Herdify Privacy Hub

Data Security is at the Heart of Our Product

Data privacy and security aren’t an afterthought for us. We handle, store, and safeguard data across the platform using secure infrastructure and strict privacy controls. Here's how.

Book a Demo

See Pricing

person looking at their computer with safety and a lock graphic showcasing data privacy

Data Privacy at Herdify

Data privacy isn’t optional for us. It’s built into how we work.

You trust us with your data.We treat that trust seriously. All information shared with us, from clients, partners, suppliers or our team, is handled with strict confidentiality and security.

‍We protect data wherever it lives.Inside our systems or beyond our physical walls, it’s still our responsibility. Digital files, emails, devices and documents. We safeguard them all.

‍We don’t cut corners.We protect the confidentiality, integrity and availability of data, and build resilience into our systems to prevent loss, misuse or disruption.

‍We follow UK data protection law.Including UK GDPR, the Data Protection Act 2018 and PECR. Lawful, fair and transparent processing is the baseline.

What Data Does Herdify Need From You?

For every transaction, we need six fields from your purchase data:

Transaction ID: Unique for every purchase
Customer identifier: A unique identifier for the customer, like a customer number‍
Purchase date: The date the purchase was made (including all purchases for a customer, not just their first or most recent)
Billing postcode: The postcode associated with the billing address
Purchase value: The total value of the purchase
Transaction currency: The currency the value is measured in

Learn More

three people at a conference room table reviewing paperwork together

AI & Data Ethics at Herdify

"AI and data are central to how Herdify works. Our AI policy ensures we use artificial intelligence responsibly by protecting data, respecting privacy and maintaining transparency."

-Dr. Ed Barter, CPO and Co-Founder

Data Protection You Can Trust

Herdify is built to keep your data secure, private, and fully compliant.

Cyber Essentials Plus (CE+)

Our platform is certified under Cyber Essentials Plus, the UK government-backed cyber security standard. Unlike the basic self-assessment level, this certification includes independent technical testing of our systems.

graphic of a computer and a folder showcasing the cyber essentials security standards

GDPR Compliance

All data is processed lawfully, fairly, and transparently in line with UK GDPR, the Data Protection Act 2018, and PECR.

UK Data Storage

All of our infrastructure and proprietary tools are built and hosted in the UK. Customer data is never shared with, or processed by, third-party AI models.

Client Data Protection

Your data is used to identify audiences for your brand, and only your brand. We never reuse it, resell it, or use it to create targeting for other organisations.