Privacy policy
How does The Timeless Tin protect the privacy and security of your personal data?
a. Our Privacy Commitment
At The Timeless Tin, protecting your privacy and safeguarding the personal data you share with us is one of our priorities.
As we operate and sell our products from Spain, we process personal data transparently and securely in accordance with applicable data protection laws. In particular, we comply with Regulation (EU) 2016/679 (General Data Protection Regulation – GDPR) and the Spanish Organic Law 3/2018 on the Protection of Personal Data and Guarantee of Digital Rights (LOPDGDD).
This Privacy Policy explains how we collect, store, use, share and protect your personal data when you visit our website, create an account, place an order, subscribe to communications or otherwise interact with our services.
We also require our service providers and partners who process personal information on our behalf to maintain equivalent standards of confidentiality and security.
We process your personal information responsibly and only for legitimate business purposes and to provide you with the best possible customer experience.
b. Who is responsible for your Personal Data
This Privacy Policy regulates the use of the Internet portal service located at the address THETIMELESSTIN.COM, whose responsible party for identification purposes is:
Responsible: THE TIMELESS TIN S.L.
Tax Identification Number (NIF): B56796253
Address: Avenida Erdoza 36, Bizcay, Spain
Email: support@thetimelesstin.com
Phone: +34 681392306
Website: www.thetimelesstin.com
Commercial Registry of Bizkaia (Spain): Volume 6236, Page 114, Sheet BI-81940.
The Timeless Tin acts as Data Controller for the purposes of applicable data protection legislation.
c. What Personal Data may we collect?
“Personal Data” means information that identifies you directly or indirectly.
We may collect personal information:
• When you create an account
• When placing an order
• When subscribing to newsletters or marketing communications
• When joining waitlists or stock notifications
• When subscribing to recurring products (including Mystery Box subscriptions)
• When contacting customer support
• When browsing or interacting with our website
• Through cookies and analytics technologies
• Through service providers involved in payment, fulfilment and logistics operations
d. Categories of Personal Data we may collect
The Timeless Tin may process the following categories of personal information:
Customer identification data:
• Name
• Email address
• Telephone number
• Billing address
• Shipping address
• Company details
• VAT number (where applicable)
Account and website usage data:
• Login credentials
• Customer preferences
• Subscription information
• Order history
• Saved information
Order and transaction data:
• Purchased products
• Payment status
• Delivery information
• Refund and claim history
Automatically collected information:
• IP address
• Browser type
• Device information
• Operating system
• Website behaviour and interactions
• Cookies and analytics information
• Marketing engagement metrics
Customer support data:
• Messages
• Requests
• Claims
• Social media interactions
Subscription service data:
• Subscription status
• Renewal dates
• Subscription history
• Billing cycles
• Delivery preferences
e. Why do we process your Personal Data?
· Contacting you if requested.
· Managing your navigation on the website, if applicable.
· Sending commercial communications about our products and services.
· (*) Managing purchases of products offered on the website added to the cart. For this purpose, the user will have a registration form whose completion will legitimize the interested party's access to and enjoyment of certain services offered on the website. However, the user will be informed in any contact form of the use that will be made of the data obtained, and if they are used for a different purpose, said consent will be obtained beforehand and expressly. If the consent of the interested party is given in the context of a written statement that also refers to other matters, the request for consent will be presented in such a way that it is clearly distinguished from other matters, in an intelligible and easily accessible manner, and using clear and simple language, in accordance with article 7.2 of the GDPR of April 27, 2016.
f. What is the legitimacy for the processing of your data?
The legal basis for the processing of your data will be based on:
- The consent of the interested party, for the processing of their data, in accordance with article 6.1.a) of the General Data Protection Regulation.
- The necessary execution of a contract in which the interested party is a party or for the application at the request of the interested party of pre-contractual measures, in accordance with article 6.1.b) of the General Data Protection Regulation.
g. Under which purposes do we process your Personal Data?
We process your personal data for the following purposes:
Order Management
• Process purchases
• Fulfil orders
• Deliver products
• Manage returns and claims
Customer Account Management
• Create and manage customer accounts
• Store purchase history
• Facilitate future purchases
Billing and Accounting
• Issue invoices
• Process VAT-related requests
• Comply with accounting obligations
Subscription Management
• Manage recurring services
• Process automatic renewals
• Administer cancellations
Customer Support
• Respond to enquiries
• Resolve incidents
• Improve service quality
Marketing & Communications
• Send newsletters
• Product launches
• Promotions
• Editorial content
• Personalised recommendations
Website Improvement & Personalisation
• Analyse browsing activity
• Improve product discovery
• Optimise website functionality
Fraud Prevention
• Protect transactions
• Prevent abuse and fraudulent activity
The legal basis for processing may include:
• Performance of a contract
• Compliance with legal obligations
• Legitimate business interests
• Customer consent
Where consent is required, it may be withdrawn at any time.
h. How do we keep your Personal Data secure?
We apply technical and organisational measures designed to protect personal data against accidental loss, unauthorised access, disclosure, alteration or destruction.
These measures include:
• Restricted access to authorised personnel only
• Secure data storage and encrypted communications where appropriate
• Controlled access systems and authentication measures
• Monitoring and security procedures aligned with industry practices
Although we apply reasonable security measures, no online transmission or storage method can guarantee absolute security.
i. How long do we retain your Personal Data?
We collect and process your Personal Data only after obtaining your explicit consent where such consent is required by applicable data protection laws.
We retain your Personal Data only for as long as necessary to fulfil the purposes for which it was collected and to comply with our legal obligations.
If you are a customer, we will retain your Personal Data for as long as necessary to manage our contractual relationship and to comply with the applicable legal retention periods.
If you are not a customer, we will retain your Personal Data only for the minimum period necessary to manage our relationship or respond to your enquiry, unless a longer retention period is required by law.
At any time, you may exercise your data protection rights by contacting us at support@thetimelesstin.com You may also unsubscribe from our newsletters at any time by using the unsubscribe link included in every marketing communication.
Once the applicable retention period has expired, your Personal Data will be securely deleted or anonymised.
j. With whom may we share your Personal Data?
In some cases, we may disclose your personal data to subcontractors in connection with services provided by them, acting as service providers to The Timeless Tin. (e.g. information technology services, communication delivery services).
We may share information only where necessary with:
• Payment providers
• Logistics and fulfilment providers
• Technology and hosting providers
• Analytics providers
• Marketing platforms
• Professional advisers
• Public authorities where legally required
For international deliveries, information may also be shared with customs authorities and local carriers where necessary.
We do not sell personal information.
Where providers process data outside the European Economic Area or the United Kingdom, appropriate legal safeguards will apply.
k. How can you exercise your rights?
Subject to applicable law, you may exercise:
• Right of access
• Right to rectification
• Right to erasure
• Right to restriction of processing
• Right to object
• Right to data portability
• Right to withdraw consent
Requests may be submitted to:
We may request identity verification before processing requests.
You may lodge a complaint with your local Data Protection Authority or with the Spanish Data Protection Agency (AEPD):
https://www.aepd.es
Any person has the right to obtain confirmation as to whether personal data concerning them is being processed. Interested parties have the right to access their personal data, as well as to request the rectification of inaccurate data or, where appropriate, request their deletion when, among other reasons, the data are no longer necessary for the purposes for which they were collected. In certain circumstances, interested parties may request the limitation of the processing of their data, in which case we will only keep them for the exercise or defense of claims. In certain circumstances and for reasons related to their particular situation, interested parties may object to the processing of their data. In such a case, their data will cease to be processed, except for legitimate reasons or the exercise or defense of possible claims. Interested parties may request the portability of the data to obtain the data they have provided in a structured, commonly used, and machine-readable format, to be downloaded by themselves or transmitted to another entity. The interested party can exercise their rights by sending an email to the email address SHOPPING@THETIMELESSTIN.COM, or, if applicable, to the physical address AVENIDA ERDOZA 36.
Consent of minors,
What happens if you are under age?
Our website and services are not directed to children under the age of 14. We do not knowingly collect personal data from children.
In the event that some of our services are specifically aimed at children under fourteen years of age, we will request the consent of parents or guardians for the collection of personal data or, where appropriate, for the automated processing of data in accordance with article 7 of the LOPDGDD.
l. Contact Us
If you have any questions regarding this Privacy Policy or the processing of your personal data, please contact:
THE TIMELESS TIN S.L.
support@thetimelesstin.com
+34 681392306
www.thetimelesstin.com
Cookie Policy
This website uses both third-party and proprietary cookies to enhance your browsing experience, enable content sharing on social media, and gather user statistics.
You can prevent the download of cookies through your browser settings, thereby preventing cookies from being stored on your device.
As the owner of this website, I inform you that we do not use any personal information obtained from cookies; we only compile general visit statistics that do not involve any personal information.
It's crucial that you read this cookie policy and understand that only the necessary cookies for navigation will be stored on your device. Other cookies will be installed only if you expressly consent to them.
According to the terms included in article 22.2 of Law 34/2002 on Information Society Services and Electronic Commerce, by continuing to browse, you are consenting to the use of the aforementioned mechanisms.
Responsible Entity The entity responsible for the collection, processing, and use of your personal data, as defined by the Personal Data Protection Law, is the THETIMELESSTIN.COM website, owned by THE TIMELESS TIN S.L., with the address at AVENIDA ERDOZA 36.
What are cookies? Cookies are a set of data that a server deposits in the user's browser to collect standard Internet registration information and visitor behavior on a website. They are small text files stored on the hard drive of the computer that serve to identify the user when reconnecting to the website. Their purpose is to record the user's visit and store certain information. Their use is common and frequent on the web as it allows pages to operate more efficiently and provide greater personalization and analysis of user behavior.
What types of cookies are there? The cookies used on our website are session and third-party cookies, allowing us to store and access information regarding language, browser type, and other general characteristics predefined by the user, as well as to track and analyze user activity in order to introduce improvements and provide our services more efficiently and personalized.
Cookies, depending on their duration, can be divided into session cookies or permanent cookies. Session cookies expire when the user closes the browser. Those that expire depending on when the purpose for which they serve is fulfilled (for example, to keep the user identified in THE TIMELESS TIN S.L.'s services or when they are manually deleted).
Additionally, depending on their purpose, cookies can be classified as follows:
| NAME | PURPOSE |
| Required | These cookies are necessary for the site to function properly, including capabilities like logging in and adding items to the cart. |
| Analytics | These cookies help us understand how you interact with the site. We use this data to identify areas to improve. |
| Personalization | These cookies store details about your actions to personalize your next visit to the website. |
| Marketing | These cookies are used to optimize marketing communications and show you ads on other sites. |
Performance Cookies This type of cookie remembers your preferences for the tools found in the services, so you don't have to reconfigure the service every time you visit. For example, this typology includes: volume settings for video or sound players, video transmission speeds compatible with your browser, and items saved in the shopping cart in e-commerce services such as stores.
Geolocation Cookies These cookies are used to find out in which country you are when a service is requested. This cookie is completely anonymous and is only used to help target content to your location.
Login Cookies Login cookies are generated once the user has registered or subsequently opened their session, and are used to identify them in the services for the following purposes:
- Keep the user identified so that if they close a service, the browser, or the computer, and at another time or another day they re-enter said service, they will still be identified, thus facilitating their navigation without having to identify themselves again. This functionality can be deleted if the user clicks the [log out] button, so that this cookie is deleted and the next time they enter the service, the user will have to log in to be identified.
- Check if the user is authorized to access certain services, for example, to participate in a contest.
Additionally, some services may use connectors with social networks such as Facebook or Twitter. When the user registers for a service with credentials from a social network, they authorize the social network to save a persistent cookie that remembers their identity and guarantees them access to the services until it expires. The user can delete this cookie and revoke access to the services through social networks by updating their preferences on the specific social network.
Analytical Cookies Every time a user visits a service, an external provider's tool generates an analytical cookie on the user's computer. This cookie, which is only generated during the visit, will serve on future visits to THE TIMELESS TIN S.L.'s services to anonymously identify the visitor. The main objectives pursued are:
- Allow the anonymous identification of browsing users through the cookie (identifies browsers and devices, not people) and therefore approximate counting of the number of visitors and their trend over time.
- Anonymously identify the most visited content and therefore the most attractive to users, knowing if the user accessing is new or a repeat visitor.
Important: Unless the user decides to register for a THE TIMELESS TIN S.L. service, the cookie will never be associated with any personal data that can identify them. These cookies will only be used for statistical purposes to help optimize the user experience on the site.
Advertising Cookies This type of cookies allows us to expand the information of the ads shown to each anonymous user in THE TIMELESS TIN S.L. services. Among others, it stores the duration or frequency of display of advertising positions, the interaction with them, or the browsing and/or user behavior patterns, as they help to shape a user's advertising interest profile. In this way, they allow us to offer advertising related to the user's interests.
Third-Party Advertising Cookies In addition to the advertising managed by THE TIMELESS TIN S.L.'s websites in their services, THE TIMELESS TIN S.L.'s websites offer advertisers the option to serve ads through third parties ("Ad-Servers"). Thus, these third parties can store cookies sent from THE TIMELESS TIN S.L.'s services from users' browsers, as well as access the data stored in them.
How can I disable cookies in my browser? Different browsers can be configured to notify the user of the receipt of cookies and, if desired, prevent their installation on the computer. Likewise, the user can check in their browser which cookies are installed and what is their expiration date, being able to delete them.
- To obtain more information on cookie management in Google Chrome: [link]
- To obtain more information on cookie management in Internet Explorer: [link]
- To obtain more information on cookie management in Mozilla Firefox: [link]
- To obtain more information on cookie management in Safari: [link]
- To obtain more information on cookie management in Opera: [link]
- If you wish to stop being tracked by Google Analytics, visit: [link]