Overview 

Under UK GDPR/GDPR and similar data protection laws, you may have the right to request deletion of your personal data that we process. This page explains what “data deletion” means, what is in scope, common exceptions, and how to submit a request to Complyport Ltd (“Complyport”). 

Quick summary: You can ask us to delete your personal data. We will verify your identity, assess the request, and respond within the statutory timeframe. Some data may need to be retained for legal or regulatory reasons. 

Who can make a deletion request? 

• Individuals whose personal data is processed by Complyport 

• Authorised agents acting on behalf of an individual (proof of authority required) 

• Parents/guardians acting for minors where permitted by law 

If you are submitting a request on behalf of someone else, we may contact the data subject to confirm your authority. 

What data is in scope? 

Personal data that identifies you directly or indirectly, for example: – Contact details (name, email, phone) – Account/profile information – Communications (emails, support tickets, event registrations) – Website usage data and cookies (where identifiable) – Product usage data for Complyport group technologies (e.g., ComplyPortal, ViCA, MAP FinTech solutions) 

Not in scope: truly anonymised data (cannot be used to identify you). 

When can we refuse or restrict deletion? 

We may refuse, restrict, or partially fulfil a deletion request when we must retain data to: – Comply with a legal obligation (e.g., financial record-keeping, KYC/AML) – Establish, exercise, or defend legal claims – Comply with regulatory requirements applicable to our services – Fulfil a contract or complete an ongoing transaction 

Where an exemption applies, we will explain what we must keep, why, and for how long. 

Verification 

We must verify your identity before acting on a deletion request. Verification steps may include: – Confirming control of your email address – Matching known account or engagement details – Requesting limited supporting documentation (only if necessary) 

We will securely handle and promptly delete any verification documents we receive. 

What happens after you submit a request? 

1. Acknowledgement: we confirm receipt and start verification. 

1. Assessment: we review systems and records in scope. 

1. Outcome: we confirm deletion, partial deletion with reasons, or refusal with reasons. 

1. Timeline: we aim to respond within one month of verifying your identity. For complex or multiple requests, we may extend by up to two additional months; if so, we will let you know. 

Marketing vs. deletion 

If you only want us to stop marketing to you, you can: – Use the unsubscribe link in any email, or – Submit a request to limit processing rather than delete. We will retain minimal data on a suppression list so we don’t contact you again. 

Product-specific notes 

Depending on how you interact with us, your data may be processed in one or more Complyport group technologies: – ComplyPortal: client portal and compliance workflows – ViCA: virtual compliance assistant – MAP FinTech / MAPRMS: regulatory reporting and risk management solutions 

Your request will be coordinated across relevant systems and third‑party processors where applicable. 

Third‑party processors and recipients 

Where data has been shared with service providers (e.g., cloud hosting, email delivery, analytics) or with clients/partners under contract, we will take reasonable steps to notify them of your deletion request where required. 

How to submit a deletion request 

Please choose one of the following: – Email: send your request to dpo@complyport.co.uk with the subject “Data Deletion Request” and include your full name, email address, relationship to Complyport, and any relevant details to help us locate your data. – Postal: Data Protection Officer, Complyport Ltd, [Insert postal address]. 

If you are an authorised agent, include evidence of your authority. We may request additional information to verify your identity. 

 Your rights 

Depending on your location, you may also have rights to access, rectify, restrict processing, object, and data portability. You may withdraw consent at any time where processing is based on consent. 

If you are in the UK, you can contact the Information Commissioner’s Office (ICO) at ico.org.uk. If you are in the EEA, you can contact your local supervisory authority. 

Contact us 

• Email (DPO): dpo@complyport.co.uk 

• General enquiries: info@complyport.co.uk 

For more information about how we collect and use personal data, see our Privacy Notice. 

 Legal 

Complyport Ltd acts as controller for certain processing activities and may act as a processor on behalf of clients. Where we act as a processor, we will redirect your request to the relevant controller where appropriate.  

Meta for SEO (optional for your CMS) 

Page title: Data Deletion (Right to Erasure) | Complyport 

Meta description: Learn how to request deletion of your personal data held by Complyport. Who can request, what’s in scope, legal exceptions, timelines, and how to submit. 

Suggested URL: https://www.complyport.com/datadeletion 

Open Graph: – og:title: Data Deletion (Right to Erasure) | Complyport – og:description: How to request deletion of your personal data held by Complyport. – og:type: article 

Frequently asked questions 

How long does it take? We aim to respond within one month of verifying your identity. Complex cases may take up to two additional months; we will notify you. 

Will everything be deleted? We will delete personal data unless an exemption applies (e.g., legal or regulatory obligations). We’ll explain any data we must keep and for how long. 

Can I submit through an agent? Yes. We require proof of authority and may contact the data subject to confirm. 

What if I only want to stop marketing emails? Use the unsubscribe link or ask us to add you to our suppression list.