What can I do about this clause?

{'method': 'EMAIL', 'recipient': 'privacy@discord.com', 'difficulty': 'EASY', 'action_type': 'EXPORT_DATA', 'instructions': "EU and UK users can email privacy@discord.com to submit data access, deletion, portability, or objection requests. Many rights can also be exercised directly in Discord's User Settings under Privacy and Safety.", 'deadline_days': None, 'deadline_hours': None}

What is the severity of this clause?

ConductAtlas classifies this EU and UK Data Subject Rights clause as medium severity. Severity reflects the magnitude of rights affected, the breadth of users impacted, and the degree of discretion the platform retains.

Do other platforms have similar clauses?

Yes. ConductAtlas has identified similar EU and UK Data Subject Rights clauses across approximately 3 other tracked platforms. You can compare how platforms differ on this clause type in the cross-platform comparison view.

EU and UK Data Subject Rights — Discord

Share 𝕏 Share in Share 🔒 PDF

Monitor governance changes for Discord Create a free account to receive the weekly governance digest and monitor one platform for governance changes.

Create free account No credit card required.

Document Record

What it is

If you live in the EU or UK, you have the right to see, correct, delete, or transfer your personal data, and to object to certain uses. You can exercise most of these rights in your Discord settings or by emailing privacy@discord.com.

ⓘ

This analysis describes what Discord's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology

ConductAtlas Analysis

Why it matters (compliance & governance perspective)

The policy acknowledges GDPR and UK GDPR rights for EEA and UK users and provides accessible channels for exercising them, including in-app settings and a direct email address, which represents a concrete mechanism for users to act on their privacy rights.

Consumer impact (what this means for users)

EU and UK users can request access to, correction of, deletion of, or a copy of their personal data by visiting Discord's User Settings or emailing privacy@discord.com. Users also have the right to object to processing for advertising purposes and to lodge complaints with their national data protection authority.

What you can do

⚠️ These actions may provide transparency or partial mitigation but may not fully address the underlying issue. Effectiveness varies by jurisdiction and individual circumstances.

Export Your Data

EU and UK users can email privacy@discord.com to submit data access, deletion, portability, or objection requests. Many rights can also be exercised directly in Discord's User Settings under Privacy and Safety.

Cross-platform context

See how other platforms handle EU and UK Data Subject Rights and similar clauses.

Compare across platforms →

Monitoring

Discord has changed this document before.

Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.

Start Watcher free trial Or create a free account →

▸ View Original Clause Language DOCUMENT RECORD

"
If you are a resident of the EEA or UK, you have the right to access, rectify, or erase personal data we hold about you. You may also have the right to restrict or object to certain processing, and the right to data portability. You have the right to lodge a complaint with your local supervisory authority. You can access many of these rights by visiting your User Settings. You may also submit a request by emailing privacy@discord.com.

— Excerpt from Discord's Discord Privacy Policy

ConductAtlas Analysis

Institutional analysis (Compliance & governance intelligence)

REGULATORY LANDSCAPE: This provision directly implements GDPR Articles 15 through 22 (rights of access, rectification, erasure, restriction, portability, and objection) and the equivalent UK GDPR provisions. Discord Ireland Limited is identified as the data controller for EEA users, making the Irish Data Protection Commission (DPC) the lead supervisory authority. The UK ICO is the supervisory authority for UK users. GOVERNANCE EXPOSURE: Medium. The policy's provision of both in-app and email channels for rights requests is operationally positive. However, compliance teams should ensure that the mechanisms function within GDPR's one-month response deadline (extendable by two months for complex requests) and that identity verification processes for rights requests are documented and proportionate. JURISDICTION FLAGS: EEA users fall under Irish DPC jurisdiction via Discord Ireland Limited. UK users fall under ICO jurisdiction. Users in France, Germany, and the Netherlands may have additional national-law rights or stricter enforcement contexts. GDPR Chapter V requirements for international data transfers apply when EEA user data is transferred to Discord Inc. in the US. CONTRACT AND VENDOR IMPLICATIONS: Enterprise customers subject to GDPR should ensure their data processing agreements with Discord address sub-processor obligations and the handling of data subject requests originating from their employees or end users. COMPLIANCE CONSIDERATIONS: Legal teams should audit the response workflow for data subject access requests, confirm response times meet GDPR deadlines, and verify that erasure requests result in deletion across backup and sub-processor systems. Standard Contractual Clauses or equivalent transfer mechanisms for EEA-to-US transfers should be confirmed as current and compliant with post-Schrems II requirements.

Full compliance analysis

Regulatory citations, enforcement risk, and due diligence action items.

Track 1 platform — free Try Watcher free for 14 days

Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.

Provision details

Document information

Document

Discord Privacy Policy

Entity

Discord

Document last updated

May 5, 2026

Tracking information

First tracked

May 8, 2026

Last verified

May 12, 2026

Record ID

CA-P-011373

Document ID

CA-D-00080

Evidence Provenance

Source URL

https://discord.com/privacy

Wayback Machine

View archived versions →

Content hash (SHA-256)

11e41c4ffecbf8321876d78db243c55104e4e84401916f2958e8289cf5d4ebc5

Analysis generated

May 8, 2026 01:13 UTC

Methodology

summarize_document-v8

Evidence

✓ Snapshot stored ✓ Hash verified

Citation Record

Entity: Discord
Document: Discord Privacy Policy
Record ID: CA-P-011373
Captured: 2026-05-08 01:13:36 UTC
SHA-256: 11e41c4ffecbf832…
URL: https://conductatlas.com/platform/discord/discord-privacy-policy/eu-and-uk-data-subject-rights/
Accessed: May 13, 2026

Permanent archival reference. Stable identifier suitable for legal filings, compliance documentation, and research citation.

Classification

Severity

Medium

Other risks in this policy

Data Collection Scope medium
Content and Activity Data Collection high
Advertising and Analytics Data Sharing high
Corporate Transaction Data Transfer medium
Children Under 13 and COPPA Compliance high
California Resident Rights (CCPA/CPRA) medium

Professional Governance Intelligence

Need to monitor specific governance provisions?

Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.

Arbitration clauses AI governance Data rights Indemnification Retention policies

Start Professional free trial

Or start with Watcher →

Built from archived source documents, structured governance mappings, and historical version tracking.

Frequently Asked Questions

What does Discord's EU and UK Data Subject Rights clause do?

How does this clause affect you?

How many platforms have this type of clause?

ConductAtlas has identified this type of provision across 3 platforms. See the full comparison.

Is ConductAtlas affiliated with Discord?

No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Discord.