Question to the Department for Science, Innovation & Technology:

To ask the Secretary of State for Science, Innovation and Technology, what assessment she has made of the potential impact of cyber governance regulations on business growth in (a) Yeovil constituency, (b) Somerset, and (c) England.

The Cyber Security and Resilience (Network and Information Systems) Bill was introduced in November 2025 to increase UK defences against cyber attacks. These reforms will ensure the UK economy is better protected than ever by securing the most important essential and digital services and suppliers which businesses and public services rely on.

The Department for Science, Innovation and Technology produced an Impact Assessment for the introduction of the Bill that identifies the expected impact the legislation will have on regulated entities. The assessment highlights that cyber security is a critical enabler of economic growth, and it is expected that the improved security resulting from businesses adhering to the regulations will mean the benefits of adherence outweigh the cost of adherence. Further analysis will be undertaken for relevant secondary legislation to support the implementation of the Bill, and the Impact Assessment will be updated upon Royal Assent.

The government's forthcoming Modernising Corporate Reporting consultation will provide an opportunity for users of corporate reporting to comment on the effectiveness of the existing risk reporting framework which includes businesses' cyber risk reporting and the Department for Business and Trade will consider the impact on business growth of any changes to risk reporting following this consultation.