UK Subscription Trap Laws 2026: The Easy-Exit Rules That Will Transform How You Do Business

The DMCCA's subscription contracts regime arrives in autumn 2026. It introduces cooling-off periods, cancellation parity, and renewal notice requirements that will fundamentally change how subscription businesses operate in the UK. The Competition and Markets Authority can fine non-compliant businesses up to 10% of global annual turnover — without going to court. If you run a subscription business that serves UK consumers, the clock is ticking.

This isn't a vague future possibility. The government consultation on implementation closed in March 2025. The rules are drafted. The enforcement infrastructure is built. The only question is whether your business will be ready when the regime takes effect.

What's Coming: The Subscription Contracts Regime

The subscription contracts regime is part of the Digital Markets, Competition and Consumers Act 2024 (DMCCA) — the same legislation that gave the CMA direct fining powers for dark patterns. While Parts 3 and 4 of the DMCCA (covering general consumer protection) took effect on 6 April 2025, the subscription-specific provisions were deliberately delayed to give businesses more time to prepare.

The original target was April 2025. That was pushed back to autumn 2026 specifically because the government recognised the scale of operational changes required. Subscription businesses need to redesign sign-up flows, build renewal notification systems, implement compliant cancellation mechanisms, and retrain customer service teams. That takes time — but the time is now running out.

The regime applies to “subscription contracts” — any contract for goods, services, or digital content that involves recurring payments or automatic renewal. That covers SaaS products, streaming services, gym memberships, magazine subscriptions, meal kit deliveries, software licences, and any other model where a consumer pays on an ongoing basis.

The core requirements fall into four categories: easy exit, cooling-off periods, renewal notices, and pre-contract information. Each one represents a significant change from current practice for many UK businesses.

The Easy-Exit Principle: Cancellation Parity

The easy-exit principle is the centrepiece of the new regime, and it is simple to state: cancellation must be as easy as sign-up.

If a customer signs up online, they must be able to cancel online. If sign-up takes one click, cancellation should take no more than one click — after any required confirmation step. If a customer can subscribe through an app, they must be able to unsubscribe through the same app.

What the easy-exit principle prohibits:

• Phone-only cancellation when sign-up was online — if a customer signed up on your website, requiring them to call a phone number to cancel is a clear breach
• Multi-step retention gauntlets — routing customers through five pages of “Are you sure?” screens, each presenting different offers and reasons to stay, before they reach the actual cancel button
• Email or letter requirements — requiring customers to send an email, fill out a form that gets “reviewed,” or write a physical letter to cancel a subscription they started with a button click
• Hidden cancellation mechanisms — burying the cancel option deep in account settings, behind non-obvious menu items, or requiring customers to search help documentation to find how to cancel
• Artificial delays — accepting a cancellation request but then requiring a “processing period” or “confirmation call” before the cancellation actually takes effect

The principle is channel-neutral. Whatever mechanism you use to acquire subscribers, you must offer an equivalently simple mechanism for them to leave. The days of frictionless sign-up paired with deliberately obstructive cancellation are numbered.

Cooling-Off Periods — After EVERY Renewal

The DMCCA subscription regime introduces a 14-day cooling-off period that applies in two situations: after the initial sign-up, and after each automatic renewal.

During the cooling-off period, a consumer can cancel and receive a pro-rata refund for the unused portion of the subscription period. This isn't a full refund of the entire payment — it's calculated based on the time remaining. If a consumer signs up for a monthly subscription and cancels on day 5, they're entitled to a refund for the remaining 9 days (assuming a 14-day billing period) or equivalent.

The cooling-off period after each auto-renewal is the provision that will most surprise businesses. For monthly subscriptions, the 14-day cooling-off window overlaps significantly with the billing cycle — a consumer could effectively cancel within the first 14 days of any month and receive a partial refund. For annual subscriptions, the impact is even more dramatic: a customer who auto-renews for another year gets a 14-day window to reconsider, cancel, and receive a pro-rata refund for the remaining approximately 351 days.

This fundamentally changes the economics of annual subscription plans. Many businesses currently rely on annual lock-in as a revenue stabiliser. Under the new regime, annual subscribers effectively get a 14-day opt-out window every year — turning what was a firm commitment into something closer to a yearly decision point.

The consumer must be informed of their cooling-off right at the point of sign-up and at the point of renewal. Failing to notify consumers of the cooling-off period doesn't remove the right — it extends it.

Renewal Notices: The “Reminder” That Becomes Mandatory

Before each automatic renewal, businesses must send a reminder notice to the consumer. This notice isn't a marketing opportunity — it's a compliance requirement with specific content obligations.

Every renewal notice must clearly state:

• The renewal date — when the next billing cycle begins
• The price — the exact amount the consumer will be charged, including any price changes
• How to cancel — a clear, simple explanation of the cancellation process
• A direct cancellation mechanism — not just instructions, but an actual way to cancel directly from the notice (such as a link or button)

The notice must be sent with adequate lead time before the renewal date. The exact timing requirements are specified in the implementing regulations, but the principle is that consumers must have enough time to read the notice, consider their options, and cancel if they choose — before the charge hits.

For free trial to paid conversions, the requirements are particularly strict. A notice must be sent before the trial ends, clearly stating that the consumer will be charged, the amount they will be charged, and how to cancel before the conversion happens. Silent free-trial-to-paid conversions — where a consumer forgets they signed up and discovers an unexpected charge — are precisely the subscription trap this regime is designed to eliminate.

Missing a renewal notice doesn't just create a poor customer experience. It creates a legal liability. If a required notice is not sent, the consumer may be entitled to cancel and receive a refund for the entire renewal period. And systematic failure to send renewal notices is exactly the kind of practice that attracts CMA enforcement attention.

Pre-Contract Information

Before a consumer enters a subscription contract, they must receive clear, prominent disclosure of the key terms. Not buried in page 47 of the terms and conditions. Not in 8-point grey text below the fold. Prominent and unmissable.

Required pre-contract information includes:

• The full price — including all fees, charges, and taxes
• Billing frequency — weekly, monthly, quarterly, annually
• Minimum term — if there is a minimum commitment period
• Renewal terms — how and when the subscription auto-renews
• How to cancel — the process and mechanism for ending the subscription
• Cooling-off rights — the consumer's right to cancel within 14 days

This information must be provided before the consumer is bound by the contract. Presenting it on a confirmation page after payment has been taken is too late. Presenting it only in a post-purchase email is too late. The consumer must have this information at the point where they make their subscription decision.

For businesses that currently rely on streamlined, low-friction sign-up flows, this means redesigning the checkout experience to include prominent information disclosure without completely destroying conversion rates. It's a design challenge, but it's a solvable one — and businesses that solve it well will build more trust with their customers in the process.

Amazon Prime: The Case That Shaped These Rules

If you want to understand what the CMA will target under the subscription contracts regime, look at Amazon Prime.

In September 2025, Amazon settled with the FTC for $2.5 billion over Prime cancellation dark patterns — the largest dark pattern settlement in history. The FTC found that Amazon's cancellation flow was deliberately designed to be confusing and discouraging. Customers who tried to cancel were routed through multiple screens, each presenting different retention offers, warnings about benefits they'd lose, and confusingly worded options where it was unclear which button actually cancelled the subscription.

The CMA also investigated Amazon Prime subscriptions in the UK. The pattern was the same: signing up for Prime was effortless — often a single click during checkout. Cancelling required navigating a multi-step flow that Amazon internally referred to by a name that revealed its true purpose: a retention funnel designed to prevent cancellation rather than facilitate it.

The DMCCA subscription contracts regime is designed to prevent exactly this pattern. Under the new rules, Amazon's Prime cancellation flow would violate the easy-exit principle (cancellation harder than sign-up), the renewal notice requirements (inadequate notification before auto-renewal), and potentially the pre-contract information requirements (sign-up flow that obscures the subscription commitment).

Amazon can absorb a $2.5 billion fine. Most UK subscription businesses cannot. The lesson is clear: if your cancellation flow resembles Amazon Prime's — even a less extreme version — you need to redesign it before autumn 2026.

CMA Enforcement Powers

The CMA's enforcement powers under the DMCCA are substantial, and the subscription contracts regime is backed by the same penalty framework that applies to all DMCCA consumer protection provisions.

The headline number: up to 10% of global annual turnover. This is a direct administrative fine — no court proceedings required. The CMA investigates, reaches a finding, and imposes the penalty.

Beyond fines, the CMA can impose enhanced consumer measures: mandatory changes to business practices, compensation for affected consumers, and ongoing compliance monitoring. For a subscription business, this could mean being forced to redesign your entire subscription flow under CMA supervision, refund affected customers, and submit to regular compliance audits.

The CMA has already demonstrated its willingness to use these powers aggressively. Since the DMCCA took effect in April 2025, the CMA has launched 13 formal investigations, fined Euro Car Parks £473,000 for non-cooperation, and sent 100 advisory letters across 14 sectors. Subscription businesses are explicitly in the CMA's crosshairs — the subscription contracts regime exists because the government and the CMA identified subscription traps as one of the most harmful categories of dark patterns affecting UK consumers.

To understand how UK penalties compare to the EU and Australia, the UK's 10% turnover cap is now broadly in line with EU enforcement under the Digital Services Act and the Omnibus Directive, and significantly exceeds Australia's current penalty framework — though Australia is also strengthening its enforcement. The global trend is unmistakable: subscription trap enforcement is intensifying everywhere.

12-Month Compliance Roadmap

With autumn 2026 approaching, subscription businesses need a structured plan to achieve compliance. Here is a 12-month roadmap.

Months 1–2: Audit Current Subscription Flows

Map every touchpoint in your subscription lifecycle: sign-up pages, upgrade flows, trial conversions, renewal processes, and cancellation mechanisms. Document the number of steps, clicks, and screens involved in each. Identify where the sign-up experience and the cancellation experience diverge. Run a free TrustScan compliance scan to establish a baseline assessment of your current dark pattern risk.

Months 3–4: Design Compliant Cancellation Flows

Redesign your cancellation mechanism to achieve parity with your sign-up flow. If sign-up is one click, cancellation should be one click (plus a confirmation step). Ensure the cancellation option is accessible through the same channel as sign-up. Remove retention gauntlets — you can present one retention offer alongside a clearly prominent cancel button, but the cancel path must remain friction-free.

Months 5–6: Implement Renewal Notice System

Build or configure an automated renewal notice system that sends compliant notices before each auto-renewal. Each notice must include the renewal date, price, cancellation instructions, and a direct cancellation mechanism. Pay special attention to free-trial-to-paid conversions — these need their own notice flow with appropriate timing.

Months 7–8: Update Pre-Contract Information

Review every sign-up touchpoint across your website, app, and marketing materials. Ensure that full price, billing frequency, minimum term, renewal terms, cancellation process, and cooling-off rights are all prominently disclosed before the consumer commits. This includes checkout pages, pricing pages, trial sign-up forms, and any in-app upgrade flows.

Months 9–10: Test and Iterate

Conduct internal compliance testing — walk through every subscription flow as if you were a consumer. Then conduct user testing with real customers. Can they find the cancellation option without difficulty? Do they understand the renewal notice? Is the pre-contract information genuinely clear? Iterate based on findings. Document everything — compliance documentation is your defence if the CMA comes calling.

Months 11–12: Go Live, Monitor, and Document

Deploy compliant flows to production. Set up ongoing monitoring to catch regressions — new features, A/B tests, and third-party integrations can reintroduce non-compliant patterns. Document your compliance programme: what you audited, what you changed, when you changed it, and how you monitor ongoing compliance. This documentation is critical evidence if you ever face a CMA inquiry.

Businesses in Australia facing similar subscription trap enforcement should also review our guide on ACCC subscription trap compliance — the pattern categories and compliance principles overlap significantly, even where the specific legal requirements differ.

How TrustScan Helps

TrustScan's automated compliance scanner detects subscription trap patterns — including missing cancellation mechanisms, hidden unsubscribe flows, forced continuity designs, and retention gauntlets — and maps each finding to the specific DMCCA provisions they breach. Rather than waiting for a CMA advisory letter to tell you what's wrong, you can scan your website now and get a baseline assessment of your subscription flow compliance before the regime takes effect.

Common Questions

Do UK subscription rules apply to B2B SaaS?

The subscription contracts regime applies to contracts with consumers (B2C). Pure B2B contracts — where both parties are acting in the course of business — are excluded. However, if your SaaS product has any consumer or prosumer customers, the rules likely apply to those customers. Many SaaS companies serve both markets: a project management tool used by enterprise teams and also by freelancers, for example. If any of your subscribers are consumers, you need to comply for those subscribers. In practice, most SaaS companies find it simpler to apply compliant flows universally rather than maintaining separate experiences for B2B and B2C customers.

Can businesses still offer retention discounts when someone tries to cancel?

Yes, but with important conditions. You can present a retention offer — such as a discounted rate or a pause option — alongside the cancel option. The critical requirement is that the cancel option must remain equally prominent and accessible. The retention offer cannot add friction to the cancellation process. One offer page is acceptable: “Before you go, would you like 50% off for the next 3 months? [Accept Offer] [Cancel My Subscription]” — where both buttons are equally visible and functional. What is not acceptable is a multi-step retention gauntlet where the consumer must decline three different offers across three different screens before reaching the cancel button. The test is simple: does the retention flow add steps or friction to cancellation? If yes, it's non-compliant.

What exactly is the cooling-off period?

A 14-day period after sign-up or after each auto-renewal during which the consumer can cancel and receive a pro-rata refund for the unused portion of the subscription period. It applies after the initial subscription AND after each subsequent auto-renewal. The consumer must be informed of their cooling-off right both at sign-up and at renewal. If you fail to inform the consumer of the cooling-off period, the right is not extinguished — it is extended. The cooling-off period is separate from the easy-exit principle: even after the cooling-off period expires, the consumer retains the right to cancel (they just don't receive a pro-rata refund for the current period).

Are annual subscriptions treated differently from monthly?

Both are covered by the subscription contracts regime. The key practical difference is how the cooling-off period interacts with the billing cycle. For monthly subscriptions, the 14-day cooling-off window overlaps significantly with the billing period — a consumer can cancel within the first 14 days of any month and receive a small pro-rata refund. For annual subscriptions, the impact is larger: the consumer gets a 14-day window after each annual renewal to cancel and receive a pro-rata refund for the remaining approximately 351 days. This makes the annual renewal date a critical moment. Renewal notices are required for both monthly and annual subscriptions, and both must comply with the easy-exit principle. Businesses that rely heavily on annual lock-in should model the financial impact of the cooling-off provision and consider whether their pricing strategy needs adjustment.

What happens if a business misses a renewal notice?

If a required renewal notice is not sent, the consumer may be entitled to cancel and receive a refund for the entire renewal period — not just a pro-rata refund, but a full refund for the period that renewed without proper notice. The business may also face CMA enforcement for non-compliance with the subscription contracts regime. Missing renewal notices is exactly the kind of systematic failure that attracts regulatory attention — it suggests either a deliberate strategy to avoid reminding customers of their right to cancel, or a failure to implement basic compliance infrastructure. Either way, it's a red flag for the CMA. Businesses should treat their renewal notice system as critical infrastructure, with monitoring, alerts for delivery failures, and regular audits to ensure notices are being sent on time with compliant content.