9 min read
How to Notify Employees During a Cyberattack (When Email & Systems Are Down)
When a cyberattack hits, the channels you’d normally use to warn employees — email, Teams, the intranet — are often the first casualties. They may be...
8 min read
Caroline Duncan
:
Apr 18, 2025
(Updated : May 20, 2026)

The Terrorism (Protection of Premises) Act 2025, also known as Martyn’s Law, has now passed into UK law, changing how venues must prepare for terrorist threats. It requires businesses to take proactive security measures to protect the public.
Public spaces can no longer be passive. They must actively assess risks, implement strong security measures, and prepare to respond to threats. This marks a new era of accountability in public safety.
Read on to learn more about how Martyn’s Law affects businesses, what you can do today to make sure your organization aligns with it, and how internal communication and notification tools can help.
Table of contents
1. What is Martyn’s Law, And Why Is It Important?
2. Key Requirements for Businesses Under Martyn’s Law
3. Security Compliance Challenges for Organizations
4. Best Practices for Improving Security Preparedness
5. How DeskAlerts Supports Security Compliance
The Terrorism (Protection of Premises) Act 2025, known as Martyn's Law, will change security standards across the UK. This law arose from the 2017 Manchester Arena attack and requires businesses and venues to prepare for and reduce terrorist threats.
The law honors Martyn Hett, one of the 22 victims of the bombing. His mother, Figen Murray, advocated for legal obligations on venues to improve security and prevent tragedies.
Martyn’s Law requires public venues and large events to evaluate their vulnerabilities to terrorism and adopt stronger protective measures. While all qualifying venues must consider their emergency response plans, larger sites, especially those hosting over 800 people, will face stricter requirements, including enhanced security protocols.
To understand if your business falls under this law, here are some of the places covered by it:
Anyone in control of these spaces, including landlords, tenants, and event organizers, is responsible for compliance. If multiple parties share control, they must work together to meet standards.
To support enforcement and provide practical assistance, a new regulator under the Security Industry Authority (SIA) will oversee implementation. They will also offer guidance to businesses, so companies won't have to hire expensive consultants.
Ultimately, Martyn’s Law is not just about compliance; it’s about saving lives. By integrating security awareness into daily operations, the UK aims to create a stronger defense against terrorism.
The Act's requirements are expected to come into force in spring 2027, following an implementation period of at least 24 months from Royal Assent. On 15 April 2026, the Home Office published the statutory guidance to help businesses understand their obligations and begin preparing now.
Businesses affected by the law must follow specific requirements based on their size and type.

If your business holds 200-799 people, like restaurants, pubs, shops, or event spaces, you must meet the following requirements under Martyn's Law:
For larger venues with over 800 people, like stadiums or shopping malls, Martyn’s Law adds extra safety requirements:
Overall, bigger crowds bring bigger responsibilities. These steps help safeguard your venue and ensure everyone gets home safe. The good news? The government will support you — you're not alone in this.
Learn more about emergency notification software for businesses.

Everyone agrees that protecting people from terrorism is crucial. However, implementing Martyn’s Law poses challenges for business owners. Here’s what they say:
Even with “proportionate” rules, costs are rising.
In summary, Martyn’s Law is based on strong values, but its success depends on practical, affordable implementation.
See below what you can do as a company to prepare for the changes. See below what you can do as a company to prepare for the changes with emergency communication systems like DeskAlerts.

Take practical steps to keep your people and property safe while aligning with Martyn’s Law. Here’s how:
Teach everyone to spot red flags: unattended bags, strangers asking odd questions. Run "Run, Hide, Fight" drills for shooter situations. Train key staff in first aid, especially for bleeding. Make cybersecurity basics mandatory — no more clicking suspicious links!
Conduct surprise drills for security threats. Test responses to emergencies like bomb threats and cyberattacks. After each drill, ask: "What worked? What failed?" Then take steps to improve.
Use AI cameras that alert you to suspicious behavior. Install systems that lock doors during threats. Set up emergency alerts that reach everyone instantly via texts, alarms, or screens. Protect your security tech from hackers, too.
Work with local police and fire departments. Share security tips with nearby businesses. Make safety everyone's job, not just the security team.
Remember: security isn’t about fear; it’s about being ready. Start small, focus on your biggest risks, and build from there. The most important step? Get started today.
Learn how notification systems help businesses in emergencies like active shootings.

In a crisis — whether it’s a terror threat, fire, or natural disaster — how you communicate matters. Clear and fast messaging keeps staff and customers safe, cuts through confusion, and ensures everyone’s on the same page. That’s why emergency communication is essential.
For businesses under Martyn’s Law, a reliable, well-practiced communication plan is crucial. When pressure mounts, there’s no time to figure things out on the fly.
Here are some best practices for emergency communication:
Every business needs a written plan for distributing messages during an emergency. It should cover:
Tailor your communication plan to fit different emergencies. The clearer the plan, the faster and safer the response.
Relying on just one way of communication in an emergency is risky. A multi-channel approach makes sure messages reach more people, even if one system fails.
Emergency messages should be short and straightforward. Avoid the jargon. When people are stressed, they need clear instructions. These should be easy to grasp and act on right away.
Download your free 10 Most Useful Emergency Message Templates
All employees should be trained in the organization’s emergency communication protocols. This includes knowing how to receive, act on, and share emergency messages if necessary.
Technology can fail in emergencies. So, make sure you have backup systems and procedures for sending and receiving critical communications.
Communication with police, fire, ambulance, and local authorities must be seamless. Know who to contact, how to reach them, and what information they need.
Learn more about emergency communication systems for business.
DeskAlerts is a powerful internal communication tool. It sends urgent messages straight to employees’ screens. When it comes to security compliance, especially with laws like Martyn’s Law, DeskAlerts has features that help organizations prepare, respond, and train employees.
By ensuring fast communication during emergencies, DeskAlerts helps create a safer environment for both staff and the public.
Though DeskAlerts doesn’t meet all Martyn’s Law requirements, it is still useful for security awareness and crisis communication. It is highly customizable to the company’s needs and integrates with other systems, enhancing their effectiveness during crises.
Here’s how DeskAlerts can support security compliance:

In a crisis like a terrorist threat, fire, or lockdown, speed is crucial. People need timely information to stay safe.
DeskAlerts lets you send emergency messages straight to employees' desktops and mobile devices. This method bypasses slow email systems that may fail during a crisis.
You can also transform any screen in your organization into a digital billboard. This boosts the visibility of your messages.
This is essential for meeting requirements for real-time communication during emergencies.
Here’s what one of the clients said after using DeskAlerts:
“With a solution like DeskAlerts that we use in the hospital, it is possible to quickly send messages to selected recipients.” – CHU Saint-Pierre, Belgium
Learn how CHU Saint-Pierre used DeskAlert as a reliable hospital emergency communication tool during a terrorist attack.

DeskAlerts messages come in different formats. These include SMS, desktop alerts, mobile notifications, digital screens, and corporate screensavers. This multi-channel approach helps all staff get the same message. Whether they work on-site, remotely, or in hybrid roles, everyone stays informed. This reduces confusion and miscommunication.
This aligns with Martyn’s Law, which highlights clear and timely communication in emergencies.
Here’s what one of the clients said after using DeskAlerts:
“Prior to using DeskAlert, it was difficult to ensure information was delivered to all staff working in satellite offices.” – Companies House, United Kingdom
Learn how Companies House used DeskAlert multi-channel notifications to decrease the load on tech support.

Security compliance means preparation, not just reaction. DeskAlerts helps schedule and automate training reminders. It can also send awareness campaigns and educational messages about security procedures, risk mitigation, and emergency planning.
This meets Martyn’s Law requirements to provide ongoing emergency staff training and preparedness.

A key feature of DeskAlerts is its ability to segment audiences. During an incident, not all employees require the same message. DeskAlerts allows administrators to send specific instructions based on department, location, or job role.
For example, front-of-house staff might get evacuation orders, while back-office staff are told to stay in lockdown.
This supports the requirement for tiered response planning under Martyn’s Law.
Download your 10 Most Useful Emergency Message Templates

Security compliance often requires documentation of communications and actions taken. DeskAlerts maintains logs of all messages sent, who received them, and when they were acknowledged.
Integrating DeskAlerts into your emergency preparedness plan helps protect staff, meet regulations, and build a culture of security awareness.
Martyn's Law represents a major change in UK security standards. Now passed into law and expected to come into force in spring 2027, it will require businesses and venues to prepare for and reduce terrorist threats.
Effective emergency communication is key to meeting Martyn’s Law requirements, and internal communication tools like DeskAlerts are essential for quickly sharing information during critical incidents.
Send urgent notifications to PCs, phones, tablets, digital signage, and other corporate devices.
Display high-visibility alerts directly on employees' screens to help ensure critical messages are seen and acknowledged. Reach employees even when computers are locked, in screensaver mode, or idle.

9 min read
When a cyberattack hits, the channels you’d normally use to warn employees — email, Teams, the intranet — are often the first casualties. They may be...
6 min read
Communication failures rarely happen because someone “forgot to send an email”, but rather because channels like email, Teams, Slack, and SMS were...
16 min read
Teams is down. Tickets to the help desk flood in faster than anyone in the IT team can triage. Email is useless because half the staff can't sign...
11 min read
Your organization needs to be prepared for a range of emergencies. If you aren’t scheduling fire drills as part of your emergency preparedness, you...
9 min read
How prepared are you for an emergency in your workplace? At a minimum, you should have a fire evacuation plan in place to keep your employees safe....
10 min read
In today's fast-paced business landscape, where profitability often takes center stage, it's easy for workplace safety to slip down the list of...