1. Purpose and scope

This privacy policy explains how Khora Consulting Ltd (“Khora”, “we”, “us”) collects, uses and protects personal data in the course of its business activities.

It applies to all individuals whose personal data we process, including clients, prospective clients, suppliers, professional advisers, employees, contractors, associates and other business contacts, as well as visitors to our website.

2. Who we are

Khora Consulting Ltd is a strategic communications and advisory firm. We are the data controller for the purposes of UK data protection legislation.

Registered office: Albert House, 256-260 Old St, London EC1V 9DD, United Kingdom
Contact email: contact@khoraconsult.com

3. What personal data we collect

Depending on the nature of our relationship with you, we may process:

• Contact details (such as name, email address, telephone number, role and organisation)

• Business communications and correspondence

• Contractual, billing and payment information

• Employment or contractor-related information (where applicable)

• Information required to meet legal, regulatory or compliance obligations

• Limited technical information relating to use of our website (where relevant)

We do not intentionally collect special category personal data unless this is strictly necessary and lawful (for example, in an employment context).

4. How and why we use personal data

We use personal data only where necessary to operate our business, including to:

• Provide professional services and manage client relationships

• Onboard and manage suppliers, contractors and advisers

• Recruit, employ and manage employees and associates

• Communicate with business contacts

• Meet legal, tax, accounting and regulatory obligations

• Protect our business, systems and professional integrity

5. Legal bases for processing

We process personal data on one or more of the following lawful bases:

• Contractual necessity – to perform or enter into contracts

• Legitimate interests – to operate and manage our business responsibly

• Legal obligation – to comply with applicable laws and regulations

• Consent – where required and explicitly obtained

6. Sharing personal data

We may share personal data with trusted third parties where necessary, including:

• Professional advisers (such as accountants, lawyers or auditors)

• Service providers supporting IT, payroll, finance or administration

• Public authorities where required by law

We do not sell personal data.

7. International transfers

Where personal data is transferred outside the UK or EEA, we ensure appropriate safeguards are in place in accordance with applicable data protection laws.

8. Data retention

We retain personal data only for as long as necessary for the purposes for which it was collected, including to meet contractual, legal, tax and regulatory requirements. Data is reviewed periodically and securely deleted or anonymised when no longer required.

9. Data security

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss or misuse.

10. Your data protection rights

You have rights under UK data protection law, including the right to:

• Access your personal data

• Request correction or deletion

• Object to or restrict processing

• Withdraw consent (where applicable)

• Lodge a complaint with the Information Commissioner’s Office (ICO)

11. Contacting us

For questions, requests or concerns relating to this privacy policy or our use of personal data, please contact: contact@khoraconsult.com