Privacy Policy

Last updated: March 2026 · B2Verify

Our core commitment

B2Verify does not sell, rent, or share your personal data with third parties. We do not use your data for advertising. We do not process the personal data of individuals who appear in business records — that data is sourced from public UK registers and is not collected by us.

1. Who We Are

B2Verify is the data controller for personal data you provide when creating an account or contacting us. Contact: hello@b2verify.com.

2. What Personal Data We Collect

We only collect what is strictly necessary:

  • Account data: your name and email address, collected when you create an account via Clerk.
  • Usage data: search query counts (not the queries themselves) to enforce monthly limits.
  • Payment data: handled entirely by Stripe. We never see or store card details.
  • Anonymous search cookie: a single HTTP-only cookie for unauthenticated users to track one free search (30-day expiry). No personal data stored.

Business data we display (directors, addresses, filings) is sourced from Companies House public registers under the Open Government Licence. We do not collect or store this data in association with your account.

3. How We Use Your Data

  • To provide and maintain your account and subscription
  • To enforce search quotas and subscription limits
  • To send transactional emails (account creation, billing receipts)
  • To detect and prevent misuse or fraud

We do not use your data for:

  • Advertising or marketing to third parties
  • Selling or sharing with data brokers
  • Profiling or automated decision-making

4. Legal Basis for Processing (UK GDPR)

  • Contract performance: processing your account and subscription details
  • Legitimate interests: security monitoring and fraud prevention
  • Consent: optional marketing communications (where applicable)

5. Third-Party Services

We use a minimal set of sub-processors:

ClerkAuthentication and account managementPolicy ↗
StripePayment processing. No card data is stored by us.Policy ↗
VercelHosting and infrastructure (EU/UK data centres)Policy ↗

No other third parties receive your personal data.

6. Cookies

We use strictly necessary cookies only: session cookies managed by Clerk for authenticated users, and a single anonymous-search cookie (HTTP-only, anon_search_used, 30-day expiry) for unauthenticated visitors. No advertising, analytics, or tracking cookies are set.

7. Data Retention

Account data is retained for as long as your account is active plus 90 days after deletion (to handle disputes or chargebacks). Stripe billing records are retained as required by financial regulations (typically 7 years).

8. Your Rights Under UK GDPR

You have the right to:

  • Access a copy of your personal data
  • Correct inaccurate data
  • Request erasure (right to be forgotten)
  • Restrict or object to processing
  • Data portability
  • Withdraw consent at any time

To exercise any of these rights, email hello@b2verify.com. We will respond within 30 days. You may also lodge a complaint with the ICO (Information Commissioner's Office).

9. International Transfers

Your data is processed within the UK and EU. Where US-based sub-processors are used (Clerk, Stripe), transfers are covered by Standard Contractual Clauses (SCCs) or the UK International Data Transfer Agreement (IDTA).

10. Changes to This Policy

We will notify registered users by email if we make material changes. The "last updated" date at the top of this page will always reflect the current version.