Users are prohibited from using Midjourney to research or expose other people's private information, and cannot upload content that contains others' personal or private data.
This analysis describes what Midjourney's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This provision places affirmative obligations on users regarding third-party personal data, which aligns with broader privacy law obligations and creates a conduct basis for account enforcement if violated.
Users who upload or generate content containing others' private information risk account enforcement action; this provision also establishes that Midjourney's platform is not to be used as a tool for privacy violations against third parties.
How other platforms handle this
If you are a California resident, you may have certain rights under the California Consumer Privacy Act (CCPA). These rights may include: the right to know about personal information collected, disclosed, or sold; the right to delete personal information collected from you; the right to opt-out of t...
Depending on where you live, you may have certain rights with respect to your personal information. These rights may include: The right to know what personal information we have collected about you, including the categories of personal information, the categories of sources from which we collected i...
If you are located in the European Economic Area or the United Kingdom, you have certain rights under applicable data protection laws, including the right to access, correct, or delete your personal data, the right to object to or restrict processing, and the right to data portability. You may also ...
Monitoring
Midjourney has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"Respect others' rights. Do not attempt to find out others' private information. Do not upload others' private information.— Excerpt from Midjourney's Midjourney Community Guidelines
REGULATORY LANDSCAPE: The prohibition on uploading others' private information intersects with GDPR obligations for EU users regarding the processing of third-party personal data through third-party platforms, and CCPA obligations for California residents regarding the disclosure of personal information. The prohibition on seeking out private information may also engage state-level privacy and anti-stalking statutes. Relevant enforcement authorities include EU data protection authorities, the California Privacy Protection Agency, and state attorneys general. GOVERNANCE EXPOSURE: Low. This provision primarily establishes user-facing conduct obligations and does not directly create institutional compliance exposure beyond ensuring the rule is clearly disclosed. JURISDICTION FLAGS: EU users uploading third-party personal data to Midjourney may independently trigger GDPR controller or processor obligations depending on the nature of the data and purpose. Organizations should assess whether their workflows involve uploading reference images containing identifiable personal data. CONTRACT AND VENDOR IMPLICATIONS: Enterprise deployments involving image editing or generation based on reference photographs should confirm that uploaded reference images comply with applicable data protection law and do not contain private third-party information. COMPLIANCE CONSIDERATIONS: Organizations should include this prohibition in internal acceptable use policies for Midjourney. Legal teams should assess whether uploads of reference images in commercial workflows constitute processing of personal data under applicable privacy law.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This provision places affirmative obligations on users regarding third-party personal data, which aligns with broader privacy law obligations and creates a conduct basis for account enforcement if violated.
Users who upload or generate content containing others' private information risk account enforcement action; this provision also establishes that Midjourney's platform is not to be used as a tool for privacy violations against third parties.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Midjourney.