TikTok
· TikTok Privacy Policy
This provision states that user data may be transferred to a new or acquiring entity even during negotiation stages, before any transaction is completed, and without individual user notice or consent at the time of transfer.
Waze
· Waze Privacy Policy
This clause establishes the procedural framework for data transfer in ownership or control changes. It clarifies that personal information is treated as a business asset that may be disclosed to potential acquirers or successor entities as part of due diligence and transaction completion.
Figma
· Figma Privacy Policy
If Figma is acquired or merges with another company, your personal data and design content could be transferred to the new entity, which may have different privacy practices.
A corporate transaction could result in your personal data being transferred to a new entity with different privacy practices, and the policy does not commit to notifying users before such a transfer occurs or providing an opt-out right.
The clause establishes a procedural framework for information transfer during corporate structural changes or financial distress events. It clarifies that personal data may be transferred as part of asset transfers or corporate reorganizations without requiring separate user consent at the time of such events.
Udemy
· Udemy Privacy Policy
A change in corporate ownership could result in your data being governed by a materially different privacy policy, potentially with broader data-use rights than you originally agreed to.
The clause establishes the operational framework under which user personal information may transfer to a successor entity during corporate restructuring events. This provision defines the scope of permissible data transfers when FanDuel's control or ownership structure changes, without requiring separate user consent at the time of such transfer.
Gusto
· Gusto Privacy Policy
The clause establishes the operational framework under which user data may be transferred between entities during corporate restructuring events. This affects the continuity and control of personal information across organizational changes while maintaining compliance with applicable legal requirements.
This provision establishes the operational framework for data continuity during corporate restructuring events. It clarifies that user data constitutes a transferable asset in M&A contexts and permits recipient entities to inherit the existing privacy obligations unless modified through separate notice.
Gemini
· Gemini Privacy Policy
Sharing personal data with advertising partners means your activity on Gemini may be used to build advertising profiles, and depending on your jurisdiction, you may have rights to opt out of this.
The provision establishes the operational scope of data sharing to support service functionality and business analytics. It specifies that third parties receive personal information as part of the standard service delivery model rather than as an optional enhancement.
Canva
· Canva Privacy Policy
This provision authorizes sharing of behavioral and device data with third-party ad and analytics networks, which has implications for CCPA opt-out rights and GDPR consent requirements for tracking-based advertising.
Zoom
· Zoom Privacy Statement
This provision authorizes the disclosure of behavioral and identifier data to third-party advertising networks, which may include data brokers or ad exchanges that further share this data. This is separate from Zoom's use of your data for its own service delivery.
Data shared with advertising networks can be used to build detailed behavioral profiles about you, and this sharing may persist even after you stop using Calendly.
Fastly
· Fastly Privacy Policy
Cross-site tracking by advertising and analytics companies is a primary mechanism through which personal data is aggregated and profiled at scale. For EU users, this activity typically requires explicit consent under the ePrivacy Directive and GDPR.
This provision may trigger CCPA/CPRA obligations regarding the sale or sharing of personal information with advertising partners, requiring ElevenLabs to offer California residents an opt-out mechanism. Under GDPR, sharing with advertising partners requires a valid legal basis, typically consent or a documented legitimate interests assessment.
This provision authorizes cross-site behavioral tracking and targeted advertising using your personal data, which may affect users who are not expecting their platform usage to feed into advertising profiles.
The distinction between sharing 'personal information' and 'non-personally identifiable information' with advertising partners matters because aggregated or pseudonymous data shared at scale can sometimes be re-identified, and the boundary is not always clear to users.
The clause establishes a data-sharing practice with external advertising entities and acknowledges regulatory classification of this sharing under state privacy frameworks. This operational practice creates a direct data flow to advertising partners outside DoorDash's direct control.
Adobe
· Adobe Privacy Policy
This provision means your Adobe usage activity may be disclosed to third-party ad networks, social media platforms, and data brokers for their own marketing purposes, potentially enabling detailed behavioral profiling across platforms.
Sharing your behavioral and device data with external advertising partners means your information leaves Samsung's control and may be used by those third parties for their own advertising and profiling purposes.
This clause establishes the scope of internal data sharing within a corporate group structure. It defines which entities within an affiliated corporate structure may receive user data and sets usage boundaries for those entities through reference to the Privacy Policy.
The clause establishes the scope of entities that may access user personal information within the Amazon corporate structure and defines the conditions under which personal information may be transferred to third parties outside the corporate group. This affects the range of data recipients and the continuity of data processing obligations across organizational changes.
Sharing data across Disney's full family of companies, which includes ABC, ESPN, Hulu, Marvel, Lucasfilm, and others, means data collected in one context can be used in many others without requiring separate consent for each entity.
The clause establishes the scope of permissible data recipients beyond the Company itself, extending to corporate affiliates and successor entities in M&A events. This directly affects the universe of entities with access to collected user data.
Acorns
· Acorns Privacy Policy
This provision establishes the operational scope of data distribution within Acorns' service delivery model. The authorization covers both internal entities and external vendors necessary for core service functions and ancillary business operations, with confidentiality obligations imposed contractually on recipients.
Affiliate sharing means your data can move across multiple Consensys products and business lines without your specific consent for each transfer, potentially exposing your financial activity data to a wider set of internal systems and personnel than you might expect.
Square
· Square Privacy Notice
Data sharing with affiliates and a broad range of service providers means your personal information moves beyond Square to a potentially large ecosystem of companies, each with their own data handling practices.
This provision authorizes sharing of personal information with a broad set of third parties beyond direct service delivery, including for marketing and analytics purposes, which affects how user data is used and disclosed.
Your authentication and account data could be transferred to a new company entirely if Cisco or Duo is acquired, and it is routinely shared with resellers and partners who may have their own privacy practices.