
You have probably heard that Martyn’s Law has been passed, but what does that actually mean right now? In simple terms, although it received Royal Assent on 3 April 2025, it is expected to come into force in spring 2027, most likely April 2027.
That means there is currently no legal obligation to comply. However, there is a clear 24 month implementation period to prepare. If you run a venue, a school, or even a busy community space, now is the right time to understand what is coming and what it means in practical terms.
At iSecurity Solutions, we are already helping organisations review their business security systems and procedures so they are not caught off guard when enforcement begins.

Martyn’s Law is the public name for the Terrorism Protection of Premises Act 2025. It was named after Martyn Hett, who tragically lost his life in the Manchester Arena attack in 2017. At its core, the legislation is about making sure venues are better prepared and that people feel safer when attending public places.
The law applies across England, Wales, Scotland and Northern Ireland. It places duties on those responsible for certain premises and events to consider the risk of terrorism and put proportionate public protection procedures in place.
If you would like a broader overview of the background and purpose, you can read what Martyn’s Law is and why it matters for a clear introduction before looking more closely at the timeline.
The Act received Royal Assent on 3 April 2025. However, that does not mean it became enforceable overnight. The Government confirmed there would be a minimum 24 month implementation period before commencement.
In straightforward terms, Parliament has approved the law, but organisations are not yet legally required to comply. Enforcement is expected in spring 2027, with April 2027 widely anticipated as the likely start date.
The Home Office published its Section 27 statutory guidance on 15 April 2026, offering more clarity on expectations. You can see the official summary on the Home Office factsheet, which explains the scope and phased approach.
The Security Industry Authority, known as the SIA, has been confirmed as the UK regulator for Martyn’s Law. This means the SIA will oversee compliance, issue guidance, and take enforcement action once the Act is in force.
In April 2026, the SIA launched a Section 12 regulatory guidance consultation, which remained open until 12 June 2026. The consultation focused on how the regulator intends to use its powers and how it will support organisations during the transition.
The SIA is also reviewing its qualification and training framework, with new standards expected by spring 2027. This will directly affect security teams, door supervisors, and in house personnel responsible for protective security planning.
One of the most common questions is simple. Does this apply to me? The answer depends mainly on capacity and the type of premises or event you manage.
Martyn’s Law introduces two main tiers, standard tier premises and enhanced tier premises. The threshold generally starts at publicly accessible locations with a capacity of 200 or more people.
Standard tier premises are those with a capacity of 200 to 799 individuals. These organisations will be required to have appropriate public protection procedures in place. This includes evacuation plans, lockdown processes, and staff awareness training focused on terrorism related risks.
For many schools, community venues, and mid sized hospitality sites, this will involve reviewing existing emergency plans and making sure staff clearly understand what to do in a worst case situation. If you are already investing in CCTV systems or controlled entry points, you may already be part of the way there. However, documentation and structured training will become more formal and clearly recorded.
Enhanced tier applies to premises and qualifying events with a capacity of 800 or more people. The obligations at this level are more detailed and include assessing and, where reasonably practicable, implementing public protection measures to reduce vulnerability to terrorist attacks.
This may involve physical security improvements, stronger surveillance coverage, access control systems, and clearly defined incident response structures. Large arenas, major event venues, and sizeable retail or leisure complexes are likely to fall within this category.
For example, combining access control solutions with monitored surveillance can significantly strengthen site resilience when supported by clear procedures and properly trained staff.
As of 2026, the clear answer is no. There is currently no legal obligation to comply until the Act formally comes into force in spring 2027.
This is important because there is still some confusion around it. Some organisations believe they must already submit documentation or register with the SIA. You will not need to register or submit anything until the law officially takes effect in 2027.
That said, leaving everything until the last minute is rarely a good plan. A calm and structured review now is far easier than trying to meet new legal duties under pressure.
Preparation does not need to be complicated. In many cases, it starts with asking a few sensible questions. Do you know your building’s maximum occupancy? Have you clearly identified who is responsible for security planning? Are your procedures written down and tested in practice?
If you are reviewing intruder alarms, check the following:
If you manage education settings, comparing your plans with school safeguarding security measures can quickly highlight areas where improvements may be needed.
For CCTV, systems integrated with alarms should align with EN 50131 principles where relevant. Monitored setups requiring police escalation must meet SSAIB certification standards to qualify for a Police Response URN.
Training is equally important. Staff awareness sits at the centre of Martyn’s Law. Procedures stored in a folder will not protect anyone if people do not understand them or know how to act under pressure.
Although Martyn’s Law focuses on terrorism risk, it connects closely with wider life safety planning. Many organisations are already familiar with fire compliance under BS 5839 for fire alarm systems, including L1 or L2 categories depending on building type and risk level.
Emergency lighting must comply with BS 5266, with monthly function tests and annual full duration tests properly recorded. Fire extinguishers should be serviced in line with BS 5306 and BAFE SP101, with an annual service certificate that insurers often require.
Fire risk assessments carried out under PAS 79 provide a clear and structured way to document hazards and control measures. The principle is similar. Identify the risk, assess the impact, apply proportionate controls, and review them regularly.
If you are unsure how often your existing systems should be checked, our article on fire alarm testing frequency explains the legal expectations in simple terms.
Security legislation can feel overwhelming, especially when it introduces new responsibilities. Martyn’s Law is built around proportionate action. It is not about turning every village hall into a fortress. It is about thinking ahead, understanding your risks, and being prepared.
By 2027, the SIA will have clearer regulatory processes in place. Organisations that have already reviewed their security measures, training, and documentation will be in a much stronger position. Many venue managers and business owners are simply looking for clarity and a practical plan that fits their setting.
iSecurity Solutions is a trusted UK provider of commercial and domestic security systems, helping homes and businesses stay protected around the clock. From CCTV and intruder alarms to fire safety, access control and construction site monitoring, our expert team designs reliable, tailored solutions backed by responsive service and modern, remotely monitored technology. Whether you are securing a single property or managing multi site assets, we deliver the equipment, expertise and peace of mind to keep what matters most safe.
We support clients with Insurance Approved, SSAIB certified installations across intruder alarms, CCTV, fire alarms, and access control. Where police escalation is required, systems can be configured to meet the standards necessary for a Police Response URN, provided all certification requirements are satisfied.
So, when does Martyn’s Law come into effect? While Royal Assent was granted on 3 April 2025, enforcement is expected in spring 2027, likely April 2027, following the minimum 24 month implementation period.
There is no legal duty to comply just yet, but the timeline is clear. Taking practical and proportionate steps now will make the transition smoother and far less stressful when the law officially comes into force across the UK.