Digital Regulation Platform
«
»
«
»

GSR-26 Best Practice Guidelines

15.05.2026
Print or share to:

Event logo

Regulatory governance essentials: The new core kit regulators need to make digital markets deliver

We, the regulators participating in the 25th Global Symposium for Regulators, have collectively contributed to and endorsed these Best Practice Guidelines to support digital markets and ecosystems in delivering public-interest outcomes in an inclusive, trusted, and sustainable manner.

Building on the series of GSR Best Practice Guidelines developed since 2003, this edition does not revisit established principles that remain valid. Instead, they focus on the priority regulatory capabilities, institutional arrangements, and practical tools regulators now need to navigate increasingly complex digital ecosystems with coherence, adaptability, and evidence-based decision-making.

At its core, effective regulation aims to ensure that digital markets deliver public-interest outcomes consistently, credibly and at scale. This requires more than a broad set of instruments; it calls for a coherent governance architecture built around a defined set of foundational capabilities. These Guidelines therefore highlight the essential regulatory design elements that enable regulators to define outcomes clearly, allocate responsibilities, generate evidence, adapt to change, intervene proportionately, and maintain coherence across institutions and borders.

I. CORE REGULATORY GOVERNANCE KIT

The seven essential components set out below are intended as that minimum core toolkit to make digital markets deliver in practice. They are selective rather than exhaustive. Together, they define the baseline governance architecture that regulators should establish first.

ESSENTIAL 1. PUBLIC-INTEREST OUTCOMES AND STRATEGIC FOCUS

Regulators should begin by defining a limited set of outcomes that digital markets are expected to deliver and use them to discipline regulatory action.

The first task is to make explicit what governance is for. A modern framework should not try to optimize for everything at once. It should identify a small number of public-interest outcomes that are sufficiently stable and material to anchor decision-making across sectors and over time. In practice, these are likely to include meaningful connectivity, affordability, accessibility, reliability and resilience, consumer protection, and market contestability. The point is not to create a long catalogue of objectives, but to establish a clear strategic focus against which regulatory choices can be tested and regulatory performance can be assessed.

ESSENTIAL 2. RISK-BASED AND PROPORTIONATE CALIBRATION OF OBLIGATIONS

Where warranted, regulators should consider differentiating obligations -for market actors according to function, market position, and risk, so that responsibility sits where it is most relevant and regulatory action remains proportionate to likely harm.

Digital markets are highly heterogeneous, making uniform obligations inefficient. In this context, effective governance requires a clear and transparent basis to determine when obligations may be appropriate, together with a well-defined approach to tailoring them. Regulators should consider differentiating obligations according to the functions performed, the market actor’s position in the value chain, or the risks associated with the activity or service. This approach can support lighter obligations where risks are limited while allowing for more robust oversight where justified.

ESSENTIAL 3. OBSERVABILITY AND CREDIBLE EVIDENCE

Regulators should ensure that public-interest outcomes in digital markets can be measured, observed, and verified through a proportionate observability model that supports effective oversight without excessive burden.

Governance requires a minimum evidence architecture that allows regulators to see whether declared outcomes are actually being delivered. This means moving beyond fragmented, procedural reporting toward a more structured observability model: one that combines clear indicators, consistent reporting formats, proportionate data collection, and targeted verification where justified. Regulators should focus on a core set of decision-relevant indicators, especially in contexts where regulatory data capabilities are still developing. These indicators should generate evidence that is sufficiently credible, comparable, and timely to support intervention, review, accountability, and public transparency.

Observability should be strong enough to give regulators a clear view of performance and risk, while remaining proportionate to the burdens it creates and avoiding the creation of reporting requirements that do not directly inform regulatory decision-making.

ESSENTIAL 4. INCENTIVE-BASED MARKET SHAPING

Regulators should use incentive levers and enabling measures to steer behaviour toward public-interest outcomes before relying on more directive intervention.

Incentive-based governance is often more effective at improving market outcomes. Alongside formal obligations where needed, regulators must actively create enabling conditions in which markets invest, innovate, comply, and extend services. The minimum toolkit should therefore include incentive levers and enabling measures that align business decisions and market behaviour with public-interest outcomes, whether through adaptive licensing, infrastructure-sharing arrangements, temporary adjustments to regulatory requirements, or targeted deployment incentives. Used well, regulatory incentives make desired conduct more likely from the outset and reduce the need for later corrective action.

ESSENTIAL 5. GRADUATED SUPERVISION, DUE PROCESS, AND DE-ESCALATION

Regulators should put in place a predictable supervisory pathway that moves from guidance and corrective action to stronger intervention where justified, and that includes clear conditions for scaling measures back.

The credibility of governance depends not only on the powers available to the regulator under its mandate, but on how those powers are exercised in practice. A modern regulatory framework should therefore establish a graduated pathway for intervention, beginning with preventive engagement and targeted remediation, and escalating to more directive or restrictive measures only where risks persist, harms materialize, or non-compliance becomes serious or systemic. This pathway should be transparent, evidence-based, and supported by clear procedural safeguards. Just as importantly, it should not be one-way. Clear criteria for de-escalation are essential if supervision is to remain proportionate, predictable, and genuinely corrective rather than punitive.

ESSENTIAL 6. ADAPTIVE REGULATION AND STRUCTURED LEARNING

Regulators should treat the capacity to test, learn, review, and adjust as a core requirement, using evidence, experience and structured engagement with market actors, consumers, technical experts, and other public authorities so that governance can evolve with technologies, markets, and patterns of harm.

Effective governance requires a structured capacity and practical mechanisms that allow learning to be incorporated into regulation as a regular discipline, not an exceptional exercise. Regulators should therefore have access to the institutional capacity, technical expertise, and tools needed to support structured learning, such as sandboxes, pilot authorizations, phased implementation, feedback loops, review triggers, and ex post assessment mechanisms. These instruments should include clear objectives, application criteria, monitoring indicators, evaluation mechanisms and conditions for scaling, adjusting or closing the adopted measures. Designed and used with clear purpose, these adaptive tools and mechanisms help keep regulation workable under uncertainty and allow frameworks to improve as evidence accumulates.

ESSENTIAL 7. DOMESTIC AND CROSS-BORDER REGULATORY COHERENCE

Regulators should ensure that governance remains coherent across mandates, sectors, and jurisdictions, and over time, so that digital services are not hampered by institutional fragmentation.

Digital services cut across administrative boundaries. Even a well-designed domestic governance framework will underperform if it is fragmented across agencies or inconsistent across borders. Institutional and regulatory coherence, both domestically and internationally, is therefore part of the core requirements, not an additional layer to be considered later. Domestically, it requires practical coordination among relevant authorities, clear allocation of roles, routine information-sharing, and structured cooperation on supervision and remedies based on shared goals. Internationally, cross-border cooperation is recommended to share experience and knowledge in emerging areas to address common challenges and to mitigate the risk of unwarranted divergences in regulatory approach. In both cases, the aim is not uniformity for its own sake, but a more joined-up form of governance that reduces duplication, closes gaps, and improves the effectiveness of oversight in increasingly interconnected digital ecosystems.

II. PRACTICAL IMPLEMENTATION PATHWAYS FOR THE CORE GOVERNANCE TOOLKIT

The following translates the seven essential components of the regulatory governance architecture into a practical checklist of priority actions that regulators can introduce, review, measure and track over time to put the core toolkit into operation, with implementation sequenced and scaled according to institutional capacity, technical and resource constraints, and market maturity. It can also be used as a structured self-assessment tool to identify strengths, gaps and priorities, support internal coordination, and guide the sequencing and implementation of institutional and regulatory improvements.

1. PUBLIC-INTEREST OUTCOMES AND STRATEGIC FOCUS

Start by narrowing the field.

2. RISK-BASED AND PROPORTIONATE CALIBRATION OF OBLIGATIONS

Make responsibility explicit from the outset.

3. OBSERVABILITY AND CREDIBLE EVIDENCE

Build a lightweight evidence system that regulators can use on a daily basis.

4. INCENTIVE-BASED MARKET SHAPING

Use regulation to improve market conditions so that they deliver public-interest outcomes consistently and sustainably, not only to correct failures after the fact.

5. GRADUATED SUPERVISION, DUE PROCESS, AND DE-ESCALATION

Make the supervisory path visible and operational.

6. ADAPTIVE REGULATION AND STRUCTURED LEARNING

Embed routine learning and continuous adjustment into regulatory practice.

7. DOMESTIC AND CROSS-BORDER REGULATORY COHERENCE

Promote coherence where fragmentation creates the greatest risk.

Last updated on: 01.07.2026
Print or share to: