The Gibraltar Financial Services Commission has published the findings, observations and supervisory expectations from its thematic review of cybersecurity, data protection and resilience in the Trust and Corporate Service Providers sector, setting out minimum standards for firms. The review identifies areas of good practice and where improvements are needed, including governance oversight, risk identification and management, and resilience planning. It is intended to help TCSPs strengthen their frameworks, align with internationally recognised standards, and ensure controls remain robust and proportionate to their size and operational complexity.
Gibraltar Financial Services Commission 2026-03-05
Gibraltar Financial Services Commission publishes thematic review findings and minimum expectations for TCSP cybersecurity data protection and resilience
The Gibraltar Financial Services Commission released findings from its thematic review on cybersecurity, data protection, and resilience in the Trust and Corporate Service Providers sector, establishing minimum standards. The review highlights areas for improvement in governance, risk management, and resilience planning to help firms align with international standards and maintain robust controls.