Opening Times

The offices of the Gibraltar Regulatory Authority are open Monday to Friday, from 9:00 to 17:00.

OFFICES & PUBLIC COUNTERS

PUBLIC COUNTER
Our public counter is open. At first instance, for all queries, please contact our offices by e-mailing info@gra.gi or call us on 200 74636. If you are unable to speak to our front desk staff, please leave a voicemail message. These are checked very regularly, and a member of our team will get back to you as soon as possible.

LICENCES
We accept requests for licence applications and renewals by e-mail, together with any necessary licence variations, if applicable. Payment for these may be effected, preferably, by bank transfer. If this is not possible, card payment via the telephone will also be accepted. Please contact our offices on licensing@gra.gi and a member of our team will direct you to the correct application form on our website. If a paper copy is required, this may also be arranged by calling us on 200 74636. Licences will be scanned and sent by e-mail together with a copy of the receipt. The originals can either be posted or can be held for collection at a prearranged date and time.

Welcome to the Gibraltar Regulatory Authority website

GDPR GUIDANCE (7) GUIDANCE FOR SMES

The General Data Protection Regulation (the "GDPR") came into force on the 25th May 2018, and whilst it brought about changes that reflect the increased importance of data protection in society, many of the main concepts and principles remain the same as the existing data protection framework. The GDPR does however, introduce new elements and significant enhancements, which will require detailed consideration. The GDPR emphasises transparency, security and accountability by organisations, while at the same time standardising and strengthening the privacy rights of European citizens.

This is the seventh of a series of Guidance Notes that the Gibraltar Regulatory Authority, as the Information Commissioner, has issued.

This guidance note provides general guidance on how to help SMEs become GDPR-compliant. It includes a ‘Personal Data Inventory Tool, a ‘Readiness Assessment Checklist’ and a ‘Data Protection Policy Guide’ designed to assist, particularly the small and medium sized enterprises (SMEs), who may not have access to extensive planning and legal resources.

Downloads