Redaction

Freedom of Information Redaction: Automating FOI Responses in Ireland

Freedom of information requests require public bodies to disclose records while protecting exempt material — personal information, commercially sensitive data, and content covered by statutory exemptions. The redaction step is where most of the manual effort sits.

Freedom of Information in Ireland

The Freedom of Information Act 2014 is the governing legislation for FOI in Ireland. It grants a legal right of access to records held by public bodies, subject to certain exemptions. The Act applies to:

  • Government departments and offices of state
  • Local authorities (city and county councils)
  • The Health Service Executive (HSE) and hospital groups
  • Universities and education bodies
  • Semi-state bodies and state agencies

Any person can make an FOI request — there is no requirement to be an Irish citizen or resident, and the requester does not need to provide a reason. Public bodies must respond within four weeks.

The Freedom of Information Redaction Challenge

FOI responses frequently require substantial redaction. The responsive records may span hundreds of pages — emails, memoranda, reports, meeting minutes, correspondence — and each page must be reviewed for exempt material before release.

The redaction step is where the bottleneck occurs. FOI officers must read every document, identify all instances of personal information, commercially sensitive content, and other exempt material, apply redactions consistently, and document the exemption relied upon for each redaction.

For public bodies receiving high volumes of FOI requests — some government departments and the HSE process thousands annually — the manual effort required for redaction is the single largest constraint on timely response.

Freedom of Information Exemptions and Redaction Requirements

The FOI Act 2014 provides a number of exemptions under which information can be withheld or redacted from a response. Each exemption requires a different assessment and creates distinct redaction requirements.

Section 28 — Personal Information

The most frequently applied exemption. Records containing personal information about individuals other than the requester must be redacted. This covers names, addresses, contact details, PPS numbers, medical information, and any data that could identify a third party. The public interest test may override this exemption in certain cases.

Section 29 — Commercially Sensitive Information

Information is exempt if disclosure could reasonably be expected to result in material financial loss or gain to a person, prejudice the competitive position of a person, or prejudice contractual or other negotiations. Common in procurement records, tender documents, and contracts.

Section 30 — Functions of Public Bodies

Information can be withheld if disclosure could reasonably be expected to prejudice the effectiveness of tests, examinations, investigations, or audits conducted by a public body, or reveal the identity of a confidential source of information.

Section 33 — Security, Defence & International Relations

Records are exempt if disclosure could reasonably be expected to affect the security of the State, the defence of the State, or the international relations of the State. This exemption is applied less frequently but is absolute in nature.

Section 31 — Legal Professional Privilege

Records subject to legal professional privilege — whether legal advice privilege or litigation privilege — are exempt from disclosure. This includes communications between a public body and its legal advisers made for the purpose of seeking or providing legal advice.

How to Make a Freedom of Information Request in Ireland

Making an FOI request in Ireland is straightforward. Any person can submit a request to any public body covered by the FOI Act 2014.

Who Can Request

Any person, regardless of nationality or residency. No reason needs to be given for the request.

What Can Be Requested

Any records held by the public body, in any format — emails, documents, reports, databases, images, audio, video. The request should describe the records sought with enough specificity for the body to identify them.

How to Submit

Requests must be made in writing (letter or email), must mention the Freedom of Information Act, and should be addressed to the FOI officer of the relevant public body. Most public bodies publish their FOI contact details and a request form on their website.

Fees

No application fee for FOI requests. Search, retrieval, and copying fees may apply for non-personal requests if the cost exceeds a threshold. Requests for personal information are free.

Timeframes

Acknowledgement within two weeks. Decision within four weeks. Extension of up to four additional weeks in certain circumstances. If no response is received, the request is deemed refused and the requester can seek internal review.

Freedom of Information Requests in Healthcare

The HSE and hospital groups are among the highest-volume FOI recipients in Ireland. Healthcare FOI requests present particular challenges because the records typically contain highly sensitive personal and medical information that must be carefully redacted.

Common healthcare FOI requests involve patient records, clinical correspondence, incident reports, staffing records, procurement documentation, and policy documents. The redaction requirements are substantial — Section 28 (personal information) applies to almost every document, and the sensitivity of medical data demands particular care.

For healthcare organisations processing FOI requests at volume, automated redaction reduces the time FOI officers spend on manual document review while maintaining the consistency and audit trail that the Act requires.

How ComplyLoft Redaction Supports FOI Processing

The ComplyLoft Redaction tool automates the identification and redaction of exempt material across FOI document sets. It detects personal information, names, addresses, contact details, and other PII categories, applying redactions consistently across large volumes of documents.

  • Upload the full responsive document set and run automated PII detection
  • Apply consistent redaction rules across all documents in the set
  • FOI officer reviews the output, confirming or removing flagged redactions
  • Full audit trail documenting every redaction and the basis for each decision
  • Download the redacted response as a consolidated PDF ready for release

ComplyLoft automates the groundwork of FOI redaction. The FOI officer must always review, confirm, and sign off on all redactions before disclosure. ComplyLoft does not guarantee compliance.

Explore the Redaction ToolRequest a Demo

Frequently Asked Questions

What is a freedom of information request?
A freedom of information (FOI) request is a formal request to a public body for access to records it holds. In Ireland, this right is provided under the Freedom of Information Act 2014. Any person — regardless of nationality or residency — can make an FOI request to an Irish public body. The request can cover any records held by the body, subject to certain exemptions.
Who can make an FOI request in Ireland?
Any person can make a freedom of information request in Ireland. There is no requirement to be an Irish citizen or resident. Requests can be made by individuals, journalists, businesses, legal representatives, researchers, or anyone else. The requester does not need to provide a reason for their request.
How much does an FOI request cost?
There is no application fee for FOI requests in Ireland. However, public bodies may charge search, retrieval, and copying fees for non-personal requests that exceed a threshold. Requests for personal information are generally free. If estimated costs exceed €700, the body may refuse the request or ask the requester to narrow its scope.
What are the FOI request rules and timeframes?
Public bodies must acknowledge an FOI request within two weeks and issue a decision within four weeks of receipt. The four-week deadline can be extended by a further four weeks in certain circumstances, but the requester must be notified. If the body fails to respond within the timeframe, the request is deemed refused and the requester can apply for an internal review.
What needs to be redacted in an FOI response?
Before releasing records under FOI, public bodies must redact information covered by exemptions. This includes personal information of third parties (Section 28), commercially sensitive information (Section 29), information that could prejudice the functions of a public body (Section 30), and security-related information (Section 33). Each redaction must be justified by reference to a specific exemption.
How can FOI redaction be automated?
ComplyLoft's redaction tool automates the identification of exempt material across FOI document sets — detecting personal information, names, contact details, and other PII categories. It applies redactions consistently and generates an audit trail for each decision. A human FOI officer must always review the output and confirm that exemptions have been applied correctly before disclosure.

Automate Your FOI Redaction

Request a demo to see how ComplyLoft reduces FOI redaction time while maintaining a complete audit trail for every decision.

Request a Demo