The Terrorism (Protection of Premises) Act 2025, commonly known as Martyn’s Law, received Royal Assent in April 2025 and introduces a statutory Protect Duty for publicly accessible premises across the UK. Enforcement is expected from 2027, but organisations should begin preparing now.

Martyn’s Law aims to improve protective security and organisational preparedness where the public may be vulnerable to terrorist attack. The legislation focuses on proportionate, risk-based preparedness, rather than imposing rigid or intrusive controls.

The new law does not require prediction of specific threats but expects organisations to understand the risks of terrorism, plan credible responses, and ensure staff are trained to act if an incident occurs.

The Act introduces a two-tier framework. The Standard Tier applies to premises with 200–799 people, requiring evacuation, lockdown or invacuation procedures, communication plans, and staff awareness training. The Enhanced Tier applies to 800+ people and may require additional proportionate security measures justified through risk assessment.

Two new roles are central to compliance; Competent Persons in the Workplace (CPIW) and Counter Terror Security Specialists (CTSS). CPIW are expected to be in-house, operational managers, responsible for implementing the Protect Duty. CTSS are likely to be external subject matter experts, providing guidance on counter terror protective measures. Home Office sponsored organisation “Skills 4 Justice” is developing formal training qualifications for both roles, to be finalised when the Home Office publishes its Section 27 guidance on the Act. Following this publication, the Security Industry Authority (SIA) – the regulatory body for the Act, will publish statutory guidance on how it will enforce the Act. The Home Office has pushed back the target publication date of the guidance from Spring 2026 to Summer 2026.

Organisations should use this waiting period to confirm which premises fall within scope, review emergency and security plans, integrate preparedness into governance, and strengthen staff training. Martyn’s Law should be seen as an extension of good security practice, supporting patient, visitor, and staff safety rather than creating unnecessary burdens. Early engagement will ease future compliance, strengthen board assurance, and align Protect Duty expectations with existing NHS resilience, emergency planning, and violence prevention frameworks.

Security is not just about systems — it’s about people, and how we protect them when the unthinkable happens.

TIAA’s Security Advisory Services are here to help. Our experts can guide you through the practical, ethical, and operational aspects of deploying advanced surveillance solutions, ensuring compliance, resilience, and peace of mind. Contact us today to explore tailored strategies that protect your people, assets, and reputation.

Jonathan Gladwin,  Director – Security Advisory 

Carver Tedstone, Managing Consultant Security Advisory