If you live in Europe, Switzerland, or the UK, you have strong data protection rights including the right to access, correct, delete, or port your data, and to object to how Midjourney processes it.
This analysis describes what Midjourney's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This clause operationalizes statutory data protection rights under GDPR and equivalent regulations by explicitly confirming Midjourney's obligation to honor these requests and establishing the procedural channels through which users may exercise these rights.
The updated privacy policy removed language describing how Midjourney shares personal data, the security measures protecting that data, children's privacy safeguards, procedures for notifying users of policy changes, and links to related policies. Users no longer have explicit disclosure of these practices within the privacy policy itself. The removal of language on how policy changes are communicated may mean users have less notice of future privacy modifications than previously stated.
View change record →EEA, UK, and Swiss users can request deletion or correction of their data, withdraw consent for non-essential cookies at any time, and escalate complaints to their local data protection authority if Midjourney fails to comply. Midjourney uses Standard Contractual Clauses to govern international data transfers.
How other platforms handle this
If you are located in the European Economic Area (EEA) or United Kingdom, the data controller for your personal information is Twitter International Unlimited Company. If you are located outside of the EEA, United Kingdom, and Switzerland, the data controller is X Corp. You have the right to access,...
If you are located in the European Economic Area, you have certain rights under the General Data Protection Regulation. These include the right to access personal information we hold about you, to rectify inaccurate data, to erase your data, to restrict processing, to object to processing, and to da...
Depending on your location, you may have certain rights regarding your personal data, including the right to access, correct, delete, or port your data, the right to restrict or object to processing, and where processing is based on consent, the right to withdraw consent at any time. California resi...
Monitoring
Midjourney has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"Additionally You have the following data protection rights: You can request access, correction, updates or deletion of your Personal Data. You can object to our processing of your Personal Data, ask us to restrict processing of your Personal Data or request portability of your Personal Data. If we have collected and processed your Personal Data with your consent, then you can withdraw your consent at any time. You have the right to complain to a data protection authority about our collection and use of your Personal Data.— Excerpt from Midjourney's Midjourney Privacy Policy
Midjourney identifies legitimate interests, contract performance, consent, and legal obligation as its GDPR legal bases. The use of Standard Contractual Clauses for EEA data transfers requires ongoing legal adequacy assessments, particularly post-Schrems II. Compliance teams should verify that the cookie consent mechanism satisfies ePrivacy Directive requirements and that DPA complaint procedures are clearly communicated to users.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This clause operationalizes statutory data protection rights under GDPR and equivalent regulations by explicitly confirming Midjourney's obligation to honor these requests and establishing the procedural channels through which users may exercise these rights.
EEA, UK, and Swiss users can request deletion or correction of their data, withdraw consent for non-essential cookies at any time, and escalate complaints to their local data protection authority if Midjourney fails to comply. Midjourney uses Standard Contractual Clauses to govern international data transfers.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Midjourney.