Because of Brexit
So the UK can now diverge from EU regulations, not to make things less stringent as has been widely hyped, but to make things more stringent and going further than the initial EU effort.
The British government wants to make Amazon, Google, and other digital service providers report cybersecurity breaches to the Information Commissioner, according to newly published plans. Due to Brexit, the government can amend the UK's Network and Information Security (NIS) Regulations to let the Information Commissioner's …
In general, EU members can set more stringent parameters if they like. For example nearly every other member state had greater restrictions on freedom of movement than the UK did.
@El Reg: if you have any analysis of why the EU regs would have stopped this, I'd love to read it. For obvious reasons UK.gov is not a neutral party on this topic.