While the data use is limited to anonymized and aggregated forms, this provision permits broad secondary use of derived data for business purposes beyond the immediate service relationship, which is relevant for organizations with strict data minimization or secondary use policies.
Kick
· Kick Privacy Policy
Third-party analytics tools can collect detailed session data, device identifiers, and interaction logs that go beyond what users typically expect when visiting a streaming site.
Roblox
· Roblox Privacy and Cookie Policy
The provision establishes the data collection and processing workflow for monetized transactions on the platform. It clarifies that Roblox collects billing Personal Information directly while third-party processors manage payment handling under their own contractual frameworks.
PayPal
· PayPal Privacy Statement
This provision defines the scope of mandatory and optional public data disclosure for business account holders, establishing which profile information PayPal displays by default versus which disclosures remain under user control through settings configuration.
Figma
· Figma Privacy Policy
This clause establishes the operational framework under which user data may change custodianship during significant corporate events. It clarifies that data transfer in such scenarios is permitted under the privacy policy without requiring separate user consent, provided the transfer occurs within legal and contractual boundaries.
This provision reserves the right to transfer subscriber and user Personal Information as part of a business asset transaction, which could result in Personal Information being transferred to a new entity with different privacy practices. The provision notes that such transfers are subject to local laws but does not specify what protections apply to transferred data.
Lime
· Lime Privacy Policy
A change of corporate ownership could result in your personal data being held and used by a different company with different privacy practices, without any specific notice or consent requirement stated in the policy.
In the event of a corporate transaction, your personal data could be transferred to a new company with different privacy practices, and you may have limited ability to prevent that transfer.
The clause establishes the operational framework for user data handling during corporate restructuring events, clarifying that personal information constitutes a transferable asset in such transactions and defining the circumstances under which data disclosure becomes permissible without separate user authorization.
A business transfer could result in your insurance and financial data being held by a new company with different privacy practices, and the policy does not specify whether you would receive advance notice or have any right to object before such a transfer occurs.
This provision authorizes the transfer of your personal data to an acquiring entity in a corporate transaction, with post-transaction notification rather than prior consent as the stated mechanism for informing users of changes.
This provision authorizes the transfer of user personal data to third parties in the context of corporate transactions, which may result in user data being held by a company with different privacy practices and without any additional notice or consent requirement specified in the policy.
The policy authorizes the transfer of user personal data as a business asset in the event of a corporate transaction, meaning your data could be held and processed by a new entity with potentially different privacy practices.
This provision authorizes transfer of personal data to third parties in corporate transaction contexts, potentially including during negotiations before a transaction is finalized, without requiring individual notice or consent at the time of transfer.
A corporate transaction could result in your personal data being transferred to a new entity with potentially different privacy practices, and this clause permits that transfer even during the negotiation phase before any transaction is complete.
A corporate transaction could result in your data being controlled by a company with materially different privacy practices, and the policy does not commit to notifying users before such a transfer occurs.
Garmin
· Garmin Privacy Statement
A corporate acquisition could transfer your sensitive health and GPS data to a new entity with different privacy practices, and your ability to prevent this transfer under the current policy is limited.
Auth0
· Auth0 Privacy Policy
In a corporate transaction, your authentication data, device identifiers, and behavioral profiles could transfer to a new owner whose privacy practices may differ materially from Okta's current policy, and the commitment to notify is a notice right rather than a consent or opt-out right.
This provision establishes the operational framework for information handling during corporate restructuring events. It clarifies that user data may be subject to transfer to successor entities or acquirers as part of business transitions, without requiring separate user consent beyond the terms as written.
Cross-border data transfer provisions establish the operational framework for how personal information moves through Nintendo's global infrastructure and defines the jurisdictional scope of data processing. This mechanism determines which privacy frameworks and regulatory standards apply to user data depending on destination jurisdiction.
Calm
· Calm Privacy Policy
The provision establishes the operational framework for international data processing and specifies the legal mechanisms Calm uses to comply with cross-border transfer requirements. This addresses the regulatory requirement that personal data transferred outside the EU/EEA must have adequate protective measures in place.
While customer data ownership is confirmed, the operational license granted to Supabase is broad in scope and includes worldwide rights to reproduce and distribute customer data, which is the standard mechanism by which Supabase can store, back up, and deliver your data through its infrastructure.
The provision establishes Meta's operational framework for enabling user control over personal data through self-service mechanisms and structured data export processes, which reflects implementation of data portability and access rights.
This provision establishes the operational framework under which user data may be transferred to successor entities or acquirers during corporate restructuring events. It clarifies that information collected under the privacy policy may be treated as a transferable business asset subject to the same privacy obligations.
This clause establishes the operational mechanism by which user data may be transferred to acquiring entities or transaction counterparties. It clarifies that information sharing during corporate restructuring events is within the scope of authorized data practices under the privacy policy.
In a business acquisition or merger, your personal data could be transferred to a new company with different privacy practices, and you may not receive advance notice or have an opportunity to opt out before the transfer occurs.
Uber
· Uber Privacy Notice
Data sharing with service providers is operationally necessary for Uber to execute ride and delivery transactions. The provision specifies which data categories are transmitted to which parties, establishing the scope of third-party access required for service delivery.
Your personal data could be transferred to a different company with potentially different privacy practices if Substack undergoes a change of ownership, and the policy does not guarantee notice to users before such a transfer occurs.
This clause establishes the operational framework for how personal data is treated during corporate restructuring events. It permits the transfer of user data alongside business assets, establishing continuity of data stewardship under new ownership.
YouTube
· YouTube Community Guidelines
GIFCT membership involves sharing data or signals about harmful content across platforms, which has implications for how content and potentially account information may be shared with third-party technology companies outside of YouTube's direct data sharing policies.