top of page

Privacy Policy

We are Dominic Headley & Associates Ltd (DHA), a specialist training and consultancy services provider based in the U.K. Our website address is: Our contact email address is:

We will keep this Privacy Policy under regular review. This policy was last reviewed and updated on the 5th April 2022.

What personal data we collect and why we collect it

We currently collect and process the following information:

  • We ask you for your personal and business details including business name, your name job title, email, phone number, business, and support needs.

  • The information we ask for is used to provide you advice, information about our services and for formation of contracts when necessary.  

  • We do not collect more information than we need to fulfil our stated purposes or to fulfil legal or regulatory requirements if necessary and will not retain it for longer than is necessary.

How we get the personal information and why we have it

All the information you provide during the process will only be used for progressing your enquiry and putting in place the relevant service(s) requested (i.e. providing confidential advice, training, consultancy services, or contract information).


We will use the contact details you provide us with to contact you to regarding your enquiry, or business requirements. If you have given your consent, you may be contacted at a later date to inform you of other related services which may be of interest.


We will not share any of the information you provide during the process with any third parties for marketing purposes. The information you provide will be held securely by us whether the information is in electronic or physical format and will only be shared with our associates who we work with to deliver our projects – where applicable. We retain information on businesses and individuals who access our website in line with our legal and contractual obligations.

How long we retain your data

We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.


By law we must keep basic information about our customers (including contact, identity, financial and transaction data) for six years after they cease being customers for tax purposes.

In some circumstances you can ask us to delete or correct your data. Similarly, we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes; in which case we may use this information indefinitely without further notice to you. See Request Erasure section below for further information.

What rights you have over your data

Under certain circumstances, you have rights under the UK General Data Protection Regulations 2018 (UKGDPR) in relation to your personal data. You have the right to:

  • Obtain details about how your data is processed by us;

  • Obtain copies of personal data that we hold about you;

  • Have incorrect or incomplete data corrected;

  • Have your data erased where, for example, we have no legitimate reason for retaining the data;

  • Obtain your data from us and to have that data transmitted to another organisation (data portability);

  • Object to the processing of your data by us, in certain circumstances;

  • Not to be subject to (with some exceptions) automated decision making, including profiling.

You can request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes. If you wish to exercise any of the rights set out above, please contact us and we’ll perform any of the rights on your behalf.

How we protect your data

We will take appropriate measures to protect any information which you provide to us. Although, we take appropriate measures to prevent information from being lost, destroyed, damaged, or unlawfully processed, we cannot guarantee this will not occur.

Any third parties to whom your information is disclosed are also required to take appropriate measures to protect that information. We encourage you to avoid providing us with any sensitive information through or contact pages of which you believe its disclosure could cause you substantial harm. 

In the unlikely event of a data breach

Every precaution will be taken to avoid a breach of your data. However, if such a breach should occur, it will be documented, assessed as to its severity and appropriate action taken. The Information Commissioner’s Office (ICO) will be informed and you will be contacted to assist you in taking steps to mitigate the risks to yourself if the breach is deemed sufficiently severe to put you or your identity at risk.

If you have any questions regarding the security of our services, you are welcome to contact us by sending an email to

Data controller

The data controller in respect of this website is Dominic Headley FRSA. You can contact the data controller by sending an email to

You can also complain to the ICO if you are unhappy with how we have used your data.

The ICO’s address:            

Information Commissioner’s Office

Wycliffe House

Water Lane





Helpline number: 0303 123 1113

ICO website:

bottom of page