Cookies on the Gambling Commission website

The Gambling Commission website uses cookies to make the site work better for you. Some of these cookies are essential to how the site functions and others are optional. Optional cookies help us remember your settings, measure your use of the site and personalise how we communicate with you. Any data collected is anonymised and we do not set optional cookies unless you consent.

Set cookie preferences

You've accepted all cookies. You can change your cookie settings at any time.

Skip to main content


Corporate Governance Framework

Our corporate governance framework sets out the necessary responsibilities and procedures that guarantee we operate properly.

  1. Contents
  2. 24 - Cyber Security

24 - Cyber Security

24.1 As part of its approach to risk management and information assurance the Gambling Commission should ensure the robustness of its cyber security to protect itself against data breaches, service disruption, loss and reputational damage. The level of provision should be proportionate to the Gambling Commission's size and the level of risk it carries in terms of cyber vulnerability. A range of relevant Government advice and guidance can be found at GOV.UK's Cyber security guidance for businesses (opens in new tab).

24.2. As a minimum, the Gambling Commission should take steps to ensure it has basic cyber security controls in place. These should be at least at the level set out in the Cyber Essentials scheme (opens in new tab). Departmental officials can offer further guidance and support.

SIGNATURE Minister for Sport, Tourism and Heritage Date: 5 March 2017

SIGNATURE Chair of Gambling Commission Date: 15 March 2017

SIGNATURE Accounting Officer for Gambling Commission Date: 14 March 2017

Is this page useful?
Back to top