Terms and Conditions

Terms and Conditions

This page (taken with the documents and pages it refers to) tells you the terms of use which you agree to when you use the www.ncsc.gov.uk website and any associated services described below (the “web services”).

General terms of use

By using the website and its web services, you indicate that you accept these Terms and Conditions and that you agree to abide by them. If you do not agree to these Terms and Conditions please refrain from using the website and its web services.

You agree to use the web services only for lawful purposes and in a manner that does not infringe the rights of, or restrict or inhibit the use and enjoyment of, this site by any third party. Additionally, you must not misuse the web services by knowingly introducing viruses, trojans, worms, logic bombs or other material which is malicious or technologically harmful. You must not attempt to gain unauthorised access to the web services, the server on which they are stored or any server, computer or database connected to the web services. You must not attack the web services via a denial-of-service attack or a distributed denial-of-service attack. Any breach of this provision may be reported to the relevant law enforcement authorities and where necessary we will co-operate with those authorities by disclosing your identity to them.

Use of content

Intended use of advice and guidance

The National Cyber Security Centre (the NCSC) provides advice and assistance on cyber security in support of the Government of the United Kingdom, the armed forces of the Crown, and other persons and organisations, in each case in accordance with its functions under the Intelligence Services Act 1994. Unless otherwise indicated, the advice and guidance material hosted on the web services is provided and intended for use by this audience, and is published on the web services in order that the intended recipients can have easy access to the material.

Crown copyright

The material on the web services is, unless stated otherwise, subject to Crown copyright. Unless we indicate that certain Crown copyright content may be available for use under a different arrangement, you may use or reuse the content published on the web services without prior permission but must adhere to and accept the terms of the Open Government Licence for public sector information. You must acknowledge the source of the content and include a link to the Open Government Licence wherever possible. Authorisation to reproduce a third party’s copyright material must be obtained from the copyright holders concerned.


You are not permitted to use logos displayed on the web services under the terms of the Open Government Licence, and so requests for permission to use logos should be directed to the Enquiries team using the Contact Us form. Please tell us how and why you wish to use the logo, and include your name, address, telephone and fax numbers and your email address with your request.


The NCSC encourages users to establish hypertext links to the web services, however we don’t give you permission to suggest that your website is associated with, or endorsed by, the NCSC.

Where the web services contain links to other websites then these links are provided for your information only. Unless explicitly stated, linking should not be taken as endorsement of any kind. We have no control over the contents of those sites or resources, and accept no responsibility for them or for any loss or damage that may arise from your use of them. Where third parties reproduce our information on websites or applications, those applications or websites may use versions of our information that has been edited or cached. The most up-to-date version of our information will always be that available on the web services. We don’t provide any guarantees, conditions or warranties as to the accuracy of any such third party products and do not accept liability for loss or damage incurred by users of such third party products under any circumstances.

Virus Protection

Whilst we check and test material at all stages of production, you must take your own precautions to ensure that the processes which you employ for accessing the web services do not expose you to the risk of viruses, malicious computer code or other forms of interference which may damage your own computer system. It is always wise for you to run an antivirus program on all material downloaded from the Internet. We cannot accept any responsibility for any loss, disruption or damage to your data or your computer system which may occur whilst using material derived from the web services.

The NCSC blog

The NCSC is the UK’s authority on cyber security. We will use this blog to share insights with our customers on our work and our thoughts on key issues in the world of cyber security. Our blog participation and moderation guidelines set out how you can participate with this blog and how it will be moderated by the NCSC Communications team.

Participation and moderation guidelines

When posting comments, please observe our site participation guidelines:

  • Be respectful of others who use this site.
  • Stay on topic.
  • Do not use language that is offensive, inflammatory or provocative (this includes, but is not limited to, swearing and obscene or vulgar comments).
  • Do not break the law (this includes libel, condoning illegal activity and contempt of court).
  • Do not use this site for party political purposes (this site is paid for with public money so it’s inappropriate to engage in party-political activity).
  • Please do not post personal information in comments such as addresses, phone numbers, e-mail addresses or other online contact details, which may relate to you or other individuals.
  • Do not impersonate or falsely claim to represent a person or an organisation.
  • Do not attempt to log on using another user’s account.
  • Do not commercially endorse or promote any product, service or publication not relevant to the discussion.
  • If you are aged 16 or under, please get the permission of your parent or guardian before participating.

Blog comments are pre-moderated to check they comply with the NCSC blog participation guidelines above. If comments don’t comply they will not be published.

How we evaluate comments:

  • Is this comment on topic, does it add value to the discussion and can the NCSC answer publicly? If so, we’ll post a timely response within 48 hours.
  • Is this person asking for information or detail relating to another NCSC service e.g. is it a general customer query? If so, we’ll provide the user with the correct contact details so that they can re-submit the query through the correct front door.
  • Does this comment raise an issue with NCSC content? If so we'll contact the NCSC team responsible for fixing the content or issue and tell the user this has been done.
  • Is this comment a rant at the NCSC venting frustration or anger? If so, we will not publish the post but we will monitor and discuss with the digital team first, referring to the participation guidelines.

Privacy statement

We process information about you in accordance with our Privacy Policy. By using this website, you consent to such processing and you warrant that all data provided by you is accurate.

This privacy statement only covers this website and does not cover links within this website to other websites.


The NCSC does not provide any guarantees, conditions or warranties as to the accuracy of the information on the web services. We do not warrant that the functions contained in the material on the web services will be uninterrupted or error free, that defects will be corrected, or that the web services or the server that makes them available are free of viruses or represent the full functionality, accuracy and reliability of the material.

In addition, the advice and guidance material made available on the web services is not mandatory, is not intended to cover all scenarios and is not tailored to a particular set of facts or circumstances, or a specific organisation or individual. Users should seek to ensure that they obtain specific advice that is tailored to their particular facts or circumstances. As such, the NCSC does not accept liability for loss or damage incurred by users of the web services, whether direct, indirect or consequential, whether caused by tort, breach of contract or otherwise. This includes (without limitation) loss of:

  • income or revenue;
  • business;
  • profit or contracts;
  • anticipated savings;
  • data;
  • goodwill; and / or
  • tangible property.

It also includes wasted management or office time and loss or damage incurred in connection with the use, inability to use, or results of the use of the web services, any websites linked to them and any materials posted on them.
This does not affect our liability for death or personal injury arising from our negligence, nor our liability for fraudulent misrepresentation, nor any other liability which cannot be excluded or limited under applicable law. 

Governing Law

These Terms and Conditions shall be governed by and construed in accordance with the laws of England and Wales. Any dispute arising under these Terms and Conditions shall be subject to the exclusive jurisdiction of the courts of England and Wales.

Freedom of Information

The Freedom of Information Act 2000 (FOIA) allows members of the public to request access to information held by certain public authorities. In legal terms, the NCSC (being a part of GCHQ) is not subject to FOIA, and therefore will not process FOIA requests. For further information on FOIA please refer to the Information Commissioner's Office.

Revisions to these terms

We may at any time revise these Terms and Conditions without notice. Please check these Terms and Conditions regularly, as continued use of the web services after a change has been made is your acceptance of the change. This page was last updated on 20 June 2017. The NCSC may change the content of the web services at any time.

Associated Services 

Web Check

  • In providing Web Check, NCSC intends to perform precise testing and minimise the volume of traffic it will send to websites. Web Check will indicate what, if anything, is known to NCSC about vulnerabilities and/or suboptimal configurations that affect the websites in question. NCSC will use information from a range of sources in order to provide Web Check, and as those sources are liable to change on a frequent basis, the result of each query that is provided by NCSC must only be considered valid at the time it is provided.
  • You are responsible for analysing the results of queries to inform a risk-based decision on your usage of websites, and you accept that use of Web Check does not guarantee the absence of security-related issues or the secure operation of the websites. Additionally, NCSC can only provide results based on such information as it holds at the relevant time, and it makes no warranty or representation as to the accuracy, completeness or fitness for purpose of such information, or that Web Check will be uninterrupted or error free. Accordingly, results to queries are provided on an “as is” basis.
  • We will use information generated by or provided to Web Check in accordance with Our Privacy Policy which can be found at Privacy policy.
  • You warrant and represent that you are authorised to run security tests on websites, and that the provision of Web Check will not infringe any third party rights.