The Noble Herd CIC
Last updated: February 2026
1. Who We Are
The Noble Herd EFL & EFP CIC is a Community Interest Company registered in England and Wales.
Company Number: 16544722
Registered Office: Manufactory House, Bell Lane, Hertford, Herts, United Kingdom, SG14 1BP
We provide equine-facilitated learning, wellbeing sessions, workshops and training.
The Noble Herd CIC is registered with the Information Commissioner’s Office (ICO) as a data controller.
ICO Registration Number: ZC004771
For any data protection enquiries, please contact:
Email: kate@thenobleherd.co.uk
For the purposes of data protection law, The Noble Herd CIC is the data controller responsible for your personal data.
2. Scope of This Policy
This policy explains how we collect, use and protect personal data through our website and general enquiries.
Separate privacy notices apply to client session data, safeguarding records and service-specific documentation.
3. What Personal Data We Collect
A. Information You Provide Directly
We may collect personal data when you:
- Complete a contact form
- Email us
- Book a workshop, session or event
- Subscribe to our newsletter
- Download materials
This may include:
- Name
- Email address
- Telephone number
- Organisation name
- Any information you voluntarily include in your enquiry
If you enquire regarding a child or young person, you may voluntarily provide limited relevant information so we can respond appropriately.
We ask that sensitive personal data is not submitted via the website unless requested.
B. Information Collected Automatically
When you visit our website, we may automatically collect:
- IP address
- Browser type and version
- Device type
- Pages visited
- Time and date of visit
- Referral source
This information is collected via cookies and analytics tools.
4. Special Category Data
We do not intentionally collect special category data (such as health information) through our website.
If you voluntarily include sensitive information in an enquiry, we will only use it to respond appropriately and will handle it in accordance with data protection law.
Formal collection of health or safeguarding-related data is governed by separate client privacy notices.
5. Lawful Basis for Processing
Under UK GDPR, we rely on the following lawful bases:
- Legitimate Interest – to respond to enquiries and operate our services
- Consent – for email marketing and optional communications
- Contract – where you book services or events
- Legal Obligation – where disclosure is required by law
- Vital Interests / Safeguarding Duties – where necessary to protect an individual from harm
6. How We Use Your Information
We use personal data to:
- Respond to enquiries
- Provide requested services
- Manage bookings and communications
- Send newsletters (if you opt in)
- Improve our website
- Measure marketing effectiveness
- Maintain security
We do not sell or rent personal data to third parties.
7. Cookies and Tracking Technologies
Our website uses cookies and similar technologies.
These may include:
Google Analytics
Used to understand website usage and improve performance. Google may process data outside the UK in accordance with applicable safeguards.
Meta (Facebook) Pixel
Used to measure advertising effectiveness and deliver relevant advertisements.
These tools may collect:
- IP address
- Device identifiers
- Browser behaviour
- Pages visited
You can control cookies via your browser settings and manage ad preferences through your Google and Meta account settings.
Where required, we seek consent for non-essential cookies.
8. Email Marketing
If you subscribe to our newsletter, we will use your email address to send updates, events and relevant information.
You can unsubscribe at any time by clicking the unsubscribe link in our emails.
We only send marketing communications where you have provided consent.
9. Data Sharing
We may share limited personal data with trusted third-party service providers where necessary to operate our website and services, such as:
- Website hosting providers
- Email marketing platforms
- Analytics providers
- Payment processors (if applicable)
These providers act as data processors and are required to process data in accordance with data protection law.
We may also disclose personal information:
- Where required by law
- Where there is a safeguarding concern
- Where necessary to prevent serious harm
- To comply with legal obligations
We do not sell personal data.
10. International Transfers
Some third-party providers (such as analytics or marketing platforms) may process data outside the UK.
Where this occurs, we ensure appropriate safeguards are in place in accordance with UK GDPR.
11. Data Retention
We retain personal data only for as long as necessary:
- Enquiry emails – typically up to 12 months
- Newsletter data – until you unsubscribe
- Booking records – in line with legal and accounting requirements
Separate retention periods apply to client session data and safeguarding records.
12. Data Security
We implement appropriate technical and organisational measures to protect personal data from unauthorised access, alteration, disclosure or destruction.
13. Your Rights
Under UK data protection law, you have the right to:
- Request access to your personal data
- Request correction
- Request deletion
- Restrict or object to processing
- Withdraw consent (where applicable)
- Data portability (where applicable)
To exercise your rights, please contact us at:
kate@thenobleherd.co.uk
You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO):
14. Changes to This Policy
We may update this Privacy Policy from time to time. The most recent version will always be available on this page.