View Case study
tissa-logo-primary

Privacy Policy

Last updated: 17 February 2026

1. Introduction

Tissa Digital Media Ltd ("we", "us", "our") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you use our website (tissa.uk) or engage with our services.

We are registered in the United Kingdom and comply with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and the Privacy and Electronic Communications Regulations (PECR).

Data Controller: Tissa Digital Media Ltd
Registered Office: 4-6 Greatorex Street, London
Company Number: [Companies House Registration Number]
Email: info@tissa.uk

2. Information We Collect

2.1 Information You Provide

We collect personal data you voluntarily provide when you:

  • Complete contact or enquiry forms on our website
  • Book a consultation or meeting via Cal.com
  • Subscribe to our newsletter or marketing communications
  • Engage with us via email or phone
  • Enter into a service agreement with us

This may include: name, business name, email address, phone number, job title, company information, and any details you include in your messages.

2.2 Automatically Collected Information

When you visit our website, we automatically collect:

  • IP address and approximate geographic location
  • Browser type, version, and operating system
  • Device information (desktop, mobile, tablet)
  • Pages visited, time spent, and links clicked
  • Referring website or source of traffic
  • Date and time of access

This data is collected via cookies, server logs, and analytics tools. See our Cookies Policy for more details.

2.3 Third-Party Sources

We may receive information from publicly available sources (e.g., Companies House, LinkedIn) or third-party platforms where you interact with our content.

3. How We Use Your Information

We use your personal data for the following purposes:

  • Service Delivery: To provide digital marketing services, respond to enquiries, and fulfil contracts
  • Communication: To send service-related updates, project information, and respond to your messages
  • Marketing: To send newsletters, case studies, and promotional content (with your consent)
  • Website Improvement: To analyse website performance, user behaviour, and optimise user experience
  • Legal Compliance: To meet tax, accounting, and regulatory requirements
  • Security: To protect against fraud, unauthorised access, and misuse of our services
  • Business Operations: For invoicing, contract management, and administrative purposes

4. Legal Basis for Processing

Under UK GDPR, we process your personal data based on:

  • Consent: You have given explicit permission (e.g., subscribing to marketing emails)
  • Contract Performance: Processing is necessary to fulfil our services or respond to your enquiry
  • Legal Obligation: We must process data to comply with UK tax, employment, or regulatory laws
  • Legitimate Interests: Processing benefits our business operations (e.g., website analytics, fraud prevention) without overriding your rights

5. Sharing Your Information

We do not sell or rent your personal data. We may share your information with:

  • Service Providers: Third-party tools we use to deliver services (Cal.com, Formspree, Google Analytics, email platforms). These providers process data under strict contracts and only for specified purposes.
  • Professional Advisors: Accountants, lawyers, auditors, and insurers where necessary for business operations
  • Legal Authorities: When required by law, court order, or to protect our legal rights
  • Business Transfers: In the event of a merger, acquisition, or sale of business assets

6. International Data Transfers

Some of our service providers are based outside the United Kingdom. When we transfer personal data internationally, we ensure appropriate safeguards are in place, including:

  • Using providers in countries recognised by the UK as having adequate data protection laws
  • Standard Contractual Clauses (SCCs) approved by the UK Information Commissioner's Office (ICO)
  • Privacy Shield frameworks or equivalent mechanisms where applicable

7. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes outlined in this policy:

  • Enquiry Data: 2 years from last contact
  • Client Data: 6 years after contract end (for tax and legal compliance)
  • Marketing Data: Until you unsubscribe or opt out
  • Website Analytics: 26 months (Google Analytics default)

After retention periods expire, we securely delete or anonymise your data.

8. Your Rights

Under UK GDPR, you have the following rights:

  • Right to Access: Request a copy of the personal data we hold about you
  • Right to Rectification: Correct inaccurate or incomplete data
  • Right to Erasure: Request deletion of your data in certain circumstances
  • Right to Restriction: Limit how we use your data while investigating a concern
  • Right to Data Portability: Receive your data in a portable format
  • Right to Object: Object to processing based on legitimate interests or for marketing purposes
  • Right to Withdraw Consent: Withdraw consent at any time (where consent is the legal basis)
  • Right to Complain: Lodge a complaint with the ICO if you believe your data has been misused

To exercise any of these rights, contact us at info@tissa.uk. We will respond within 30 days.

9. Data Security

We implement industry-standard security measures to protect your personal data, including:

  • SSL/TLS encryption for website communications
  • Secure hosting with Vercel (ISO 27001 certified)
  • Regular security audits and vulnerability assessments
  • Access controls and password protection for internal systems
  • Employee training on data protection and confidentiality

While we take all reasonable steps to secure your data, no online transmission is 100% secure. We cannot guarantee absolute security but will notify you of any data breaches as required by law.

10. Children's Privacy

Our website and services are directed at businesses and professionals. We do not knowingly collect personal data from individuals under 18 years of age. If we become aware that a child has provided personal data, we will delete it immediately.

11. Marketing Preferences

We only send marketing communications with your consent. You can unsubscribe at any time by:

  • Clicking the "unsubscribe" link in any marketing email
  • Emailing us at info@tissa.uk
  • Updating your preferences via our contact form

Note: Unsubscribing from marketing does not affect service-related communications (e.g., invoices, project updates) if you are a client.

12. Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or service offerings. The "Last updated" date at the top indicates the most recent version. We encourage you to review this policy periodically. Significant changes will be communicated via email or a website notice.

13. Contact Us & Complaints

If you have questions, concerns, or wish to exercise your data protection rights, please contact us:

Email: info@tissa.uk
Address: 4-6 Greatorex Street, London

If you are not satisfied with our response, you have the right to lodge a complaint with the UK Information Commissioner's Office (ICO):

ICO Website: ico.org.uk
Helpline: 0303 123 1113
Address: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF

Related policies: Terms & Conditions | Cookies Policy | Disclaimer