Amazon Vs. Perplexity: The CFAA Case That Decides Whether AI Agents Can Visit Your Website via @Sejournal, @Slobodanmanic

The Amazon v. Perplexity dispute marks the first major test of the "agent‑as‑visitor" doctrine under the CFAA. While the statute was crafted in the 1980s to target classic hacking, courts have gradually broadened its reach to cover automated scraping and unauthorized scripts. Amazon’s position pushes that any software agent, even one acting on a user’s explicit instruction, is a separate visitor whose access falls outside the user’s permission. If the Ninth Circuit adopts this view, it will give e‑commerce giants a powerful federal tool to block AI‑driven browsers, potentially chilling innovation in personalized shopping assistants.

Perplexity counters that the legal agency principle should apply: the user remains the principal, and the AI is merely an extension of that user’s intent. Recent Supreme Court precedent in Van Buren narrowed the CFAA to focus on truly unauthorized access, suggesting that a user‑delegated agent may not constitute a violation. The appellate brief, bolstered by amicus support from digital‑rights groups, frames the case as a clash between outdated criminal statutes and modern automation. A reversal or narrow ruling could force platforms to rely on contract enforcement and technical barriers rather than criminal claims, reshaping how terms of service address automated agents.

Regardless of the outcome, the case sends an urgent signal to website operators. Companies should audit their terms of service to clarify whether "automated access" includes user‑authorized AI agents, align technical controls such as robots.txt and firewalls with that policy, and consider offering API pathways for legitimate agents. Proactive adjustments now will mitigate legal risk and position firms either to welcome the next wave of AI‑enhanced commerce or to defensively block it without relying on a contested CFAA interpretation.