Windows 10 end of life is straightforward for Small and Medium Enterprises (SMEs): audit every business device, replace machines that can move safely, and buy temporary cover only where you can’t move in time.
As of October 14, 2025, Microsoft ended routine security patches, bug fixes, and standard technical support for the platform, according to Microsoft Learn (learn.microsoft.com).
Operating since 1992, Microbyte holds Cyber Essentials Plus and supports clients through our own 24/7/365 engineers. We also align managed service processes with International Organisation for Standardisation (ISO) 27001 information security management and International Organisation for Standardisation (ISO) 27018 cloud privacy expectations, so upgrade planning is treated as a security, privacy, and governance issue.
That October 2025 date has now passed, so this guide explains the evidence behind the shift, the cost of delay, and the plan we’d use for a UK SME.
Why the Market Moved so Fast
For most of 2025, many directors could still believe they had time. The numbers changed that argument. The shift was reported in Statcounter coverage by TechRadar (techradar.com), using web client data from more than 1.5 billion sites.
As recently as December 2025, Statcounter data indicated that the newer Microsoft platform had plateaued at about 50.73% of the market, while Microsoft’s older operating system still held roughly 44.68%. By the end of February 2026, the newer platform had reached around 72.57% to 72.78%.
The Planning Signal
The older platform’s market share fell by more than 18 percentage points, dropping to about 26.27% to 26.45%. Statcounter data published in March 2026 showed Windows 11 gaining roughly 22 percentage points in two months and crossing the 72% threshold.
That movement matters because delay is now a visible business choice, not a quiet technical backlog.
What the Paid Stopgap Costs
Extended Security Updates (ESU) are a paid holding pattern, not a proper upgrade plan. They can buy time for awkward machines, legacy software, or phased replacement, but they don’t give you new features, non-security updates, or normal technical support.
Late 2024 and early 2025 saw Microsoft clarify the ESU pricing structure for enterprise clients, confirming the punitive $61/$122/$244 doubling matrix. The cost starts at $61 USD per device for Year One and uses a strict \( 2 \times \) multiplier for each later year.
The Three-Year Bill
An SME requiring three years of extended support will incur a total cost of $427 per computer. For any fleet, that paid cover still sits alongside engineer time, testing, replacement machines, and staff downtime.
If you don’t have a device register, our guide to small business IT support explains why planned support beats ad hoc firefighting. Cost is only the easy part to price. The harder bill arrives if an unsupported device sits inside a breach report.
The Compliance and Security Risks for UK Businesses
The compliance issue is clear: if a device stores client, staff, or financial data, unsupported software becomes an evidentiary problem after an incident. The UK General Data Protection Regulation (UK GDPR) asks for appropriate technical and organisational measures, so you need written decisions, not hopeful silence.
The Information Commissioner’s Office (ICO) guidance (ico.org.uk) tells organisations to assess unsupported systems and keep a documented list of software approaching the end of life. Under the current UK GDPR regime, serious infractions can incur fines of up to €20 million or 4% of global annual turnover, whichever is higher.
The Records You Need
For most UK SMEs, the evidence pack should cover three points:
- Asset visibility: Keep a current list of every affected laptop, desktop, and server still in use.
- Risk treatment: Record whether each machine is upgraded, replaced, covered by Extended Security Updates (ESU), or isolated from the wider network.
- Decision ownership: Name who approved the exception, when it expires, and when the business will review it again.
In 2015, Carphone Warehouse suffered a sophisticated cyberattack originating from a Vietnamese IP address, resulting in the compromise of personal data belonging to more than three million customers and 1,000 employees. Following an investigation, the ICO levied a £400,000 fine under the pre-GDPR Data Protection Act 1998.
What Your Evidence File Should Show
For directors, the practical position is clear: keep an asset list showing every laptop, desktop, and server still affected. Record whether each device is upgraded, replaced, licensed for paid cover, or isolated. Separate legacy machines from normal staff systems where replacement is delayed.
Your board notes should show why each exception exists and when it ends. The regulatory stance is unambiguous: running unsupported desktop software after October 2025 without ESU coverage or stringent network isolation creates avoidable risk. That doesn’t mean panic, but it does mean your upgrade plan needs evidence, ownership, and dates.
How We Build A Controlled Upgrade Plan
A rushed migration creates avoidable disruption. A calm plan starts with what each device does for the business, then works backwards from risk, cost, and staff impact.
The transition to Windows 11, or to another approved operating approach, is limited by hardware requirements, notably Trusted Platform Module hardware and Secure Boot capabilities. In plain English, TPM 2.0 is a security chip, and Secure Boot checks that the computer starts with trusted software.
The Four-Step Plan
Millions of older PCs, particularly those using pre-Intel 8th Generation or pre-AMD Ryzen 2000 series processors, lack native support for that hardware requirement and cannot be officially upgraded. Throughout 2024 and 2025, adoption remained slow due to hardware constraints and resistance to Microsoft’s growing reliance on mandatory cloud accounts for local user logins.
- Build a device register with the following fields: model, age, warranty, owner, location, and business role.
- Test eligibility for TPM 2.0, Secure Boot, storage, memory, and key business apps.
- Replace high-risk machines first, especially finance, legal, director, and client-facing devices.
- Put short-term exceptions under paid cover, network isolation, and 24/7 monitoring.
Turning the Audit Into Action
Microbyte is a Microsoft Gold Partner and Direct Cloud Solutions Provider (CSP), so we can handle licences, configuration, and support in one place. For many SMEs, this is where IT consultancy services help. We turn a vague technology worry into a timed roadmap, a budget, and a set of decisions your leadership team can sign off.
Our Stamp Out Support approach is built around prevention. We don’t want you waiting for a failed update, a breach warning, or a director’s laptop to stop payroll.
For firms with staff across London Bridge, Peterborough, Woking, Lincoln, Grantham, and remote sites, 24/7 IT support matters because migration work rarely lands at a perfect time. Our own engineers, not outsourced call centres, can monitor, respond, and keep users informed during the change.
Frequently Asked Questions
Use these answers as a starting point before speaking with your IT provider.
What Should SMEs Do With EOL Devices?
Treat end of life (EOL) as a business risk project, not a last-minute software job. Audit every device, check upgrade eligibility, replace high-risk machines, and document any exceptions. If a device can’t move yet, put it under paid cover and isolate it from normal staff systems.
Can I Still Upgrade to the Newer Microsoft Platform for Free?
If the computer is eligible, the in-place upgrade path is normally still available without buying a new licence. The machine must pass checks for TPM 2.0, Secure Boot, processor support, memory, and storage. Back up data and test business apps before starting.
How to Get ESU for Free?
A standard business laptop or desktop typically doesn’t receive ESU for free. Microsoft lists no-additional-cost coverage for some cloud-hosted cases, such as Windows 365 and Azure Virtual Desktop, but physical PCs need paid licensing. Treat free ESU as a cloud exception, not a fleet plan.
How to Keep Legacy PCs Until 2026?
Buy Year 1 cover for the period Oct 15, 2025 – Oct 13, 2026, then activate it properly on each device. Keep those machines monitored, isolated where possible, and listed in your risk register. Use the year to replace or modernise, not to defer the decision again.
What to Do Next
Talk to Microbyte about your device estate. From our Peterborough HQ, Bermondsey Street office near London Bridge, Woking, Lincoln, and Dubai team, we’ll tell you what’s safe, what needs replacing, and what it costs to fix on a fixed monthly plan.
