What is the severity of this clause?

ConductAtlas classifies this Cross-Border Data Transfers clause as medium severity. Severity reflects the magnitude of rights affected, the breadth of users impacted, and the degree of discretion the platform retains.

Do other platforms have similar clauses?

Yes. ConductAtlas has identified similar Cross-Border Data Transfers clauses across approximately 79 other tracked platforms. You can compare how platforms differ on this clause type in the cross-platform comparison view.

Cross-Border Data Transfers — Miro

Share 𝕏 Share in Share 🔒 PDF

Recent governance activity Miro recorded 2 documented changes in the last 30 days.

Start monitoring updates

Monitor governance changes for Miro Create a free account to receive the weekly governance digest and monitor one platform for governance changes.

Create free account No credit card required.

ⓘ

This analysis describes what Miro's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology

ConductAtlas Analysis

Why it matters (compliance & governance perspective)

Cross-border data transfers to the US carry ongoing legal risk following the Schrems II ruling, and users should be aware their data may be subject to US surveillance laws even when transferred under SCCs.

Consumer impact (what this means for users)

Miro collects a broad range of personal data including account information, device and usage data, and the content users create on boards, which may include sensitive business or personal information shared in collaborative sessions. Users who enable AI features should be aware that their board content may be processed under a separate AI Features Addendum, which warrants independent review. You can exercise data access, correction, or deletion rights by contacting Miro at privacy@miro.com or through the privacy settings available in your account dashboard.

How other platforms handle this

PlanetScale Medium

You will provide personal information directly to our website in the United States. We may also transfer personal information to our partners and service providers in the United States and other jurisdictions. Please note that such jurisdictions may not provide the same protections as the data prote...

Notion Medium

Notion is based in the United States and the information we collect is governed by U.S. law. If you are accessing our Services from outside of the United States, please be aware that information collected through the Services may be transferred to, processed, stored, and used in the United States an...

Cohere Medium

Your personal information may be transferred to and processed in countries other than your country of residence, including Canada and the United States, where our servers are located and our central database is operated. These countries may have data protection laws that are different from those in ...

See all platforms with this clause type →

Monitoring

Miro has changed this document before.

Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.

Start Watcher free trial Or create a free account →

▸ View Original Clause Language DOCUMENT RECORD

"
Your personal data may be transferred to and processed in countries other than the country in which you are resident. These countries may have data protection laws that are different from the laws of your country. We use appropriate safeguards, such as Standard Contractual Clauses approved by the European Commission, to ensure that your personal data receives an adequate level of protection.

— Excerpt from Miro's Miro Privacy Policy

Applicable regulations

Provision details

Document information

Document

Miro Privacy Policy

Entity

Miro

Document last updated

May 5, 2026

Tracking information

First tracked

May 9, 2026

Last verified

May 9, 2026

Record ID

CA-P-004982

Document ID

CA-D-00556

Evidence Provenance

Source URL

https://miro.com/legal/privacy-policy/

Wayback Machine

View archived versions →

Content hash (SHA-256)

a766bd8974076725d4f7690306d79ec6e2b4a86b9e1aa6729b289f5f5eaa9056

Analysis generated

May 9, 2026 23:53 UTC

Methodology

summarize_document-v8

Evidence

✓ Snapshot stored ✓ Hash verified

Citation Record

Entity: Miro
Document: Miro Privacy Policy
Record ID: CA-P-004982
Captured: 2026-05-09 23:53:38 UTC
SHA-256: a766bd8974076725…
URL: https://conductatlas.com/platform/miro/miro-privacy-policy/cross-border-data-transfers/
Accessed: May 13, 2026

Permanent archival reference. Stable identifier suitable for legal filings, compliance documentation, and research citation.

Classification

Severity

Medium

Other risks in this policy

Collection of Board Content as Personal Data medium
AI Features Data Processing high
Customer Data Processing Addendum (Enterprise DPA) medium
Third-Party Subprocessors medium
Regional Privacy Rights (GDPR and CCPA) medium
Cookies and Tracking Technologies low

Professional Governance Intelligence

Need to monitor specific governance provisions?

Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.

Arbitration clauses AI governance Data rights Indemnification Retention policies

Start Professional free trial

Or start with Watcher →

Built from archived source documents, structured governance mappings, and historical version tracking.

Frequently Asked Questions

What does Miro's Cross-Border Data Transfers clause do?

How many platforms have this type of clause?

ConductAtlas has identified this type of provision across 79 platforms. See the full comparison.

Is ConductAtlas affiliated with Miro?

No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Miro.