This Cookie Policy explains how TISA (tisa.one), operated by 9Eons Limited, a company registered in England and Wales under company number 06393882, with its registered office at Luminous House, 300 South Row, Milton Keynes, MK9 2FR, United Kingdom, uses cookies and similar tracking technologies on our website at https://tisa.one (the “Website”) and our mobile application (the “App”) (collectively, the “Services”).
This Cookie Policy should be read alongside our Privacy Policy and our Terms and Conditions.
In summary: We use strictly necessary cookies without consent (as permitted by PECR). All other cookies — including analytics, functionality, and advertising cookies — are only set after you give your explicit, informed consent via our cookie banner.
Cookies are small text files that are placed on your device (such as a computer, smartphone, or tablet) when you visit a website or use an app. They are widely used to make websites and apps work more efficiently and to provide information to the owners of the site or app.
We also use similar technologies, including:
These technologies enable our Services to:
References to “cookies” in this policy include all similar technologies listed above, unless stated otherwise.
We are committed to complying with all applicable data protection and electronic communications laws, including:
ICO Guidance: In line with the Information Commissioner’s Office (ICO) guidance, we do not use “cookie walls” that block access to the Services unless consent is given, and we do not treat continued browsing or scrolling as valid consent. Pre-ticked boxes are not used. Your consent is obtained through a clear, affirmative action.
| Category | Purpose | Duration | Consent Required? |
|---|---|---|---|
| Strictly Necessary | Essential for the operation of the Services (e.g., authentication, security, session management, and core functionality such as login and checkout). These cookies cannot be switched off. | Session or up to 1 year | No (PECR Reg. 6(4) exemption) |
| Performance / Analytics | Collect anonymised data on how users interact with the Services to measure performance, identify errors, and improve user experience (e.g., Google Analytics with IP anonymisation enabled). | Up to 2 years | Yes |
| Functionality | Remember your preferences and settings (e.g., language selection, previously viewed subscription bundles, display preferences). | Up to 1 year | Yes |
| Targeting / Advertising | Deliver personalised advertisements and measure their effectiveness. Deployed only with your explicit consent. | Up to 90 days | Yes |
Retention justification: Performance/Analytics cookies (up to 2 years) are retained at these durations to accurately measure long-term user retention, assess the effectiveness of service updates, and ensure consistent functionality across sessions. Functionality cookies (up to 1 year) ensure your preferences persist between visits. We review all cookie lifespans regularly to ensure they remain proportionate.
| Cookie Name | Provider | Category | Purpose | Expiry |
|---|---|---|---|---|
session_id |
TISA (tisa.one) | Strictly Necessary | Maintains your authenticated session | End of browser session |
csrf_token |
TISA (tisa.one) | Strictly Necessary | Protects against cross-site request forgery attacks | End of browser session |
cookie_consent |
TISA (tisa.one) | Strictly Necessary | Records your cookie consent preferences | 1 year |
_ga |
Google Analytics | Performance / Analytics | Distinguishes unique users (IP anonymisation enabled) | 2 years |
_gid |
Google Analytics | Performance / Analytics | Distinguishes unique users for 24-hour reporting | 24 hours |
_gat |
Google Analytics | Performance / Analytics | Throttles request rate to limit data collection | 1 minute |
preferred_plan |
TISA (tisa.one) | Functionality | Remembers your last viewed subscription bundle | 30 days |
ad_id |
Meta / Google Ads | Targeting / Advertising | Enables personalised advertising (consent-based only) | 90 days |
_fbp |
Meta (Facebook) | Targeting / Advertising | Identifies browsers for advertising and site analytics | 90 days |
Note: The cookie_consent cookie is classified as strictly necessary because it is required to record and honour your consent choices, as recommended by ICO guidance. It does not track your activity.
We keep this list under regular review. If we introduce new cookies, this policy will be updated and, where required, fresh consent will be obtained before they are set.
Where you have given explicit consent, cookies set by advertising partners such as Meta and Google may be used to facilitate cross-site tracking and profiling. This allows us to deliver targeted advertising based on your usage patterns both on and off our Services.
When personal data is shared with these third parties for advertising purposes:
Important: Advertising cookies are never set without your explicit, informed consent. You can withdraw consent at any time (see Section 7). Withdrawal does not affect the lawfulness of processing carried out before withdrawal.
Relevant third-party privacy policies:
When you first access the Services, you will be presented with a cookie consent banner offering the following options:
In accordance with ICO guidance, Reject Non-Essential is given equal prominence to Accept All. We do not use dark patterns, nudging, or confusing language to influence your choice.
You can manage or withdraw your consent at any time using:
When you withdraw consent, we will delete or disable the relevant cookies as soon as technically practicable. Some cookies may persist in your browser until they expire; however, they will no longer be read or processed by us.
Most browsers allow you to manage cookies through their settings. You can typically find these under “Privacy” or “Security” in your browser’s preferences. Common browser instructions:
| Browser | How to Manage Cookies |
|---|---|
| Google Chrome | Settings > Privacy and security > Cookies and other site data |
| Mozilla Firefox | Settings > Privacy & Security > Cookies and Site Data |
| Apple Safari | Preferences > Privacy > Manage Website Data |
| Microsoft Edge | Settings > Privacy, search, and services > Cookies and site permissions |
| Safari (iOS) | Settings > Safari > Advanced > Website Data |
You can also opt out of Google Analytics tracking across all websites by installing the Google Analytics Opt-out Browser Add-on.
We use Google Consent Mode V2 to ensure that Google tags respect your consent choices. When you decline analytics or advertising cookies, Google tags operate in a restricted, cookieless mode that does not store identifiers on your device.
Please note: Disabling strictly necessary cookies via your browser may prevent essential features of the Services (e.g., login, checkout, or security protections) from functioning correctly. We recommend using our Cookie Preference Centre rather than browser-level blocking for the best experience.
Certain cookies are placed by trusted third-party service providers who process data on our behalf or as independent controllers. We ensure that appropriate contractual safeguards are in place.
| Third Party | Purpose | Privacy Policy |
|---|---|---|
| Google Analytics | Performance and usage analytics (IP anonymisation enabled; data processed in the EU/UK) | View |
| Google Ads | Advertising measurement and conversion tracking (consent-based only) | View |
| Meta (Facebook) | Advertising measurement and audience building (consent-based only) | View |
| Revolut Checkout | Secure payment processing (strictly necessary for transactions) | View |
| Cloudflare | Security, DDoS protection, and performance optimisation | View |
We do not permit third-party tracking for profiling purposes without your explicit consent. Where a third party processes personal data as an independent controller, their own privacy policy governs that processing.
Data collected through cookies is retained only for as long as necessary to fulfil the purposes described in this policy:
| Cookie Category | Maximum Retention Period |
|---|---|
| Strictly Necessary | Session to 1 year (depending on the specific cookie) |
| Performance / Analytics | Up to 2 years (aggregated/anonymised data may be retained longer) |
| Functionality | Up to 1 year |
| Targeting / Advertising | Up to 90 days |
| Consent records | Up to 12 months (consent is re-prompted at least annually to ensure ongoing validity) |
After the relevant retention period, cookie data is automatically deleted or anonymised. Where you withdraw consent, cookies are disabled immediately and data is deleted as soon as technically practicable.
Under the UK GDPR, in relation to personal data collected through cookies, you have the following rights:
To exercise any of these rights, please contact our Data Protection Officer at [email protected] or email [email protected]. We will respond within one calendar month of receiving your request, as required by UK GDPR Article 12(3).
Right to complain: If you are not satisfied with how we handle your request, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO):
Website: ico.org.uk
Helpline: 0303 123 1113
Post: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF
Our Services are not directed at children under the age of 16. We do not knowingly set non-essential cookies or collect personal data through cookies from children under 16. If we become aware that we have inadvertently collected such data, we will take steps to delete it promptly.
In accordance with the ICO’s Age Appropriate Design Code (Children’s Code), we ensure that tracking and profiling cookies are not used in contexts where children may be affected.
We may update this Cookie Policy from time to time to reflect:
The updated version will be published on our Website with a revised effective date. Where changes are material (e.g., introduction of a new cookie category or a new advertising partner), we will re-prompt for consent as required by PECR.
We encourage you to review this policy periodically.
General Enquiries
Postal Address
9Eons Limited
Luminous House
300 South Row
Milton Keynes, MK9 2FR
United Kingdom
Supervisory Authority
If you are not satisfied with our response, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO) at ico.org.uk or by calling 0303 123 1113.