Midjourney states it does not sell personal information but acknowledges it may share personal information with advertising cookie partners, and that California residents have the right to opt out of this sharing.
This analysis describes what Midjourney's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
The policy distinguishes between selling and sharing personal data under CCPA, acknowledging that advertising cookie sharing may qualify as sharing under CPRA, and provides California residents with a specific opt-out right.
Interpretive note: The document text was truncated at the point of describing the full opt-out mechanism, preventing confirmation of all implementation details referenced in this provision.
The updated privacy policy removed language describing how Midjourney shares personal data, the security measures protecting that data, children's privacy safeguards, procedures for notifying users o…
California residents have the right under CCPA and CPRA to opt out of Midjourney's sharing of personal information with advertising partners through cookies; the policy states Midjourney does not sell personal information but confirms sharing for advertising purposes may occur.
How other platforms handle this
If you are a California resident, you have the right to opt-out of the sale of your personal information and the right to opt-out of the sharing of your personal information for cross-context behavioral advertising. To exercise these rights, please click on the 'Your Privacy Choices' link or the 'Do...
California law gives residents the right to know what personal information we collect, use, share or sell; to delete personal information under certain circumstances; to opt-out of the sale or sharing of their personal information; to correct inaccurate personal information; to limit the use and dis...
T-Mobile collects Customer Proprietary Network Information (CPNI), which is information about the quantity, technical configuration, type, destination, location, and amount of use of your service. T-Mobile may use your CPNI within its family of companies for the purpose of providing wireless telecom...
Monitoring
Midjourney has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"Do Not Sell or Share Opt-Out Rights. You have the right to opt-out of any "sale" or "sharing", as defined by the CCPA, of Personal Information by Midjourney. While, Midjourney does not sell your information, we may share it, for example, through advertising cookies that allow ou— Excerpt from Midjourney's Midjourney Privacy Policy
1) REGULATORY LANDSCAPE: This provision directly engages the CCPA as amended by CPRA, specifically the do-not-sell and do-not-share rights. The California Privacy Protection Agency is the primary enforcement authority, with concurrent enforcement by the California Attorney General. CPRA's definition of sharing includes disclosure to third parties for cross-context behavioral advertising, which the policy's reference to advertising cookies appears to acknowledge. The policy's disclosure that Midjourney does not sell data but may share it for advertising purposes is consistent with the CPRA distinction between sale and sharing. 2) GOVERNANCE EXPOSURE: Medium. The operational implementation of the do-not-share mechanism, including Global Privacy Control signal recognition, is required under CPRA regulations. The truncated document text prevents confirmation of the full opt-out mechanism described in the policy, creating uncertainty about whether the implementation details satisfy CPRA requirements. 3) JURISDICTION FLAGS: This provision applies specifically to California residents and individuals whose personal information was collected in California. Other states with comprehensive privacy laws (Virginia, Colorado, Connecticut, Texas) may have analogous opt-out rights that are not addressed in this policy section. 4) CONTRACT AND VENDOR IMPLICATIONS: Advertising and analytics partners receiving data through cookie-based sharing must be assessed to confirm they qualify as service providers or contractors under CPRA rather than third parties to whom a sale or sharing has occurred, as this classification affects the opt-out mechanism required. 5) COMPLIANCE CONSIDERATIONS: Compliance teams should confirm that the GPC signal is technically recognized and operationally implemented across Midjourney's web properties, that the opt-out mechanism is accessible and functional, and that advertising partners receiving data through cookies have executed appropriate service provider agreements. Teams should also assess whether the policy's opt-out disclosure covers all sharing that may qualify under CPRA's cross-context behavioral advertising definition.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
The policy distinguishes between selling and sharing personal data under CCPA, acknowledging that advertising cookie sharing may qualify as sharing under CPRA, and provides California residents with a specific opt-out right.
California residents have the right under CCPA and CPRA to opt out of Midjourney's sharing of personal information with advertising partners through cookies; the policy states Midjourney does not sell personal information but confirms sharing for advertising purposes may occur.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Midjourney.