The Cyber Security Breaches Survey, 2025 (CSBS) was run to understand organisations' approaches and attitudes to cyber security, and to understand their experience of cyber security breaches. The aim of the survey was to support the Government by providing evidence that can inform policies which help to make Britain a safer place to do business online. Details of changes for the 2025 survey can be found in the Technical Annex documentation.

These surveys have been conducted annually since 2016 to understand the views of UK organisations on cyber security. Data are collected on topics including online use; attitudes of organisations to cyber security and awareness of Government initiatives; approaches to cyber security (including investment and processes); incidences and impact of a cyber security breach or attack; and how breaches are dealt with by the organisation. This information helps to inform Government policy towards organisations, including how best to target key messages to businesses and charities so that they are cyber-secure (and so that the UK is the safest place in the world to do business online). The study is funded by the Department for Science, Innovation and Technology (DSIT) and the Home Office.

The underlying data are useful for researchers to better understand the response across a range of organisations and for wider comparability over time. The survey originally only covered businesses but was expanded to include charities from the 2018 survey onwards. From 2020, the survey includes a sample of education institutions (primary and secondary schools, further and higher education). Please note that the UK Data Service only holds data from 2018 onwards.

Further information and additional publications can be found on the "http://GOV.UK Cyber Security Breaches Survey 2025https://www.gov.uk/government/statistics/cyber-security-breaches-survey-2025" target="_blank"> GOV.UK Cyber Security Breaches Survey 2025 web page.

Staff vetting records system.

This is because it would breach the first data protection principle as: a) it is not fair to disclose claimant personal details to the world and is likely to cause damage or distress. b) these details are not of sufficient interest to the public to warrant an intrusion into the privacy of the claimant. Please click the below web link to see the exemption in full. https://www.legislation.gov.uk/ukpga/2000/36/section/40 Breach of Patient confidentiality Please note that the identification of claimants is also a breach of the common law duty of confidence. A claimant who has been identified could make a claim against the NHSBSA or yourself for the disclosure of the confidential information. The information requested is therefore being withheld as it falls under the exemption in section 41(1) ‘Information provided in confidence’ of the Freedom of Information Act. Please click the below web link to see the exemption in full.

The Cyber Security Breaches Survey, 2021 (CSBS) was run to understand organisations' approaches and attitudes to cyber security, and to understand their experience of cyber security breaches, especially in light of the COVID-19 pandemic. The aim of the survey was to support the Government by providing evidence that can inform policies which help to make Britain a safer place to do business online. Details of changes for the 2021 survey can be found in the Technical Annex documentation.

These surveys have been conducted annually since 2016 to understand the views of UK organisations on cyber security. Data are collected on topics including online use; attitudes of organisations to cyber security and awareness of Government initiatives; approaches to cyber security (including investment and processes); incidences and impact of a cyber security breach or attack; and how breaches are dealt with by the organisation. This information helps to inform Government policy towards organisations, including how best to target key messages to businesses and charities so that they are cyber secure (and so that the UK is the safest place in the world to do business online). The study is funded by the DCMS as part of the National Cyber Security Programme.

The underlying data are useful for researchers to better understand the response across a range of organisations and for wider comparability over time. The survey originally only covered businesses but was expanded to include charities from the 2018 survey onwards. From 2020, the survey includes a sample of education institutions (primary and secondary schools, further and higher education). Please note that the UK Data Service only holds data from 2018 onwards.

Further information and additional publications can be found on the "http://GOV.UK" target="_blank"> GOV.UK Cyber Security Breaches Survey, 2021 webpage.

Abstract copyright UK Data Service and data collection copyright owner. The Cyber Security Breaches Survey, 2024 (CSBS) was run to understand organisations' approaches and attitudes to cyber security, and to understand their experience of cyber security breaches. The aim of the survey was to support the Government by providing evidence that can inform policies which help to make Britain a safer place to do business online. Details of changes for the 2024 survey can be found in the Technical Annex documentation. These surveys have been conducted annually since 2016 to understand the views of UK organisations on cyber security. Data are collected on topics including online use; attitudes of organisations to cyber security and awareness of Government initiatives; approaches to cyber security (including investment and processes); incidences and impact of a cyber security breach or attack; and how breaches are dealt with by the organisation. This information helps to inform Government policy towards organisations, including how best to target key messages to businesses and charities so that they are cyber-secure (and so that the UK is the safest place in the world to do business online). The study is funded by the DSIT as part of the National Cyber Security Programme. The underlying data are useful for researchers to better understand the response across a range of organisations and for wider comparability over time. The survey originally only covered businesses but was expanded to include charities from the 2018 survey onwards. From 2020, the survey includes a sample of education institutions (primary and secondary schools, further and higher education). Please note that the UK Data Service only holds data from 2018 onwards. Further information and additional publications can be found on the GOV.UK Cyber Security Breaches Survey 2024 web page. Main Topics: Organisational cyber security, views, experiences and behaviours of organisations (UK businesses, charities and educational institutions) on cyber security and cyber security breaches. Multi-stage stratified random sample

Datasets available are from 2014 to 2023 from the resources links.

These datasets contain details of condition breaches on Environmental Permitting Regulations (2010) waste and installation permits from 2014. This dataset may exclude some records on the basis of National Security or Commercial Confidentiality.

A briefing accompanies the data.

Abstract copyright UK Data Service and data collection copyright owner. The Cyber Security Breaches Survey, 2020 was run to understand organisations' approaches and attitudes to cyber security, and to understand their experience of cyber security breaches. Its aim was to support the Government by providing evidence that can inform policies which help to make Britain a safer place to do business online.The data have been collected annually since 2016 to understand the views of UK organisations on cyber security. Data is collected on topics including online use; attitudes of organisations to cyber security and awareness of Government initiatives; approaches to cyber security (including investment and processes); incidences and impact of a cyber security breach or attack; and how breaches are dealt with by the organisation. This information helps to inform Government policy towards organisations, including how best to target key messages to businesses and charities so that they are cyber secure (and so that the UK is the safest place in the world to do business online). The study is funded by the Cabinet Office as part of the National Cyber Security Programme. The underlying data are useful for researchers to better understand the response across a range of organisations (rather than averages) and for wider comparability over time. The survey originally only covered businesses but was expanded to include charities from the 2018 survey onwards. From 2020, the survey includes a sample of education institutions (primary and secondary schools, further and higher education). Please note that the UK Data Service only holds data from 2018 onwards. Further information and additional publications can be found on the GOV.UK Cyber Security Breaches Survey, 2020 webpage. Main Topics: Views, experiences and behaviours of organisations (UK businesses and charities) on cyber security and cyber security breaches. Multi-stage stratified random sample

Abstract copyright UK Data Service and data collection copyright owner. The Cyber Security Breaches Survey, (CSBS) is run to understand organisations' approaches and attitudes to cyber security, and to understand their experience of cyber security breaches.. The aim of the survey is to support the Government by providing evidence that can inform policies which help to make Britain a safer place to do business online.These surveys have been conducted annually since 2016 to understand the views of UK organisations on cyber security. Data are collected on topics including online use; attitudes of organisations to cyber security and awareness of Government initiatives; approaches to cyber security (including investment and processes); incidences and impact of a cyber security breach or attack; and how breaches are dealt with by the organisation. This information helps to inform Government policy towards organisations, including how best to target key messages to businesses and charities so that they are cyber secure (and so that the UK is the safest place in the world to do business online). The study is funded by the DCMS as part of the government's £2.6 billion National Cyber Strategy 2022 to protect and promote the UK in cyber space.The underlying data are useful for researchers to better understand the response across a range of organisations and for wider comparability over time. The survey originally only covered businesses but was expanded to include charities from the 2018 survey onwards. From 2020, the survey includes a sample of education institutions (primary and secondary schools, further and higher education). Please note that the UK Data Service only holds datasets on each specific year from 2018 onwards.Cyber Security Breaches Survey: Combined Dataset, 2016-2022 includes data from 2016 to 2022. This is cross-sectional data only and not all variables are included in all years. For longitudinal data, please access the Cyber Security Longitudinal Survey: Wave 1, 2021 (available from the UK Data Archive under SN 8969) and onwards.Further information and additional publications can be found on the GOV.UK Cyber Security Breaches Survey webpage. Main Topics: Views, experiences and behaviours of organisations (UK businesses and charities) on cyber security and cyber security breaches. Multi-stage stratified random sample

The Cyber Security Breaches Survey, (CSBS) is run to understand organisations' approaches and attitudes to cyber security, and to understand their experience of cyber security breaches.. The aim of the survey is to support the Government by providing evidence that can inform policies which help to make Britain a safer place to do business online.

These surveys have been conducted annually since 2016 to understand the views of UK organisations on cyber security. Data are collected on topics including online use; attitudes of organisations to cyber security and awareness of Government initiatives; approaches to cyber security (including investment and processes); incidences and impact of a cyber security breach or attack; and how breaches are dealt with by the organisation. This information helps to inform Government policy towards organisations, including how best to target key messages to businesses and charities so that they are cyber secure (and so that the UK is the safest place in the world to do business online). The study is funded by the DCMS as part of the government's £2.6 billion National Cyber Strategy 2022 to protect and promote the UK in cyber space.

The underlying data are useful for researchers to better understand the response across a range of organisations and for wider comparability over time. The survey originally only covered businesses but was expanded to include charities from the 2018 survey onwards. From 2020, the survey includes a sample of education institutions (primary and secondary schools, further and higher education). Please note that the UK Data Service only holds datasets on each specific year from 2018 onwards.

Cyber Security Breaches Survey: Combined Dataset, 2016-2022 includes data from 2016 to 2022. This is cross-sectional data only and not all variables are included in all years. For longitudinal data, please access the Cyber Security Longitudinal Survey: Wave 1, 2021 (available from the UK Data Archive under SN 8969) and onwards.

Further information and additional publications can be found on the GOV.UK Cyber Security Breaches Survey webpage.

Abstract copyright UK Data Service and data collection copyright owner. The Cyber Security Breaches Survey, 2022 (CSBS) was run to understand organisations' approaches and attitudes to cyber security, and to understand their experience of cyber security breaches. The aim of the survey was to support the Government by providing evidence that can inform policies which help to make Britain a safer place to do business online. Details of changes for the 2022 survey can be found in the Technical Annex documentation.These surveys have been conducted annually since 2016 to understand the views of UK organisations on cyber security. Data are collected on topics including online use; attitudes of organisations to cyber security and awareness of Government initiatives; approaches to cyber security (including investment and processes); incidences and impact of a cyber security breach or attack; and how breaches are dealt with by the organisation. This information helps to inform Government policy towards organisations, including how best to target key messages to businesses and charities so that they are cyber secure (and so that the UK is the safest place in the world to do business online). The study is funded by the DCMS as part of the National Cyber Security Programme. The underlying data are useful for researchers to better understand the response across a range of organisations and for wider comparability over time. The survey originally only covered businesses but was expanded to include charities from the 2018 survey onwards. From 2020, the survey includes a sample of education institutions (primary and secondary schools, further and higher education). Please note that the UK Data Service only holds data from 2018 onwards.Further information and additional publications can be found on the GOV.UK Cyber Security Breaches Survey, 2022 webpage. Main Topics: Views, experiences and behaviours of organisations (UK businesses and charities) on cyber security and cyber security breaches. Multi-stage stratified random sample

This record holds data from 2015 to 2023. Previous years data is available on request.

We use compliance ratings to help assess the risks from a regulated facility.

An operator’s compliance record will affect whether they pay a subsistence charge that is higher or lower than the base charge. We will calculate a compliance rating for an operator based on their compliance record. We calculate a compliance rating after a permit has been issued and use a standard approach called the Compliance Classification Scheme to classify permit breaches. A compliance rating only applies to a permit for a waste operation or installation. It does not apply to farming installations operated by members of the our Pig and Poultry Assurance Scheme, or waste mobile plant.

We identify and record any non-compliances in the course of a calendar year – January to December. We use this information to work out a compliance rating based on a points system. For permits that cover more than one activity, the compliance rating will apply to the whole permit. We convert permit breaches into a points system. We add the points from each breach to calculate an annual total of non-compliance points. We allocate points based on the amount of extra work we usually have to do when dealing with different types of permit breaches.

CCS Category breach 1 (most serious) 60 points CCS Category breach 2 (serious) 31 points CCS Category breach 3 (less serious) 4 points CCS Category breach 4 (minor) 0.1 points

Based on the cumulative score over a calendar year, we place each site into one of six compliance bands A to F. Band A 0 points Discount of 5% on subsistence charge Band B 0.1-10 points No impact on subsistence charge Band C 10.1-30 points 10% increase on subsistence charge Band D 30.1-60 points 25% increase on subsistence charge Band E 60.1-149.9 points 50% increase on subsistence charge Band F 150+ points 200% increase on subsistence charge

CHANGES TO THIS DATASET This dataset was previously provided in the Opra record. The Opra scheme has now been replaced by a new charging scheme.

Abstract copyright UK Data Service and data collection copyright owner. The Cyber Security Breaches Survey, 2021 (CSBS) was run to understand organisations' approaches and attitudes to cyber security, and to understand their experience of cyber security breaches, especially in light of the COVID-19 pandemic. The aim of the survey was to support the Government by providing evidence that can inform policies which help to make Britain a safer place to do business online. Details of changes for the 2021 survey can be found in the Technical Annex documentation. These surveys have been conducted annually since 2016 to understand the views of UK organisations on cyber security. Data are collected on topics including online use; attitudes of organisations to cyber security and awareness of Government initiatives; approaches to cyber security (including investment and processes); incidences and impact of a cyber security breach or attack; and how breaches are dealt with by the organisation. This information helps to inform Government policy towards organisations, including how best to target key messages to businesses and charities so that they are cyber secure (and so that the UK is the safest place in the world to do business online). The study is funded by the DCMS as part of the National Cyber Security Programme. The underlying data are useful for researchers to better understand the response across a range of organisations and for wider comparability over time. The survey originally only covered businesses but was expanded to include charities from the 2018 survey onwards. From 2020, the survey includes a sample of education institutions (primary and secondary schools, further and higher education). Please note that the UK Data Service only holds data from 2018 onwards. Further information and additional publications can be found on the GOV.UK Cyber Security Breaches Survey, 2021 webpage. Main Topics: Views, experiences and behaviours of organisations (UK businesses and charities) on cyber security and cyber security breaches. Multi-stage stratified random sample

Sensitive and personal information. Contains records of all security clearances at National Security Vetting level and Baseline Personnel Security Standard for BIS staff, DECC, Other Government Departments (OGDs) requiring a BIS pass and some staff from affiliated organisations.

The Cyber Security Longitudinal Survey (CSLS) helps us better understand cyber security policies and processes within medium and large businesses and high-income charities. It explores the links over time between these policies and processes and the likelihood and impact of a cyber incident. The survey is commissioned by The Department of Science, Innovation and Technology and aims to support the Government by providing evidence that can inform policies which help to make Britain a safer place to do business online. This is the fourth research year (or wave) of a multi-year study. The fourth wave of fieldwork was carried out during 2024, with the report published on 6 February 2025.

The core objectives of the study are to:

• explore how and why UK organisations are changing their cyber security profile and how they implement, measure, and improve their cyber defences.
• provide a more in-depth picture of larger organisations, covering topics that are lightly covered in the main Cyber Security Breaches Survey (also available from the UK Data Archive), such as corporate governance, supply chain risk management, internal and external reporting, cyber strategy, and cyber insurance.
• explore the effects of actions adopted by organisations to improve their cyber security on the likelihood and impact of a cyber incident.

Further information and additional publications can be found on the GOV.UK "https://www.gov.uk/government/collections/cyber-security-longitudinal-survey" target="_blank"> Cyber Security Longitudinal Survey pages.

Wave 1-3 data from the Cyber Security Longitudinal Survey can also be found on the UK Data Archive under SNs 8969, 9067 and 9284 respectively.