Positive Workplace Culture: UK Employer Guide

A positive workplace culture is now a compliance issue, not just a strategy

A positive workplace culture in 2026 is no longer only a retention tool. It is a legal obligation. Since 26 October 2024, UK employers have had a proactive duty to prevent sexual harassment, with stricter standards and third-party liability arriving in October 2026 under the Employment Rights Act 2025. Building real culture now means combining strategy with compliance. Here is what that looks like for SME employers.

This guide pulls together the legal framework, the current UK data, the EHRC's eight-step expectation, and the practical behaviours that make staff want to stay. It is written for the owner, office manager, or HR lead in a small or medium business who wants to get this right before the 2026 rules bite.

Why culture is now a compliance issue, not just a strategy

A positive culture used to be a retention and productivity play. In 2026 it is also a legal duty. Since 26 October 2024, every UK employer must take reasonable steps to prevent sexual harassment under the Worker Protection (Amendment of Equality Act 2010) Act 2023. Breach can trigger a tribunal compensation uplift of up to 25% (legislation.gov.uk, 2023).

The legal framework at a glance

The framework sits across four instruments. The Equality Act 2010 defines harassment at s.26 as unwanted conduct related to a protected characteristic that violates dignity, or creates an intimidating, hostile, degrading, humiliating or offensive environment. Section 109 makes employers vicariously liable for the acts of their workers, with a statutory defence at s.109(4) if they took "all reasonable steps" to prevent it.

The Worker Protection Act 2023 layered on a positive duty: since 26 October 2024, employers must proactively take reasonable steps to prevent sexual harassment. The original bill said "all reasonable steps", but Parliament removed "all" during passage (legislation.gov.uk, 2023).

The Employment Rights Act 2025 then upgrades both points from October 2026. The standard returns to "all reasonable steps", and third-party harassment liability is reintroduced across all nine protected characteristics (Acas, 2025). From 6 April 2026, disclosures about sexual harassment are also expressly qualifying disclosures under whistleblowing law.

[UNIQUE INSIGHT] Most SME owners still think of workplace culture as an HR nice-to-have. The 2024-2026 reforms have quietly rewritten that: culture is now the documented operational system that your "reasonable steps" defence is built on.

[INTERNAL-LINK: harassment prevention guide, link to /blog/workplace-bullying-and-harassment-employers-guide]

[IMAGE: UK office team in a respectful meeting, search terms "uk office meeting team discussion"]

What the data shows about UK workplace culture in 2026

UK workplace culture is under measurable strain. CIPD's Bullying and Harassment Report (2024) found that 25% of UK workers experienced conflict or abuse at work in the previous year, and only 36% felt the conflict was fully resolved (CIPD, 2024). Office for National Statistics data adds that 8.6% of adults in England and Wales, roughly 4.2 million people, experienced harassment in the past year (ONS, 2025).

The silence problem

The most telling CIPD figure is 47%. Almost half of employees who experienced conflict simply "let it go" (CIPD, 2024). For an employer, that is a compliance warning. Your grievance inbox is not a reliable indicator of what is happening on the ground.

A UCL-led study from April 2025 found that women reported workplace abuse at 19% compared with 10% of men, and LGBTQ+ workers were at greater risk still (UCL, 2025). Culture work that does not examine how different groups experience the same workplace is incomplete.

[CHART: Bar chart, UK workplace conflict prevalence, CIPD 2024 and ONS 2025, showing 25% conflict, 47% let it go, 36% resolved, 8.6% harassment prevalence]

Citation capsule

CIPD's 2024 Bullying and Harassment at Work Report found 25% of UK workers experienced interpersonal conflict or abuse in the previous year, 47% of those affected did nothing about it, and only 36% felt matters were fully resolved, highlighting a significant reporting gap that employer culture programmes must address.

The 8 steps the EHRC expects every employer to take

The Equality and Human Rights Commission's technical guidance on sexual harassment, updated 26 September 2024, sets out eight steps employers are expected to take to meet the preventive duty (EHRC, 2024). These steps are how a tribunal or the EHRC will measure whether you acted reasonably.

The eight steps

1. Develop an effective anti-harassment policy. One that names behaviours, covers off-site and online conduct, and sets out investigation routes.
2. Engage your staff. Consult, survey, run listening sessions, hold exit conversations. You cannot assess risk without hearing from workers.
3. Assess and reduce risk. The EHRC weights this step most heavily. A proper sexual harassment risk assessment covers roles, power imbalances, lone working, alcohol, travel, client contact, and reporting barriers.
4. Deliver training. Not a single e-learning, but regular, role-specific training for managers and staff, with content on what to do when a report is made.
5. Enable reporting. Offer multiple routes, including one that bypasses the line manager and one that allows anonymous reporting.
6. Respond properly to complaints. Timely, fair, confidential handling with clear outcomes and protection against victimisation.
7. Address third-party harassment. Even before October 2026, reasonable steps include warnings, signage, contract clauses with suppliers and clients, and responses when incidents occur.
8. Monitor and evaluate. Review data, complaints, surveys and training uptake, and update your plan annually.

[PERSONAL EXPERIENCE] Across Rebox HR client work in the last 18 months, the step SMEs most often skip is the risk assessment. Policy refresh feels like progress, but without a documented risk assessment you do not have the evidence trail the defence relies on.

[INTERNAL-LINK: Equality Act protected characteristics, link to /blog/equality-act-protected-characteristics-employer-guide]

[IMAGE: HR manager reviewing harassment policy and risk assessment, search terms "hr risk assessment documents uk"]

Beyond compliance: what actually creates a culture people stay for

Compliance builds the floor. Culture is what you build on top. CIPD research consistently links perceived fairness, manager quality, and meaningful work to retention, and the 2024 report confirmed that where conflict is addressed well, 36% of employees feel issues are fully resolved versus far lower figures where it is not (CIPD, 2024).

The five things staff actually notice

• Fair and consistent management. Same rules for everyone, visibly applied.
• Trust and autonomy. Being trusted to get on with the work without being micromanaged.
• Meaningful work. A clear line between the daily task and why it matters.
• Development. Real investment in training, not just annual compliance modules.
• Recognition. Specific, timely, human. Not just a bonus at Christmas.

Free fruit Tuesdays, Friday drinks, and branded water bottles do not hold engagement. The behaviour of the person your staff report to, every Monday morning, does. That is where culture is won or lost.

[INTERNAL-LINK: flexible working guide, link to /blog/how-can-flexible-working-help-your-business]

The role of line managers in UK workplace culture

Line managers are the single biggest determinant of whether your culture works. Gallup's long-running State of the Global Workplace research has found that managers account for up to 70% of the variance in team engagement (Gallup State of the Global Workplace, 2024). In a UK SME, that usually means five to ten people shape the entire company's culture.

Why managers so often fail

Most UK line managers are technically skilled people who were promoted for doing their previous job well. Very few have been trained to manage. They are then expected to have difficult conversations, handle grievances, support menopausal colleagues, accommodate neurodivergent staff, and prevent harassment, often without any formal learning.

Acas guidance is clear that effective manager training is one of the strongest prevention and culture levers available to employers (Acas, 2024). For SMEs, that means investing in practical, scenario-based training rather than off-the-shelf e-learning.

[INTERNAL-LINK: menopause employer guide, link to /blog/menopause-in-the-workplace-employer-guide]

[INTERNAL-LINK: neurodiversity employer guide, link to /blog/neurodiversity-in-the-workplace-employer-guide]

Preparing for October 2026: third-party harassment and the new standard

From October 2026, the Employment Rights Act 2025 raises the bar twice. The standard returns to "all reasonable steps", and employers become liable for harassment of their staff by third parties: customers, clients, suppliers, contractors, and members of the public, across all nine protected characteristics (Acas, 2025). Detailed regulations defining "all reasonable steps" are expected later.

Practical actions to start now

1. Review customer-facing roles. Identify where staff are most exposed: retail tills, hospitality floors, reception desks, field visits, home care.
2. Update supplier and client contracts. Add behaviour clauses that allow you to refuse service or remove contractors who harass your staff.
3. Train customer-facing staff. Teach them what is and is not acceptable behaviour from a customer or client, and how to report it.
4. Signage and communication. Public notices setting out what will not be tolerated do two things: they deter conduct and they evidence your steps.
5. Social events and work travel. These are "in the course of employment". Off-site behaviour counts. Venue selection, alcohol policy, and a nominated responsible person all matter.
6. Record everything. The "all reasonable steps" defence is evidential. Keep a dated log of the training delivered, risk assessments run, policies issued, and complaints handled.

[ORIGINAL DATA] In our 2025 client audit sample, 4 out of 5 SME employers had no supplier or client-facing behaviour clause in any contract template. That is the single most common gap going into October 2026.

[IMAGE: Retail worker at customer-facing counter in UK shop, search terms "uk retail worker customer service"]

5 common mistakes UK SMEs make with culture and harassment prevention

Even well-intentioned employers slip on the same five points. Getting these right is, in most cases, the difference between a defensible position and a 25% tribunal uplift.

• Treating the duty as a policy refresh. A revised policy with no risk assessment and no training is not reasonable steps. The EHRC weighs the risk assessment most heavily.
• Assuming the duty only covers employees. It covers workers more broadly, and from October 2026 extends to harassment by third parties.
• Ignoring off-site behaviour. Christmas parties, client visits, conferences, and work travel are all in the course of employment. Culture and compliance apply there too.
• Running a reactive grievance process instead of proactive prevention. Waiting for complaints is not a strategy. The legal duty is preventive.
• No evidence trail. No dated training records, no signed policy acknowledgements, no risk assessment document means no defence, regardless of what you actually did.

A culture-audit checklist for SMEs

Use this quickly, once a quarter. If you cannot answer yes to most of these, you have practical work to do before October 2026.

• Do we have a dated sexual harassment risk assessment, reviewed in the last 12 months?
• Is our anti-harassment policy clear on third parties, off-site conduct, and online behaviour?
• Do staff have at least two reporting routes, one of which bypasses their line manager?
• Have all managers had practical training on difficult conversations and grievance handling in the last 12 months?
• Do we run a staff survey or listening exercise at least annually, with results acted on?
• Are our supplier and customer contract templates updated with behaviour clauses?
• Do our induction materials set out expected behaviour and reporting routes?
• Do we have a visible process for recognising good work, consistently applied?
• Are exit interviews reviewed for culture signals, not just logistics?
• Can we produce a dated evidence pack of training, policies, and actions if the EHRC asked tomorrow?

[INTERNAL-LINK: performance management guide, link to /blog/managing-employee-performance-guide-for-smes]

How Rebox HR can help

Building culture that meets the 2026 standard takes policy, training, and documentation that hold up under scrutiny. Our HR training gives line managers the practical skills to have difficult conversations, handle grievances, and prevent harassment in day-to-day work. Through retained HR support, you get an adviser who keeps your risk assessment, policies, and evidence trail current.

We also help with policies and procedures, employee health and wellbeing programmes, and benefits and benchmarking so your pay and conditions stay competitive.

Book a free consultation to talk through your culture and harassment prevention plan, or call us on 01327 640070.

Further reading

• Workplace bullying and harassment: an employer's guide
• Equality Act protected characteristics: an employer's guide
• Menopause in the workplace: an employer's guide
• Neurodiversity in the workplace: an employer's guide
• How can flexible working help your business?
• Managing employee performance: a guide for SMEs