Users are prohibited from using Midjourney to research or expose other people's private information, and cannot upload content that contains others' personal or private data.
This analysis describes what Midjourney's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This provision places affirmative obligations on users regarding third-party personal data, which aligns with broader privacy law obligations and creates a conduct basis for account enforcement if violated.
Users who upload or generate content containing others' private information risk account enforcement action; this provision also establishes that Midjourney's platform is not to be used as a tool for privacy violations against third parties.
How other platforms handle this
We may display advertisements on our Services and those advertisements may be targeted to your interests based on your personal information. We may share your personal information with advertising partners for interest-based advertising purposes. You may opt out of interest-based advertising by visi...
enableGpcSdk: true, gpcSetting: { privacyPolicyLink: '/Privacy-Security-Policy-a-282.html' }
We process Global Privacy Control signals as opt-out requests for the sale or sharing of personal information.
Monitoring
Midjourney has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"Respect others' rights. Do not attempt to find out others' private information. Do not upload others' private information.— Excerpt from Midjourney's Midjourney Community Guidelines
REGULATORY LANDSCAPE: The prohibition on uploading others' private information intersects with GDPR obligations for EU users regarding the processing of third-party personal data through third-party platforms, and CCPA obligations for California residents regarding the disclosure of personal information. The prohibition on seeking out private information may also engage state-level privacy and anti-stalking statutes. Relevant enforcement authorities include EU data protection authorities, the California Privacy Protection Agency, and state attorneys general. GOVERNANCE EXPOSURE: Low. This provision primarily establishes user-facing conduct obligations and does not directly create institutional compliance exposure beyond ensuring the rule is clearly disclosed. JURISDICTION FLAGS: EU users uploading third-party personal data to Midjourney may independently trigger GDPR controller or processor obligations depending on the nature of the data and purpose. Organizations should assess whether their workflows involve uploading reference images containing identifiable personal data. CONTRACT AND VENDOR IMPLICATIONS: Enterprise deployments involving image editing or generation based on reference photographs should confirm that uploaded reference images comply with applicable data protection law and do not contain private third-party information. COMPLIANCE CONSIDERATIONS: Organizations should include this prohibition in internal acceptable use policies for Midjourney. Legal teams should assess whether uploads of reference images in commercial workflows constitute processing of personal data under applicable privacy law.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Ad personalization controls removed. Contact scanning added. Advertiser data partnerships quietly dropped. A timeline of every change.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This provision places affirmative obligations on users regarding third-party personal data, which aligns with broader privacy law obligations and creates a conduct basis for account enforcement if violated.
Users who upload or generate content containing others' private information risk account enforcement action; this provision also establishes that Midjourney's platform is not to be used as a tool for privacy violations against third parties.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Midjourney.