Free business continuity plan template builder. Build a complete BCP and DR plan covering impact analysis, recovery objectives and test procedures.
A business continuity plan keeps your most critical activities running during a disruption. A disaster recovery plan is the technical part: how you restore IT systems and data. This builder produces both, because a board needs them joined up.
It is a free generator. You answer a short set of plain questions and it produces a tailored BC and DR plan outline: scope, a business impact analysis starter, recovery objectives, priority scenarios, roles, communications and a test schedule. You see the result on screen.
No. The outline is structured around ISO 22301, the international business continuity standard, so it follows the right logic. It is not an audit, an assessment against the standard, or certification. It gives you a credible starting point a full programme can build on.
Recovery Time Objective is the longest you can be down before serious harm. Recovery Point Objective is how much recent data you could afford to lose. The builder proposes sensible defaults from your answers and explains why each critical activity may need its own.
Boards, trustees, chief executives, chief operating officers and operations leaders in UK mid-market and non-profit organisations. No technical knowledge is needed. The output is written for decision-makers, not just IT.
Most organisations do not have a tested one. The DSIT 2025 to 2026 survey found only 44% of small businesses hold a continuity plan that covers cyber security, and that figure had fallen. Size does not remove the risk; it usually removes the slack to absorb it.
No, and we will not pretend it does. An outline is the first 10%. Real resilience comes from a proper business impact analysis, recovery strategies tested against reality, and exercising the plan. The builder shows you the shape and flags the gaps.
Yes. Cyber attack and ransomware are among the scenarios you can prioritise, and the disaster recovery section reflects NCSC guidance, including tested, offline or immutable backups and the 3-2-1 approach.
We ask for your name, work email and organisation so we can show your plan and, if you consent, follow up. We do not sell your data. Starkhorn is an independent advisory consultancy; we help boards turn an outline like this into a tested, owned plan. We do not sell certification, insurance or software.