Privacy & governance at Miro

We make sure you have all the information and tools you need to protect your intellectual property.

Global data privacy

We rigorously align our data protection and privacy practices with global regulatory requirements.
Card illustration
The California Consumer Privacy Act (CCPA) 2018
CCPA is a state statute intended to enhance privacy rights and consumer protection for residents of California, United States. Miro does not — and will never — sell your data and is compliant with the service provider requirements. We're committed to working with you to
fulfill any CCPA requests.
Card illustration
General Data Protection Regulation
The GDPR is Europe’s regulation for
data protection and privacy but it
also covers any data transferred
outside the EU and EEA areas. Miro previously was a member of the EU/US Privacy Shield but due to Schrems 2, Miro utilizes Standard Contractual Clauses (SCC) for the legal and contractual movement of data. Read more about our data authorities in the Netherlands and United Kingdom.
Card illustration
Our Privacy Policy
We’ve created a customer-forward Privacy Policy that aligns to GDPR and CCPA requirements.

Our data management policies

  • You have the ability to store customer-related data within geographical locations as one of our tier options. Otherwise, data is normally segmented with production in Ireland, EU and a backup in Virginia, US. You have the option to segment your data with a backup in Frankfurt, EU. Contact your sales team for more info on your options.
  • Data retention is set to the termination (T) of service plus one hundred and eighty days (180). You can export customer data and we can remove any customer-created content from our backup systems.
  • Our infrastructure is hosted within Amazon Web Services (AWS), with regions throughout the world, overlaying and augmenting AWS compliance and security programs. This is designed to follow international security standards and regulations, while protecting confidentiality, data sovereignty, and data privacy regulations.
  • We regularly back up your data to make sure it’s secure and accessible if you need it. Accidentally delete a board? Contact us or visit our Help Center to find out how to restore boards.
  • As part of our commitment to earning and maintaining your trust, we publish an annual Transparency Report with information about government requests for users’ data as well as government requests to remove content or suspend user accounts. We’ll make sure you know how many government requests for data we receive.

Service uptime and
constant monitoring

Our consistent uptime track record is powered by our monitoring system that instantly notifies our team of any potential risks.
Check Miro's status

Find out more about
Miro's standards


We build Miro with global security standards in mind, offering enterprise-grade security across all aspects of how teams collaborate, ideate, and store their work.


We comply with leading global regulations like the GDPR and CCPA and are always keeping up with the latest regulations and requirements.


Here you can review the standard Terms of Service for all Miro users.

Any questions?

We have a team dedicated to answering all of your
privacy and security questions.
Background shape
Background shape
Get Miro app
Add ideas, digitize sticky notes, and leave comments on the go with Miro mobile app