Research and analysis

RPC opinion: Cyber Security and Resilience (Network and Information Systems) Bill impact assessment

The RPC's opinion of the Department for Science, Innovation and Technology's impact assessment for the bill.

• From: Regulatory Policy Committee
• Published: 17 November 2025

Documents

RPC opinion: Cyber Security and Resilience (Network and Information Systems) Bill impact assessment

PDF, 238 KB, 10 pages

This file may not be suitable for users of assistive technology.

Request an accessible format.

If you use assistive technology (such as a screen reader) and need a version of this document in a more accessible format, please email enquiries@rpc.gov.uk. Please tell us what format you need. It will help us if you say what assistive technology you use.

Details

The Cyber Security and Resilience (Network and Information Systems) Bill aims to update the UK’s only cross sector cyber regulations and create new powers to ensure government can respond to new and emerging cyber threats.

The Regulatory Policy Committee (RPC) gave a ‘green’ rating to the impact assessment for the bill on 18 July 2025. This means that we considered the impact assessment to be fit for purpose based on our scrutiny of the evidence and analysis supporting the case for why regulation is necessary. 

The RPC’s opinion refers to the evidence and analysis presented in the impact assessment, not the policy itself.

Published 17 November 2025