This analysis describes what Ideogram's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
The clause recognizes statutory rights under GDPR and equivalent frameworks while simultaneously disclosing that personal data processing may occur in jurisdictions with lower data protection standards. This creates a dual framework where users have formal rights to exercise but data handling extends to territories where those protections may not apply.
The updated policy now provides explicit disclosure of which categories of personal information are collected and which parties receive each category. Previously, the policy required readers to consult other sections to identify this information. The updated table format discloses that identifiers such as name and email address, visual information including uploaded images, and geolocation data may be shared with other users, vendors, service providers, login integration partners, social media widgets, and affiliates. This change provides clearer visibility into data sharing practices without altering what data is collected or shared, but rather how that information is disclosed.
View change record →Users in specified regions can exercise defined data subject rights (access, correction, deletion, restriction, objection, portability) under data protection law. Concurrently, the terms authorize international data transfers to non-EEA jurisdictions, meaning personal information may be processed outside the regulatory frameworks that grant those rights.
How other platforms handle this
Where Zendesk transfers personal data outside of the European Economic Area, the United Kingdom, or Switzerland, we rely on appropriate transfer mechanisms, including Standard Contractual Clauses approved by the European Commission, to ensure that your personal data receives an adequate level of pro...
Cohere is headquartered in Toronto, Canada, and has offices and infrastructure in various locations around the world. Personal information may be transferred to, and maintained on, computers located outside of your state, province, country or other governmental jurisdiction where the privacy laws ma...
Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA) or United Kingdom, including the United States. Where we transfer your data internationally, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by th...
Monitoring
Ideogram has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"If you are located in the European Economic Area, United Kingdom, or Switzerland, you have certain rights under applicable data protection laws. These include the right to access, correct, or delete your personal data, the right to restrict or object to our processing of your personal data, and the right to data portability. We may transfer your personal information to countries outside of the EEA that may not have the same level of data protection laws.— Excerpt from Ideogram's Ideogram Privacy Policy
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
The clause recognizes statutory rights under GDPR and equivalent frameworks while simultaneously disclosing that personal data processing may occur in jurisdictions with lower data protection standards. This creates a dual framework where users have formal rights to exercise but data handling extends to territories where those protections may not apply.
Users in specified regions can exercise defined data subject rights (access, correction, deletion, restriction, objection, portability) under data protection law. Concurrently, the terms authorize international data transfers to non-EEA jurisdictions, meaning personal information may be processed outside the regulatory frameworks that grant those rights.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Ideogram.