Timely collaboration calls on businesses to be cyber resilient
23rd October, 2025 – The Department of Science, Innovation and Technology and national accreditation scheme, Good Business Charter, partner to bring cyber security to the forefront of responsible business behaviour.
Following numerous high-profile cyber incidents which have heightened awareness of how important it is for businesses to have effective cyber security in place, the Good Business Charter (GBC) has today added specific reference to cyber security within its accreditation framework.
This new requirement sits within the accreditation’s eighth component, Commitment to Customers, recognising the importance of protecting personal data of all stakeholders, including employees and suppliers.
Developed by entrepreneur, Julian Richer, in collaboration with the Confederation of British Industry (CBI) and the Trades Union Congress (TUC), the GBC is the responsible business benchmark for organisations of all sizes. Its ten components cover care for employees, suppliers, customers and the planet as well as paying your fair share of UK tax.
CEO of the Good Business Charter, Jenny Herrera, commented:
“The specific reference to cyber security adds strength to the accreditation – it was always implied within components that set out an organisation’s commitment to their customers and to their other stakeholders, but in spelling out the need to develop a positive cyber security culture we ensure the Good Business Charter remains relevant and comprehensive.”
From today, new organisations seeking accreditation will need to commit to strengthening their cyber resilience and current accredited organisations will have a grace period of six months to meet this requirement. Organisations are encouraged to engage with the collection of free resources developed by the the Department of Science, Innovation and Technology (DSIT) and the National Cyber Security Centre (NCSC), which are advertised on the GBC’s website and can support organisations in meeting this commitment.
Cyber Security Minister, Liz Lloyd, said:
“Every firm now runs on digital systems, from payroll and payment readers to logistics. That dependence brings everyday exposure to cyber threats, and when those systems are hit, business stops.“Making cyber security part of the Good Business Charter is a welcome move and demonstrates the importance of managing cyber risk – which is a key element of responsible business behaviour.”
DSIT helped formulate the question, which for medium and large organisations requires measures to protect against cyber incidents and fostering a culture of accountability at all levels. The streamlined GBC accreditation focuses on taking action to strengthen their cyber resilience to better protect the personal data of customers and other stakeholders.
Businesses are encouraged to access the free resources that the government has to help businesses, including Cyber Essentials and the Cyber Governance Code of Practice. The GBC is proud to be accessible accreditation that sets out a clear framework for responsible business behaviour, counting FTSE 100 companies, universities, small, medium and micro businesses among its signatories.
Today’s announcement continues that commitment – to responsible practices whilst signposting to the support to develop the positive cyber security culture all organisations need in the modern world.
ENDS
About the Department for Science, Innovation and Technology:
DSIT, established in February 2023, is a UK government department responsible for developing policies and resources that promote the use of technology to drive economic growth, create jobs, and tackle societal challenges.
As part of their drive to strengthen the UK’s cyber resilience, a range of free and practical resources are available to help organisations and their leaders manage cyber risks effectively:
The government-backed certification scheme Cyber Essentials works to keep both organisations and their customers’ data safe from cyber-attacks. Businesses with Cyber Essentials certification make 92% fewer insurance claims.
Cyber Governance Code of Practice
For guidance on governing cyber risk, the Cyber Governance Code of Practice sets out the critical actions boards and directors should take to manage cyber risk.
The free online training supports Boards and Directors in understanding the principles of the Code and putting its recommended actions into practice, helping to improve their organisation’s cyber resilience, without delving into the technical detail.
The Toolkit helps Boards to ensure that cyber resilience and risk management are embedded throughout their organisation, including its people, systems, processes and technologies. The Toolkit helps Boards to ensure that cyber resilience and risk management are
This is a free service from the NCSC which informs your organisation of potential cyber attacks on your network
About the Good Business Charter:
The Good Business Charter was developed and is overseen by, the Good Business Foundation, an independent charity established in 2019 by entrepreneur Julian Richer.
The Charter is a simple accreditation which organisations in the UK can sign up to in recognition of responsible business practices.
It measures behaviour over ten components (nine for charities and public sector): real living wage; fairer hours and contracts; employee well-being; employee representation; equality, diversity and inclusion; environmental responsibility; paying fair tax; commitment to customers; ethical sourcing, and prompt payment. An organisation must meet all ten components (nine for charities and public sector) to receive GBC accreditation.
It is open to private sector, public sector and charities of all sizes including a streamlined version for organisations with 50 employees or fewer.