There are numerous IT related Laws, rules, Regulations and guidelines covering businesses and organisations in the UK. Some more applicable to smaller business (remember laws apply to all).
PCIDSS – Payment Card Industry Data Security Standard for those handling branded credit cards, even manually
Cyber Essentials Scheme
Privacy and Electronic Communications Regulations