The Tiffin Tin is committed to ensuring confidentiality and that your privacy is protected. Should we ask you to provide certain information by which you can be identified when using this website, you can be assured that it will only be used in accordance with this privacy statement.
The Tiffin Tin may change this policy from time to time by updating this page. Please check this page from time to time to ensure that you are happy with any changes.
This policy is effective from March 2013.
What information we collect
When you visit ‘The Tiffin Tin’ website, no
If you place an order or register, we collect the following information:
- Website account membership registration details (as below)
- Name and Address including Postcode
- Contact details including e-mail and telephone number
- Order details and preferences
- Confirmation reference of payment from your credit /debit card company. We do not hold any credit card details.
What we do with the information we collect
We require this information to process your order and delivery of your delicious meal.
We use this information for the following reasons:
- To administer your own user account on The Tiffin Tin website when you register
- To contact you to confirm your order
- Internal records and accounts
- We may use the information to improve our products and services and improve our website
- We may periodically send you promotional material, special offers, menu updates and relevant material only with your consent.
Is this information shared with anyone else?
The Tiffin Tin will not share your information with any third-party company.
How we protect your data
We are committed to ensuring that your information is secure. To prevent
We take data protection seriously and therefore use SSL encryption on our website to limit the ability of
Embedded content and other websites
Pages on this site may include embedded content (e.g. videos, images, articles, etc.) or links to other websites. Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
How you can control your personal information – how to contact us.
You may choose to restrict the collection or use of your personal information in the following ways:
Whenever you are asked to fill in a form on the website, look for the box that you can click to indicate that you do not want the information to be used by us for direct marketing purposes
We will not disclose your personal information to third parties unless we have your permission or are required by law to do so.
You may request details of personal information which we hold about you under the Data Protection Act 1998. A small fee will be payable. If you would like a copy of the information held on you please write to us via firstname.lastname@example.org.
If you believe that any information we are holding on you is incorrect or incomplete, please write to or email us as soon as possible, at the above address. We will promptly correct any information found to be incorrect.
If you have an account on this
Our website is powered by the open source content management system, WordPress, and uses various plugins to add functionality to the website and keep it secure. The following plugins on our website store information about website visitors:
Wordfence – we use this plugin to protect our website. The plugin provides a firewall, antivirus scanning
WP Security Audit Log – we use this plugin to track any alterations to the website undertaken by registered users. The purposes of this plugin
RocketshipWP website monitor – we use this plugin to undertake regular backups of our website. In the event on an intrusion in the website using RocketshipWP’s EU-based
Cookies are text files placed on your computer to collect standard internet log information and visitor
If you leave a comment on our site you may opt-in to
If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
We use Google Analytics to track how users interact with our website and improve the user experience. The tool captures information about website visitors, including IP address, date and time people visited our site and the individual pages viewed, which is then processed by Google’s servers in the United States. Google does not associate this data with any other data held by Google. Google Analytics uses the following cookies to track user interaction:
_ga cookie – is used to identify unique users and it expires after 2 years.
_gat cookie – is used to throttle the request rate and it expires after 1 minute.
_utma cookie – is a persistent cookie which remains on a computer, unless it expires or the cookie cache is cleared. It tracks visitor metrics including
_utmb cookie & __utmc cookie – are used to calculate user visit length, including arrival time and exit time of the user. _utmb is a sessional cookie and the _utmc cookie expires if no new page view is recorded within 30 minutes.
_utmz cookie – monitors where a visitor arrived from (search engine, organic, social media or direct) and what keyword is generated
_utmv cookie – is a persistent cookie used to improve audience segmentation.
As mentioned above, we use Wordfence to secure our website. The plugin sets three technical cookies to enable it to function:
wf_loginalerted_(hash) – used to notify the Wordfence admin when an administrator logs in from a new device or location.
wfCBLBypass – helps track who should be allowed to bypass country blocking.
For further information about cookies, visit:
You can set your browser not to accept cookies and the above websites tell you how to remove cookies from your browser.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
Where we send your data
What data breach procedures we have in place
In the event of a data breach, we have a protocol in place to contact the Information Commissioner’s Office and all our registered website users, in line with legally required timelines. However, as we do not collect personal information about general website visitors we do not have a protocol in place for contacting general website visitors in case of a breach.
What third parties we receive data from
We do not receive information about website visitors from
What automated decision making and/or profiling we do with user data
We do not undertake any automated decision making or profiling based on user data we receive via the website or other third party services.