Privacy Policy Introduction

This privacy policy describes how we collect and process your personal data through your use of our site,

Joanne Hennessy trading as Jo Hennessy Coaching is the data controller and we are responsible for your personal data (referred to as “we”, “us” or “our”) in this privacy notice. We take the privacy of your data very seriously. Further details are provided below. We can be contacted at if you have any questions or concerns.

The Data that we collect and reasons for our processing

We may collect the following data, which includes personal data, from you:

  1. Name and title;
  2. contact Information such as email addresses and telephone numbers;
  3. communications sent by you to us via our contact page, email, online tools, or social media;
  4. customer data relating to any purchases;
  5. Information on your business operations provided by you;
  6. website user and technical data, including IP address, browser type, frequency, page clicks & length of your visits and any comments posted.
  7. marketing data such as your preferences for communication. In each case above, this is in accordance with this privacy policy;

The lawful ground for processing is our legitimate interests which are to:

  • reply to communications sent to us;
  • keep records for administrative or legal purposes.
  • enable us to properly administer and grow our website and our business. 
  • carry out our contractual obligations with yourself or enter into such a contract.

We do not collect any sensitive data about you. Sensitive data as defined by GDPR refers to data consisting of racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic data, biometric data, data concerning health or data concerning a natural person’s sex life or sexual orientation.

Where we are required to collect personal data by law, or under the terms of the contract between us and you do not provide us with that data when requested, we may not be able to perform the contract (for example, to deliver goods or services to you).  If you don’t provide us with the requested data, we may have to cancel a product or service you have ordered, but if we do we will notify you at the time.

We will only use your personal data for a purpose it was collected for or a reasonably compatible purpose if necessary.  In case we need to use your details for an unrelated new purpose we will let you know and explain the legal grounds for processing.

We may process your personal data without your knowledge or consent where this is required or permitted by law.  We do not carry out automated decision making or any type of automated profiling.

How we collect Data

We collect Data in the following ways: 

  1. data is given to us by you; for example, by filling in forms on our site or online tools or by sending us emails.
  2. data is collected automatically; for example, via our website using cookies or similar technologies.  Please see our cookie policy for more details on this.
  3. data may be received from third party analytics providers such as search engine information providers Google outside the EU, advertising networks such as Facebook based outside the EU and providers of technical, payment or delivery services, such as Wufoo/Survey Monkey, based outside the EU or data brokers or aggregators.
  4. data may also be received from publicly available sources such as Companies House and the Electoral Register based inside the UK.

It is important that the data we hold about you is accurate and current. Please keep us informed if your Data changes during the period for which we hold it.

Our marketing communications

We may send marketing communications to you in order to share information on our services which we feel could be valuable to you and/or grow our business. The lawful ground for this processing is either your consent or our legitimate interest.

Under the Privacy and Electronic Communications Regulations, we may send you marketing communications from us if (i) you made a purchase or asked for information from us about our goods or services or (ii) you agreed to receive marketing communications and in each case you have not opted out of receiving such communications since. Under these regulations, if you are a limited company, we may send you marketing emails without your consent. However, you can still opt out of receiving marketing emails from us at any time. 

We do not typically share your personal data with any third parties for their own marketing purposes. If there is a requirement for this we will get your express consent.

You can ask us to stop sending you marketing messages at any time by following the opt-out links on any marketing message sent to you or by emailing us on  Please note, if you opt out of receiving marketing communications this opt-out does not apply to the processing of personal data provided as a result of other transactions, such as communications, purchases, registrations.

Disclosures of your personal data

We may have to share your personal data with the parties set out below: 

  1. Service providers who provide IT and system administration services.
  2. Professional advisers including lawyers, bankers, auditors and insurers 
  3. Government bodies that require us to report processing activities.
  4. Third parties to whom we sell, transfer, or merge parts of our business or our assets. 

We require all third parties to whom we transfer your data to respect the security of your personal Data and to treat it in accordance with the law. We only allow such third parties to process your personal data for specified purposes and in accordance with our instructions.

Transfers outside the European Economic Area

Some third party software providers are based outside the European Economic Area (EEA) so their processing of your personal data may involve a transfer of data outside the EEA.  Whenever we transfer your personal data out of the EEA, we do our best to ensure a similar degree of security of data to those required by the EEA, by ensuring at least one of the following safeguards is in place. 

  1. We will only transfer your personal data to countries that the European Commission have approved as providing an adequate level of protection for personal data; or
  2. Where we use certain service providers, we may use specific contracts or codes of conduct or certification mechanisms approved by the European Commission which give personal data the same protection it has in Europe; or
  3. If we use US-based providers that are part of EU-US Privacy Shield, we may transfer data to them, as they have equivalent safeguards in place. 

If none of the above safeguards is available, we may request your explicit consent to the specific transfer. You will have the right to withdraw this consent at any time.

Keeping your Data secure

We use technical and organisational security measures to safeguard your Data. These include measures to prevent your personal data from being accidently lost, used, altered, disclosed or accessed without authorisation.  We only allow access to your data to those employees or partners who have a specific business need.  They will only process personal data on our instructions and they must keep it confidential. 

We also have procedures in place to deal with any suspected data breach and will notify you and any applicable regulator where legally required to. If you suspect any misuse or loss or unauthorised access to your Data, please let us know immediately by contacting us via e-mail at

Data Retention

Unless a longer retention period is required or permitted by law, we will only hold your Data on our systems for the period necessary to fulfil the purposes outlined in this privacy policy or until you request that the Data be deleted.  If we delete your Data, it may persist on backup or archival media for legal, tax or regulatory purposes. 

Your legal rights 

You have the following rights in relation to your Data:

  • Right to access – the right to request (i) copies of the information we hold about you, or (ii) that we modify, update or delete such information.
  • Right to correct – the right to have your Data rectified if it is inaccurate or incomplete.
  • Right to erase – the right to request that we delete or remove your Data from our systems.
  • Right to restrict our use of your Data – the right to “block” us from using your Data or limit the way in which we can use it.
  • Right to data portability – the right to request that we move, copy or transfer your Data.
  • Right to object – the right to object to our use of your Data including where we use it for our legitimate interests.

To make enquiries, exercise any of your rights set out above, or withdraw your consent to the processing of your Data (where consent is our legal basis for processing your Data), please email us at

You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive or refuse to comply with your request in these circumstances.

If you are not satisfied with the way your Data is handled by us, you have a right to complain to the relevant data protection authority. For the UK, this is the Information Commissioner’s Office (ICO) and more detail are available at  We would appreciate if you could first contact us to enable us to try and resolve this for you. You can contact Jo Hennessy directly at

Links to other websites

This Website may, from time to time, provide links to other websites or applications. We have no control over such websites and are not responsible for the content of these websites. This privacy policy does not extend to your use of such websites. You are advised to read the privacy policy or statement of other websites prior to using them.


You can set your browser to refuse or allow all or some cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of this website may become accessible or not function properly.  

Change of business ownership and control

Joanne Hennessy trading as Jo Hennessy Coaching may, in the future, expand, reduce, rename or incorporate our business and this may involve the sale and/or the transfer of control in all or part.  Data provided by Users will, where it is relevant to any part of our business so transferred, be transferred along with that part and the new owner or newly controlling party will, under the terms of this privacy policy, be permitted to use the Data for the purposes for which it was originally supplied to us.  We may also disclose Data to a prospective purchaser of our business or any part of it where deemed necessary.  In the above instances, we will take steps to ensure your privacy is protected.


If any court or competent authority finds that any provision of this privacy policy (or part of any provision) is invalid, illegal or unenforceable, that provision or part-provision will, to the extent required, be deemed to be deleted, and the validity and enforceability of the other provisions of this privacy policy will not be affected.

You may not transfer any of your rights under this privacy policy to any other person. We may transfer our rights under this privacy policy where we reasonably believe your rights will not be affected.

This Agreement will be governed by and interpreted according to the law of England and Wales. A dispute arising under the Agreement will be subject to the exclusive jurisdiction of the English and Welsh courts.

Contact Details

Legal Trading Name: Joanne Hennessy trading as Jo Hennessy Coaching

Email: or

It is very important that the information we hold about you is accurate and up to date. Please let us know if at any time your personal information changes by emailing us using the details above.   

Correspondence Address: Joanne Hennessy, St Albans Tower, Wood Street, London, EC2R 2AH.