Privacy Policy

How we collect, use, and protect your personal data when you use Regilyze.

Last updated: January 15, 2026

1. Who We Are

Regilyze ("we", "our", "us") is a UK company formation platform. We help individuals and businesses register UK limited companies and manage related compliance services.

This Privacy Policy explains how we collect, use, store, and protect your personal data when you visit our website at regilyze.com or use our services.

For all data protection matters, you can reach us at:

This policy applies to everyone who uses our services — company directors, shareholders, website visitors, and anyone who contacts us.

2. Information We Collect

2.1 Information you provide directly

When you create an account, place an order, or use our services, we collect:

  • Identity data: Full name, date of birth, nationality, occupation, previous names
  • Contact data: Email address, phone number, residential address, correspondence address
  • Company formation data: Proposed company name, registered office address, director and shareholder details, share allocation, SIC codes, Persons with Significant Control (PSC) details
  • Verification documents: Passport or national ID copies, proof of address documents (required by UK Anti-Money Laundering regulations)
  • Payment data: Billing address and last 4 digits of card. Full card details are processed and stored only by our PCI-DSS compliant payment provider — we never see or store your full card number.
  • Communication data: Records of correspondence with us via email, phone, web form, or WhatsApp

2.2 Information collected automatically

When you visit our website, we automatically collect:

  • Technical data: IP address, browser type and version, device type, operating system, screen resolution
  • Usage data: Pages visited, time on page, click data, referral source, search terms used to find us
  • Approximate location: Country and city level, derived from your IP address (not precise GPS location)

2.3 Information from third parties

We may receive information about you from:

  • Companies House: Existing company records, filing history, public director/shareholder data
  • Identity verification providers: Confirmation of ID document authenticity
  • Banking partners: Bank account opening status (only if you request a bank referral)
  • Analytics providers: Aggregated, anonymous website usage statistics

3. How We Use Your Information

We use your personal data to:

  • Process and submit company formation applications to Companies House
  • Verify your identity as required by UK Money Laundering Regulations 2017
  • Provide registered office, director's service address, and mail-handling services
  • Submit VAT, PAYE, EORI and related registrations to HMRC on your behalf
  • File annual confirmation statements, accounts, and other compliance documents
  • Communicate with you about your orders, services, and renewals
  • Process payments and issue invoices
  • Send compliance deadline reminders (annual accounts, confirmation statement, etc.)
  • Respond to your enquiries and provide customer support via email, phone, and WhatsApp
  • Refer you to UK banking partners (only with your consent)
  • Send marketing communications (only if you have explicitly opted in)
  • Improve our website, services, and customer experience
  • Comply with our legal and regulatory obligations
  • Prevent fraud and protect our business

4. Legal Basis for Processing

Under UK GDPR, we process your personal data on one or more of the following legal bases:

Purpose Legal Basis
Company formation, registered office and related services Contract: Necessary to perform our agreement with you
Identity verification (AML / KYC) Legal obligation: Required by UK Money Laundering Regulations 2017
Submitting filings to Companies House and HMRC Legal obligation: Required by Companies Act 2006 and tax law
Marketing emails and product updates Consent: Sent only if you have ticked the opt-in box
Website analytics and service improvement Legitimate interest: To improve our services
Fraud prevention and account security Legitimate interest: To protect our customers and our business

5. Data Sharing & Third Parties

We share your personal data only with the following categories of recipients:

5.1 Government bodies (required by law)

  • Companies House: Director, shareholder, PSC, and registered office details. Once filed, this becomes part of the public Companies House register.
  • HMRC: VAT, PAYE, EORI, and Corporation Tax registration data when you request these services.
  • Law enforcement / regulators: Only when required by law, court order, or legitimate regulatory request.

5.2 Service providers we work with

  • Payment processors: PCI-DSS compliant providers for secure card processing
  • Identity verification providers: To check the authenticity of your ID documents
  • Cloud hosting: Secure UK / EU based servers
  • Email delivery: Transactional and notification emails
  • WhatsApp Business / Twilio: For customer support and notifications, where used

5.3 Banking partners (with your consent)

If you request a business bank account referral, we share limited information (name, email, company details) with our banking partners to facilitate account opening. Our current partners include Barclays, NatWest, Lloyds, HSBC, Tide, Monzo, Wise, and Revolut. This sharing only happens when you ask for a referral.

We do not sell your personal data. Ever. We don't share it with advertisers, data brokers, or any third party for marketing purposes that you haven't explicitly agreed to.

6. International Data Transfers

Your data is primarily stored and processed within the United Kingdom and European Economic Area (EEA).

In limited circumstances data may be transferred outside the UK / EEA — for example, to certain payment processors or banking partners. When this happens, we ensure appropriate safeguards are in place, including:

  • UK adequacy decisions (where the destination country is recognised as offering equivalent protection)
  • Standard Contractual Clauses (SCCs) approved by the UK and EU
  • Binding Corporate Rules where applicable

7. Data Retention

We keep your personal data only as long as necessary to fulfil the purposes for which it was collected, including legal and regulatory requirements:

Data Type Retention Period
Company formation records 10 years after company dissolution (UK legal requirement)
AML / KYC verification documents 5 years after end of business relationship
Financial & payment records 7 years (UK tax requirements)
Customer support communications 3 years after last contact
Marketing consent records Until consent withdrawn + 1 year
Website analytics data 26 months

8. Cookies & Tracking

Our website uses cookies and similar technologies. Cookies are small text files stored on your device that help us run the site, remember preferences, and understand how the site is used.

8.1 Types of cookies we use

  • Essential cookies: Required for the website to function (login sessions, security tokens, CSRF protection). Cannot be disabled.
  • Functional cookies: Remember your preferences such as language
  • Analytics cookies: Help us understand how visitors use the site — aggregated and anonymous
  • Marketing cookies: Used to measure advertising effectiveness, only set with your consent

For full detail on cookies, see our Cookie Policy.

9. Your Rights (UK GDPR)

Under UK GDPR, you have the following rights:

  • Right of access: Request a copy of the personal data we hold about you
  • Right to rectification: Request correction of inaccurate or incomplete data
  • Right to erasure: Request deletion of your data (subject to legal retention requirements)
  • Right to restriction: Request we limit how we use your data
  • Right to portability: Receive your data in a structured, machine-readable format
  • Right to object: Object to processing based on legitimate interests, or to direct marketing
  • Right to withdraw consent: Where processing is based on consent, withdraw it at any time

To exercise any of these rights, email info@regilyze.com. We will respond within one calendar month.

Note about Companies House: Some information you submit (director names, registered office address, PSC details) becomes part of the public Companies House register and cannot be removed by us, even if you exercise your right to erasure. Companies House is the data controller for that public record.

10. Data Security

We implement appropriate technical and organisational measures to protect your personal data, including:

  • 256-bit SSL/TLS encryption for all data transmitted to and from our website
  • Encrypted storage of sensitive documents and verification materials
  • Strict access controls limiting which staff can see personal data
  • Two-factor authentication on all admin accounts
  • Secure UK / EU based data centres
  • Regular security reviews and software updates
  • Staff training on data protection and confidentiality

While we take all reasonable precautions, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security of data transmitted online.

11. Children's Privacy

Our services are not directed at children. The minimum age to be a UK company director is 16, and we do not knowingly collect personal data from anyone under 16. If you believe we have inadvertently collected data from a child, please contact us immediately so we can delete it.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. When we do, we will:

  • Post the updated policy on our website with a new "last updated" date at the top
  • Email you about material changes if you have an active account

Please review this policy periodically.

13. Contact & Complaints

If you have questions about this Privacy Policy or how we handle your personal data:

We aim to resolve every concern internally. If you remain dissatisfied, you have the right to lodge a complaint with the UK supervisory authority:

Information Commissioner's Office (ICO)
Website: ico.org.uk
Phone: 0303 123 1113
Post: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF

We would appreciate the chance to address your concerns first — please reach out to us before contacting the ICO.