Saint Kitts and Nevis
AI behavior law: bot and agent disclosure, crawler and training-data rules, automated-agent transactions, and algorithmic decision-making.
Summary
Saint Kitts and Nevis has an Electronic Crimes Act 2009 (Act 27 of 2009) criminalising illegal access, data interference, system interference, and illegal interception. A Data Protection Act 2018 (Act 5 of 2018, gazetted 7 June 2018) was passed but has not been brought into force as of the research date — no ministerial commencement order has been issued, and the Act remains on the 2025 legislative agenda for revision. Copyright law follows the UK-heritage fair-dealing model with no TDM exception and no sui generis database right. Public-page crawling is not expressly targeted; the unauthorized-access offence requires absence of authorization. No scraping-specific case law exists. Personal-data protections rest on the Electronic Crimes Act's limited privacy provisions and common law only, as the Data Protection Act remains inoperative.
Automated-access legality
Carried forward from the crawler-law index. Governs whether automated clients may access public websites in this jurisdiction.
| Dimension | Value |
|---|---|
| Authorization test | unsettled |
| Public-page carve-out | unsettled |
| Terms-of-service browsewrap enforceable | notice dependent |
| Terms-of-service clickwrap enforceable | yes |
| Copyright exception model | fair dealing narrow |
| Text and data mining — commercial status | unsettled |
| Text and data mining — opt-out mechanism | none |
| robots.txt legal weight | non binding notice |
| AI training-specific law | none |
| Privacy regime | Data Protection Act 2018 (Act 5 of 2018; gazetted 7 June 2018; commencement order not yet issued — NOT IN FORCE); Electronic Crimes Act 2009 (limited privacy provisions, in force) |
| Trespass to chattels | not recognized |
Last reviewed: 2026-05-24. Confidence: low. Not legal advice.