Miro processes data through AI features under a separate AI Features Addendum, meaning the standard Privacy Policy may not fully describe how your content is used when AI tools are enabled. Users should review the AI addendum independently.
This analysis describes what Miro's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
AI features may involve additional data processing, including the use of board content to train or improve AI models, which raises distinct privacy considerations not covered by the main Privacy Policy.
Interpretive note: The exact scope of AI data processing permitted under the addendum cannot be confirmed from the truncated document; analysis is based on the document structure referencing a separate AI Features Addendum.
If you use Miro's AI features, your board content and interactions may be processed under terms described in the AI Features Addendum rather than the main Privacy Policy. Reviewing the AI addendum before enabling these features is advisable if you handle sensitive information.
How other platforms handle this
At Ledger, earning and maintaining our users' trust is a top priority. That's why we are deeply committed not only to protecting your privacy and securing your personal data, but also to being fully transparent about how we handle it.
If you are located in the European Economic Area, Switzerland, or the United Kingdom, you have the right to access, correct, or erase your personal data; the right to restrict or object to our processing of your personal data; the right to data portability; and, where our processing is based on your...
We use information to enhance the quality, reliability, and/or accuracy of our AI Features by creating, developing, training, testing, improving, and maintaining AI and ML models run by Strava or our service providers. We use aggregated, de-identified data for this purpose. We also use personal info...
Monitoring
Miro has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
(1) REGULATORY LANDSCAPE: AI-based processing of personal data engages GDPR provisions on automated decision-making and profiling, the EU AI Act's transparency and conformity requirements, and the FTC Act for US users. The AI Features Addendum as a separate instrument suggests that GDPR Article 13 and 14 disclosure obligations may need to be assessed across both documents to ensure completeness. (2) GOVERNANCE EXPOSURE: High. The use of a separate addendum for AI features creates a documentation gap risk: users and enterprise customers may not be aware that enabling AI features triggers a distinct legal framework. If the AI addendum permits training data use or model improvement on user content, this creates significant GDPR and CCPA exposure. (3) JURISDICTION FLAGS: EU and EEA organizations face the highest exposure, given GDPR requirements for explicit legal bases for automated processing and transparency obligations. UK GDPR creates similar obligations. California organizations should assess whether AI processing of board content constitutes use of sensitive personal information under CPRA. (4) CONTRACT AND VENDOR IMPLICATIONS: Enterprise DPAs should explicitly address AI feature data processing, including whether content is used for model training, the retention period for AI-processed data, and which subprocessors are involved in AI feature delivery. (5) COMPLIANCE CONSIDERATIONS: Legal teams should obtain and review the AI Features Addendum before approving organizational use of Miro AI features. Data protection impact assessments (DPIAs) may be warranted for high-risk AI processing of employee or customer content.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Ad personalization controls removed. Contact scanning added. Advertiser data partnerships quietly dropped. A timeline of every change.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
AI features may involve additional data processing, including the use of board content to train or improve AI models, which raises distinct privacy considerations not covered by the main Privacy Policy.
If you use Miro's AI features, your board content and interactions may be processed under terms described in the AI Features Addendum rather than the main Privacy Policy. Reviewing the AI addendum before enabling these features is advisable if you handle sensitive information.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Miro.