United Kingdom: Information Commissioner's Office issued response on Cyber Security and Resilience Bill

Information Commissioner's Office issued response on Cyber Security and Resilience Bill

On 23 December 2025, the Information Commissioner's Office (ICO) issued its response on the Cyber Security and Resilience Bill, which was laid before Parliament on 12 November 2025. The Bill will update the Network and Information Systems (NIS) Regu…

Scope

Policy Area

Data governance

Policy Instrument

Cybersecurity regulation

Regulated Economic Activity

cross-cutting

Implementation Level

national

Government Branch

executive

Government Body

data protection authority

Complete timeline of this policy change

Hide details

2024-07-17

under deliberation

On 17 July 2024, the Cyber Security and Resilience Bill was announced in the King's Speech. The Bil…

2025-04-01

under deliberation

On 1 April 2025, the Department for Science, Innovation & Technology published a policy statement d…

2025-11-12

under deliberation

On 12 November 2025, the Cyber Security and Resilience Bill was introduced to Parliament. The Bill …

2025-12-23

under deliberation

On 23 December 2025, the Information Commissioner's Office (ICO) issued its response on the Cyber S…

2026-01-07

in consultation

On 7 January 2026, a public consultation on the Cyber Security and Resilience (Network and Informat…

2026-03-05

processing consultation

On 5 March 2026, the public consultation on the Cyber Security and Resilience (Network and Informat…

Description

Information Commissioner's Office issued response on Cyber Security and Resilience Bill

Scope

Complete timeline of this policy change