Legal — last updated June 2025

Privacy Policy.

This policy explains how nonetime collects, uses, and protects information submitted through this website. Plain language. No filler.

Privacy Policy content

1. Who We Are

nonetime is a paid media agency specialising in fashion e-commerce. Our services cover Meta Ads, Google Shopping & Performance Max, TikTok Shop, and creative performance. We operate as a service business and process data on behalf of prospective and current clients.

For the purposes of this policy, "nonetime," "we," "us," and "our" refer to the nonetime agency. Our contact address for data-related enquiries is pmax@nonetime.co.

2. What We Collect

We collect information in two ways: information you provide directly, and technical data collected automatically.

2.1 Information You Provide

When you submit the contact form on this website, we collect:

  • Your full name
  • Your work email address
  • Your brand name
  • Your brand website (optional)
  • Your monthly paid media spend range (optional)
  • Your current paid media channels (optional)
  • Any information you include in the "biggest challenge" free text field (optional)

We do not collect payment information through this website. We do not collect sensitive personal data as defined under GDPR (health, biometric, ethnicity, etc.).

2.2 Technical Data

When you visit this website, standard server logs and analytics tools may collect:

  • Your IP address (truncated or anonymised where possible)
  • Browser type and version
  • Pages visited and time spent
  • Referral source
  • Device type

This data is used in aggregate to understand how the site is used and to improve it. It is not linked to your identity unless you also submit the contact form.

3. How We Use Information

We use the information we collect for the following purposes:

  • Responding to enquiries. When you contact us, we use your name, email, and brand information to respond and conduct any requested audit. This is our primary use of contact form data.
  • Business communications. If we enter into a working relationship, we use your contact details to communicate about our engagement. We do not add you to a marketing list without explicit consent.
  • Site improvement. Aggregate technical data (not personal) is used to understand page performance and improve the website.

We do not sell your data. We do not use your data for programmatic advertising targeting without your explicit consent.

4. Data Sharing

We do not sell, rent, or trade your personal information. We may share data with the following parties only where necessary:

  • Service providers. We use email services to receive and respond to contact form submissions. These providers process data on our behalf and are contractually bound to keep it confidential.
  • Legal requirements. We may disclose personal data where required by law, legal process, or to protect the rights and safety of nonetime or others.

In a client engagement, we access advertising accounts (Meta Business Manager, Google Ads, TikTok Ads Manager). Access to those accounts is governed by a separate Data Processing Agreement (DPA) agreed at onboarding — not by this policy.

5. Cookies

This website uses minimal cookies:

  • Strictly necessary cookies: Set by WordPress to manage sessions and security. They do not track you and cannot be disabled without affecting site functionality.
  • Analytics cookies: If analytics software is active, cookies may be set to distinguish visitors and aggregate usage data. Where possible, we use anonymised analytics.

We do not use advertising cookies, tracking pixels, or retargeting cookies on this website.

Most browsers allow you to control cookie preferences through their settings. Disabling cookies may affect how certain pages function.

6. Data Retention

We retain contact form submissions for as long as is necessary to respond to your enquiry and maintain a record of business communications. If no engagement results, we delete or anonymise enquiry data within 24 months.

If you become a client, your contact and business information is retained for the duration of the engagement plus a reasonable period for legal and accounting purposes.

7. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Ask us to correct inaccurate or incomplete data.
  • Erasure: Ask us to delete your personal data, subject to any legal retention obligations.
  • Restriction: Ask us to restrict processing of your data in certain circumstances.
  • Portability: Where technically feasible, request your data in a portable format.
  • Objection: Object to processing based on our legitimate interests.

To exercise any of these rights, email pmax@nonetime.co. We will respond within 30 days. We may need to verify your identity before acting on your request.

If you are located in the EEA or UK and believe we have not handled your data correctly, you have the right to lodge a complaint with your local supervisory authority.

8. Security

We take reasonable technical and organisational steps to protect personal data from loss, misuse, and unauthorised access, including:

  • HTTPS encryption for all data transmitted through this website
  • Access to contact data limited to nonetime personnel who need it to respond to your enquiry
  • Secure handling of client advertising account credentials under NDA and DPA agreements

No internet transmission or storage system is 100% secure. If you believe your data has been compromised, please contact us immediately at pmax@nonetime.co.

9. Contact Us

For any questions about this privacy policy, to exercise your data rights, or to report a concern:

nonetime
Email: pmax@nonetime.co

We aim to respond to all privacy-related enquiries within 5 business days.

This policy was last updated in June 2025. We may revise it from time to time — the date above reflects the most recent update.