Last updated: 1 January 2026
1. Introduction
DPO CRM Ltd. ("we," "us," or "our") operates the DPO CRM software platform and the dpo.finance website. This Privacy Policy describes how we collect, use, and protect your personal information when you use our services.
We are committed to protecting your privacy and complying with applicable data protection laws, including the UK General Data Protection Regulation (UK GDPR), the EU GDPR, and the Data Protection Act 2018.
2. Data we collect
Information you provide
- Account information (name, email, company, role)
- Billing information (processed by our payment providers)
- Customer data you upload to your CRM (contacts, deals, communications)
- Support inquiries and communications with us
Information we collect automatically
- Usage data (pages visited, features used, time spent)
- Device information (browser, operating system, IP address)
- Cookies and similar tracking technologies
3. How we use your data
- To provide, maintain, and improve our services
- To process payments and manage billing
- To send service-related communications
- To respond to support requests
- To detect and prevent fraud or abuse
- To comply with legal obligations
4. Data sharing
We do not sell your personal information. We share data only with:
- Service providers who help us operate our platform (hosting, payments, analytics)
- Legal authorities when required by law
- Business partners with your explicit consent
5. Data security
We implement industry-standard security measures including AES-256 encryption at rest, TLS 1.3 in transit, regular security audits, and ISO 27001 certification. See our Security page for details.
6. Your rights
Under GDPR, you have the right to:
- Access your personal data
- Correct inaccurate data
- Request deletion (right to be forgotten)
- Restrict or object to processing
- Data portability
- Withdraw consent at any time
- Lodge a complaint with a supervisory authority (e.g., the UK ICO)
7. Data retention
We retain your personal data only as long as necessary to provide our services and comply with legal obligations. When you close your account, we delete your data within 30 days, except where we are legally required to retain it longer.
8. International transfers
Your data may be transferred to and processed in countries outside your home jurisdiction. We use Standard Contractual Clauses and other approved safeguards to ensure adequate protection.
9. Cookies
We use essential cookies to operate our service and analytics cookies to understand how you use it. You can manage cookie preferences through your browser settings.
10. Children's privacy
Our services are not directed at children under 16. We do not knowingly collect personal information from children.
11. Changes to this policy
We may update this policy from time to time. We will notify you of significant changes by email or through our platform.
12. Contact us
For privacy-related inquiries, contact our Data Protection Officer:
DPO CRM Ltd.
Attn: Data Protection Officer
20 Farringdon Street, London EC4A 4AB
Email: privacy@dpo.finance