This Privacy Notice is issued by the National Transport Authority of Dún Scéine, Harcourt Lane, Dublin 8 (“NTA”, “we”, “us”, “our”).
We provide a mobile ticketing scheme and mobile application called ‘TFI Go’ as a convenient way to pay for and use public transport services (the “TFI Go App”). The purpose of this notice is to inform you of the data relating to you that we may collect and use in connection with the TFI Go App and the uses (including disclosures to third parties) we may make of such data. If you have any questions about our use of your personal data, please contact us at email@example.com.
Personal Data that we collect and Process
We will collect and process personal data relating to you in connection with your use of the TFI Go App and our relationship with you. This personal data may include:
If you purchase a ticket for public transport services on the TFI Go App, you will be re-directed to a payment page where you will be asked to provide your credit/debit card details. This payment page is hosted by AIB Merchant Services (“AIBMS”). Further details in relation to the processing of your credit/debit card details by AIBMS are set out in the AIBMS Privacy Notice, a copy of which is available here.
Purposes of Processing and Legal Basis
We will use personal data relating to you for the purposes of:
The legal bases on which we process your personal data are:
Recipients of Data
We may disclose your personal data to other organisations in connection with the above purposes, including:
Requirement to Provide Personal Data
You are not under a statutory or contractual duty to provide us with any personal data. However, there are some pieces of information that we require in order to register you with an account on the TFI Go App.
If you do not provide us with the information required, we will not be able to facilitate your use of the TFI Go App.
We will not hold your personal data for longer than is necessary. We retain your personal data for as long as we need it for the purposes described in this Notice, or to comply with our obligations under applicable law and, if relevant, to deal with any claim or dispute that might arise between you and us.
In connection with the above we might transfer your personal data outside the European Economic Area, including to a jurisdiction which is not recognised by the European Commission as providing for an equivalent level of protection for personal data as is provided for in the European Union. If and to the extent that we do so, we will ensure that appropriate measures are in place to comply with our obligations under applicable law governing such transfers. These may include entering into a contract governing the transfer that contains the ‘standard contractual clauses’ approved for this purpose by the European Commission. If you would like to receive further details of the measures that we have taken in this regard, please contact us at firstname.lastname@example.org.
You have the following rights, in certain circumstances and subject to certain restrictions, in relation to your personal data:
If you wish to exercise any of the rights set out above, please contact us at email@example.com.
We may occasionally update this policy. We encourage you to periodically review this policy for the latest information on our privacy practices.
If you are not happy with the way we are using your personal data or how we facilitate your rights or comply with our obligations under applicable data protection law, you have the right to make a complaint to the Data Protection Commission by emailing firstname.lastname@example.org