General Privacy Policy

Shepper is a trading name of Shepper Limited (“Shepper”, “us”, “we”), a limited liability company registered in England and Wales, number 10196436.

Our registered office address is Unit 09.201, The Leather Market, Weston Street, London, SE1 3ER.

We are committed to protecting and respecting your privacy. For the purposes of the General Data Protection Regulation (“GDPR”), we are the data controller and we are registered with the Information Commissioner’s Office (registration number ZA209843).

This Privacy Policy explains how we collect, use and disclose personal information that we receive when you visit this website, use our services, or communicate with us, both on this website and offline as a customer or potential customer.

1. Collection and Use of Your Information

In this Policy ‘personal data’ means identifiable information about you, such as your name, email, address, telephone number, bank account details, support queries and so on. If you cannot be identified (for example, when personal data has been aggregated and anonymised) then this policy does not apply.

We may collect your personal data directly from you or when you access and interact with the Website, by telephone, letter or email or from other sources. We may also collect personal data from persons acting on your behalf.

The personal data we collect from you includes your name, address, telephone number, email address, location and property details, and other details submitted by you in relation to the Services you request from Shepper.

You acknowledge that:

  • If you choose not to provide us with your personal data, or choose to use a pseudonym, we may not be able to contract with you or provide you with the information or Services you may require; and
  • If you submit incorrect information to Shepper, this may adversely affect any Services you request from Shepper.

You acknowledge and that by providing your personal data to us that we may collect and use your personal data for the purposes of supplying the Services to you, communicating with you and better understanding your needs and complying with our legal obligations. Where you have consented, we may also collect your personal data to provide you with marketing and updates on our Services and any additional services we may provide.

We may also collect information about you with regard to each of your visits to the Website. This includes technical information relating to your activity on the Website (including IP addresses, your login information, your device ID or browser type) collected by way of tracking technologies such as cookies, or we may collect information from you in response to a survey.

We use this information to record statistics, analyse trends, administer our Services, diagnose problems and target and improve the quality of our Services. To the extent this information in aggregated or non-personally identifiable form does not constitute personal data, we may use this information for any purpose and for any means whatsoever.

Where we collect personal data, we’ll only process it:

  • to perform a contract with you, or
  • where we have legitimate interests to process the personal data and they’re not overridden by your rights, or
  • in accordance with any legal obligations, or
  • where we have obtained your consent.
2. Disclosure of Your Personal Data

We may share your personal data with selected third parties, including:

  • persons employed or engaged by us to provide you with the Services on our behalf, such as the members of our inspection team (“Shepherds”); and
  • business partners, suppliers and sub-contractors for the performance of any contract we enter into with them or you.

We may also disclose your personal data to third parties:

  • In the event that we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets.
  • If we are acquired by a third party, in which case personal data held by us about our customers will be one of the transferred assets.
  • If substantially all of our assets are acquired by a third party, in which case personal data held by us about our customers may be one of the transferred assets.
  • If we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our Terms and Conditions and other agreements.
  • To protect our rights, property or safety, or that of our customers, users or other third parties. This includes exchanging information with other companies and organisations for the purposes of fraud protection, credit risk reduction and law enforcement.

You represent to us that where you provide personal data to us about another person, you are authorised to provide that data to us, and that you will inform that person who we are, how we use and disclose their data, and that they can gain access to that data.

3. Security

We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect online.

Our employees and agents are responsible for handling your personal data and educated about the requirements of the GDPR. Personal data that we hold on our systems is protected through the use of secure passwords and other security procedures including physical, network and computer security. Access to your personal data is limited to those who specifically need it to conduct their responsibilities. We take reasonable steps to destroy or permanently de-identify your personal data where it is no longer required and to protect your personal data from unauthorised access, disclosure, loss, misuse and alteration.

Unfortunately, transmission of information via the internet is not completely secure. Although we take all reasonable technical and organisational measures to safeguard your personal data and ensure it is treated securely and in accordance with this policy, we cannot guarantee the security of your personal data transmitted to the Website. Once we have received your personal data, we will use strict procedures and security features to try to prevent unauthorised access.

Where we have given you (or where you have chosen) a password which enables you to access certain parts of our site, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.

4. Transfer and Storage of Personal Data

The data that we collect from you may be transferred to, and stored at, a destination outside the UK or the European Economic Area (“EEA”). It may also be processed by staff operating outside the UK or the EEA who work for us or for one of our sub-contractors. Such staff may be engaged in, among other things, the fulfilment of your order, the processing of your payment details and the provision of support services.

Where personal data is transferred to and stored in a country not determined by the UK or the European Commission as providing adequate levels of protection for personal information, we take steps to provide appropriate safeguards to protect your personal information, including entering into standard contractual clauses approved by the UK or the European Commission, obliging recipients to protect your personal information.

If you would like further information on the specific mechanism used by us when transferring your personal information outside of the UK or the EEA, please contact us using the details set out below.

5. Marketing and Communications

We may like to provide you with information about our new services, promotions, special offers and other information which we think you may find interesting.

You can permit us to process your personal data for marketing purposes by opting in through checking certain boxes on the form we use to collect your data. We will inform you (before collecting your data) if we intend to use your data for such purposes or if we intend to disclose your personal data to any third party for such purposes.

You can also exercise the right at any time by contacting us via email at support@shepper.comor in writing to us at Shepper Ltd, Unit TAP.E, 175 Long Lane, London, SE1 4GT. We will always give you an opportunity to unsubscribe from receiving any marketing from us in each communication we send to you.

6. Links

We may link to other websites which are not within our control. If you choose to follow such links, you should make your own enquiries as to the privacy policies of those third parties. We do not accept any responsibility or liability for information on, or the privacy practices of such websites.

7. Your Rights & Retention of Information

Under the GDPR, you have rights to:

  • know what personal data we hold about you, and to make sure it’s correct and up to date
  • request a copy of your personal data (a “data subject access request”), or ask us to restrict processing your personal data or delete it
  • object to our continued processing of your personal data
  • request that we erase your personal data where there is no good reason for us continuing to process it
  • request the transfer of your personal data to you or a third party

You can exercise these rights at any time by sending an email to or by writing to us at Shepper Ltd, Unit TAP.E, 175 Long Lane, London, SE1 4GT as soon as possible. You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if we believe that your request is unfounded, repetitive or excessive.

8. Complaints

If you’re not happy with how we are processing your personal data, please let us know by sending an email to We will review and investigate your complaint, and try to get back to you within a reasonable time frame. You can also complain to your local data protection authority. They will be able to advise you how to submit a complaint.

You also have the right to complain to the UK Information Commissioner’s Office ( We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.

9. How long we keep your personal data

The length of time we keep your personal data depends on what it is and whether we have an ongoing business need to retain it (for example, to provide you with a service you’ve requested or to comply with applicable legal, tax or accounting requirements).

We’ll retain your personal data for as long as we have a relationship with you and for a period of time afterwards where we have an ongoing business need to retain it, in accordance with our data retention policies and practices. Following that period, we’ll make sure it’s deleted or anonymised.

10. Cookies

In order to improve the Website, we may use small files commonly known as “cookies”. A cookie is a small amount of data which often includes a unique identifier that is sent to your computer or mobile phone (referred to in this policy as a “device”) from the Website and is stored on your device’s hard drive.

A cookie records on your device information relating to your internet activity (such as whether you have visited the Website before). Cookies, which are industry standard and are used by most websites, including the Website, can facilitate a user’s ongoing access to and use of a site. They allow us to customise the Website to your needs.

We ask for your consent to place cookies on your device, except where these are essential for us to provide you with a service that you have requested.

If you do not want us to use cookies when you use the Website, you can adjust your internet browser settings not to accept cookies. Your web browser’s help function should tell you how to do this. Alternatively, you can find information about how to do this for all the commonly used internet browsers on the website: This website will also explain how you can delete cookies which are already stored on your device. However, if you block cookies some of the features on the Website may not function as a result.

We currently set the following cookies:

  • Google Analytics – Strictly for our eyes only, this is to help us improve our site based on how you use it
  • LinkedIn – This is for marketing purposes for more personalised ads
  • Facebook – This is for marketing purposes for more personalised ads
  • Zendesk CDN – This is to enable live chat. If you have any feature suggestions or questions, you can enable this to talk to us about them
  • Pardot – This is for marketing purposes for more personalised ads

Further details are set out below:







1 year


Zendesk cookies provides live chat functionality for customer/sales purposes



1 year

Used by Facebook to deliver a series of advertisement products such as real-time bidding from third party advertisers

Google Analytics 


2 years

 Google Analytics uses this cookie to distinguish users.

Google AdSense


3 months

Used by Google AdSense for experimenting with advertisement efficiency across websites using their services.

Google Analytics 


24 hours

Google Analytics uses this cookie to distinguish users.



10 years

Pardot CRM – The visitor cookie includes the name “visitor_id” plus the unique identifier for our account, which is derived from the tracking code placed on our site. The value stored is the unique ID for the visitor. For example, the cookie name “visitor_id12345” stores the visitor value “123456789,” where 12345 is the account identifier and 123456789 represents the visitor ID. This cookie is set by Pardot tracking code on visitors and prospects.



10 years

Pardot CRM – The visitor cookie includes the name “visitor_id” plus the unique identifier for our account, which is derived from the tracking code placed on our site. The value stored is the unique ID for the visitor. For example, the cookie name “visitor_id12345” stores the visitor value “123456789,” where 12345 is the account identifier and 123456789 represents the visitor ID. This cookie is set by Pardot tracking code on visitors and prospects. The Hash ID extension help shorten ID and disallow exposure of database IDs to the user.



When the browsing session ends

The main purpose of this cookie is Targeting/Advertising during the session 

11. Changes to our privacy policy

We reserve the right to change this Privacy Policy from time to time. Any changes will be posted on the website with an updated revision date. If we make any material changes to this Privacy Policy, we may notify you by email or by means of a prominent notice on the website prior to the change becoming effective.


12. Contact us

If you would like a copy of this policy or have a query or you would like to make a complaint, please contact us at:

  • Email:
  • Post: Shepper Ltd, Unit TAP.E, 175 Long Lane, London, SE1 4GT

Thank you for using

Last updated: 13 September 2019.