Artificial Intelligence · Ireland
AI regulation in Ireland (2026)
Ireland shaded by its artificial intelligence status
As an EU member state, Ireland is governed by the directly-applicable EU AI Act, a comprehensive, risk-based AI law whose prohibited-practice and AI-literacy rules apply from 2 February 2025 and whose GPAI/high-risk obligations phase in through 2026-2027. Ireland has chosen a distributed enforcement model: in September 2025 it designated 15 existing sectoral regulators as national competent authorities plus a single point of contact, and is legislating (General Scheme published February 2026) to create a statutory, independent AI Office of Ireland as central coordinating authority by August 2026.
Key points
Regulation (EU) 2024/1689 applies directly in Ireland as a comprehensive, risk-tiered law; bans on unacceptable-risk uses and AI-literacy duties took effect 2 February 2025, with most high-risk and general-purpose AI obligations applying from August 2025 onward.
By Government decisions of 4 March and 22 July 2025, Ireland opted to leverage existing sectoral regulators rather than one new super-regulator; in September 2025 it designated 15 national competent authorities including the Central Bank, Data Protection Commission, Coimisiún na Meán, ComReg, CCPC, HSA and HPRA, plus a single point of contact in the Department of Enterprise, Tourism and Employment.
The General Scheme of the Regulation of Artificial Intelligence Bill 2026 proposes a new statutory independent body, Oifig Intleachta Shaorga na hÉireann / AI Office of Ireland, to act as central coordinating authority and single point of contact, targeted for establishment by August 2026; the Bill is at pre-legislative (general scheme) stage.
Ireland's national AI policy, first launched July 2021 and refreshed by the Department of Enterprise, Trade and Employment on 6 November 2024, sets seven strands including governance for trustworthy AI, leading on EU AI Act implementation, and establishing an AI regulatory sandbox.
The Data Protection Commission remains lead authority for AI systems processing personal data and is among the bodies enforcing certain prohibited practices; the 2026 Bill confirms AI obligations apply in addition to GDPR, preserving the DPC's role over privacy and algorithmic-bias risks.
Per the EU AI Act applicable in Ireland, practices banned since February 2025 include social scoring, untargeted scraping of facial images, emotion recognition in workplaces and schools, manipulative or vulnerability-exploiting systems, and most real-time remote biometric identification by law enforcement.
Timeline - major decisions & events
Ireland's Data Protection Commission launched a large-scale inquiry into X over Grok generating sexualised/'nudified' images of real people, examining potential GDPR breaches. It marks the DPC's escalating scrutiny of generative-AI harms on a platform it supervises EU-wide.
Irish Times ↗DETE designated a further seven public bodies (15 total) as national competent authorities under a 'distributed' sectoral model, making Ireland one of the first six EU states to complete this step. It establishes who enforces the AI Act across media, transport, health, employment and finance.
Department of Enterprise, Tourism and Employment ↗After Meta reassessed its plans following the EDPB opinion and added transparency, notice and objection safeguards, the DPC stated it did not object to Meta training generative AI on public EU posts from 27 May 2025 under 'legitimate interest'. It set the practical template for lawful AI training in the EU.
Data Protection Commission ↗The DPC opened a formal inquiry into X Internet Unlimited Company's processing of public EU/EEA posts to train Grok LLMs, examining the lawfulness and transparency of the processing. It escalated the earlier Grok dispute into a full GDPR investigation.
Data Protection Commission ↗The Irish Government approved an initial list of eight public bodies as AI Act competent authorities, confirming Ireland's distributed enforcement model built on existing sectoral regulators. It was the first concrete designation step toward national implementation.
Department of Enterprise, Tourism and Employment ↗At the Irish DPC's request, the European Data Protection Board issued an opinion on AI-model anonymity, use of 'legitimate interest' for training, and the effect of unlawfully sourced training data. It gave Ireland and the EU harmonised guidance underpinning subsequent AI-training decisions.
Data Protection Commission ↗DETE published 'AI – Here for Good: National AI Strategy Refresh 2024', updating the 2021 strategy for generative AI and the EU AI Act across seven strands and committing to a distributed regulatory model with a coordinating AI Office. It frames Ireland's current people-centred, risk-based approach.
Department of Enterprise, Tourism and Employment ↗The DPC's High Court proceedings against X were struck out after X agreed to permanently abide by limits on processing EU/EEA users' public posts to train Grok. It resolved Ireland's first court action over AI training data.
Data Protection Commission ↗Using Section 134 of the Data Protection Act 2018 for the first time, the DPC brought an urgent High Court application and X agreed to suspend training Grok on EU/EEA public posts. It was the first time any EU lead supervisory authority took such action over AI training.
Data Protection Commission ↗The Taoiseach and Minister Robert Troy launched Ireland's first national AI strategy, setting a people-centred, ethical, whole-of-government approach to AI adoption and governance. It laid the policy foundation later refreshed for the EU AI Act era.
Department of Enterprise, Trade and Employment ↗Ireland - other topics
Last verified 5/23/2026 · Orientation, not legal advice - verify against the primary sources linked above. Explore the full world map →