There are numerous IT related Laws, rules, Regulations and guidelines covering businesses and organisations in the UK.  Some more applicable to smaller business (remember laws apply to all).

PCIDSS –  Payment Card Industry Data Security Standard for those handling branded credit cards, even manually

Cyber Essentials Scheme

Data Protection

Privacy and Electronic Communications Regulations