The Terrorism (Protection of Premises) Act 2025, widely known as Martyn's Law, signifies a pivotal shift in UK public safety legislation and security, impacting public and social sector organisations significantly.
Enacted on 3 April 2025, the Act requires enhanced accountability for protecting public premises and events against terrorist threats, with a planned implementation period of at least 24 months. Local authorities, public service providers, and community organisations should therefore begin to prepare now.
Impact of the Act on the Public and Social Sector
Unlike many laws that focus primarily on policing or intelligence services, Martyn’s Law places a clear and active responsibility on those who manage or oversee premises and events accessible to the public. For the public and social sectors, this includes:
Local authorities managing parks, libraries, community centres, town halls, and shopping districts.
Housing associations and social landlords managing community-facing facilities.
Publicly funded cultural institutions, including museums, theatres, and galleries.
Health and education providers with open-access facilities.
Charities and voluntary organisations hosting events or providing community services.
The Act establishes a legal obligation to evaluate risks, implement protective measures, and ensure that staff are trained to react to potential terrorist threats. These are not optional recommendations, but will soon become mandatory regulations under the UK public safety legislation.
Expectations for the Public Sector under the new Act
Proportional security planning - Public sector organisations will be required to conduct risk assessments for relevant premises and public-facing services. This involves identifying vulnerabilities and implementing appropriate security measures, such as controlled access points, surveillance systems, or trained personnel.
Mandatory staff training - All staff and volunteers involved in managing public-facing services must be trained in how to identify suspicious behaviour, respond to threats, and support emergency services in the event of an incident.
Clear governance and accountability - The Act requires named individuals or roles to hold operational responsibility for security. Policies, procedures, and escalation plans must be documented and regularly reviewed.
Coordination with partners - Public and social sector organisations must collaborate with police, private security firms, and neighbouring entities to enhance the overall security framework in their communities.
Compliance monitoring - Public sector organisations must demonstrate compliance with the Act through internal governance structures, which may be subject to inspection or external assurance. Non-compliance could lead to penalties, enforcement notices, or damage to reputation.
Case study examples
A public library may need to implement new visitor security checks and conduct evacuation drills.
A university campus or further education college with open-access facilities may need to review site access controls and train campus security personnel.
A community centre operated by a housing association, offering youth clubs, social services, or public events, will need to perform risk assessments and implement essential protective measures.
A council-managed festival or Christmas market may require crowd control, stewarding, and coordination with emergency services.
A registered charity that operates food banks or hosts large fundraising events in public spaces must evaluate risks and implement appropriate plans.
A transport hub managed by a local authority, such as a bus or tram station, may require enhanced surveillance measures.
What should public sector organisations do to get ‘Day 1 ready?
Although enforcement of the Act will not commence immediately, the intricacies of compliance necessitate that public sector organisations begin preparations now to ensure they are ready, including:
1. Understanding your risk profile
Identify which of your premises or services are included under the Act's provisions.
Map your public-facing locations, community events, or high-traffic services.
Evaluate whether your existing risk registers and contingency plans align with the new requirements.
Note: Additional guidance is anticipated in summer 2025. Organisations are encouraged to wait for this before finalising compliance actions.
2. Engaging leadership and governance
Ensure your leadership team is informed about Martyn's Law and the strategic risks it entails.
Assign responsibilities and appoint a lead for counter-terrorism readiness.
3. Building capacity and awareness
Begin crafting training programs tailored to various staff roles.
Update internal policies to reflect the new legal requirements.
Organise tabletop exercises or emergency response simulations to gauge readiness.
Be prepared to adapt once the official guidance is issued to ensure comprehensive compliance.
The Terrorism (Protection of Premises) Act 2025 is not merely an additional statutory requirement; it embodies a moral and civic responsibility. For the public sector, it necessitates a heightened level of awareness and readiness, rooted in actionable steps and shared accountability. Being 'Day 1 ready' transcends compliance; it encompasses the safety of individuals and the spaces we are charged with protecting.
Contact Us
To learn how we can assist your organisation in achieving 'Day 1 readiness', please reach out to our Public sector team via the button below.
As expert advisers, with strong links across the public and social sector, our team draws on its market knowledge and industry experience to publish research and observations on new developments and regulations.
Resilience is more than just the ability to absorb and recover from disruptive events. We say resilience is the capacity to remain relevant, competitive and drive value for your stakeholders in these everchanging times.
