Cyber Security Longitudinal Survey
The government is conducting a longitudinal survey from June-August 2025 to study cyber security practices and the effects of cyber incidents on organisations.
Documents
Details
The Cyber Security Longitudinal Survey (CSLS) helps us better understand cyber security policies and processes within medium and large businesses and high-income charities. It explores the links over time between these policies and processes and the likelihood and impact of a cyber incident.
The privacy notices for businesses and charities taking part in this survey are attached on this page.
This is the fifth phase of the research and therefore this report enables us to make comparisons with the previous phases of research.
- The first phase of the research was published in January 2022
- The second phase of research was published in December 2022
- The third phase of research was published in March 2024
- The fourth phase of research was published in February 2025.
The report also summarises additional insight from a number of follow-up qualitative interviews with survey respondents.
This research informs the government鈥檚 work to improve the cyber resilience of organisations across the UK economy.
For more information on the cyber security behaviours of organisations, please see the annual Cyber Security Breaches Survey.
Updates to this page
-
Page updated to attach privacy notice for qualitative interview participants in 2025.
-
Wave four results added to the collection and privacy information updated ahead of wave five data collection.
-
We have edited the privacy notice for CSLS wave 4, 2024.
-
First published.