This privacy notice sets out additional information in relation to the personal data that we may process when taking action in respect of parking charges or penalty fares.
Revenue Protection Support Services
RPSS is a trading name of London & Southeastern Railway Limited
The data controller is:
London & Southeastern Railway Limited
Our Data Protection Manager is:
Our nominated Data Protection Officer is:
More information about the Data Protection Law can be found on the Information Commissioners Website https://ico.org.uk/
The Information Commissioner is our regulator for data protection matters.
• What personal data we collect about you
Information we may collect
We may collect and process information about you in order to take action in relation to penalty fares or parking charge notices. We may use personal data that has already been collected by us. You can find out more about this in the London & Southeastern Railway Limited Privacy Notice.
This information may include, details obtained by staff issuing a penalty fare, such as evidence of identity, age, description, station used, journey details, details obtained by carpark operators in respect of vehicle registration information, contact details, name, address evidence of ticket purchased and correspondence in relation to the penalty fare or parking charge. We may obtain details of the registered keeper from the DVLA in respect of registered owner details and any personal data you provide to us. We may use third party providers to verify identity or undertake debt recovery activities. We will also hold other information you provide to support an appeal.
We act as data processors in relation to services we provide to other train operators. In these circumstances we act on the instructions of the train operating company and they should be contacted in respect of any data protection queries you have.
How we use your information
We will only use the information you provide as permitted by Data Protection Law.
How we use your personal data
We are part of a Group of Companies and share administrative services and support. Your data may therefore be shared with them for these purposes. We are also required to pass certain customer data to successor franchisees or the Department for Transport.
Sharing data with third parties
• British Transport Police under a data sharing agreement to prevent and detect crime.
Where We Store Your Personal Information
The information that we collect from you will only be stored in the European Economic Area.
We use a range of technical and organisational measures to safeguard access to and use of, your personal information and to ensure it retains its integrity and availability. These include structured access controls to systems, network protection, intrusion detection, physical access controls and staff training. We also consider anonymising or pseudonymising personal data where practical. We encrypt your financial information using SSL (Secure Sockets Layer) technology so that no one else can access your credit card details as they travel through the Internet. SSL is certified by Verisign and is recognised as a secure way to pay on-line. As you may be aware, no data transmission over the Internet can be entirely secure. As a result, while we will always use reasonable endeavours to protect the personal information you provide to us, we cannot guarantee the security of your information and the use of our facilities (e.g. email) is at your own risk.
Please contact us at firstname.lastname@example.org
We may need to ask for some further information, such as checking who you are. You can download and send this form, which will help us deal with your request more efficiently.
Please let us know if you want to receive the information electronically.
We aim to get the information to you without undue delay and within 30 days. If we have any trouble with this timeframe we will let you know within 30 days and explain what the problem is. Sometimes we may hold information that we don’t have to provide, for example it would prejudice a police investigation or contains someone else’s personal data.
If you are not satisfied with the response you can complain to the ICO. Its contact details are:
Information Commissioner's Office
Tel: 0303 123 1113 (local rate) or 01625 545 745 if you prefer to use a national rate number
You also have the right to seek a judicial remedy, issue legal proceedings against us.
How long we keep your personal data for
We have policies and procedures in place to make sure we do not keep your personal data any longer than required to meet our legal and other obligations.
We generally retain personal data for around 6 months after the legal limitation periods in which claims can be brought or industry recommended periods. We would also retain information if we are under a legal or regulatory requirement to do so.
We may also keep your personal data for the purposes of our legitimate interests in running our Group businesses, including anonymising or pseudonymising data for analysis.
Changes to this Privacy Notice
We may occasionally update this statement.
Privacy Satement Last Updated: 22 May 2018
1. What are Cookies?
3. What Cookies are used by this Site?
Web beacons are usually 1 pixel size transparent images that help website owners track the activity of users on certain website pages. They can also send the tracking server (ie. us, or our technology partners) information in cookies – such as whether an HTML email with a web beacon in it has been opened. We use web beacons together with cookies to help us understand how you interact with our website and the emails we send you, to help us improve your experience, to ensure that content is relevant to you, and to better manage our website and email content.
Information requests and updates
Please be assured that Southeastern is happy, on request from you, to provide details of any personal information that you have provided us with (this may incur a small charge) and/or to cease to make use of your personal information for the above-mentioned purposes.
As we take the issue of protecting your personal data seriously, we follow strict storage and disclosure procedures which means that we may occasionally require proof or identity from you prior to disclosing such information.
So that we may provide you with an optimum service and comply with its obligations under UK Data Protection legislation, we would be grateful if you could please contact us by going to the feedback page if any personal information that you have provided to us becomes inaccurate or out of date.
Southeastern is committed to the security of personal information and has security procedures in place to protect the loss, misuse or alteration of information under our control.
Access to our database containing personal information on registered users of the site is restricted internally. In order to increase security we ask you to input a password when you register as a user of the site. Please keep this password secret. In addition, we encrypt your financial information using SSL (Secure Sockets Layer) technology so that no one else can access your credit card details as they travel through the Internet. SSL is certified by Verisign and is recognised as a secure way to pay on-line. As you may be aware, no data transmission over the Internet can be entirely secure. As a result, while we will always use reasonable endeavours to protect the personal information you provide to us, we cannot guarantee the security of your information and the use of our facilities (eg e-mail) is at your own risk. If you have any questions about paying for your ticket through the Site, please contact Customer Services.
Changes to this policy
Revenue Protection Support Services
RPSS is a trading name of Southeastern