A key part of the Gibraltar Regulatory Authority’s (“GRA”) work, as Information Commissioner, involves regular liaison with other data protection regulators across the globe. Discussions include, amongst other aspects, the development of best practices and standards applied in the regulation and enforcement of data protection legislation.
As part of his tasks, under section 129 of the Data Protection Act 2004 and Article 50 of the Gibraltar General Data Protection Regulation, the Information Commissioner is required to take appropriate steps to:
- Develop international co-operation mechanisms to facilitate the effective enforcement of legislation for the protection of personal data.
- Provide international mutual assistance in the enforcement of legislation or the protection of personal data, subject to appropriate safeguards for the protection of personal data and other fundamental rights and freedoms.
- Engage relevant stakeholders in discussion and activities aimed at furthering international co-operation in the enforcement of legislation for the protection of personal data.
- Promote the exchange and documentation of legislation and practice for the protection of personal data, including legislation and practice relating to jurisdictional conflicts with third countries.
The Information Commissioner’s office regularly participates in international events, with efforts to interact with regulatory counterparts worldwide continuing. Through cooperation, coordination and alignment of regulatory activities, where possible and appropriate, the GRA aims to maximise its efficiency and effectiveness as a data protection regulator, and to ensure that the GRA’s regulatory and other priorities are appropriately reflected in international discussions and agreements.