AI regulation in Costa Rica (2026)

MICITT officially launched the Estrategia Nacional de Inteligencia Artificial (ENIA) on 24 October 2024, making Costa Rica the first Central American nation with a dedicated national AI policy. The strategy's five pillars are: ethical/responsible AI, talent development, innovation and competitiveness, governance and regulation, and inclusion and sustainability.

Three AI-specific bills are under active debate in the Legislative Assembly: Expediente 23771 (Ley de Regulación de la Inteligencia Artificial, filed May 2023), Expediente 23919 (Ley para la Promoción Responsable de la Inteligencia Artificial, filed September 2023), and Expediente 24484 (Ley para la Implementación de Sistemas de Inteligencia Artificial, filed August 2024). None have been enacted as of early 2026.

In March 2026 Costa Rica formalized INTE/ISO/IEC 42001:2026, adapting the international ISO/IEC 42001 standard for AI management systems. This provides a voluntary framework for responsible and trustworthy AI governance across public and private sector organizations.

The Legislative Assembly is reviewing Bill 23097, which would align the existing data-protection regime (Law 8968) with EU GDPR standards. If enacted, it would strengthen obligations for AI developers and data controllers, adding algorithmic transparency and accountability requirements.

Costa Rica participates in the OECD AI Governance Committee (AIGO), the Global Partnership on AI (GPAI), and the Hiroshima AI Process. The ENIA was developed with EU support and is explicitly aligned with OECD AI Principles, positioning Costa Rica as a regional reference for ethical AI governance.

As of May 2026, Costa Rica has no enacted sector-specific AI rules, no mandatory conformity assessments, and no bans on specific AI applications (such as real-time biometric surveillance). Existing oversight relies on general consumer, labor, and data-protection law applied case-by-case.