Do Not Scrape is a proposed conceptual or technical signal that communicates a content owner's objection to the automated extraction of their data by AI crawlers and web scrapers for foundation model training. Analogous to the browser-based Do Not Track initiative, it represents a preference expression rather than a legally binding or technically enforced access control mechanism, relying entirely on the voluntary compliance of the scraping agent.
Glossary
Do Not Scrape

What is Do Not Scrape?
A conceptual signal expressing a content owner's objection to automated data extraction for AI training, analogous to 'Do Not Track' but lacking a universally enforced standard.
Currently, Do Not Scrape lacks a universally adopted technical standard or legal framework, existing primarily as a policy discussion within AI governance circles. Without a ratified protocol like a specific HTTP header or a binding entry in robots.txt, it remains an aspirational signal. Effective implementation would require alignment with TDM Reservation Protocols and Consent Management Platforms to bridge the gap between a user's objection and a crawler's automated behavior.
Frequently Asked Questions
Clear, technical answers to the most common questions about signaling data usage preferences and the legal frameworks governing AI training consent.
A 'Do Not Scrape' signal is a conceptual or technical indicator expressing a content owner's objection to automated data extraction for AI training, analogous to the 'Do Not Track' browser setting. Unlike the Robots Exclusion Protocol, which has a defined technical standard, 'Do Not Scrape' currently lacks a universally enforced legal or technical standard. Implementation can range from custom HTTP headers and X-Robots-Tag directives to terms of service clauses. The signal's effectiveness is entirely dependent on the voluntary compliance of the AI crawler operator, as no regulatory body currently mandates its recognition. This gap has led to the development of more robust, machine-readable protocols like the TDM Reservation Protocol to formalize opt-out preferences.
Core Characteristics of the Signal
A conceptual or technical signal analogous to 'Do Not Track' that expresses a content owner's objection to automated data extraction, though it currently lacks a universally enforced legal or technical standard.
Conceptual Origin
Do Not Scrape is a proposed preference signal directly inspired by the browser-based Do Not Track (DNT) header. The core idea is to provide a standardized, machine-readable mechanism for content owners to declare their objection to automated data extraction for AI training. Unlike DNT, which focused on behavioral tracking, this signal targets the ingestion of copyrighted text, images, and code by autonomous crawlers. It represents a shift from relying solely on server-side directives like robots.txt to a user-agent or browser-level declaration of intent.
Lack of Legal Enforcement
Currently, a 'Do Not Scrape' signal has no universally recognized legal or technical standard. Unlike the Global Privacy Control (GPC), which has gained regulatory backing under laws like the CCPA, a scraping opt-out signal lacks a binding compliance framework. Its effectiveness is entirely dependent on the voluntary adherence of the AI developer or data aggregator operating the crawler. This creates a significant enforcement gap, as there is no legal penalty for ignoring the signal, making it a statement of preference rather than a technical access control.
Technical Implementation Gap
There is no dedicated HTTP header or token standardized for 'Do Not Scrape'. Potential implementation vectors remain theoretical:
- HTTP Header: A custom request header (e.g.,
X-No-Scrape: 1) sent by a browser or proxy. - Robots.txt Extension: A non-standard directive like
User-agent: * Disallow-AI-Training: /. - Meta Tag: An HTML meta tag (e.g.,
<meta name="ai-training" content="no-scrape" />). Without a formal RFC or W3C specification, these implementations are fragmented and unrecognized by most crawler codebases.
Relationship to TDM Opt-Out
Do Not Scrape is a broader, less formal concept than the TDM Reservation Protocol. While TDM opt-out mechanisms specifically address the rights reservation for text and data mining under copyright law (often implemented via robots.txt), 'Do Not Scrape' is a more general expression of objection. It aims to cover all forms of automated extraction, not just those legally defined as TDM. The TDM protocol benefits from a specific legal basis in the EU's CDSM Directive, whereas 'Do Not Scrape' remains a purely aspirational signal without a corresponding legal framework.
Comparison to Global Privacy Control (GPC)
The Global Privacy Control (GPC) serves as the closest functional analog and a potential evolutionary path. GPC is a browser-level signal that communicates a user's opt-out preference for the sale or sharing of personal data. Key differences:
- GPC: Legally recognized under CCPA; targets data sales.
- Do Not Scrape: No legal recognition; targets AI training ingestion. For a 'Do Not Scrape' signal to gain traction, it would likely need to follow GPC's model of securing regulatory endorsement and integrating directly into browser security settings.
Enterprise Adoption Challenges
For enterprises, relying on a non-binding 'Do Not Scrape' signal is a high-risk strategy for protecting proprietary data. The primary challenges include:
- Zero Enforcement: No legal recourse if a bad-actor AI crawler ignores the signal.
- Crawler Ignorance: Major AI labs have not publicly committed to respecting such a signal.
- False Sense of Security: It may distract from implementing robust, server-side controls like IP reputation blocking, rate limiting, and WAF rules. Until a binding standard emerges, it remains a supplementary, not a primary, defense mechanism.
Enabling Efficiency, Speed & Accuracy
Intelligent Analysis, Decision & Execution
We build AI systems for teams that need search across company data, workflow automation across tools, or AI features inside products and internal software.
Talk to Us
Search across company data
Give teams answers from docs, tickets, runbooks, and product data with sources and permissions.
Useful when people spend too long searching or get different answers from different systems.

Automate internal workflows
Use AI to route work, draft outputs, trigger actions, and keep approvals and logs in place.
Useful when repetitive work moves across multiple tools and teams.

Add AI to products and internal tools
Build assistants, guided actions, or decision support into the software your team or customers already use.
Useful when AI needs to be part of the product, not a separate tool.
Do Not Scrape vs. Established Opt-Out Mechanisms
A feature-level comparison of the proposed Do Not Scrape signal against existing technical and legal mechanisms for controlling AI training data ingestion.
| Feature | Do Not Scrape | Robots.txt Disallow | TDM Opt-Out | Global Privacy Control (GPC) |
|---|---|---|---|---|
Legal enforceability | None; voluntary signal | None; advisory protocol | Statutory backing under EU CDSM Directive | Legally recognized under CCPA/CPRA |
Implementation layer | Browser/HTTP header (proposed) | Server-side text file | Server-side text file or HTTP header | Browser-level binary signal |
Granularity | Domain or page-level | Domain, path, and wildcard-level | Domain-level with path wildcards | Universal; applies to all sites visited |
Scope of restriction | All automated scraping | Compliant crawler access only | Text and data mining for AI training | Data sale and sharing, including AI profiling |
Machine-readable standard | ||||
Requires crawler compliance | ||||
Adoption rate among AI crawlers | 0% (no formal standard exists) | ~60-70% among major AI crawlers | ~40-50% among EU-compliant crawlers | N/A; enforced at data controller level |
User-side control |
Related Terms
The 'Do Not Scrape' concept intersects with technical protocols, legal frameworks, and data governance standards that collectively enable content owners to control AI ingestion.
Robots.txt Disallow
The primary technical mechanism for a site-wide AI training opt-out, instructing compliant automated user agents not to access specified paths. This directive within the Robots Exclusion Protocol serves as the first line of defense against unauthorized scraping.
- Targets specific user-agent strings like GPTBot or CCBot
- Supports wildcard patterns for granular path exclusion
- Relies on voluntary compliance by crawler operators
Global Privacy Control (GPC)
A proposed universal browser-level signal that automatically communicates a user's opt-out preference for data sales and sharing, extending conceptually to AI training ingestion. GPC aims to make 'Do Not Scrape' a browser-native preference rather than a per-site configuration.
- Modeled after the deprecated Do Not Track header
- Legally recognized under CCPA and Colorado Privacy Act
- Requires server-side parsing to enforce
Content Credential
A tamper-evident metadata structure standardized by the C2PA (Coalition for Content Provenance and Authenticity) that attaches cryptographically signed provenance information to digital content. Content Credentials signal ownership and usage rights directly to AI ingestion systems.
- Embeds creator identity and usage restrictions
- Survives screenshotting and format conversion
- Enables automated rights enforcement at ingestion time
Right to Object
A legal provision under GDPR Article 21 granting individuals the absolute right to object to processing of personal data for direct marketing or legitimate interest purposes. This right can be invoked against AI profiling and training, providing a legal backstop where technical signals fail.
- Organizations must halt processing upon verified objection
- Applies to both controller and processor roles
- No exemption for 'legitimate interest' in AI training
Data Lineage
The automated tracking of data's origin, movement, and transformation over time, providing a forensic audit trail to verify that training data has not been contaminated by unauthorized or opted-out sources. Data lineage transforms 'Do Not Scrape' from a request into a verifiable compliance posture.
- Captures source, transformations, and access events
- Enables post-hoc contamination detection
- Critical for model unlearning workflows

About the author
Prasad Kumkar
CEO & MD, Inference Systems
Prasad Kumkar is the CEO & MD of Inference Systems and writes about AI systems architecture, LLM infrastructure, model serving, evaluation, and production deployment. Over 5+ years, he has worked across computer vision models, L5 autonomous vehicle systems, and LLM research, with a focus on taking complex AI ideas into real-world engineering systems.
His work and writing cover AI systems, large language models, AI agents, multimodal systems, autonomous systems, inference optimization, RAG, evaluation, and production AI engineering.
Partnered with leading AI, data, and software stack.
How We Work
Custom AI workflows for your Business
One-fit-all AI don't work for modern businesses. At Inferensys, we aim to understand your business & custom requirements; which we use to define most efficient agentic workflows, the data, and the tools for your business.
01
Review the use case
We understand the task, the users, and where AI can actually help.
Read more02
Pick the right approach
We define what needs search, automation, or product integration.
Read more03
Build the first useful version
We implement the part that proves the value first.
Read more04
Improve from there
We add the checks and visibility needed to keep it useful.
Read moreThe first call is a practical review of your use case and the right next step.
Talk to Us