Skip to Main Content
Login

Privacy Policy

Duport Associates Limited

Last updated: 20 January 2026

Duport Associates Limited (“Duport”, “we”, “us”, “our”) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, and share personal data when you use our website (www.duport.co.uk), create an account, or purchase our products and services.

Please read this Privacy Policy carefully. By using our website, creating an account, or purchasing services, you acknowledge that you have read and understood this Policy.

Who we are

Duport Associates Limited

Company number: 03479577

Registered address: 2nd Floor, 5 High St, Westbury on Trym, Bristol, BS9 3BY

VAT number: 771850219

Data protection contact: Rebecca Dawe.

Email: enquiries@duport.co.uk

Telephone: 0117 950 2667

What this policy covers

  1. This Privacy Policy applies to:
    • visitors to our website;
    • customers purchasing or using our services; and
    • individuals whose data is provided to us in connection with the services we provide (for example, directors, shareholders, PSCs, members, partners, subscribers, and authorised contacts).
  2. Our services include (without limitation):
    • company formation and related filings;
    • compliance, registered office and statutory support services;
    • business address and service address services;
    • domain registration, website hosting, and website-building services; and
    • AI-enabled tools used to support our service delivery.
  3. Our website may contain links to third-party websites. We are not responsible for the privacy practices of those sites.
  4. Where you provide us with personal data about other people (for example, directors or PSCs), you confirm you are authorised to provide it and that you have shared (or will share) this Privacy Policy with them where appropriate.

Personal data we collect

We collect personal data that is necessary to provide our services and meet legal obligations. This may include:

  1. Identity and contact data
    Name, date of birth, address, email address, telephone number.
  2. Business and company data
    Company name, company number, business address, director/shareholder/PSC details, role or position.
  3. Compliance and verification data
    Proof of identity, proof of address, nationality, date of birth, and related information required for anti-money laundering (AML) and regulatory checks.
  4. Payment and transaction data
    Billing details and transaction information (payment processing is handled by third-party providers; we do not store full payment card details).
  5. Technical and usage data
    IP address, browser type, device information, operating system, website usage data, and cookies.
  6. Communications data
    Records of emails, calls, chats, and support requests.
  7. Data from other sources
    We may receive or verify information from third parties where required to provide services or meet legal obligations (for example, Companies House records and identity/AML verification providers).

When personal data is required

Some personal data is required for us to provide services and to meet legal obligations (for example, identity verification/AML requirements, Companies House filings, and account management). If you do not provide the required information, we may be unable to provide the services or may have to suspend or refuse the service.

Lawful bases for processing

We process personal data under one or more of the following lawful bases:

  • Performance of a contract – to provide the products and services you order and to manage your account.
  • Legal obligation – to comply with AML regulations, Companies House requirements, and other legal duties.
  • Legitimate interests – to operate, improve and protect our business, prevent fraud, maintain security, and provide customer support (balanced against your rights).
  • Consent – for marketing communications, non-essential cookies where required, and where you opt in to be contacted by third-party providers (for example, banking or insurance providers).

How we use your personal data

We use personal data to:

  • create and manage customer accounts;
  • provide our services (including formation, filings, address services, compliance support, domain/hosting services, website-building services, and related support);
  • submit filings and applications to Companies House and other authorities where required;
  • carry out identity and AML checks
  • communicate with you about your services, renewals, compliance matters, service status, and support requests;
  • process payments and manage billing;
  • improve our website, services, and customer experience;
  • prevent fraud and maintain the security of our systems; and
  • send marketing communications where you have consented or where permitted by law.

Service-related and compliance communications are not marketing and may be sent regardless of marketing preferences. You cannot opt out of these while you remain a customer.

Use of AI and automated tools

We may use AI-enabled or automated tools to support our services (for example, to help organise information, draft content, or assist customer support). Where we use such tools:

  • they are used to support human decision-making and operational delivery;
  • we do not rely on solely automated decision-making to make legal, regulatory, or compliance decisions on your behalf; and
  • you remain responsible for reviewing and approving information you provide and any outputs you use.

Sharing your personal data

  1. We may share personal data with trusted third parties where necessary to provide our services, including:
    • Companies House and other government bodies or regulators (where required);
    • identity and AML verification providers;
    • payment processors;
    • IT, security, hosting and support providers;
    • domain registration and DNS/hosting providers;
    • email service providers (where included in your plan);
    • professional advisers (for example, legal, audit or insurers) where necessary; and
    • delivery/postal service providers (where mail forwarding is included).
  2. Third parties act as processors or independent controllers and are required to protect your data appropriately. A current list of key service providers is available on request.
  3. We may also disclose personal data where required by law, regulation, or court order, or to protect our rights and the rights of others.
  4. Introductions to third-party providers (opt-in)
    Where you ask us to introduce you to a third-party provider (for example, a banking provider or insurer) and you opt in to be contacted, we may share relevant contact and business details with that provider so they can contact you. We will name the provider(s) at the point you opt in and, where possible, provide a link to their privacy information. These providers will usually act as independent controllers of your personal data and will process your data in accordance with their own privacy notices.

International transfers

Personal data is primarily stored and processed in the UK and EEA. Where personal data is transferred outside the UK/EEA, we ensure appropriate safeguards are in place in accordance with UK GDPR (for example, the UK International Data Transfer Agreement (IDTA), the UK Addendum to EU Standard Contractual Clauses, or other lawful safeguards).

Data retention

We retain personal data only for as long as necessary:

  • for the duration of the service and any renewal period;
  • to comply with legal and regulatory requirements (including AML record-keeping requirements, which are typically for at least 5 years after the end of a business relationship or completion of a transaction, and may be longer where lawful and necessary, for example to deal with disputes); and
  • to resolve disputes or enforce agreements.

When data is no longer required, it is securely deleted or anonymised.

Your rights

Under UK GDPR, you have rights including:

  • access to your personal data;
  • rectification of inaccurate data;
  • erasure (where applicable);
  • restriction of processing;
  • objection to processing (including objection to marketing);
  • data portability (where applicable); and
  • withdrawal of consent (where processing is based on consent).

Requests can be made using the contact details in Section 16.

You also have the right to complain to the Information Commissioner’s Office (ICO).

Cookies and analytics

We use cookies and similar technologies to operate and improve our website, including analytics tools such as Google Analytics and Hotjar. Details are provided in our Cookie Policy.

Marketing preferences

You may opt out of marketing communications at any time using unsubscribe links or by contacting us. This does not affect service or compliance communications.

Security

We take appropriate technical and organisational measures to protect personal data, including access controls, encryption, staff training, and security policies.

Changes to this policy

We may update this Privacy Policy from time to time. Any changes will be published on our website and, where appropriate, we will notify you through your account or by email.

Contact us

If you have questions about this Privacy Policy or your personal data, please contact:

Rebecca Dawe
Email: enquiries@duport.co.uk
Telephone: 0117 950 2667
Address: 2nd Floor, 5 High St, Westbury on Trym, Bristol, United Kingdom, BS9 3BY