For accountantsJoin the waitlist
For SubcontractorsFor AccountantsPartnersPricingAboutGuidesContact
Join the waitlistRequest early access

Data protection & GDPR overview

A plain-English summary of how we think about your data. SubReady is built with privacy and data protection in mind.

Last updated: 2026 · This overview complements our Privacy Policy. Template content — please obtain professional legal review before launch.

We don’t claim to be “GDPR compliant” as a guarantee. Instead, we design SubReady with privacy and data protection in mind, take a data-minimisation approach, and keep improving. Final compliance should be confirmed with a qualified professional before launch.

Our principles

  • Data minimisation — we aim to collect only what we need for record keeping and to respond to you.
  • You stay in control — you control your bank connections and accountant access at all times.
  • Read-only bank sync — where applicable, bank connections are read-only. SubReady does not move money or initiate payments.
  • Permission-based sharing — records are shared with your accountant or partners only with your permission, and you can revoke access.
  • No selling of data — we do not sell your personal data.
  • Privacy-first forms — enquiry consent is separate from marketing consent, and marketing is always opt-in.

Roles

For personal data processed through our website and product, Aigenticura Ltd acts as the data controller. Service providers who process data on our behalf (for example, secure hosting and email) act as processors under appropriate agreements. Where bank connections are provided through a regulated third party, that provider may act as a separate controller for the data it handles.

Lawful bases

Depending on the activity, we rely on your consent (for example, marketing), the performance of a contract (for example, providing the product), or our legitimate interests (for example, securing and improving the service). Where we rely on consent, you can withdraw it anytime.

International transfers

If any data is processed outside the UK by our providers, we will take steps to ensure an appropriate level of protection, using recognised safeguards where required.

Your rights

You have the right to access, correct, delete, restrict or object to processing of your personal data, and to data portability. To exercise any right — including to request access, correction or deletion — email privacy@subready.co.uk. You also have the right to complain to the UK Information Commissioner’s Office (ICO).

Data requests & contact

For any data-protection question or request, contact privacy@subready.co.uk. We’ll respond within the timeframes required by law.

This overview is a starting template. Professional legal review is recommended before launch to confirm it reflects your final data flows, processors and obligations.

Read the full Privacy Policy  Cookie Policy