Complyport Limited
Provides governance, risk, compliance consulting and technology solutions for financial services firms.
Website: https://complyport.com
Cover Block
PUBLIC
| Field | Value |
|---|---|
| Name | Complyport Limited |
| Tagline | Governance, risk, compliance consulting and technology solutions for financial services firms |
| Headquarters | London, United Kingdom |
| Founded | 2001 |
| Stage | Growth / Late Stage |
| Business Model | B2B |
| Industry | Fintech (RegTech / Compliance Services) |
| Technology Type | Software (Non-AI) |
| Geography | Western Europe |
| Legal Entity | COMPLYPORT LIMITED, Companies House no. 04333584 |
| Registered Office | 1 Kings Avenue, London, N21 3NA |
Links
PUBLIC
- Website: https://complyport.com
- LinkedIn: https://www.linkedin.com/company/complyport-ltd
- Product (RegTech): https://complyport.tech/compdefai/
- Companies House: https://find-and-update.company-information.service.gov.uk/company/04333584
Executive Summary
PUBLIC
Complyport is a London-based compliance and regulatory consultancy that has spent more than two decades embedded in the plumbing of UK financial services authorisation and supervision, and is now extending that franchise into software with a GRC platform aimed at NIS2 and DORA obligations. Founded in 2001, the firm describes itself as one of the UK's largest independent compliance consulting businesses, with an executive team that combines former regulators, industry practitioners and legally qualified advisors [Complyport][LinkedIn]. Its commercial footprint is meaningful for the category: the company states it has assisted over 1,000 firms with FCA and EU authorisations and provides ongoing regulatory support to more than 600 regulated firms globally [Complyport]. The consulting bench is reported at over 75 multidisciplinary consultants and advisors [Complyport], and named senior hires include James Borley, who joined as Director for Payment Services and Digital Assets after 23 years at the UK financial services regulator [Complyport][LinkedIn], and Martin Schofield, appointed in November 2021 to lead the Financial Crime and Forensics Division [Complyport, 2021]. There is no publicly disclosed venture funding on Crunchbase or PitchBook, which is consistent with a long-standing professional services firm rather than a venture-backed startup [Crunchbase][PitchBook]. Over the next 12 to 18 months the file to watch is the productisation arc: whether COMPDEFAI, the firm's GRC platform for NIS2 and DORA, can convert a captive base of regulated clients into recurring software revenue [Complyport].
Data Accuracy: GREEN -- Confirmed by Complyport, LinkedIn, Crunchbase, PitchBook, and Companies House.
Taxonomy Snapshot
| Axis | Value |
|---|---|
| Stage | Growth / Late Stage (mature private services firm) |
| Business Model | B2B consulting plus emerging B2B SaaS |
| Industry / Vertical | Fintech, RegTech, Compliance Services |
| Technology Type | Software (Non-AI) GRC platform alongside advisory services |
| Geography | Western Europe (UK-headquartered, EU coverage, global support) |
| Funding | No publicly disclosed venture rounds [Crunchbase][PitchBook] |
Company Overview
PUBLIC
Complyport was established in 2001 as a specialist compliance consultancy serving FCA-regulated firms in the City of London, and has grown into what it and third-party databases describe as one of the UK's larger independent compliance consulting businesses [Complyport][LinkedIn][ZoomInfo]. The legal entity, COMPLYPORT LIMITED (company number 04333584), is registered at 1 Kings Avenue, London N21 3NA [GOV.UK]. PitchBook and Crunchbase both date the founding to 2001 and characterise the company as a regulatory consultancy rather than a venture-backed technology startup [PitchBook][Crunchbase].
The firm's positioning has evolved from classic compliance advisory (AML audits, regulatory reporting, financial promotion review, ongoing FCA support) into a broader governance, risk and compliance proposition that now spans ESG advisory, financial crime and forensics, skilled person (s166) and expert witness work, and a regulatory technology arm operating under the complyport.tech domain [Complyport]. ZoomInfo notes that Complyport sits on the FCA's Skilled Persons Panel, an institutional credential that anchors much of the firm's work with stressed or under-investigation regulated entities [ZoomInfo].
Two confirmed milestones structure the recent narrative. In November 2021, Martin Schofield was appointed to lead the Financial Crime and Forensics Division, signalling a deliberate build-out of the firm's investigative and AML practice [Complyport, 2021]. More recently, the launch of COMPDEFAI as a dedicated GRC platform for NIS2 and DORA compliance marks the firm's clearest move from billable-hours consulting into a software product line [Complyport].
Data Accuracy: GREEN -- Confirmed by Complyport, LinkedIn, ZoomInfo, Crunchbase, PitchBook, and Companies House.
Product and Technology
MIXED
Complyport's offering today is a hybrid of advisory services delivered by named consultants and a small but growing technology surface. On the services side, the firm publishes detailed pages covering AML training, financial promotion review, Consumer Duty implementation support, ESG support services, company registration and administration, and skilled person (s166) and expert witness assignments [PUBLIC] [Complyport]. The Consumer Duty workstream specifically references the FCA's expectation that firms reassess product design, pricing, distribution, service delivery and staff training, which Complyport positions as a multi-stage advisory engagement rather than a one-off review [PUBLIC] [Complyport].
The technology piece is concentrated in COMPDEFAI, described on complyport.tech as a GRC platform for NIS2 and DORA compliance with cybersecurity and operational resilience modules [PUBLIC] [Complyport]. The product is marketed with a "Book a Demo" call to action and framed around helping regulated firms reach what the company calls "regulatory maturity" [PUBLIC] [Complyport]. The firm has not publicly disclosed pricing, customer counts on the platform, contract structure, or whether COMPDEFAI is sold standalone or bundled into existing advisory retainers [MIXED]. There is also a separately incorporated product, ComplyPortal, listed on Crunchbase as a software platform for automating regulatory compliance programs in financial services; the relationship between ComplyPortal and Complyport's own technology arm is not clarified in the public record [MIXED] [Crunchbase].
No open job postings were surfaced from the careers page or major ATS hosts during this research pass, so tech-stack inferences from hiring signals are not available [PUBLIC]. The public evidence is consistent with a services-led organisation that is layering a packaged software product onto an installed base of regulated clients rather than a software-first company adding services.
Data Accuracy: YELLOW -- COMPDEFAI and service catalogue confirmed by Complyport's own properties; commercial metrics for the platform are not independently verified.
Market Research and Opportunity
PUBLIC
The market matters now because two new EU regimes (NIS2 and DORA) are pulling cybersecurity and operational resilience firmly inside the regulated compliance perimeter, and UK firms with EU touchpoints are being pulled along with them.
No named third-party TAM report for the UK compliance consulting or RegTech market is present in the cited research, so we avoid quoting a sized figure here. What the cited material does establish is the demand picture inside Complyport's installed base. The firm states it has assisted over 1,000 firms in becoming authorised with the FCA and EU regulators and currently provides ongoing regulatory support to over 600 regulated firms globally [Complyport]. That base is itself a proxy for demand: each of those firms is a candidate buyer for incremental work whenever a new regime (Consumer Duty, DORA, NIS2, the FCA's evolving promotions regime) lands.
| Metric | Value | Source |
|---|---|---|
| Firms assisted with FCA / EU authorisation | over 1,000 | [Complyport] |
| Regulated firms supported on an ongoing basis | over 600 globally | [Complyport] |
| Multidisciplinary consultants and advisors | over 75 | [Complyport] |
The analyst takeaway is straightforward: the ratio of ongoing-support clients (600+) to total consultants (75+) implies an account-per-consultant load that is only sustainable with productised workflows or templated deliverables, which is precisely the gap a platform like COMPDEFAI is positioned to fill.
Demand drivers surfaced by the cited research cluster around three regulatory waves. First, the FCA's Consumer Duty, which Complyport notes is now fully in effect and obliges firms to reassess products, pricing, distribution and governance [Complyport]. Second, financial crime and AML, where the firm has built a dedicated division under Martin Schofield since November 2021 [Complyport, 2021]. Third, operational resilience and cybersecurity under DORA and NIS2, which is the explicit wedge for COMPDEFAI [Complyport]. Adjacent and substitute markets include the Big Four advisory practices, specialist boutiques such as Bovill, restructuring and risk firms such as Kroll, and pure-play RegTech vendors selling directly to compliance officers.
Data Accuracy: YELLOW -- Complyport-published metrics are internally consistent and corroborated by ZoomInfo and LinkedIn descriptions, but no independent TAM figure is cited.
Competitive Landscape
MIXED
Complyport competes in a fragmented UK and EU compliance market where the credible alternatives range from large global risk advisories to specialist consultancies and software-only RegTech vendors.
| Company | Positioning | Stage / Funding | Notable Differentiator | Source |
|---|---|---|---|---|
| Complyport | UK independent compliance consultancy with emerging GRC platform | Mature private, no disclosed venture funding | FCA Skilled Persons Panel membership; 1,000+ authorisations assisted | [Complyport][ZoomInfo][PitchBook] |
| Bovill | UK-focused regulatory compliance consultancy serving financial services | Mature private (acquired by Ocorian in 2024 per public reporting) | Deeper international footprint, especially US and APAC desks | [PUBLIC] (named in structured facts) |
| Kroll | Global risk and financial advisory with regulatory compliance practice | Mature private, large-cap | Scale, brand, and adjacent investigations / valuation services | [PUBLIC] (named in structured facts) |
The segment-by-segment map looks like this. At the top end, Kroll and the Big Four address large banks and asset managers with multi-disciplinary teams that bundle compliance with audit, forensic and transaction services; Complyport does not credibly compete for that buyer on scale, but does compete on price, responsiveness and FCA-specific depth. In the mid-market, Bovill is the most direct named comparator, with a similar UK-rooted advisory model, and the competition there is on bench depth, sector specialisation (payments, asset management, wholesale) and named-partner reputation. At the lower end and in the new technology layer, pure-play RegTech vendors compete for the budget that COMPDEFAI is targeting, with the difference being that Complyport bundles software with the human advisors who interpret the regulator's expectations [MIXED].
Where Complyport has a defensible edge today is in regulatory proximity and credentialing. Membership of the FCA's Skilled Persons Panel is a hard-to-replicate distribution channel because s166 appointments arrive through the regulator itself [ZoomInfo]. The named hire of James Borley, with 23 years at the UK regulator before joining as Director for Payment Services and Digital Assets, deepens that proximity in payments and digital assets specifically, two of the more active enforcement areas in the UK [Complyport][LinkedIn]. That edge is durable for as long as the regulator continues to lean on a small panel of trusted firms, and perishable to the extent that individual senior consultants can be hired away by competitors.
Where Complyport is most exposed is in software economics. Bovill's post-acquisition scale and Kroll's balance sheet allow either firm to subsidise a competing GRC platform aimed at the same NIS2 and DORA buyer; pure-play RegTech vendors can iterate product faster because software is their only line of business. Complyport's renewal motion on a SaaS product is unproven in the public record, and the company has not disclosed COMPDEFAI customer counts or ARR [MIXED].
The most plausible 18-month scenario: winner if Complyport converts even a modest share of its 600+ ongoing-support clients onto COMPDEFAI as a paid module, because that produces software-like gross margins on top of an already-paid-for distribution channel. Loser if Bovill, now under a larger parent, prices an equivalent platform aggressively into the same accounts before Complyport's product matures.
Data Accuracy: YELLOW -- Subject-firm details corroborated by multiple sources; competitor positioning drawn from named-competitor list in structured facts and general public knowledge of those firms.
Opportunity
PUBLIC
The size of the prize is the chance to convert one of the UK's larger independent compliance franchises into a hybrid services-plus-software business with software-grade margins on a captive regulated-client base.
The headline opportunity. The single largest outcome Complyport could plausibly become is the default UK and EU compliance partner for mid-market regulated firms navigating the post-Brexit, post-DORA, post-Consumer Duty regulatory stack, with a software product (COMPDEFAI) that turns recurring advisory relationships into recurring license revenue. The cited evidence makes this reachable rather than aspirational because the firm already supports more than 600 regulated firms on an ongoing basis and has helped over 1,000 firms through authorisation, which is the customer acquisition stage where loyalty is set [Complyport]. Membership of the FCA's Skilled Persons Panel adds a regulator-driven referral channel that most pure consultancies and most software vendors cannot access [ZoomInfo].
Growth scenarios.
| Scenario | What happens | Catalyst | Why it's plausible |
|---|---|---|---|
| Platform conversion | COMPDEFAI becomes a paid module attached to the majority of ongoing-support engagements | DORA enforcement deadlines force regulated firms to evidence operational resilience controls | 600+ ongoing clients already pay for advisory; software adds a line item rather than a new vendor [Complyport] |
| Payments and digital assets specialism | Complyport becomes the go-to advisor for UK payment institutions, EMIs and crypto-asset firms seeking authorisation | James Borley's 23-year regulator background drives inbound from firms preparing FCA applications | Borley is publicly named as Director for Payment Services and Digital Assets, a category with persistent FCA scrutiny [Complyport][LinkedIn] |
| Skilled Person flow | s166 appointments grow as the FCA continues to use external panels for investigations into stressed firms | Continued enforcement intensity in consumer credit, payments and crypto | Complyport is on the FCA Skilled Persons Panel, a position that produces high-margin, regulator-directed engagements [ZoomInfo] |
What compounding looks like. The flywheel that turns one win into the next is the authorisation-to-ongoing-support-to-software pipeline. A firm that uses Complyport to obtain FCA authorisation has a strong reason to retain Complyport for ongoing compliance support, and a client already on an ongoing retainer is the lowest-friction buyer for COMPDEFAI when DORA or NIS2 obligations bite. The 1,000-plus authorisations and 600-plus ongoing clients suggest the first two stages of that flywheel are already turning [Complyport]. The third stage (software attach) is the unproven step and is the key data point investors should request privately.
The size of the win. No directly comparable public peer's market cap is cited in the research, so we avoid putting a number on the upside. Qualitatively, the recent acquisition of Bovill by a larger services group, widely reported in 2024, establishes that strategic acquirers are willing to pay for UK compliance consultancies with regulator-adjacent franchises, which sets a credible exit pathway for Complyport even before any software outcome materialises (scenario, not a forecast).
Data Accuracy: YELLOW -- Opportunity logic anchored in Complyport-disclosed client metrics and confirmed senior hires; software attach economics not independently verified.
Sources
PUBLIC
[Complyport] Home - Complyport | https://complyport.com
[Complyport] About us - Complyport | https://complyport.com/about-us-complyport-limited/
[Complyport] Our Management Team - Complyport | https://complyport.com/who-we-are/our-management-team/
[Complyport] James Borley profile - Complyport | https://complyport.com/who-we-are/our-management-team/james-borley/
[Complyport] Paul Grainger profile - Complyport | https://complyport.com/who-we-are/our-management-team/paul-grainger-non-executive-chairman/
[Complyport] COMPDEFAI - GRC platform for NIS2 and DORA | https://complyport.tech/compdefai/
[Complyport] Consumer Duty Compliance Guide | https://complyport.com/consumer-duty-compliance-guide-what-your-firm-must-know/
[Complyport] ESG Support Services | https://complyport.com/esg-support-services/
[Complyport] Skilled Person s166 and Expert Witness | https://complyport.com/s166-expert-witness/
[Complyport, 2021] Martin Schofield appointment, Financial Crime and Forensics Division | https://complyport.com
[LinkedIn] Complyport company page | https://www.linkedin.com/company/complyport-ltd
[Crunchbase] COMPLYPORT - Company Profile and Funding | https://www.crunchbase.com/organization/complyport
[PitchBook] Complyport 2026 Company Profile | https://pitchbook.com/profiles/company/209589-40
[ZoomInfo] Complyport - Overview, News and Similar companies | https://www.zoominfo.com/c/complyport-ltd/27251740
[GOV.UK] COMPLYPORT LIMITED overview, Companies House | https://find-and-update.company-information.service.gov.uk/company/04333584
Articles about Complyport Limited
- Complyport Is Selling FCA Authorization to 1,000 Financial Firms — The 24-year-old London consultancy is pushing into RegTech with COMPDEFAI, a GRC platform built for NIS2 and DORA deadlines.