Bahamas
AI behavior law: bot and agent disclosure, crawler and training-data rules, automated-agent transactions, and algorithmic decision-making.
Summary
The Bahamas has two relevant statutes both confirmed in force: the Computer Misuse Act 2003 (brought into force by appointed-day notice on 16 June 2003; Ch. 107A in current revised laws) and the Data Protection (Privacy of Personal Information) Act 2003 (Ch. 324A; enacted 2003, brought into force 2007, with a Data Protection Commissioner for oversight). The Computer Misuse Act criminalises unauthorised access, use, and interception of computer services, with penalties up to $10,000 / 1 year (up to $50,000 / 3 years if damage results). Public-page crawling is not expressly prohibited; unauthorized-access offences target access without authority, and open public websites carry implicit authorization. Collecting personal data via scraping engages the 2003 Data Protection Act. Copyright law follows the UK-heritage fair-dealing model with no TDM exception and no sui generis database right. No scraping-specific case law exists.
Automated-access legality
Carried forward from the crawler-law index. Governs whether automated clients may access public websites in this jurisdiction.
| Dimension | Value |
|---|---|
| Authorization test | unsettled |
| Public-page carve-out | unsettled |
| Terms-of-service browsewrap enforceable | notice dependent |
| Terms-of-service clickwrap enforceable | yes |
| Copyright exception model | fair dealing narrow |
| Text and data mining — commercial status | unsettled |
| Text and data mining — opt-out mechanism | none |
| robots.txt legal weight | non binding notice |
| AI training-specific law | none |
| Privacy regime | Data Protection (Privacy of Personal Information) Act 2003 (Ch. 324A; in force since 2007) |
| Trespass to chattels | not recognized |
Last reviewed: 2026-05-24. Confidence: medium. Not legal advice.