This article considers business understandings of two of the principal features of the new regulatory governance. First, it focus on attempts to place greater responsibility for risk regulation on business and asks how well equipped they are to manage this. Second, it examines the decentering of the state and considers how business organizations view the influence of nonstate actors on their business regulation. These issues are discussed with reference to data from two different research projects in the United Kingdom. The findings question the implicit assumptions the new regulatory governance makes about how well equipped businesses are to manage the risks they generate and how able nonstate influences are to influence the full range of businesses.