Head First Consulting – Privacy Notice

Last updated: 24 November 2025

1. Information About Me

Head First Consulting

Sole Trader

Consultant: Chris Benson

Email: chris@adhdheadfirst.co.uk

ICO Registration Number: 00012152398

I respect your privacy and am committed to protecting your personal data. This Privacy Notice explains what data I collect, how I use it, and your rights under UK GDPR and the Data Protection Act 2018.

2. What This Notice Covers

This Privacy Notice explains how I collect, store, process, and protect personal data provided by schools, staff, coaching clients, and individuals who contact or work with Head First Consulting.

3. What is Personal Data?

Personal data is any information that identifies an individual, such as a name, contact details, job role or any information linked to an identifiable person.

4. Your Rights

Under UK GDPR, you have the right to:

• be informed about how your data is used
  
  

• access the personal data I hold about you
  
  

• have inaccurate data corrected
  
  

• request deletion of your data
  
  

• restrict or object to processing
  
  

• withdraw consent (where applicable)
  
  

• request data portability
  
  

You can exercise these rights by contacting me using the details in Section 11.

You also have the right to complain to the Information Commissioner’s Office if you are unhappy with my handling of your data. I would appreciate the chance to address your concerns before you escalate them.

5. Personal Data I Collect and How I Collect It

I collect minimal personal data and only what is necessary to deliver my services.

Data collected may include:

• Identity Data: Name, job title, school name.
  
  

• Contact Data: Email address, telephone number.
  
  

• Professional Information: Role, training interests, consultancy needs.
  
  

• Communication Data: Emails, messages, and notes relating to consultancy or training.
  

How this data is collected:

• Directly from you (email, messaging, meetings, bookings).
  
  

• Through website enquiries or contact forms.
  
  

• Documents voluntarily shared for consultancy (e.g., inclusion policies, Ofsted preparation materials).
  
  

I do not collect student-identifiable data unless explicitly required, agreed in advance, and necessary for a specific consultancy task.

I do not collect special category data unless you provide it voluntarily (e.g., disclosing a diagnosis during coaching).

6. How I Use Your Personal Data

I use personal data only when legally permitted and only for purposes directly related to my services.

I may use your data for:

• Administering Head First Consulting
  
  

• Delivering training, consultancy, or coaching
  
  

• Communicating with you about scheduled work
  
  

• Sending information you request
  
  

• Maintaining necessary business records
  
  

• Generating invoices or receipts (if applicable)
  

Lawful bases for processing:

• Legitimate Interests: To provide consultancy, coaching, or training you have requested.
  
  

• Contract: To fulfil an agreement between us.
  
  

• Consent: For optional communications you explicitly opt into.
  
  

• Legal Obligation: For financial or tax record keeping.
  
  

I do not use profiling, automated decision-making, or marketing without consent.

7. Data Retention

I keep personal data only for as long as necessary for the purpose for which it was collected.

Typical retention periods:

• Contact details / communications: Up to 2 years
  
  

• Consultancy-related documents: Up to 2 years
  
  

• Invoices and statutory financial records: 6 years (required by law)
  
  

You can request deletion sooner unless the law requires otherwise.

8. Data Storage and Security

Your personal data is stored securely using password-protected systems, reputable cloud-based services, and devices protected by encryption and multi-factor authentication.

I do not store or transfer personal data outside the UK unless the service provider (e.g., Microsoft, Google) meets UK GDPR adequacy standards.

I take all reasonable steps to protect your data, including:

• restricting access to myself only
  
  

• secure email and cloud storage
  
  

• device encryption
  
  

• breach-response procedures
  
  

9. Sharing of Personal Data

I do not share personal data with third parties unless:

• it is necessary to deliver the agreed service
  
  

• you have given explicit consent
  
  

• I am legally required to do so (e.g., safeguarding, legal or tax obligations)
  
  

I do not sell or trade personal data.

10. Accessing Your Personal Data

You can request details of the personal data I hold about you (a “Subject Access Request”).

There is no fee unless the request is unfounded or repetitive.

I will respond within one month.

Requests should be made via email to chris@adhdheadfirst.co.uk.

11. Contact Details

For all data protection matters, including Subject Access Requests, please contact:

Chris Benson

Head First Consulting

Email: chris@adhdheadfirst.co.uk

12. Changes to This Privacy Notice

This Privacy Notice may be updated periodically to reflect changes in law or business practice. The most recent version will always be available upon request.