Transport for Ireland

Social Media Privacy Policy

Last updated: 17/02/2026

This Privacy Notice is issued by the National Transport Authority of Haymarket House, Smithfield, Dublin 7, D07 CF98 (“NTA”, “we”, “us”, “our”), responsible for Transport for Ireland (TFI) services.

The purpose of this notice is to inform you of the data relating to you that we collect and use in connection with social media platforms, and the uses (including disclosures to third parties) we make of such data. The NTA is not responsible for the content or privacy practices of any linked sites.

If you have any questions about our use of your personal data, please contact us at info@nationaltransport.ie or you can contact our Data Protection Officer at privacy@nationaltransport.ie .

Our Social Media Channels

TFI uses the following platforms to share updates, campaigns, and travel information:

Spotify, Facebook, Instagram, LinkedIn, X (Twitter), TikTok.

What Information We Collect

Any future updated versions of this policy will be made available on our website.

Platform Data We Collect Data the Platform Collects Data the Platform Sends to Us
Meta (Facebook & Instagram) Only information you provide directly on our pages, such as comments, messages and any content you voluntarily submit. Meta collects Pixel-tracked events (page views, clicks, form submissions, product interactions), user behaviour on Meta services, device details, timestamps, referrer URLs, and IP‑based location. Meta provides only aggregated, anonymised analytics such as reach, impressions, engagement totals and demographic summaries. No identifiable personal data is shared.
TikTok Profile information (name etc) and comments you leave on our posts and any direct messages you send to us. TikTok collects video views, reached audience counts (unique but not identifiable), profile views, follower statistics, and engagement metrics (likes, comments, shares). TikTok provides aggregated analytics on video performance, reach, engagement totals, follower numbers and profile views. No identifiable personal data is shared.
LinkedIn Profile information (name, public profile details etc) and information you provide directly via comments, post interactions or messages sent to our Page. LinkedIn collects demographic summaries of visitors and followers (industries, job roles, seniority, locations), engagement data (impressions, clicks, reactions, comments, reposts) and search appearance insights (keywords used). LinkedIn provides aggregated analytics including engagement totals, impressions, demographic percentages and content performance metrics. No identifiable personal data is provided.
Spotify We do not collect any personal data through Spotify. The platform provides no messaging, comment features or analytics to our account. Spotify collects listener demographics, location data, device information, listening activity and follower information for its own service purposes, but does not share this with us. Spotify does not send us any analytics or data. No identifiable or aggregated listener information is shared with our account.

 

Lawful Basis

The lawful basis for this processing data is the performance of tasks carried out in public interest (Article 6(1)(e) GDPR). This is in line with Article 57 of the Dublin Transport Authority Act 2008.

How/Why We Use Your Information

  • To share travel updates and public transport information.
  • To respond to your queries and comments.
  • To run campaigns, competitions, and promotions.
  • To improve our services through engagement insights.

Advertising & Targeting

We may use social media advertising tools to share relevant updates. You can manage ad preferences in your social media account settings.

  • Ads are based on general audience interests, not sensitive data.
  • We do not advertise to children under 16.

User-Generated Content

If you share photos, videos, or stories with us:

  • We will only repost or use them with your consent.
  • For minors, we require parental consent.

Cookies & Tracking

Social media platforms may use cookies or tracking technologies when you view our content.

  • These are controlled by the platform’s own privacy policies.
  • You can manage your preferences in your account settings.

Privacy and Cooking Policies for our Social media Channels can be found on platform websites.

Your Rights

Under GDPR, you have the following rights:

  • Right of Access: You can request a copy of the personal data we hold about you.
  • Right to Rectification: You can ask us to correct inaccurate or incomplete data.
  • Right to Erasure (“Right to be Forgotten”): You can request deletion of your data where there is no legal reason for us to keep it.
  • Right to Restrict Processing: You can ask us to limit how we use your data (e.g., while a complaint is being investigated).
  • Right to Object: You can object to processing for marketing or other purposes based on legitimate interests.
  • Right to Data Portability: You can request your data in a structured, machine-readable format and transfer it to another provider.
  • Right to Withdraw Consent: If we rely on consent, you can withdraw it at any time.
  • Right not to be subject to Automated Decision-Making: You can request human review if decisions are made solely by automated means.

How to exercise your rights:
Email privacy@nationaltransport.ie or write to our address above. We will respond within one month (or up to three months for complex requests). Alternatively, you can contact the Data Protection Commission at www.dataprotection.ie.

Data Sharing

  • We do not sell your data.
  • We only share data with social media platforms and service providers needed to run campaigns.

Third party platforms we use:

Hootsuite

This is a social media management platform that allows users to schedule, manage, and analyse content across multiple social networks from a single dashboard. You can find Hootsuite’s privacy and cookie policies on their website.

How Long We Keep Data

  • Queries/complaints: 13 months.
  • Legal claim: 7 years.
  • FOI requests: Indefinitely (legal requirement).
  • App accounts: Per app privacy notice.

Keeping Your Data Safe

We use secure systems and follow GDPR principles.
If a data breach occurs, and if we are required to do so, we will notify affected users and the Data Protection Commission within 72 hours of becoming aware of the breach.

Questions or Complaints

Email privacy@nationaltransport.ie or contact the Data Protection Commission at www.dataprotection.ie.

Summary

  • The lawful basis for this processing data is the performance of tasks carried out in public interest (Article 6(1)(e)). This is in line with Article 57 of the Dublin Transport Authority Act 2008.
  • We respect your privacy on all social media platforms.
  • We only use your data for engagement, campaigns, and service updates.
  • You are in control of your data and can contact us anytime

 

 

 

Latest Posts

Next Events