Division 63

Information Services

8,200 enterprises

12 requirements mapped for this division.

Requirements for all information services

These requirements apply to all business activities in this division.

compliance Great_Britain Ongoing

Health and Safety at Work etc. Act 1974 — general duties

Enforced by: HSE

Health and Safety at Work etc. Act 1974

General duty to ensure the health, safety and welfare of employees and others affected by the business — offices, server rooms and data centres included.

insurance Great_Britain Annual

Employers' Liability Insurance

Enforced by: HSE

Employers' Liability (Compulsory Insurance) Act 1969

Compulsory for any business employing at least one person.

registration Uk Annual

UK GDPR + Data Protection Act 2018

Enforced by: ICO

Data Protection Act 2018; UK GDPR (retained EU law)

Central to this division. Data-processing, hosting and portal businesses are typically both controllers (of their own staff/customer data) and processors (handling client data under Article 28 processor contracts). ICO registration and payment of the data protection fee unless specifically exempt.

compliance Uk Ongoing

Privacy and Electronic Communications Regulations 2003 (PECR)

Enforced by: ICO

Privacy and Electronic Communications (EC Directive) Regulations 2003

Rules on electronic marketing (email/SMS), cookies and similar tracking technologies, and the security/confidentiality of electronic communications. Web portals and hosting/data-processing services relying on cookies, analytics or marketing must obtain valid consent and provide clear information. Sits alongside UK GDPR; enforced by the ICO.

compliance Great_Britain Ongoing

Equality Act 2010 — protected characteristics

Enforced by: EHRC

Equality Act 2010

Discrimination, harassment and victimisation prohibited across the nine protected characteristics, in employment and in services provided to the public (including accessibility of customer-facing digital services).

compliance England_Wales Ongoing

Regulatory Reform (Fire Safety) Order 2005

Enforced by: LOCAL_FIRE_AUTHORITY

Regulatory Reform (Fire Safety) Order 2005

The 'responsible person' for commercial premises (offices, data centres) must carry out a fire risk assessment and maintain fire-safety arrangements. Devolved variants: Fire (Scotland) Act 2005; Fire and Rescue Services (NI) Order 2006.

Activities in this division

63.11

Data processing, hosting and related activities

3,120 enterprises +1 unique requirement

63.99

Other information service activities nec

3,045 enterprises

63.12

Web portals

1,565 enterprises +2 unique requirements

63.91

News agency activities

470 enterprises +3 unique requirements