California residents have the right to know what personal data Midjourney holds, ask for it to be deleted, and opt out of data sales, and can make these requests by emailing privacy@midjourney.com.
This analysis describes what Midjourney's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
The clause operationalizes statutory CCPA obligations by designating a contact mechanism and specifying the four core rights California residents may exercise under state law, establishing the procedural pathway for rights assertion.
Midjourney removed substantial sections from its Terms of Service covering age requirements, content rights, DMCA policy, dispute resolution, payment and billing, and community guidelines. The removal of these section headers and their substantive content means users no longer have explicit written guidance on these critical areas within the primary terms document. This creates operational uncertainty about what terms now govern these areas: whether they were relocated to separate policies, consolidated elsewhere, or eliminated entirely cannot be determined from this change summary alone. The absence of explicit terms on dispute resolution, age verification, and content rights represents a material change in contractual transparency.
View change record →California residents can exercise CCPA rights by contacting privacy@midjourney.com to request data access, deletion, or opt-out of data sales, providing a concrete mechanism to manage their personal information held by Midjourney.
How other platforms handle this
If you are a California resident, you have the right to know what personal information we collect, use, and disclose about you; the right to request deletion of your personal information; the right to opt out of the sale or sharing of your personal information; the right to correct inaccurate person...
If you are a California resident, you may have the right to: Know what personal information we collect, use, disclose, sell, or share. Correct inaccurate personal information. Delete your personal information. Opt out of the sale or sharing of your personal information. Limit the use and disclosure ...
Depending on where you are located, you may have certain rights regarding your personal information, including the right to access, correct, delete, or restrict processing of your personal information, the right to data portability, and the right to object to or withdraw consent for certain processi...
Monitoring
Midjourney has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"If you are a California resident, you have certain rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect, use, and disclose; the right to request deletion of your personal information; the right to opt out of the sale of your personal information; and the right to non-discrimination for exercising these rights. To submit a request to know, delete, or opt out, please contact us at privacy@midjourney.com.— Excerpt from Midjourney's Midjourney Terms of Service
REGULATORY LANDSCAPE: This provision engages the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA). The California Privacy Protection Agency (CPPA) and California Attorney General share enforcement authority. The provision's assertion that Midjourney does not sell personal information in the traditional sense should be assessed against CPRA's expanded definition of 'sharing' for cross-context behavioral advertising purposes. GOVERNANCE EXPOSURE: Medium. The CCPA/CPRA compliance disclosure is present and identifies the key rights, but the interaction between the AI training data license (irrevocable) and the CCPA deletion right creates potential tension that requires legal analysis. If deletion of personal data is technically constrained by the irrevocable training license, Midjourney's deletion response processes should be assessed for adequacy. JURISDICTION FLAGS: California residents have the most clearly defined rights under this provision. Other US states with comprehensive privacy laws, including Virginia, Colorado, and Texas, may have similar rights not explicitly addressed in the terms, which may create gap compliance risks. CONTRACT AND VENDOR IMPLICATIONS: Vendors and partners receiving data from Midjourney should assess whether their data processing activities are covered by Midjourney's service provider agreements. Enterprise customers should verify whether submitting employee or customer personal data through the platform creates CCPA service provider obligations that require contractual documentation. COMPLIANCE CONSIDERATIONS: Legal teams should verify that Midjourney's privacy@midjourney.com contact and response processes satisfy CCPA's 45-day response requirement and that deletion requests are technically honored in the context of the irrevocable AI training license. Multi-state privacy compliance should be assessed for users in states beyond California.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
The clause operationalizes statutory CCPA obligations by designating a contact mechanism and specifying the four core rights California residents may exercise under state law, establishing the procedural pathway for rights assertion.
California residents can exercise CCPA rights by contacting privacy@midjourney.com to request data access, deletion, or opt-out of data sales, providing a concrete mechanism to manage their personal information held by Midjourney.
ConductAtlas has identified this type of provision across 1 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Midjourney.