Civil Contingencies Act 2004: Primary legislation establishing framework for emergency preparedness, defining obligations for Category 1 and 2 responders, and setting requirements for risk assessment and business continuity planning
Data Protection Act 2018 and UK GDPR: Legislation governing requirements for protecting personal data during disruptions, data breach notification obligations, and business continuity requirements for data protection
Companies Act 2006: Core company law legislation covering directors' duties regarding risk management, corporate governance requirements, and financial reporting obligations
Financial Services and Markets Act 2000: Regulatory framework for financial institutions, including operational resilience requirements and business continuity obligations for regulated firms
Health and Safety at Work Act 1974: Legislation establishing workplace safety requirements during disruptions, risk assessment obligations, and emergency procedures
Corporate Governance Code: Guidelines for listed companies covering risk management requirements, board responsibilities, and reporting obligations
Regulatory Framework: Includes FCA/PRA requirements for financial services, industry-specific regulations, and ISO 22301 Business Continuity Management Systems standards
Employment Law Framework: Comprising Employment Rights Act 1996 and Working Time Regulations 1998, covering obligations to employees during disruptions and emergency situations
