Mistral AI · Mistral Medium 3.5 Model Card · View original document ↗

API Access and Usage Policy Reference

Medium severity Medium confidence Explicitdocumentlanguage Unique · 0 of 352 platforms
Share 𝕏 Share in Share 🔒 PDF
Monitor governance changes for Mistral AI Create a free account to receive the weekly governance digest and monitor one platform for governance changes.
Create free account No credit card required.
Document Record

What it is

The card discloses that the model is available both via Mistral AI's API and as downloadable open weights, and references mistral.ai/terms as the governing usage policy for both access modes.

This analysis describes what Mistral AI's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology

ConductAtlas Analysis

Why it matters (compliance & governance perspective)

The dual-access structure (API and open weights) creates two distinct contractual and governance relationships: API users are bound by Mistral AI's terms of service and usage policies as enforced through platform controls, while open-weights deployers operate under the Modified MIT License with usage policy obligations that are contractually rather than technically enforced.

Interpretive note: The full text of mistral.ai/terms is not reproduced in the model card; the specific usage policy conditions applicable to API versus open-weights access are not detailed in the card itself, requiring review of that separate document.

Consumer impact (what this means for users)

Under these terms, organizations accessing the model via API are subject to Mistral AI's platform-enforced usage policies, while those using open weights operate under a license structure where compliance with usage restrictions depends on the deployer's own adherence to the referenced terms rather than technical enforcement by Mistral AI.

What you can do

⚠️ These actions may provide transparency or partial mitigation but may not fully address the underlying issue. Effectiveness varies by jurisdiction and individual circumstances.
  • Export Your Data
    Review the full usage policy and terms of service at mistral.ai/terms to confirm the conditions applicable to your chosen access mode (API or open weights) before deployment.

Cross-platform context

See how other platforms handle API Access and Usage Policy Reference and similar clauses.

Compare across platforms →

Monitoring

Mistral AI has changed this document before.

Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.

Get Monitor Or create a free account →
▸ View Original Clause Language DOCUMENT RECORD
"
Released as open weights under a Modified MIT license.

— Excerpt from Mistral AI's Mistral Medium 3.5 Model Card

ConductAtlas Analysis

Institutional analysis (Compliance & governance intelligence)

1. REGULATORY LANDSCAPE: The API access mode subjects users to Mistral AI's data processing terms, which for EU users would engage GDPR's controller-processor framework and require a data processing agreement. The open-weights access mode does not create a direct data processing relationship with Mistral AI but does not relieve deployers of their own GDPR obligations for data processed through deployed applications. The FTC's guidance on AI products and services is relevant to both access modes for US-based users. 2. GOVERNANCE EXPOSURE: Medium. Organizations that have not formally reviewed and accepted the terms at mistral.ai/terms before deploying the model via API may be operating without a clearly documented contractual basis. Compliance teams should confirm that relevant data processing agreements are in place for API-based deployments. 3. JURISDICTION FLAGS: EU deployers using the API must ensure a data processing agreement is in place with Mistral AI that satisfies GDPR Article 28 requirements. Open-weights deployers in the EU bear full controller responsibilities for data processed through their deployed applications without a Mistral AI processing relationship. 4. CONTRACT AND VENDOR IMPLICATIONS: Vendor management teams should categorize Mistral AI as a data processor for API-based deployments and ensure appropriate contractual documentation is in place. Open-weights deployments do not create a vendor relationship with Mistral AI for data processing purposes, which affects vendor risk assessment and audit right structures. 5. COMPLIANCE CONSIDERATIONS: Organizations should: (a) confirm which access mode they are using and identify the applicable contractual framework; (b) for API access, execute any required data processing agreements and review the terms at mistral.ai/terms; (c) for open-weights access, confirm the Modified MIT License terms are met and that no data processing relationship with Mistral AI exists that requires documentation; (d) update vendor registries and data processing records accordingly.

Full compliance analysis

Regulatory citations, enforcement risk, and due diligence action items.

Track 3 platforms — free Get Monitor

Free: track 3 platforms + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.

Applicable agencies

  • FTC
    The FTC has jurisdiction over data practices and consumer protection in the context of AI API services offered commercially in the US.
    File a complaint →

Provision details

Document information
Document
Mistral Medium 3.5 Model Card
Entity
Mistral AI
Document last updated
July 6, 2026
Tracking information
First tracked
July 6, 2026
Last verified
July 6, 2026
Record ID
CA-P-013412
Document ID
CA-D-00926
Evidence Provenance
Source URL
Wayback Machine
Content hash (SHA-256)
96d035d5811ccc904bf71884de8d712ae34f92af45f9933b3c238a5704fd6f66
Analysis generated
July 6, 2026 22:17 UTC
Methodology
Evidence
✓ Snapshot stored   ✓ Hash verified
Citation Record
Entity: Mistral AI
Document: Mistral Medium 3.5 Model Card
Record ID: CA-P-013412
Captured: 2026-07-06 22:17:07 UTC
SHA-256: 96d035d5811ccc90…
URL: https://conductatlas.com/platform/mistral-ai/mistral-medium-35-model-card/api-access-and-usage-policy-reference/
Accessed: July 7, 2026
Permanent archival reference. Stable identifier suitable for legal filings, compliance documentation, and research citation.
Classification
Severity
Medium
Categories

Other risks in this policy

Compliance Governance Intelligence

Need to monitor specific governance provisions?

Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.

Arbitration clauses AI governance Data rights Indemnification Retention policies
Get Compliance

Or start with Monitor →

Built from archived source documents, structured governance mappings, and historical version tracking.

Frequently Asked Questions

What does Mistral AI's API Access and Usage Policy Reference clause do?

The dual-access structure (API and open weights) creates two distinct contractual and governance relationships: API users are bound by Mistral AI's terms of service and usage policies as enforced through platform controls, while open-weights deployers operate under the Modified MIT License with usage policy obligations that are contractually rather than technically enforced.

How does this clause affect you?

Under these terms, organizations accessing the model via API are subject to Mistral AI's platform-enforced usage policies, while those using open weights operate under a license structure where compliance with usage restrictions depends on the deployer's own adherence to the referenced terms rather than technical enforcement by Mistral AI.

Is ConductAtlas affiliated with Mistral AI?

No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Mistral AI.