Get the weekly digest
Every policy change across 844 tracked documents, once a week. No account needed.
Mistral AI updated its Terms of Service on May 29, 2026, with material changes to how third-party service integrations operate. The revised terms expand the permissions granted to Mistral AI when you connect third-party services, shifting from limited data retrieval and processing authority to broader permission to execute actions, modify, delete, and transmit data upon your request. The updated language also clarifies that you are responsible for actions you request through these integrations and explicitly extends Mistral AI's liability disclaimers to cover data handling by third-party services, including data corruption, deletion, and unauthorized disclosure. Additionally, the company renamed its chat product from Le Chat to Vibe throughout the terms.
The updated terms authorize Mistral AI to execute a broader range of actions on your behalf when you connect third-party services, including data modification, deletion, transmission, and invocation of external systems. Previously, the terms limited Mistral's authority to retrieve, process, and store data; the revised language now permits executing, modifying, deleting, invoking, and transmitting data through third-party services. Mistral's liability disclaimer has been expanded to explicitly exclude responsibility for data corruption, deletion, unauthorized disclosure, or other actions performed by third-party services on your request. You are now explicitly responsible for all actions you request Mistral AI Products to perform through third-party integrations, including how those third parties handle the data involved.
The updated terms establish broader authority for Mistral to perform data modifications, deletions, and system executions through third-party services beyond the previous scope of retrieval and storage. This expanded contractual authority is paired with an enlarged liability disclaimer that explicitly excludes Mistral's responsibility for data corruption, deletion, and unauthorized disclosure by third parties, shifting all liability to users. For users integrating multiple services through Mistral, this change creates operational risk if third-party services mishandle or improperly act upon data during execution of user-requested actions.
→ Review the third-party services you have connected to Mistral AI Products and assess the data access and modification permissions you have granted.
→ Understand that Mistral will not be liable if a connected third-party service deletes, corrupts, or improperly discloses data while executing your requested actions.
→ If you request data modifications or deletions through third-party services, Mistral bears no responsibility if those services fail to execute properly or handle data insecurely, placing full liability on you.
→ Disputes about how third-party services access, modify, or delete your data will be resolved under the third party's terms, not Mistral's, with Mistral explicitly disclaiming responsibility.
Mistral's authority to act on data through third-party services expanded from retrieve, process, store to execute, modify, delete, transmit, and invoke.
Mistral's liability carve-out now explicitly covers data corruption, deletions, transfers, unauthorized disclosures, and other actions performed by third-party services.
Users are now explicitly responsible for actions they request through third-party integrations, including how those services handle resulting data.
This change record describes what was added, removed, or modified in the document. Analysis reflects what the updated agreement states or permits. It does not constitute a legal determination about enforceability. Applicability may vary by jurisdiction. Methodology
You must accept responsibility if a third-party service connected to Mistral handles your data in unexpected ways, even if you didn't directly control what that service did.
Mistral is no longer liable if a third-party service deletes, corrupts, or improperly discloses data while executing actions you requested through it.
The change expands the contractual authority Mistral AI asserts when users enable third-party service integrations, particularly Model Context Protocol (MCP) servers. The terms now authorize Mistral to execute data modifications, deletions, transmissions, and system invocations beyond prior language limiting authority to retrieval, processing, and storage. Mistral simultaneously disclaims responsibility for how third-party services implement these actions, including data corruption, deletion, and unauthorized disclosure. Organizations integrating Mistral into vendor toolchains may need to assess whether this expanded authority and expanded liability carve-out align with internal data governance requirements, vendor management policies, and applicable data protection frameworks. The change does not appear to trigger new regulatory obligations absent specific regulatory requirements around data processing authority or third-party risk assessment, but compliance teams should confirm whether this expanded authority creates implications for internal data handling documentation or vendor risk registers.
Full compliance analysis
Regulatory exposure, obligation analysis, escalation trigger, board language, and recommended action.
Analyst $49/moConductAtlas provides verified policy intelligence sourced directly from platform documents. All analysis is intended to support, not replace, legal and compliance review. Record CA-C-002440.
Mistral AI updated its Usage Policy on June 17, 2026, making three operational changes. The policy now references 'Vibe' instead …
Mistral AI updated its Additional Product Terms on May 29, 2026, shifting from 'Customer' to 'you' language throughout the Third-Party …
Mistral AI updated its Commercial Terms on May 29, 2026, replacing references to 'Le Chat Pro' and 'Le Chat Teams' …
We read the privacy policies and terms of service of 38 AI platforms. Here is what they say about training, retention, arbitration, and lia…
Get alerted when this policy changes again — including what changed and why it matters.