top of page
matrix-3408055_1920.jpg

Henko Limited – Privacy Policy

​Effective date: 20th of August 2017

Last updated: 5th of February 2026

 

This Privacy Policy explains how Henko Ltd (“Henko”, “we”, “us”, “our”) collects, uses, stores, and protects your personal data in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and the Privacy and Electronic Communications Regulations (PECR). 

 

Our goal is to be transparent about how we handle your data and to demonstrate that we respect both legal obligations and your expectations as a business contact, client, community member, or visitor.

​

1. Who We Are

 

Henko Ltd is a professional services and consulting business operating in the UK.

Company registration: 10910832 (England & Wales)

Registered address: Cronks Hill Road, Redhill RH1 6LY, United Kingdom

Contact: info@henko.co.uk

 

Henko is the data controller for personal data we process for marketing, community, and service delivery purposes.

​

2. What Personal Data We Collect

 

We may collect personal data that identifies you as an individual, including:

 

  • Identity & contact data: name, job title, organisation, email, phone number

  • Professional data: role, business network associations

  • Communications data: messages, correspondence, comments

  • Marketing interaction data: email opens, clicks, event registrations

  • Technical data: IP address, cookies and site usage metrics (via Wix & analytics tools)

 

We do not collect sensitive categories of personal data (e.g., health, ethnicity) unless you voluntarily provide it for a specified professional purpose. 

​

3. How We Collect Your Personal Data

 

We collect personal data when you:

 

  • Contact us directly (email, phone, LinkedIn, meetup platforms)

  • Engage with our website forms or newsletters (hosted on Wix/Mailchimp)

  • Participate in events, training, workshops, or LeanTech Circles

  • Are a client or prospect exchanged into our CRM (HubSpot)

  • Connect through professional networks associated with Henko or its founder

 

All collection is done with a lawful basis and communicated clearly at the point of collection. 

​

4. Why We Use Your Personal Data (Lawful Basis)

​

Primary lawful bases we rely on:

 

Legitimate Interests (Article 6(1)(f) UK GDPR)

We use this basis where our use of data is necessary for our business activities and where this use does not override your rights and freedoms—particularly for B2B marketing, relationship management, and professional communications. 

 

Contractual necessity (Article 6(1)(b))

Where processing is necessary to perform services you’ve engaged Henko to deliver.

 

Consent (Article 6(1)(a))

Where you explicitly opt in to specific communications, community platforms, or content services.

 

Our use of your data is always transparent, and you can withdraw consent at any time.

 

 

5. How We Use Your Personal Data

 

We use your data for the following purposes:

​

Service-related purposes

 

  • Delivering consulting, coaching, training, and related professional services

  • Managing client relationships and engagements

​

Marketing & communications

 

  • Sending thought leadership content, updates, invitations, and promotions

  • Informing you of events, free/low-cost sessions, and training

  • Communicating community opportunities via LeanTech Circles

  • Personalising contact based on interests and professional relevance

 

We never send unsolicited irrelevant marketing and always honour opt-outs. 

 

 

6. CRM and Audience Management

​

HubSpot (CRM)

We use HubSpot to manage B2B contacts (clients and prospects). Contacts may originate from:

 

  • Direct engagements

  • LinkedIn connections (Henko account or founder’s professional network)

  • Business development activity

 

HubSpot acts as a data processor on our behalf, and data stored there helps us communicate relevant insights, professional offers, and community connections. HubSpot’s privacy practices complement our commitments. 

 

 

Website & Public Audiences

Prospects from the wider community—such as those signing up via our Wix-hosted site and meetup.com, event registrations, or LeanTech Circles lists—are entered into systems used for educational and community communications. Public lists are retained only with proper opt-out mechanisms and relevance.

 

 

7. Marketing and Opt-Outs

 

We comply with UK GDPR and PECR requirements on electronic communications:

 

  • Every marketing email includes a clear unsubscribe link

  • If you unsubscribe, you are marked as non-marketable or removed entirely

  • Clients are maintained for service continuity but can be opted out of marketing

  • We do not share or sell contact lists to third parties

 

If you opt-out, we respect that decision and stop all direct marketing as soon as reasonably practicable. 

 

 

8. Data Review and Retention

 

We review all audiences continually and conduct a formal review at least every six months to:

 

  • Remove dormant or outdated contacts

  • Update marketing status and preferences

  • Anonymise or delete data no longer needed for business or legal purposes

 

Retention periods vary by category but are always justified by lawful basis and business necessity. 

 

 

9. How We Share Your Data

 

We do not sell or distribute your personal data to unrelated third parties.

 

We may share data with:

 

  • Service providers (email platforms, analytics, CRM processors)

  • Professional advisers when necessary (legal, compliance)

  • Legal authorities when required by law

 

All processors are contractually bound to protect and process data consistent with this policy.

 

 

10. International Transfers

 

Some services (e.g., Wix, Mailchimp, HubSpot) may process data in or transfer data outside the UK. We ensure these transfers have appropriate safeguards in place where required by law.

 

 

11. Data Security

 

We implement reasonable technical and organisational security measures to protect your personal data from unauthorised access or loss. However, no Internet transmission is completely secure.

 

 

12. Your Rights

 

Under UK GDPR, you have the right to:

 

  • Request access to your personal data

  • Request correction of inaccurate data

  • Request erasure of your data (“right to be forgotten”)

  • Restrict or object to certain processing

  • Withdraw consent at any time where processing is based on consent

  • Lodge a complaint with the Information Commissioner’s Office (ICO)

 

Contact us at info@henko.co.uk to exercise these rights. 

 

 

13. Cookies and Site Tracking

 

Our website uses cookies and similar technologies for analytics and functionality. Details are available in our Cookie Policy.

 

 

14. Changes to This Policy

 

We may update this policy over time. The latest version will always be available on our website. Material changes may be notified to contacts where appropriate.

 

 

15. Contact Us

 

If you have questions, concerns, or requests about this policy or your data, email info@henko.co.uk.

bottom of page