Contractors Import & Export Property Investors About Resources Get Started
Legal

Privacy Policy

Last updated: June 2026

1. Purpose of this notice

This notice describes how we collect and use personal data about you, in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and any other applicable national laws and regulations, as amended from time to time.

Please read the following carefully to understand our practices regarding your personal data and how we will treat it.

2. About us

Dali & Co Accountants Ltd is regulated by ACCA. Our registered office is at Office 108, Flexi Office, Big Yellow, 1 Eastman Road, Harrow, HA1 4WL.

Company registration number: 14487891

ICO registration number: [to be confirmed — please contact us at info@daliaccountants.co.uk if you require this detail before it is published here]

For the purposes of the Data Protection Legislation and this notice, we are the data controller. This means we are responsible for deciding how we hold and use personal data about you. We are required under the Data Protection Legislation to notify you of the information contained in this privacy notice.

Our data protection point of contact is Bijay Dali. You can contact him using the details in section 12 below.

3. How we may collect your personal data

We obtain personal data about you, for example, when:

  • you request a proposal or apply for a call via our website;
  • you complete a website health check or lead magnet and ask us to contact you about the result;
  • you or your business engages us to provide our services, and during the provision of those services;
  • you contact us by email, telephone, post, or social media;
  • you sign up to receive resources such as our CIS Tax Guide or our newsletter; or
  • from third parties and publicly available sources, such as Companies House or HMRC.

4. The kind of information we hold about you

The information we hold about you may include the following:

  • your personal details, including name, address, email address, and phone number;
  • your company details and business information;
  • website form answers, health-check scores, and consent records where you submit them to us;
  • your tax reference number and National Insurance number;
  • your bank details where required for direct debit or HMRC refund purposes;
  • payroll information, including details of your employees where applicable;
  • details of your assets and liabilities;
  • records of contact we have had with you in connection with the provision of our services;
  • details of any services you have received from us;
  • our correspondence and communications with you;
  • information about any complaints or enquiries you make to us; and
  • information received from other sources, including publicly available records from Companies House and HMRC.

5. How we use your personal data

We may process your personal data for purposes necessary for the performance of our contract with you and to comply with our legal obligations. We may also process your data where we have a legitimate interest in doing so, provided that interest does not override your rights and freedoms.

Specifically, we may use your personal data to:

  • carry out our obligations arising from any agreement entered into between you and us;
  • provide you with information about our services that you have requested or that we believe may be of interest to you, where you have consented to be contacted for such purposes;
  • send you accounting and tax updates relevant to your industry, where you have opted in to receive them;
  • seek your thoughts and opinions on the services we provide; and
  • notify you about any changes to our services.

You have the right to opt out of marketing communications at any time by contacting us or using the unsubscribe link in any email we send.

In some circumstances we may anonymise or pseudonymise your personal data so that it can no longer be associated with you. In that case we may use it without further notice to you.

If you refuse to provide us with certain information when requested, we may not be able to perform the contract we have entered into with you, or we may be unable to comply with a legal or regulatory obligation.

6. Data retention

We will only retain your personal data for as long as is necessary to fulfil the purposes for which it was collected.

If you are not a client of ours, we will retain your information for 12 months after we last heard from you. If you ask to be removed from our marketing list, we may retain your details on a suppression list to ensure we do not contact you again.

If you are or were a client, we retain most of your information for 7 years after the closure of your account, in line with HMRC statutory requirements.

Where we need to use your personal data for a new purpose other than that for which it was collected, we will notify you and communicate the legal basis for doing so before beginning any new processing.

7. Data sharing

We will share your personal data with third parties only where we are required by law, where it is necessary to administer the relationship between us, or where we have a legitimate interest in doing so.

Third parties with whom we may share your data include:

  • our IT and software service providers, in order to deliver and maintain our services;
  • email delivery providers, such as Resend (US), where needed to send confirmation emails or replies to your enquiry;
  • security providers, such as Cloudflare Turnstile (US), where needed to protect our forms from spam and automated abuse;
  • AI content-processing services, such as Google Gemini (US), used as part of our newsletter drafting pipeline;
  • image-sourcing services, such as Unsplash (US), used to source licensed images for our newsletter;
  • our professional advisers, including auditors, lawyers, and insurers, to the extent necessary for them to provide advice;
  • HMRC and any relevant regulatory or supervisory authority where we are required to disclose;
  • fraud prevention agencies and other organisations where required for compliance checks; and
  • relevant authorities where necessary to prevent fraud or illegal activity.

We will never sell your personal data to third parties.

8. Transferring personal data outside the UK

Some of the third-party processors listed in section 7 are based in the United States. We transfer personal data to them where this is necessary to deliver our services — for example, sending a confirmation email via Resend, processing a form submission via Cloudflare Turnstile, generating newsletter content via Google Gemini, or sourcing newsletter images via Unsplash.

Where we transfer your personal data to the United States, we rely on the UK–US Data Bridge (the UK extension of the EU–US Data Privacy Framework) as the transfer mechanism, where the recipient is a certified participant, or on the UK International Data Transfer Agreement (UK IDTA) where appropriate. All US processors we use are contractually required to process personal data only for the purposes for which it was shared and to maintain appropriate security standards.

If you would like further information about the safeguards in place for any specific transfer, please contact us using the details in section 14.

9. Data security

We have put in place appropriate technical and organisational security measures to prevent your personal data from being accidentally lost, used, accessed without authorisation, altered, or disclosed. We limit access to your personal data to those employees, contractors, and third parties who have a legitimate need to access it. They process your personal data only on our instructions and are subject to a duty of confidentiality.

Our website forms use Cloudflare Turnstile to help distinguish genuine visitors from automated submissions. Cloudflare may process technical signals for this purpose, as described in Cloudflare's Turnstile Privacy Addendum.

We have procedures in place to deal with any suspected personal data breach and will notify you and any applicable regulator where we are legally required to do so.

10. Your rights

It is important that the personal data we hold about you is accurate and current. Please notify us of any changes using the contact details below.

Under the UK GDPR, you have the right to:

  • Access your personal data and receive details of how we are processing it.
  • Correct any inaccurate or incomplete personal data we hold about you.
  • Erase your personal data where there is no good reason for us to continue processing it.
  • Object to the processing of your personal data where we are relying on a legitimate interest, or where we are processing it for direct marketing purposes.
  • Restrict the processing of your personal data in certain circumstances, for example while we verify its accuracy.
  • Transfer your personal data to you or another controller in a structured, machine-readable format, where processing is based on consent or contract and carried out by automated means.

To exercise any of these rights, please contact us at info@daliaccountants.co.uk. You will not be charged a fee unless your request is clearly unfounded or excessive.

We may need to verify your identity before processing your request.

11. Right to withdraw consent

Where we process your personal data on the basis of your consent, for example in relation to marketing emails, you have the right to withdraw that consent at any time. To do so, please email info@daliaccountants.co.uk or use the unsubscribe link in any email we send you.

Withdrawing consent does not affect the lawfulness of processing carried out before withdrawal, and we may continue to process your data where another lawful basis applies.

12. Cookies

This website does not use tracking or advertising cookies. If analytics are enabled, they are configured to collect no personally identifiable information.

13. Changes to this notice

Any changes to this privacy notice will be published on this page. This notice was last updated in June 2026.

14. Contact us

If you have any questions about this notice, or wish to exercise any of your data protection rights, please contact:

Bijay Dali
Dali & Co Accountants Ltd
Office 108, Flexi Office, Big Yellow
1 Eastman Road, Harrow, HA1 4WL
Email: info@daliaccountants.co.uk
Telephone: 020 8138 8083

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at any time. The ICO is the UK supervisory authority for data protection.

Information Commissioner's Office
Wycliffe House, Water Lane
Wilmslow, Cheshire, SK9 5AF
Telephone: 0303 123 1113
Website: ico.org.uk/concerns