Sign in
Legal

Privacy Policy

Last updated 8 June 2026. How we handle personal data under UK GDPR.

Who we are

CompaniesIQ Ltd (“CompaniesIQ”, “we”) is the data controller for personal data processed through this site. Company no. 14820317, London, United Kingdom. Contact: privacy@companiesiq.co.uk.

Company register data

The company information we display originates from the UK public register (Companies House) and official statistics (ONS, Nomis), reused under the Open Government Licence. This is public-record data, not data we collect from you. See sources & methodology.

Data we collect about you

  • Account — your email address, when you sign in via magic link (processed by our auth provider, Supabase).
  • Billing — if you subscribe, payment is processed by Stripe; we store your subscription status and Stripe customer reference, never your card details.
  • Enquiries / lead forms — the name, email and phone you submit through a report or visibility-review form.
  • Analytics — privacy-conscious usage data via Google Analytics 4 (no entity-identifier pages, query strings stripped).

Lawful bases

We process account and billing data to perform our contract with you; enquiry data on the basis of your consent / our legitimate interest in responding; and analytics on the basis of legitimate interest in improving the service.

Sharing & processors

We use trusted processors — Supabase (auth & database), Stripe (payments), Resend (email), Vercel (hosting) and Google (analytics). We do not sell your personal data.

Your rights

Under UK GDPR you can request access, correction, deletion, restriction or portability of your data, and object to processing. Email privacy@companiesiq.co.uk. You may also complain to the ICO (ico.org.uk).

Retention

We keep account and billing records for as long as your account is active and as required by law, and remove enquiry data when it is no longer needed.

This policy is provided in good faith and should be reviewed by your legal adviser before launch.