View all Ireland legal letters →

Access to Medical Records in Ireland

Researched by , Founding Editor

Primary sources cited; not legal advice.

Last verified:

Source: General Data Protection Regulation (EU 2016/679), Articles 15–16; Data Protection Acts 1988–2018; Health (Provision of Information) Act 1997

Reviewed by the Commoner Law Editorial Team. Sourced from Irish Acts of the Oireachtas, statutory instruments, and official guidance. Written in plain language for general understanding — this is educational content, not legal advice. Our editorial standards

Irish National Law

What is this right?

You have a legal right to access your medical records under the GDPR. This includes:

  • Hospital records: Notes, test results, scans, discharge summaries, referral letters.
  • GP records: Your GP must provide copies of your file on request.
  • Mental health records: You have the same right, though access can be restricted if disclosure would cause serious harm to your health.

Under the GDPR, a Data Subject Access Request (DSAR) must be responded to within 1 month. The request is free (no charge can be made for the first copy).

When does it apply?

  • You want to see your own medical records — for personal knowledge, a second opinion, a legal case, or insurance purposes.
  • A parent can request a child's records. An executor or next-of-kin can request a deceased person's records (under the Health (Provision of Information) Act 1997).
  • The healthcare provider can only refuse access if disclosure would cause serious harm to your health or the health of another person.

What to Do If Your Doctor or Hospital Will Not Share Your Medical Records in Ireland

  • Make a written request to the healthcare provider (hospital, GP, clinic) — state that it is a DSAR under the GDPR.
  • Provide proof of identity if asked.
  • The provider must respond within 1 month (extendable by 2 months for complex requests).
  • If they refuse or delay, complain to the Data Protection Commission (DPC) at dataprotection.ie.
  • You also have the right to have inaccurate records corrected — submit a request under Article 16 of the GDPR.

What should you NOT do?

  • Don't accept a refusal without explanation — the provider must give a reason and tell you about your right to complain to the DPC.
  • Don't pay a fee — the first copy is free under the GDPR. A reasonable charge can only be made for additional copies.
  • Don't assume records are destroyed — hospitals must retain records for minimum periods (typically 8 years for adults, 25 years for children's records).

Common Questions

How do I request my medical records in Ireland?

Make a written request to the healthcare provider stating that it is a Data Subject Access Request (DSAR) under the GDPR. You can request hospital notes, test results, scans, discharge summaries, referral letters, and GP records. Provide proof of identity if asked. The provider must respond within 1 month, extendable by 2 months for complex requests. The first copy is free.

Can access to mental health records be refused in Ireland?

Access can only be refused if disclosure would cause serious harm to your health or the health of another person. You have the same right to mental health records as any other records, though access can be restricted in those limited circumstances. You also have the right to have inaccurate records corrected under Article 16 of the GDPR.

What if a hospital refuses or delays my records request in Ireland?

Complain to the Data Protection Commission (DPC) at dataprotection.ie. The provider must give a reason for refusal and tell you about your right to complain to the DPC. Do not pay a fee — the first copy is free under GDPR; a reasonable charge can only be made for additional copies. Hospitals must retain records for minimum periods — typically 8 years for adults and 25 years for children's records.

When does it applyaccess to medical records?

You want to see your own medical records — for personal knowledge, a second opinion, a legal case, or insurance purposes.A parent can request a child's records. An executor or next-of-kin can request a deceased person's records (under the Health (Provision of Information) Act 1997).The healthcare provider can only refuse access if disclosure would cause serious harm to your health or the health of another person.

What should I do if I am being denied access to my own medical records in Ireland?

Make a written request to the healthcare provider (hospital, GP, clinic) — state that it is a DSAR under the GDPR.Provide proof of identity if asked.The provider must respond within 1 month (extendable by 2 months for complex requests).If they refuse or delay, complain to the Data Protection Commission (DPC) at dataprotection.ie.You also have the right to have inaccurate records corrected — submit a request under Article 16 of the GDPR.

What should you NOT doaccess to medical records?

Don't accept a refusal without explanation — the provider must give a reason and tell you about your right to complain to the DPC.Don't pay a fee — the first copy is free under the GDPR. A reasonable charge can only be made for additional copies.Don't assume records are destroyed — hospitals must retain records for minimum periods (typically 8 years for adults, 25 years for children's records).

More in Healthcare Rights

Public Health EntitlementsIreland has a two-tier healthcare system — public and private. Your entitlements to public healthcare depend on your res...Read more →Patient Consent and CapacityAs a patient, you have the right to make your own decisions about medical treatment. Key principles:Informed consent: Be...Read more →Mental Health RightsIf you need mental health treatment in Ireland, you have specific rights designed to protect your dignity and autonomy:V...Read more →

Related Topics

Family LawCohabitants' RightsWorkers' RightsMaternity and Parental Leave
← Browse all Healthcare Rights

Last verified:

You came here to know your rights — help someone else know theirs.

Support This Mission