Privacy policy

RIVACY POLICY

INTRODUCTION

Welcome to Netherfield Bond Ltd’s privacy policy. Netherfield Bond Ltd respects your privacy and is committed to protecting your personal data. This policy will inform you as to how we look after your personal data when you visit our website (https://thenetherfield.com) and tell you about your privacy rights and how the law protects you.

This policy applies to data collected when you: purchase products, subscribe to marketing, book a tour, or interact with our website.

1: IMPORTANT INFORMATION AND WHO WE ARE

Purpose of this Privacy Policy

This policy supplements other notices and policies and is not intended to override them. It is important that you read this policy so that you are fully aware of how and why we are using your data.

• Children's Data: This website and our marketing communications (including our SMS lists) are strictly intended for individuals of legal drinking age in their country of residence. We do not knowingly collect personal data relating to individuals under the legal drinking age. If you subscribe to our SMS marketing, you affirm that you meet these eligibility requirements.

  
  
• Controller: Netherfield Bond Ltd is the data controller and is responsible for your personal data (referred to as "Netherfield Bond," "we," "us," or "our").

Contact Details

We have appointed a Data Privacy Contact responsible for overseeing questions regarding this policy.

Full name of legal entity: Netherfield Bond Ltd
Email address: info@thenetherfield.com
Postal address: Coachman’s Cottage, Netherfield House, Glassford, Strathaven, ML10 6TB
Telephone number: +44 141 255 1848

You have the right to complain at any time to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We request that you contact us first so we may resolve your concerns.

Changes to the Policy

This version was last updated on 13 October 2025. It is important that the personal data we hold about you is accurate and current.

• Third-party links: This website may include links to third-party websites. We do not control these websites and are not responsible for their privacy statements.

2: THE DATA WE COLLECT ABOUT YOU

Personal data means any information from which a person can be identified. We may collect, use, store, and transfer the following kinds of personal data:

• Identity Data: First name, last name, title, date of birth, and gender.
  
  
• Contact Data: Billing address, delivery address, email address, and telephone numbers.
  
  
• Financial Data: Bank account and payment card details (handled securely by our payment processor).
  
  
• Transaction Data: Details about payments, purchases, and orders you have made.
  
  
• Technical Data: Internet protocol (IP) address, login data, browser type, location, operating system, and other technology used to access the website.
  
  
• Profile Data: Your username, purchases, interests, preferences, and feedback.
  
  
• Usage Data: Information about how you use our website and products.
  
  
• Marketing and Communications Data: Your preferences in receiving marketing from us.

We also collect Aggregated Data (statistical/demographic data), which does not directly identify you. We do not collect Special Categories of Personal Data (e.g., race, health, political opinions).

If you fail to provide personal data: Where we need to collect data by law or under the terms of a contract, and you fail to provide it, we may have to cancel the product or service you have purchased.

3: HOW IS YOUR PERSONAL DATA COLLECTED?

We use different methods to collect data:

Direct interactions (Data provided by you)

This includes data you provide when you fill in forms or correspond with us:

• Purchase our products (Identity, Contact, Financial Data).
  
  
• Subscribe to receive offers or our newsletter (Contact Data).
  
  
• Request marketing.
  
  
• Give us feedback or contact us.

Automated technologies or interactions

• As you interact with our website, we automatically collect Technical Data using cookies and similar technologies. Please see our [Link to Cookie Policy] for further details.

Third parties or publicly available sources

We receive data from:

• Analytics Providers (e.g., Google, Meta).
  
  
• Payment and Delivery Services (e.g., Stripe, Shopify).
  
  
• Publicly Available Sources (e.g., Companies House).

4: HOW WE USE YOUR PERSONAL DATA

We will only use your personal data when the law allows us to, based on the following legal grounds:

1. Performance of Contract: When processing is necessary to complete a purchase or service you requested.
   
   
2. Legitimate Interests: When processing is necessary for our business interests, and your fundamental rights do not override those interests (e.g., improving our products).
   
   
3. Legal Obligation: Where we need to comply with a law or regulation (e.g., tax reporting).

We generally do not rely on consent, but we will always get your explicit consent before sending you third-party direct marketing.

Marketing

We use your Identity, Contact, Technical, Usage, and Profile Data to form a view on what products and offers may be relevant for you.

• Opting Out: You can ask third parties or us to stop sending you marketing messages at any time by following the opt-out links on any marketing message or by contacting us directly. Opting out will not affect data processed as a result of a product purchase or other transaction.
  
  
• Cookies: You can set your browser to refuse all or some cookies. If you disable cookies, some parts of this website may become inaccessible.
  
  

• SMS Marketing Opt-Out & Help: By opting into our SMS communications, you agree to receive recurring promotional and transactional text messages. Message and data rates may apply. Message frequency varies. To stop receiving SMS messages, reply STOP at any time. For assistance, reply HELP or contact us at info@thenetherfield.com.

5: DISCLOSURES OF YOUR PERSONAL DATA

We may share your personal data with the following parties:

• Internal Third Parties: Other companies in the Netherfield Bond group that require access.
  
  
• External Third Parties: Service providers (IT, system administration), professional advisers (lawyers, accountants), and regulatory bodies (HM Revenue & Customs).
  
  
• Specific Third Parties: Payment processors and delivery companies necessary to fulfil your order.
  
  
• Business Change: Third parties to whom we may choose to sell, transfer, or merge parts of our business.

We require all third parties to respect the security of your personal data and use it only for specified purposes in accordance with our instructions.

Critical SMS Privacy Protection: Notwithstanding anything to the contrary in this Privacy Policy, mobile phone numbers and SMS consent data collected for the purposes of text message marketing will not be shared, sold, rented, or leased to any third parties or affiliates for their own marketing or promotional purposes. This exclusion strictly applies to SMS opt-in data and consent records; however, such data may be shared securely with our trusted digital platform partners acting solely on our behalf as data processors to facilitate message delivery and service analytics.

6: INTERNATIONAL TRANSFERS

Many of our external third parties (e.g., cloud services) are based outside the UK/EEA. Whenever we transfer your personal data out of the UK or EEA, we ensure a similar degree of protection is afforded by implementing one of the following safeguards:

• We transfer to countries deemed to provide an adequate level of protection for personal data.
  
  
• We use specific contracts approved by the relevant authorities (e.g., Standard Contractual Clauses) which give personal data the same protection it has in the UK/EEA.

7: DATA SECURITY AND RETENTION

Data Security

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way. We also limit access to your data to only those employees, agents, and contractors who have a business need to know. We have procedures in place to deal with any suspected personal data breach.

Data Retention

We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including satisfying any legal, regulatory, or tax requirements.

• Legal Obligation: By law, we have to keep basic information about our customers (Contact, Identity, Financial, and Transaction Data) for six years after they cease being customers for tax purposes.
  
  
• Anonymisation: We may anonymise your personal data for research or statistical purposes, in which case we may use this information indefinitely without further notice to you.

8: YOUR LEGAL RIGHTS

Under data protection laws, you have the following rights in relation to your personal data:

• Right of Access: Request access to your personal data (Data Subject Access Request).
  
  
• Right to Correction: Request correction of inaccurate data we hold about you.
  
  
• Right to Erasure: Request erasure (deletion) of your personal data.
  
  
• Right to Object: Object to the processing of your data where we are relying on a legitimate interest.
  
  
• Right to Restriction: Request restriction of processing (suspend the use of your data).
  
  
• Right to Portability: Request the transfer of your personal data to you or a third party.
  
  
• Right to Withdraw Consent: Withdraw consent at any time where we are relying on consent to process your personal data.

No Fee Usually Required: You will not have to pay a fee to exercise these rights, although we may charge a reasonable fee if your request is clearly unfounded, repetitive, or excessive.

Time Limit to Respond: We try to respond to all legitimate requests within one month.

NETHERFIELD BOND LTD, LAST UPDATED 13 October 2025