Skip to main content
Important Update Banner

Privacy Policy

Last updated September 19, 2025


1. Who Are We And Why Privacy Policy Matters?

Please take a few minutes to read the following text. At CD Cipher Limited (we) we consider the protection of personal data of our visitors (you) as an important and necessary part of our systems and processes. Safeguarding and preserving your privacy is one of our priorities.

This Privacy Policy explains how we process your data that you provide to us or that we collect about you while you visit our websites.

We may amend this Privacy Policy from time to time, so please check back regularly. If we make significant change we will notify you in a manner commensurate with those changes, for example by email or through a notification on our websites. All changes are summarized in the last section.

Please note: This Website is intended for adults aged 18 and over. If you are under 18, you must not use this Website.

2. Who Processes Your Personal Data

The Controller of your personal data is our company CD Cipher Limited, company number: 16477576, registered with Companies House and whose registered office is at One Fleet Place, London, England, EC4M 7WS, United Kingdom. You can contact us at the address of his registered office or by email info@tactastrips.co.uk.

3. What Data We Process And For Which Purpose?

We collect and process certain types of information when you use our Website. This helps us provide a better experience, stay in touch if you ask us to, and ensure the Website runs smoothly and securely.

a. Information You Provide Voluntarily

Communication data

Personal data that you provide to us when you contact us.

  • Marketing preferences - Your marketing choices, such as whether you have consent or opted-out out of our marketing communications.
  • Email address – If you subscribe to our updates or contact us through a form, we collect your email so we can reply to your message or keep you informed.
  • Other personal data – You might share extra information in a form or message. We’ll use it only to respond to your request or feedback.

b. Information We Collect Automatically

Please see the Cookies Policy.

  • Technical information - IP address that you use to connect to the Internet and our websites, browser type and version, operating system and platform.
  • Information about your visit
    • URL to/through/from our websites including date and time, products that were recommended to you, pages you viewed or page response times, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs).
    • Technical information and the information about your visit we may process automatically with regards to each of your visits to our websites.
    • We use the website analytics tool Hotjar in order to better understand our users’ needs and to optimize this service and experience. Hotjar is a technology service that helps us better understand our users’ experience (e.g. how much time they spend on which pages, which links they choose to click, what users do and don’t like, etc.) and this enables us to build and maintain our service with user feedback. Hotjar uses cookies and other technologies to collect data on our users’ behavior and their devices. This includes a device's IP address (processed during your session and stored in a de-identified form), device screen size, device type (unique device identifiers), browser information, geographic location (country only), and the preferred language used to display our website. Hotjar stores this information on our behalf in a pseudonymized user profile. Hotjar is contractually forbidden to sell any of the data collected on our behalf. For further details, please see the ‘about Hotjar’ section of Hotjar’s support site.

4. What We Do With Your Information

We only use your information for specific, clearly defined purposes. These include:

  • Responding to your enquiries – So we can get back to you if you have contacted us.
  • Sending occasional updates – Only if you have given us explicit permission.
  • Improving your experience – We use feedback and usage data to make the website more helpful and relevant.
  • Understanding how the Website is used – Analytics help us see what is working and where we can improve.
  • Meeting legal obligations – We may need to use some information to comply with applicable laws.

We do not sell your data.

We also do not use your data for automated profiling or decision-making.

5. Legal Basis For The Processing Of Personal Data

The legal basis for the processing of your personal data is one of the following:

  • Processing of your data is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.
  • Compliance with our legal or regulatory obligations.
  • Your consent, if you grant it.

You can revoke your consent at any point by an e-mail sent to info@tactastrips.co.uk.

Purpose / Activity

Type of data

Lawful basis for processing of personal data

To administer and protect our business and our website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data)

(a) Identification and administration data

(b) Technical information

Necessary for our legitimate interests (for running our business, provision of administration and IT services, network security, to prevent fraud)

Necessary to comply with a legal obligation

To use data analytics to improve our website

(a) Technical information

(b) Information about your visit (Usage of Websites)

(c) Communication data

Where required, your consent

Otherwise, necessary for our legitimate interests (develop our business and improve our products)

To send you marketing materials and for communication

To answer you to your questions

(a) Identification and administration data

(b) Communication data

(c) Marketing preferences

Where required, your consent

Otherwise, necessary to comply with a legal obligation

6. How We Protect Your Personal Data

We apply a number of security measures to protect your personal data that we process. These are technical security measures (security of virtual servers, access logging, secure storage of data, etc.) and organizational measures (restriction of access of employees in accordance with internal policies and procedures).

7. Who We Share Your Data With

We may pass on your data to vendors who provide us with IT services and other support services including delivery of the products that you ordered. Some processors process your personal data in another country within the EEA. Our main vendors are:

  • IT vendors:
    • Creative OpCo s.r.o., the Czech Republic
  • Email management company:
    • We use the Rocket Science Group LLC d/b/a Mailchimp (Mailchimp) for sending marketing content and commercial communication (concerning the Product purchased and relationship) to the customers and subscribers. Privacy Statement of Mailchimp available at: https://www.intuit.com/privacy/statement/

We do not share your data with advertisers or social media platforms.

8. Where Your Data Are Stored

Your data held by us are stored in the servers located within the European Economic Area, which the UK authorities have deemed to have adequate safeguards to protect your personal data.

9. Transferring Your Data Internationally

Your data may sometimes be transferred outside the UK or the European Economic Area (EEA). If this happens, we’ll make sure it’s protected.

We only transfer data where appropriate safeguards are in place – for example, by using standard contractual clauses approved by the UK or EU authorities. These legal tools help ensure your data stays secure and appropriately handled, regardless of where it goes.

10. How Long Do We Keep Your Data

We retain your data for as long as necessary to fulfill the purposes for which we collected such data for. That includes also the purpose for fulfilling our legal, or reporting requirements.

In general we consider the nature, amount and sensitivity of the personal data, the potential risk of harm from the unauthorized use or disclosure of your personal data, the purposes for which we process such data and whether we can achieve these purposes through other means, and the applicable legal requirements.


Type of data

How long do we keep them?

Email address (marketing purposes)

As long as your consent is applicable and you do not opt out or withdraw your consent

Communication

1 year after the last communication

Marketing preferences

As long as it remains relevant to the marketing activities and you do not withdraw your consent.

11. Your Data Rights

To the extent guaranteed by data protection regulations, you may require us to access, update, correct or delete your personal data that we hold. You may also want to restrict our data processing, you may object to the processing, or exercise your right to data portability.

For processing for which we need your consent, you can revoke your consent to the processing of data.

To exercise any of the above-mentioned rights, contact us in writing at info@tactastrips.co.uk. Please note that in some cases we cannot comply with your request e.g. we may be unable to delete some of your data due to legal and duties.

You can file a complaint with the supervisory authority - Information Commissioner's Office (see https://ico.org.uk/).

12. Changes to This Policy

Last update: N/A

Changes: N/A

For adult use only. TACTA contains nicotine which is a highly addictive substance.
Support