Guide
Start a private security business
End-to-end guide to starting a private security business in Great Britain, covering company registration, mandatory insurance, SIA Approved Contractor Scheme registration, recruiting licensed staff, compliance systems, and industry standards including BS 7499 and BS 7858.
This guide is for anyone planning to set up a private security business in England, Scotland, or Wales. It covers manned guarding, door supervision, close protection, CCTV monitoring, key holding, and cash and valuables in transit (CVIT) services.
Private security is a regulated sector. The Security Industry Authority (SIA) licenses individuals who carry out security work, and operates a voluntary quality scheme for companies. Getting the regulatory foundations right before you trade protects you from criminal liability and positions your business for the contracts that generate revenue.
If you are already trading and need to check your ongoing obligations, start at the section on recruiting licensed staff.
The SIA does not regulate private security in Northern Ireland. If you plan to operate there, contact the Department of Justice (NI) for the separate licensing regime.
1. Register your business
Before you can trade, you need a legal business structure. The choice affects your personal liability, tax position, and how clients perceive your business.
-
Choose your business structure
Most security businesses operate as limited companies because clients — particularly public sector buyers — expect it, and it limits your personal liability. A sole trader structure is simpler but exposes you to unlimited personal liability for claims. If you are unsure, take professional advice before registering.
-
Register with Companies House (limited company)
Register online at gov.uk. You will need a registered office address, at least one director, and a person of significant control (PSC) statement. If you choose sole trader or partnership, register with HMRC instead.
-
Register with HMRC for tax
Limited companies must register for Corporation Tax within 3 months of starting to trade. Register for PAYE before your first payday if you will employ staff. Register for VAT if your taxable turnover exceeds the current threshold, or voluntarily if it benefits your business.
2. Arrange insurance
Insurance is both a legal requirement and a commercial necessity in private security. Without adequate cover, you cannot lawfully employ staff and most clients will not engage you.
When choosing cover levels for public liability and professional indemnity, check the minimum requirements in contracts you plan to bid for. Many local authority and NHS contracts specify GBP 5 million or GBP 10 million public liability cover as a minimum. If you provide consultancy, risk assessments, or design CCTV systems, professional indemnity insurance protects you against claims for negligent advice.
Review your cover annually and whenever you add new service lines or increase your workforce.
3. Understand SIA licensing and the Approved Contractor Scheme
Individual SIA licensing is mandatory for anyone carrying out licensable security activities. The Approved Contractor Scheme (ACS) is voluntary but in practice essential for winning significant contracts.
You cannot apply for ACS approval until you have been trading for at least 12 months and can demonstrate that you supply at least 2 licensable operatives per activity. Use your first year to build the management systems, training records, and compliance processes that the ACS assessment will examine.
Planning for ACS from day one
Even though you cannot apply for ACS in your first year, the assessment criteria should shape your business from the start:
- Licensing compliance — build a licence management system that tracks every operative's licence number, sector, and expiry date
- Training and development — document all training delivered, including induction, site-specific, and ongoing CPD
- Quality management — implement documented procedures for incident reporting, complaints handling, and service delivery
- Financial management — maintain transparent financial records showing the business is solvent and well managed
If ACS is a priority, consider the NSI ACS Passport Scheme, which combines NSI certification with a simplified SIA application route.
4. Recruit and deploy licensed staff
Deploying anyone without a valid SIA licence for the activity they perform is a criminal offence under section 5 of the Private Security Industry Act 2001. The offence applies to you as the employer or supplier, not only to the individual.
-
Verify every licence before deployment
Use the SIA's free online licence checker to confirm the operative's licence is valid, covers the correct sector, and has not expired. Do this before every new deployment, not just at the point of hire.
-
Keep auditable records
Record the operative's name, SIA licence number, licence sector, expiry date, and the date you performed the check. These records are your evidence for the due diligence defence under s.5(2) if a licence issue arises.
-
Screen staff to BS 7858
British Standard BS 7858 sets out a thorough vetting process for security personnel, covering identity verification, employment history (minimum 5 years), criminal record checks, and financial probity. Following BS 7858 is expected by most clients and is assessed as part of ACS approval.
-
Set up ongoing monitoring
Do not rely solely on a check at hire. Re-verify licences periodically (monthly or quarterly) and before any change of assignment. If you hold ACS approval, the Licence Management service helps automate this.
5. Build your compliance systems
A well-run security business needs documented systems that cover both general employment law and sector-specific requirements. Getting these right early reduces risk, supports your ACS application, and gives clients confidence.
General business compliance
- Workplace pension auto-enrolment — set up a pension scheme and enrol eligible staff from their first day of eligibility (minimum 8 percent total contribution on qualifying earnings)
- PAYE and payroll — run payroll correctly, issue payslips, and submit RTI returns to HMRC
- Right to work checks — verify every employee's right to work in the UK before they start
- Health and safety — carry out risk assessments for each site and activity, and provide appropriate PPE and lone worker protections
- GDPR compliance — if you operate CCTV systems or hold personal data about clients and staff, you need appropriate data protection policies and may need to register with the ICO
Industry standards
Adopting recognised British Standards strengthens your market position and is assessed during ACS approval:
- BS 7499 — static site guarding and mobile patrol services
- BS 7858 — security screening of individuals employed in a security environment
- BS 7984 — key holding and response services
These standards are not legally mandatory, but most serious clients and all ACS assessing bodies expect compliance with the standards relevant to your service lines.
What next
Once your business is registered, insured, and you have recruited licensed staff:
- Build your track record over the first 12 months while documenting your management systems for the ACS application
- Apply for ACS approval once you meet the eligibility criteria (12 months' trading, at least 2 licensable operatives per activity)
- Register on public sector procurement frameworks — many require ACS approval as a minimum
- Review your insurance cover annually and before bidding for larger contracts
- Keep up to date with SIA regulatory changes by subscribing to SIA news updates
If you are already operating and discover that any of your staff lack a valid SIA licence, remove them from licensable duties immediately. Continued deployment is a criminal offence regardless of whether you were aware of the licence gap.
Related guidance
- Employers' liability insurance for detailed cover requirements
- Workplace pension auto-enrolment for setting up your pension scheme
- Right to work checks for verifying employees' immigration status