diff --git a/apparmor.d/groups/gnome/gnome-session-binary b/apparmor.d/groups/gnome/gnome-session-binary
index 36320499..c221ca1d 100644
--- a/apparmor.d/groups/gnome/gnome-session-binary
+++ b/apparmor.d/groups/gnome/gnome-session-binary
@@ -109,7 +109,6 @@ profile gnome-session-binary @{exec_path} flags=(attach_disconnected) {
   /usr/share/gnome-session/hardware-compatibility r,
   /usr/share/gnome-session/sessions/*.session r,
   /usr/share/gnome/autostart/{,*.desktop} r,
-  /usr/share/session-migration/scripts/{,*} r,
 
   @{etc_ro}/xdg/autostart/{,*.desktop} r,
 
@@ -119,7 +118,6 @@ profile gnome-session-binary @{exec_path} flags=(attach_disconnected) {
   /var/lib/gdm{3,}/.config/gnome-session/ rw,
   /var/lib/gdm{3,}/.config/gnome-session/saved-session/ rw,
   /var/lib/gdm{3,}/.local/share/applications/{,**} r,
-  /var/lib/gdm{3,}/.local/share/session_migration-* r,
   /var/lib/gdm{3,}/greeter-dconf-defaults r,
 
   /var/lib/flatpak/exports/share/applications/{,**} r,
diff --git a/apparmor.d/groups/gnome/session-migration b/apparmor.d/groups/gnome/session-migration
new file mode 100644
index 00000000..f9bc0213
--- /dev/null
+++ b/apparmor.d/groups/gnome/session-migration
@@ -0,0 +1,22 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2024 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{bin}/session-migration
+profile session-migration @{exec_path} {
+  include <abstractions/base>
+
+  @{exec_path} mr,
+
+  /usr/share/session-migration/{,**} r,
+
+  /var/lib/gdm{3,}/.local/share/session_migration-* r,
+
+  owner @{user_share_dirs}/session_migration-ubuntu rw,
+
+  include if exists <local/session-migration>
+}
\ No newline at end of file