Do I have to put my CRO number on my website?

Yes, if you are a registered Irish company. Under Section 49 of the Companies Act 2014, every registered company must display its company name, registration number, registered office address and director names on all business communications. This includes your website. Sole traders are not required to display a CRO number but must display their own name, address and contact information.

Where should I put the company details on my website?

The standard location is the footer of every page. Your contact page should also include full details. The E-Commerce Regulations 2003 require this information to be 'easily, directly and permanently accessible.' It must not be buried inside a PDF or require more than one click to find.

What's the penalty for not displaying CRO details on my website?

Under the Companies Act 2014, failure to comply with Section 49 is a category 4 offence. The Companies Registration Office can investigate complaints. The E-Commerce Regulations 2003 (S.I. 68/2003) are enforceable by the Competition and Consumer Protection Commission. In practice, enforcement often begins with a compliance notice.

Does my website need a VAT number if I'm VAT-registered?

Yes, for e-commerce sites and service providers. Under the E-Commerce Regulations 2003, if you are VAT-registered and provide services online, your VAT registration number should be displayed. For product sales, prices must clearly state whether VAT is included.

Legal Pages

What Irish businesses must display on their website (law)

Steven | TrustYourWebsite · 3 April 2026 · Last updated: May 2026

Irish business websites face two separate sets of legal disclosure rules. The Companies Act 2014 covers registered companies. The E-Commerce Regulations 2003 (S.I. 68/2003) cover online service providers. These overlap but are not identical. Many Irish SME websites still miss one or more required items.

You can check your own site for free in 60 seconds. The scanner reads your footer and contact pages and flags missing CRO numbers, geographic addresses, VAT numbers and email contacts.

Companies Act 2014, Section 49

Every Irish company registered with the Companies Registration Office (CRO) must display the items below. The duty applies to all business letters, notices and official publications. Irish courts treat business websites as official publications for this purpose.

Required for all registered Irish companies:

Requirement	Notes
Full company name	As registered with the CRO, including "Limited" or "DAC"
Company registration number	Your CRO number (typically 5 to 6 digits)
Registered office address	The address on file with the CRO
At least one director's name	For a single-director LTD, that director's name
Company type	"Limited", "Designated Activity Company", "Public Limited Company" and similar

What your CRO number looks like: a 5 or 6-digit number, often shown as "Company No. 123456" or "Registered in Ireland No. 123456".

Sole traders are not subject to Section 49. They must still show their own name and address under the E-Commerce Regulations (see below).

The full text of Section 49 of the Companies Act 2014 is on the Irish Statute Book. The section heading is "Publication of name by company".

E-Commerce Regulations 2003 (S.I. 68/2003)

The E-Commerce Regulations 2003 implement the EU's E-Commerce Directive (2000/31/EC). They apply to any "information society service provider". In practice this means any business with a website that provides information or sells products or services online.

Required for all online service providers:

Requirement	Notes
Name of the service provider	Your business name
Geographic address	Where the business is based (a PO Box is not enough)
Contact details including email	A direct email address, not just a contact form
VAT registration number	If VAT-registered
Trade register	CRO number and the Companies Registration Office
Supervisory authority	For regulated professions (solicitors, financial advisers, estate agents)
Professional body registration	Law Society number, Central Bank authorisation, PSRA licence and similar

The rules require this information to be "easily, directly and permanently accessible". In practice that means visible in the footer or one click away. It must not be hidden inside a terms document.

A contact form alone is generally not enough. Regulation 8 of S.I. 68/2003 asks for "rapid, direct and effective" electronic contact. Most Irish solicitors read that as requiring a published email address.

For e-commerce businesses: additional requirements

If you sell products or services online to consumers, extra duties apply. The Consumer Rights Act 2022 and the E-Commerce Regulations both apply.

Price transparency. Prices must clearly state whether they include VAT. For B2C sales, display prices inclusive of tax.
Right of withdrawal. Consumers who buy online get a 14-day cooling-off period. Your terms must explain this and offer a withdrawal procedure.
Order confirmation. Customers must receive confirmation of their order and your acceptance.
Pre-contractual information. Before the customer pays, they must see the total price, delivery costs and their withdrawal right. Not just on a checkout page they might skip.

A new EU "withdraw" button rule is also coming. Ireland missed the December 2025 deadline. Until transposition lands, follow the existing Consumer Rights Act 2022 procedure for online cancellation.

For regulated professions

If your business is in a regulated profession, extra disclosure is required.

Profession	Required disclosure
Solicitors	Law Society of Ireland member number
Financial advisers	Central Bank of Ireland authorisation reference
Estate agents	PSRA (Property Services Regulatory Authority) licence number
Accountants	Professional body membership (CPA, ICAI, ACCA, CFA)
Architects	Royal Institute of the Architects of Ireland (RIAI) registration
Pharmacists	Pharmaceutical Society of Ireland registration

Each regulator can require a member to display the relevant licence number on a public-facing website. For example, the PSRA can suspend a licence over repeated failure to identify the licensed firm in public marketing.

What a compliant Irish business website footer looks like

Acme Services Limited
Company Registration No. 123456 | VAT No. IE 1234567T
Registered Office: 1 Main Street, Dublin 2, D02 AB12
Directors: Jane Smith, John Murphy
Email: info@acmeservices.ie | Tel: 01 234 5678

That block sits in the footer on every page. The email and phone number link out so visitors can contact you in one tap. The address is a real Dublin street address rather than a PO Box.

Common mistakes to avoid

1. PO Box instead of a street address. Regulation 8 of S.I. 68/2003 requires a geographic address. A PO Box can sit alongside a street address but cannot replace it.

2. Contact form with no email. "Rapid, direct and effective" electronic contact means a published email address. A form that does not show the underlying address is risky.

3. CRO number on a dusty "Legal" page only. Section 49 expects the company name and number to appear on the same business communications that show your trading details. The footer is the safest place.

4. Wrong legal form. A company that drops "Limited" or shows "Ltd." when registered as "Limited" can be in breach. Use the exact registered form.

5. Directors omitted. Section 49 names directors as a required field. Many small companies skip them. If the company has one director, list one name.

How the scanner checks your website

TrustYourWebsite reads the footer and any contact, about or legal page. The scanner looks for:

a CRO-format company number,
an Irish VAT number (IE prefix),
a geographic address,
a valid email address and
a phone number.

When a field is missing, the report lists the page checked and the pattern that did not match. The scanner cannot confirm that the CRO number actually belongs to your business or that the directors named are current. Those checks need a human.

Findings are technical signals, not legal verdicts.

Run a free scan and see which fields your site already covers.

Enforcement in practice

Failure to comply with Section 49 is a category 4 offence. The maximum fine is EUR 5,000 (a class A fine). In practice the CRO and the Corporate Enforcement Authority focus on director disqualification for repeat offenders. Prosecutions for missing website disclosures alone are rare.

The bigger risk is civil. If your terms reference a company that the website does not properly identify, a customer can argue the contract is unclear. That undermines any later refund or chargeback defence. Ten minutes in the footer protects every contract you sign through the site.

Website trading disclosures in Ireland for a deeper look at Section 151.
Legal notices required on Irish business websites for the footer template.
GDPR compliance for Irish businesses for the privacy side of the same footer.

Sources

This is technical analysis, not legal advice. Consult a qualified solicitor for advice specific to your business.

Share this article

Check your website now

Scan your website for Legal Pages issues and 30+ other checks.

Start free check

Website Guides

GDPR compliance for Irish businesses: website checklist 2026

GDPR compliance for Irish businesses: privacy policy, cookie consent, CRO number, DPC enforcement cases and a free website check in 60 seconds.

Website trading disclosures Ireland: Companies Act 2014

Mandatory website disclosures for Irish businesses. Companies Act 2014 s.151, e-commerce regulations, CRO requirements and practical checklist.

The 14 mandatory elements of a GDPR privacy policy for Irish websites. DPC guidance, LinkedIn EUR 310M transparency case and practical checklist for SMEs.