Websites/apps may have two types of ‘assignment clauses’. The type most commonly associated with agreements in general sets out whether one or all of the parties are able to assign the agreement to a third party. This type of ‘assignment clause’ will usually be found in the Terms of Use rather than in the Privacy Policy. The Privacy Policy will address the question of whether the personal information can be ‘assigned’ to a third party. The general rule is that such information may not be used, assigned or transferred without the individual’s knowledge and consent. The purpose of the Privacy Policy is to provide the individual with knowledge of how their information will be used, and state that by using the site/app they give their consent to such uses of their information. The purpose of this type of ‘assignment’ clause is to give notice and ‘obtain consent’ to an assignment to a third party who acquires the company. That third party will be bound to the uses set out in the Privacy Policy, according to the terms in effect when the individuals provided their information. The Canadian privacy law (PIPEDA s. 7.2) permits personal information to be disclosed to a third party in the circumstances of a prospective or completed business transaction without the individuals’ knowledge or consent, but only under very limited conditions.