Skip to main content

Figma Legal

The information provided here is for Figma customers and users who have questions about our terms, policies, intellectual property, and compliance.

Australia’s Privacy Act 1988

Aim of the Regulation

The Privacy Act is designed to protect personal information by setting standards for how it is collected, used, and handled across both public and private sectors.

Who does it apply to?

The Privacy Act covers federal government agencies, larger private-sector organizations, certain small entities that handle sensitive information, and overseas companies doing business in Australia involving personal information.

Key Requirements

The Privacy Act sets standards for how organizations collect, use, disclose, and protect personal information through the Australian Privacy Principles. These requirements include collecting information only when necessary, being transparent about how it will be used, safeguarding it, keeping it accurate, allowing individuals to access and correct it, and ensuring appropriate protections when information is shared overseas.

Overview of our compliance approach

Figma’s privacy program is built on internationally recognized data protection standards, including principles reflected in the Australian Privacy Principles. This framework supports compliance with the Privacy Act and guides how personal information is managed, protected, and governed across Figma’s services.

Refer to Figma’s Data Protection Addendum for more information.