Leonardo AI Privacy Policy

This is Leonardo AI's privacy policy explaining what personal data the company collects when you use its AI image and video generation platform, including your account details, prompts, generated images, device information, and payment data. The most important thing for you to know is that Leonardo AI may use your prompts and generated content to train its AI models, which means what you type and create could directly influence future AI outputs — you may be able to opt out of this by contacting privacy@leonardo.ai. If you are a California resident or EU user, you have specific rights including data deletion and portability that you can exercise by emailing privacy@leonardo.ai.

This document is Leonardo AI's privacy policy governing the collection, use, storage, and sharing of personal data by Leonardo Interactive Pty Ltd (ACN 650 389 391), an Australian company, with legal bases including consent, contractual necessity, and legitimate interests under applicable privacy law including the Australian Privacy Act 1988, GDPR, and CCPA. The policy obligates Leonardo AI to collect account data, usage data, device and technical data, communications data, and AI-generated content inputs/outputs, and to share these with service providers, business partners, and third-party analytics and advertising platforms including Google Analytics, Meta, and similar vendors. Notably, the policy permits Leonardo AI to use user-submitted prompts and generated content to train and improve AI models unless users opt out, and retains broad discretion to share data with affiliates and in the context of business transactions including mergers and acquisitions — provisions that create unusual risk for users of a generative AI platform. The policy engages GDPR (Articles 6, 13, 17, 20), Australia's Privacy Act 1988 (APP framework), CCPA/CPRA (California Civil Code §1798.100 et seq.), and COPPA given the stated minimum age requirement of 13; material compliance considerations include the adequacy of cross-border data transfer mechanisms from Australia and the EU, the lawfulness of using personal data in AI model training, and the sufficiency of consent mechanisms for sensitive data processing.