This analysis describes what Figma's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
Non-compliance with export controls can carry significant legal consequences, and this clause places the compliance obligation squarely on the Customer.
The removal of the Subprocessors list link makes it less convenient for users, particularly enterprise and EU-based customers who rely on this information for data protection compliance, to verify which third parties Figma engages to process their data. While the subprocessor information may still exist on Figma's website, removing the direct link from the Terms of Service reduces accessibility and transparency. Enterprise customers and those subject to GDPR may need to contact Figma directly to access current subprocessor information.
View change record →Customers bear the obligation to ensure their access and use of the Figma Platform and Customer Content conforms to all applicable Export Controls.
How other platforms handle this
Customer is responsible for and hereby agrees to comply at its sole expense with all applicable United States export laws and regulations.
You agree to comply with all applicable laws, rules and regulations regarding the export of technical data from the U.S.
It's your responsibility to comply with U.S. Export Control laws and regulations, and foreign import laws and regulations when traveling abroad with your Device.
Monitoring
Figma has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"Customer must comply with all applicable Export Controls in Customer's access to and use of the Figma Platform and Customer Content.— Excerpt from Figma's Figma Terms of Service
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
Non-compliance with export controls can carry significant legal consequences, and this clause places the compliance obligation squarely on the Customer.
Customers bear the obligation to ensure their access and use of the Figma Platform and Customer Content conforms to all applicable Export Controls.
ConductAtlas has identified this type of provision across 187 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Figma.