- ✓Your Irish ISP can see every website you connect to, when, and how much data — but not the page content on HTTPS sites.
- ✓Under GDPR and Irish ePrivacy law, ISPs can’t freely sell your browsing history the way some US providers can.
- ✓They are required to retain certain metadata, which the Gardaí can access through a legal process.
- ✓A VPN encrypts your traffic and hides which sites you visit from your ISP entirely.
- ✓This applies to Eir, Virgin Media, Vodafone, Sky, Three and every other Irish provider.
The short answer
Yes — your ISP can see a great deal of your online activity, because every request you make travels through its network first. It knows which sites you visit, when, and how much data you move. What it generally can’t see is the content of what you do on secure (HTTPS) sites. And crucially, thanks to EU law, an Irish ISP can’t simply sell your browsing history the way some US providers have been allowed to. It does, however, have to retain certain metadata that the Gardaí can request through a legal process.
Your ISP sees the “where and when” of your browsing, not the “what” on secure sites — and a VPN hides even the where and when.
What your ISP can see
Without a VPN, your Irish provider — Eir, Virgin Media, Vodafone, Sky, Three or any other — can observe:
- Every website and service you connect to (via your DNS requests and destination IPs)
- The exact times you’re online and for how long
- How much data you upload and download
- Your device’s IP address and rough location
- That you’re using a VPN (though not what you do through it)
What it can’t see
Modern encryption limits the picture. Your ISP generally cannot see:
- The content of pages on HTTPS sites — passwords, messages, what you type
- Which specific pages you view within a secure site (usually just the domain)
- Anything inside an encrypted VPN tunnel
The near-universal move to HTTPS means the contents of your activity are largely private in transit. But the metadata — which sites, when, how much — is still visible, and that alone paints a detailed portrait of your life.
Do Irish ISPs sell your browsing data?
This is where being in Ireland genuinely helps. In the United States, ISPs were cleared to sell customers’ browsing histories to advertisers. In the EU, that’s not how it works: under the GDPR and Ireland’s ePrivacy Regulations — overseen by the Data Protection Commission — providers can’t simply package up and sell your browsing history, and using your data for marketing generally needs your consent. They process data for billing and running the network, but your history isn’t a product they’re free to trade.
What they must keep by law
Separately from anything commercial, Irish providers are required to retain certain traffic and location metadata under the Communications (Retention of Data) (Amendment) Act 2022. The purpose is law enforcement: the Gardaí can access it for serious-crime investigations, but only through a defined legal process, and the regime is targeted rather than blanket after a series of EU court rulings. We cover the full story — including the Graham Dwyer case that forced the change — in our guide on data retention and surveillance laws in Ireland.
How to limit the tracking
If you’d rather your ISP didn’t log every site you visit, a VPN is the direct answer: it encrypts your traffic and routes it through its own servers, so your ISP sees only that you’re connected to a VPN — not where you go or what you do. (What it can’t do is hide you from sites you log into, or replace good security habits — see do I need a VPN.)
For the specifics of the VPN scenario, see can your ISP see your history if you use a VPN. Our top-rated privacy VPNs:
See our best VPN for privacy and how to protect your privacy online in Ireland.


