Privacy Policy

Last Updated:

April 14, 2026

HERD Privacy Policy

Last updated: 14/04/2026

Welcome to HERD (“we”, “us”, “our”).
We are committed to protecting your personal information and respecting your privacy.

This Privacy Policy explains how we collect, use, store, and share your information when you use the HERD mobile app, website, or any related services (collectively, the “Services”).

By using HERD, you agree to the practices described in this Privacy Policy.

1. Who We Are

HERD is a group travel planning platform designed to help users create trips, organise itineraries, manage payments, and coordinate group information.

Data Controller:
HERD App / MYHERD Ltd
[Insert company number]
42 Cwmdu Industrial Estate, Swansea, SA5 8JF
info@join-herd.co.uk

2. Information We Collect

We collect information in the following categories:

A. Information You Provide Directly

Account Information

Name
Email address
Phone number (optional)
Profile photo (optional)

Trip Information

When you create or join a trip, you may provide:

Trip names, dates, activities
Guest lists
Shared expenses
Messages within the group chat
Itinerary details
Uploaded documents (e.g., PDFs, screenshots)

Passport / Identification Data (Optional)

Some trips may require collecting attendee details such as:

Full name
Date of birth
Passport number
Passport issue/expiry date
Nationality

This information is encrypted and only shared with the organiser and relevant suppliers when required by the nature of the booking.

Payment Information

We do not store full card details.
We use third-party processors to handle payments such as:

Card payments
Shared wallet transactions
Refunds
Payment tracking

Communication & Support

Any messages you send to HERD customer support.

B. Information Collected Automatically

When using the app, we may automatically collect:

Device & Usage Data

IP address
Device model, OS, unique identifiers
Log data (pages viewed, features used, timestamps)
Crash and performance data

Location Information (Optional)

We may request location access to:

Suggest nearby activities
Enable location-based trip planning
Personalise trip suggestions

You can disable location services at any time.

C. Information From Third Parties

We may receive data from:

Social networks (if you sign in via social login)
Affiliate booking partners
Payment processors
Analytics and advertising tools

This may include:

Social profile basics (name, email)
Booking confirmations
Transaction IDs
Click and referral data

3. How We Use Your Information

We use your data only for legitimate purposes, including:

Providing the HERD Service

Creating and managing your account
Allowing you to create, join, and manage trips
Payment tracking and shared wallet functionality
Uploading and sharing passports or documents with your group
Activity and booking coordination
Enabling group chat and communication
Sending trip updates, reminders, or alerts

Improving and Personalising the App

Understanding how users interact with HERD
Personalising recommendations, perks or offers
Optimising the AI trip assistant (“AI GOAT”)

Safety and Compliance

Preventing fraud
Verifying identity where necessary
Meeting legal or supplier requirements
Ensuring platform security and stability

Marketing (Only with Consent)

We may use your data to:

Send updates about HERD
Offer perks or special partner deals
Promote relevant activities

You can opt out at any time.

4. How We Share Your Information

We do not sell your data.

We only share information when necessary to deliver the service:

With Trip Participants

Trip details, payments, expenses, and itinerary information are shared among members of the trip.

With Suppliers / Booking Partners

When you book activities or upload required information (e.g., passport details), relevant data may be shared with:

Travel providers
Activity suppliers
Ticketing partners
Accommodation partners

This sharing occurs only when required to complete a booking or fulfil a service.

With Payment Processors

Such as Stripe, Checkout.com, or other third-party payment platforms.

We do not store full card details.

With Service Providers

We use trusted partners to provide:

Cloud hosting
Analytics
Error/crash reporting
AI personalisation
Customer support
Marketing tools

All partners are GDPR-compliant.

Legal & Compliance

We may disclose information if required:

To comply with the law
To protect HERD users
To respond to legal process or governmental requests

5. Data Security

We follow industry best practices to protect your data:

Encrypted data transmission (HTTPS)
Secure cloud storage
Encrypted passport and sensitive document storage
Limited staff access to personal data
Regular security audits

However, no system is completely secure — users share information at their discretion.

6. Your Rights (GDPR & UK Data Protection Act)

You have the right to:

Access your data
Edit or update your information
Request deletion (“right to be forgotten”)
Restrict processing
Object to certain uses
Request a copy of your data (“data portability”)

To exercise these rights:
Email: info@joinherd.co.uk

We will respond within 30 days.

7. Data Retention

We retain your information only as long as necessary:

Account data: retained until you delete your account
Trip data: retained until all trip participants delete or request removal
Payment records: stored as required by financial regulations (usually 6 years)
Passport documents: auto-deleted after 180 days unless required longer for a booking

8. Children’s Privacy

HERD is not intended for users under 16.
We do not knowingly collect data from children under this age.

9. International Data Transfers

Some service providers may store or process data outside the UK or EU.