When a buy-to-let lender's underwriter pulls your Companies House file as part of a refinance decision in 2026, they are reading a file that has been subject to active register-integrity gatekeeping since 4 March 2024, and which now carries more weight in their decision than at any time in the previous twenty years. The Economic Crime and Corporate Transparency Act 2023 (ECCTA 2023) is usually discussed as a compliance burden. This page reframes it as a commercial signal: the file content itself, rather than the assurances given alongside it, is now what counterparties read first.

The reframe matters for landlord LtdCo portfolios because the same operational steps that satisfy the legal minimum can also be done in a way that signals operational maturity, and the difference between the two postures is now visible at the file level. This page sets out how lenders, tenants, and joint-venture partners now read the file, what early-thorough compliance signals over and above legal-minimum, the cost-benefit of upgrading, and the honest counterexample where the upgrade does not pay back.

The Lender Due-Diligence Reality

The post-reform file gives a BTL underwriter six discrete checkpoints. Each is a separate red-flag opportunity.

Appropriate-address registered office. Since 4 March 2024, under ECCTA ss.28-30, the registered office must be an address where service of documents can be acknowledged by someone present at the address. PO boxes and pure mail-forwarding addresses generally do not qualify. A PO-box-only registered office on a 2026 file is now a red flag that did not exist pre-March-2024.

Registered email. Every UK company must have a registered email address (not published publicly; used by Companies House for statutory correspondence). A missing or stale registered email on the file signals administrative neglect.

Lawful purposes statement. Each annual confirmation statement filed on or after 5 March 2024 carries a positive declaration that the company's intended activities are lawful. A current lawful purposes statement is the baseline; its absence on a recent filing is a flag.

Verified personal codes for every director and PSC. Since 18 November 2025, the appointment of a new director or PSC requires the appointee's verified personal code under ECCTA s.68. Existing directors and PSCs are on a twelve-month transition window. By the close of the window around November 2026, every active director and PSC should have a verified personal code quoted on the most recent confirmation statement. Missing codes signal a portfolio that is behind the curve.

Timely confirmation statement. Late filing of the confirmation statement under Companies Act 2006 ss.853A to 853L is now a criminal offence, with civil-penalty exposure under the post-ECCTA regime. A late-filed confirmation statement on the file says the company is not being administered to schedule, which sits awkwardly alongside any narrative the borrower is presenting at term-sheet stage.

Clean PSC chain on the central register. ECCTA ss.51-52 abolished local PSC registers, so the Companies House central register is now the single authoritative source for PSC data. Counterparty due diligence pulls from one place and inspects what is there. Gaps, vague PSC entries, or out-of-date interests have nowhere to hide.

None of these checkpoints exists in isolation. A single red flag at term-sheet stage triggers additional scrutiny, the deal moves to a secondary review queue, and the timeline extends by a meaningful margin. Clean files clear the credit committee on the first review pass; messy ones take additional cycles and sometimes attract a wider rate offer.

How Tenants and Joint-Venture Partners Read the File

Lender due diligence is the most quantified counterparty review, but it is not the only one. Sophisticated tenants (corporate occupiers leasing under a long lease from a landlord LtdCo; HMO operators contracting with an SPV landlord; commercial-suite occupiers in mixed-use developments) and joint-venture development partners (where the landlord LtdCo is the freeholder counterparty to a developer) increasingly run their own counterparty due diligence by reference to the Companies House file.

The tenant question is usually about durability: who owns the SPV, who are the directors, are they verified, will this SPV be the same legal entity, with the same control structure, in five years' time. A clean current file gives a tenant comfort that the SPV is properly administered and that the directors are identifiable individuals who have stood up to ECCTA verification. The JV question is more nuanced: a JV partner is putting capital alongside the landlord LtdCo, and the question is partly counterparty-credit (will this entity perform on its obligations) and partly partner-quality (will this management team handle the JV deal professionally).

In a portfolio with several SPVs, the cleanest file wins. The same family-investment group, with the same directors, will see different deal outcomes across its SPVs purely because some SPVs are administratively cleaner than others. The remedy is portfolio-level discipline, not per-SPV firefighting.

The Cost-Benefit of Early-Thorough vs Minimum-Bar

The choice between legal-minimum compliance and early-thorough compliance is a portfolio-level decision. The table below sets out the practical delta.

LensLegal minimumEarly-thorough
Verification timingVerify each natural person by the next confirmation statement within the transition window (Q4-anchored)Verify in Q1 of the transition window (December 2025 or January 2026)
Registered officeDefault to current address (may be PO box) until challengedAudit proactively; reroute to an appropriate-address-compliant address
Registered emailAdd at the next confirmation statementAdd proactively in Q1; monitor the inbox actively
Lawful purposesTick-box on filingConfirm intended future activities are accurately described; record in board minutes
PSC verificationSame as director verificationSame plus a proactive review of trustee or minor-shareholder PSC chain links where applicable
Incremental costRoughly £0 above the annual cycleRoughly 2-4 director hours per company plus ACSP fee per natural person where used, plus any registered-office reroute (£50 to £300 per SPV per year)
Counterparty signalCompliant but typicalDistinguishable as higher-grade in lender, tenant, and JV review

For a typical five-SPV portfolio with one to two natural persons, the early-thorough upgrade adds roughly £0 to £500 in direct cost plus ten to twenty director hours across the year. The incremental commercial value is harder to quantify but operates through three channels: reduced lender-DD friction at refinance (clean file passes faster, sometimes at a tighter rate), higher counterparty trust signal in tenant and JV review, and lower risk of a confirmation-statement filing failure as the transition window closes.

The Per-Natural-Person Commercial Leverage

One feature of the regime is particularly material for multi-SPV portfolios. Verification under ECCTA s.65 is per natural person, not per company. The personal code allocated under ECCTA s.68 is per natural person, not per company. The same code is then quoted at every confirmation statement and every appointment filing across every UK company.

Worked example. Singh Properties Group holds eight SPVs, with Mr and Mrs Singh between them covering every directorship and PSC role. Two verifications (One Login, free, or ACSP, roughly £40 to £200 total) produce two personal codes that together cover all eight SPVs. Within twelve months of the verification batch, as each SPV's confirmation statement falls due, the same two codes are quoted on eight separate filings. The portfolio reads to a lender or counterparty as a single coordinated compliance programme rather than a patchwork.

The cost economics follow the same pattern. Two verifications produce eight SPVs' worth of compliance. The per-company overhead disappears because the verification is per person. For a family-investment portfolio with two to four natural persons across ten to twenty SPVs, the verification footprint is trivial relative to the counterparty signal it produces.

The Appropriate-Address Signal

The 4 March 2024 appropriate-address rule under ECCTA ss.28-30 is one of the less-noticed reforms but one of the most commercially visible at file level. A registered office must be an address capable of acknowledging service of documents, with someone present, meeting Companies House's appropriate-address criteria.

What qualifies: accountant's office (when the accountant provides registered-office services as part of the engagement); staffed virtual office (where premises are physically staffed during business hours); director's residential address (where the director is present to acknowledge documents). What typically does not qualify: pure PO-box services; mail-forwarding addresses with no physical premises or staff.

The remediation cost is small. Switching from a PO-box to an accountant's office is usually a £0 step where the accountant already provides company-secretarial services. Switching to a staffed virtual office is typically £50 to £300 a year per SPV depending on provider. The signal value at the file level is meaningful: a PO-box-only registered office on a 2026 file is now a red flag at lender review, and the cost of carrying that flag in counterparty due diligence is potentially much larger than the cost of routing through an appropriate address.

The Abolition of Local Registers and the PSC Chain

ECCTA ss.51-52 abolished the local PSC and director registers that companies previously maintained at the registered office. All such information now consolidates at the Companies House central register, and counterparty due diligence accesses the central record via the free Find and update company information service.

The change is procedural for a typical landlord LtdCo (most modern SPVs were not actively maintaining a separate local PSC register), but it has a knock-on commercial effect. Before the abolition, gaps or inconsistencies between the local register and the central record could exist (and sometimes did, especially for older companies). After the abolition, there is no second source, and the central record is what every counterparty sees. Combined with ID-verified personal codes for every PSC, the PSC chain is now both visible and verifiable in a way it was not before.

For family-investment-company structures with growth-shares, trust-held shares, or multi-class share structures, the change rewards getting the PSC analysis right. The chain is read by counterparties directly off the central register; if a PSC has been missed or mis-classified, the gap is now obvious. The remedy is a proper PSC review (which most accountants can run alongside the verification batch).

The Failure-to-Prevent-Fraud Context

ECCTA Part 5 introduces a corporate criminal offence of failing to prevent fraud, applicable to large organisations. The large-organisation threshold turns on workforce, turnover, and balance-sheet criteria, with the precise figures sitting in ECCTA Part 5 and the relevant commencement Statutory Instrument; the current values should be verified at the moment of relying on the threshold.

The vast majority of landlord LtdCo portfolios fall well below the large-organisation threshold and so are not directly within the new offence. The policy framing still matters at board level. The same gatekeeping logic that drives the s.1 Registrar's objectives runs through ECCTA Part 5: companies are now expected to operate with explicit fraud-prevention controls, even where the offence itself does not apply. For a board considering whether early-thorough compliance is worth the investment, the Part 5 framing is one of several pointers in the same direction: register integrity, identity verification, and fraud-prevention controls are now commercially adjacent rather than separate workstreams.

Want this checked against your specific situation?

Drop your email and a one-line summary. We reply within 24 hours, no phone call needed.

The ACSP Value Case

The Authorised Corporate Service Provider regime under ECCTA s.66 sits alongside GOV.UK One Login as the second route to identity verification. The value-case argument for the ACSP route runs through three points.

First, the AML supervisory regime under the Money Laundering Regulations 2017 already requires the firm to hold verified KYC for every client. That documentation can be used to perform the Companies House verification without the client repeating document upload, reducing the operational friction.

Second, the ACSP route integrates the verification with the wider compliance relationship. The accountant who handles your confirmation statements, AML supervision, statutory accounts, and director-onboarding is now the same point of contact for identity verification, with one professional engagement covering the whole compliance perimeter. Where the alternative is multiple disconnected workflows (One Login self-service for verification, accountant for accounts, separate platform for AML), the ACSP route reduces handoff cost.

Third, the ACSP route shifts some operational risk to a regulated professional. The procedure under ECCTA s.65 is straightforward in normal cases but can require judgement where documents are non-standard, where the natural person is overseas, or where a PSC chain has unusual features. A regulated firm handles these cases routinely; self-service via One Login does not.

The cost is typically £20 to £100 per natural person (verify with the firm). For a multi-SPV family portfolio with two to four natural persons, the total ACSP cost is modest relative to the time saved and the operational-risk transfer.

The Honest Counterexample: Where Minimum-Bar Is Enough

The value-case framing is not universal. There are configurations where minimum-bar compliance is commercially sufficient.

Consider Mr Verma. He owns a single buy-to-let flat through Verma Properties Ltd, has held it since 2010, has no near-term refinance plan, lets the property informally via a local agent, and is a basic-rate taxpayer with no joint-venture exposure or sophisticated tenant relationship. For Mr Verma, the early-thorough upgrade is incremental over legal-minimum, but the increment is marginal in his specific configuration. There is no lender about to pull the file, no tenant running due diligence, no JV partner reading the PSC chain. The legal-minimum position (verify within the transition window; existing registered office and email; confirmation statement on time) is commercially sufficient for his use case.

The honest framing is that the value case is portfolio-specific. For small dormant portfolios with no near-term external review, minimum-bar may be commercially adequate. For portfolios with active lender relationships, sophisticated tenants, joint-venture arrangements, or any near-term external counterparty interaction, the early-thorough position is commercially material. The decision should be made by reading the portfolio's actual counterparty calendar, not by applying the value-case argument uniformly.

The Practical Roadmap to Early-Thorough

For portfolios that decide to upgrade, the roadmap is the same as the sibling navigation page's operations roadmap, framed here through the value-case lens.

Q1 (December 2025 to January 2026). Inventory every director and PSC across every SPV. Book ID verification for every natural person via One Login (free) or via the accountant as ACSP (preferred where the accountant already holds AML KYC). Verifications complete by end of January 2026.

Q1 to Q2 (January to March 2026). Audit the appropriate-address status of every SPV's registered office; reroute any PO-box-only addresses. Refresh the registered email on every SPV, ensuring an active monitored inbox.

Q2 to Q3 (rolling, each SPV's confirmation statement date). File the confirmation statement quoting verified personal codes for every director and PSC, the lawful purposes statement, the registered email confirmation, and the appropriate-address registered office.

Q3 to Q4. Monitor trigger events. Any new appointment requires pre-verification of the incoming individual. Any change of registered office or registered email is a notifiable change. Any Register of Overseas Entities updating statement (where the portfolio includes an overseas-entity vehicle) is due within 14 days of the end of the update period.

For the deep operational walkthrough see our navigation page (the practitioner-roadmap depth) and our taxonomy umbrella (the date-ordered inventory of every reform).

Where to Track the Operative State

Two canonical sources. Primary: the Companies House campaign page at changestoukcompanylaw.campaign.gov.uk, with topic sub-pages for identity verification, Authorised Corporate Service Providers, confirmation statement changes, and changes to company registers. Secondary: the Companies House blog at companieshouse.blog.gov.uk. For depth on the reforms touched in this page, see our complete guide to identity verification in the UK, our commencement-day page, our page on the Companies House verification emails, our 2024-onwards confirmation-statement changes page, and our ECCTA operational walkthrough for landlord LtdCos.

Authorities Cited