privacy Policy
Sharing identity and purchase data with multiple third parties increases the number of organizations that hold sensitive information linking you to a cryptocurrency hardware wallet purchase.
Midjourney
· Midjourney Data Retention & Privacy FAQ
The policy authorizes sharing personal information with service providers, business partners, and payment processors, and permits data transfer in the event of a business acquisition; the categories of business partners are not fully enumerated, which limits user visibility into who may receive their data.
Writer
· Writer Privacy Policy
Your data, including potentially sensitive content, may be accessible to multiple third-party vendors and could transfer to new owners in a corporate transaction without requiring your consent.
This provision establishes the operational framework for data aggregation from external sources, expanding the datasets ZipRecruiter maintains beyond information directly collected from users. The clause defines categories of third-party data sources and specifies different data types collected depending on user status (Client vs. non-user).
Figma
· Figma Privacy Policy
The breadth of third-party sharing, including with advertising partners, means your usage data and potentially other personal information may flow to companies outside Figma's direct control, with implications for targeted advertising and data aggregation.
Sharing personal data with advertising partners means your usage information and identifiers may be used to build advertising profiles, which goes beyond the core purpose of using a work management tool.
In a corporate transaction, your personal data could be transferred to a new entity whose privacy practices differ from Thomson Reuters', and the protections available to you may change as a result.
The provision establishes the operational scope of data sharing practices within Walmart's service delivery model. It authorizes disclosure to multiple categories of recipients for service provision, business development, and regulatory compliance purposes, defining the permissible channels through which personal information flows within and beyond the organization.
This provision outlines the operational basis for CoreWeave's personal data handling activities across its service ecosystem. Understanding these practices is material to users' comprehension of how their information flows through the company's systems and which parties may access it.
The clause establishes the operational scope of data sharing within Mixpanel's service delivery architecture and defines the circumstances under which data disclosure occurs outside the direct service relationship, including legal compliance obligations and protective disclosures.
The combination of externally sourced data with internally collected data can create detailed user profiles that go beyond what users would expect from signing up for a developer platform, and the breadth of marketing partner involvement warrants scrutiny.
This clause establishes the operational framework for DocuSign's use of external vendors to deliver platform services. It creates a contractual requirement that third-party processors limit data use to DocuSign-directed purposes, establishing accountability mechanisms between DocuSign and its service provider network.
Replit
· Replit Privacy Policy
This clause establishes the framework for data disclosure to sub-processors and service providers. It defines the permissible categories of recipients and contractually obligates those recipients to restrict their use of shared data to specified service functions.
This clause establishes the operational framework for ClickUp's use of external vendors to support service delivery and business functions. The contractual requirement that sub-processors limit data processing to ClickUp's instructions creates a defined chain of responsibility for third-party data handling.
This provision authorizes disclosure of user browsing and activity data to advertising technology vendors for cross-site targeting purposes, which may require evaluation under GDPR consent requirements and ePrivacy Directive guidance applicable to cookie-based tracking in EU member states.
The provision establishes a distinction between data practices on marketing websites versus core product platforms. It delineates the scope of third-party advertising technology deployment and clarifies which customer data sets remain excluded from advertising partner sharing arrangements.
The provision establishes the operational basis for automated data collection infrastructure and reserves discretion to modify collection mechanisms without advance specification of which tools will be deployed. This creates a framework where the scope of data collection may expand as new technologies become available.
eBay
· eBay Privacy Notice
The combination of eBay's first-party behavioral data with data acquired from credit agencies and external data providers creates a more detailed profile of users than most people would expect from a marketplace platform.
Airbnb
· Airbnb Privacy Policy
This type of data sharing means your activity on Airbnb, including searches, listings viewed, and booking behavior, may be used to profile you for advertising purposes across the broader internet, not just within Airbnb's platform.
Auth0
· Auth0 Privacy Policy
Sharing behavioral data with advertising partners for cross-site tracking extends beyond operational service delivery and creates profiles that follow users across the web, which has significant privacy implications and triggers specific opt-out rights in several jurisdictions.