Ireland
AI behavior law: bot and agent disclosure, crawler and training-data rules, automated-agent transactions, and algorithmic decision-making.
Summary
Ireland has no enacted national AI-specific statute as of mid-2026. The country relies on directly applicable EU law — chiefly the EU AI Act (Regulation (EU) 2024/1689), the General Data Protection Regulation (GDPR, Regulation (EU) 2016/679), and the Digital Services Act (Regulation (EU) 2022/2065) — as the operative legal framework for AI behavior on public websites, crawlers, and automated agents. At national level, the Data Protection Act 2018 gives domestic effect to GDPR and is enforced by the Data Protection Commission, which has been Ireland's most active AI regulator, conducting investigations into AI training on personal data (X/Twitter–Grok, Meta, LinkedIn) and publishing guidance on large language models and GDPR compliance in July 2024. Ireland's AI enforcement architecture is under construction: the General Scheme of the Regulation of Artificial Intelligence Bill 2026 (published February 2026) proposes a distributed model of 15 sectoral competent authorities coordinated by a new statutory AI Office of Ireland, to be operational by 2 August 2026, but the Bill had not been enacted as of June 2026. Two proposed instruments address AI-generated synthetic media: the Protection of Voice and Image Bill 2025 (a Private Members' Bill at Second Stage, Seanad) and the EU AI Act's Article 50 deepfake-labeling obligation (effective 2 August 2026 without requiring separate Irish legislation).
Enacted law
Government obligations
| Instrument | Category | Effective | Source |
|---|---|---|---|
| Data Protection Act 2018 — AI and Large Language Models Guidance (Data Protection Commission) (Data Protection Commission, 'AI, Large Language Models and Data Protection' (July 2024); issued under Data Protection Act 2018 (No. 7 of 2018)) | Crawlers & training data, Automated decision-making | 2024-07-18 | DataGuidance news item July 2024; Data Protection Commission Meta AI statement May 2025 (dataprotection.ie); Data Protection Commission LinkedIn AI Training statement November 2025 (dataprotection.ie); William Fry DPC investigation note |
| EU AI Act — Articles 5 and 50 (Prohibited Practices; Bot Disclosure and Synthetic-Content Labeling) (Regulation (EU) 2024/1689, Arts. 5, 50 — directly applicable in Ireland as EU Member State) | Bot / agent disclosure, Automated decision-making | 2026-08-02 | EUR-Lex official text; enterprise.gov.ie EU AI Act page; conventuslaw.com Ireland competent authority designation; IDA Ireland EU AI Act guidance; artificialintelligenceact.eu Article 50 explainer |
| General Data Protection Regulation — Article 22 (Automated Decision-Making and Profiling) (Regulation (EU) 2016/679, Art. 22; transposed in Ireland by Data Protection Act 2018) | Automated decision-making | 2018-05-25 | Irish Statute Book (irishstatutebook.ie); Data Protection Commission automated decision-making rights page (dataprotection.ie); ICLG Data Protection Laws and Regulations 2025–2026 Ireland chapter |
Private sector obligations
| Instrument | Category | Effective | Source |
|---|---|---|---|
| Data Protection Act 2018 — AI and Large Language Models Guidance (Data Protection Commission) (Data Protection Commission, 'AI, Large Language Models and Data Protection' (July 2024); issued under Data Protection Act 2018 (No. 7 of 2018)) | Crawlers & training data, Automated decision-making | 2024-07-18 | DataGuidance news item July 2024; Data Protection Commission Meta AI statement May 2025 (dataprotection.ie); Data Protection Commission LinkedIn AI Training statement November 2025 (dataprotection.ie); William Fry DPC investigation note |
| Digital Services Act 2024 (Ireland) — Algorithmic Recommendation System Risk Obligations (Digital Services Act 2024 (No. 2 of 2024), giving effect to Regulation (EU) 2022/2065; Coimisiún na Meán as lead national authority) | Automated decision-making, Bot / agent disclosure | 2024-02-17 | Bird & Bird analysis 'The Irish Digital Services Act 2024' (twobirds.com); Coimisiún na Meán DSA page (cnam.ie); DLA Piper DSA Ireland blog 2024; Silicon Republic Online Safety Code coverage |
| EU AI Act — Article 53 and GPAI Code of Practice (Training-Data Transparency and Crawler Obligations) (Regulation (EU) 2024/1689, Art. 53; EU AI Office, General-Purpose AI Code of Practice (Final), July 10, 2025 — directly applicable in Ireland) | Crawlers & training data, Bot / agent disclosure | 2026-08-02 | EUR-Lex official text; EU AI Office Code of Practice (code-of-practice.ai); enterprise.gov.ie EU AI Act overview; IDA Ireland GPAI explainer |
| EU AI Act — Articles 5 and 50 (Prohibited Practices; Bot Disclosure and Synthetic-Content Labeling) (Regulation (EU) 2024/1689, Arts. 5, 50 — directly applicable in Ireland as EU Member State) | Bot / agent disclosure, Automated decision-making | 2026-08-02 | EUR-Lex official text; enterprise.gov.ie EU AI Act page; conventuslaw.com Ireland competent authority designation; IDA Ireland EU AI Act guidance; artificialintelligenceact.eu Article 50 explainer |
| General Data Protection Regulation — Article 22 (Automated Decision-Making and Profiling) (Regulation (EU) 2016/679, Art. 22; transposed in Ireland by Data Protection Act 2018) | Automated decision-making | 2018-05-25 | Irish Statute Book (irishstatutebook.ie); Data Protection Commission automated decision-making rights page (dataprotection.ie); ICLG Data Protection Laws and Regulations 2025–2026 Ireland chapter |
| Online Safety and Media Regulation Act 2022 — Content Moderation and Harmful Content Obligations (Online Safety and Media Regulation Act 2022 (No. 41 of 2022); Online Safety Code (Coimisiún na Meán, October 2024)) | Automated decision-making, Bot / agent disclosure | 2023-03-15 | Irish Statute Book (irishstatutebook.ie); DLA Piper Ireland enactment note; Fieldfisher Online Safety Code launch note; RTÉ Online Safety Code coverage October 2024; Pinsent Masons Online Safety Code analysis |
Drafted & in discussion
| Instrument | Status | Applies to | Category | Source |
|---|---|---|---|---|
| Protection of Voice and Image Bill 2025 (Private Members' Bill — Deepfakes and AI Identity Misuse) (Protection of Voice and Image Bill 2025 (Bill No. 11 of 2025), introduced by Deputy Malcolm Byrne TD, 1 April 2025; Second Stage pending, Seanad) | In committee | Both | Bot / agent disclosure | Oireachtas bills page (oireachtas.ie); Fianna Fáil press release; Irish Times January 2026 fast-track call; Biometric Update Ireland deepfake bill note; WebProNews Ireland fast-tracks AI bill report |
| General Scheme of the Regulation of Artificial Intelligence Bill 2026 (General Scheme of the Regulation of Artificial Intelligence Bill 2026 (published 4 February 2026, Department of Enterprise, Tourism and Employment); pre-legislative scrutiny stage) | Proposed | Both | Bot / agent disclosure, Automated decision-making, Crawlers & training data, Agents acting on behalf of users | enterprise.gov.ie General Scheme publication; William Fry analysis February 2026; Matheson distributed-model insight; BABL AI overview; ICS.ie Ireland AI Bill explainer; conventuslaw.com competent authority designation note |
Automated-access legality
Carried forward from the crawler-law index. Governs whether automated clients may access public websites in this jurisdiction.
| Dimension | Value |
|---|---|
| Authorization test | security mechanism bypass |
| Public-page carve-out | yes |
| Terms-of-service browsewrap enforceable | notice dependent |
| Terms-of-service clickwrap enforceable | yes |
| Copyright exception model | tdm dual track |
| Text and data mining — commercial status | with optout |
| Text and data mining — opt-out mechanism | robots txt |
| robots.txt legal weight | evidentiary |
| AI training-specific law | binding |
| Privacy regime | GDPR |
| Trespass to chattels | not recognized |
Last reviewed: 2026-05-23. Confidence: medium. Fast-moving area — verify before relying. Not legal advice.