We use different methods to collect data from and about you including through:
Direct interactions:
We collect personal data about you if you fill in forms on the Website or correspond with us by telephone, email or otherwise. This includes information you provide when you:
- register to use our Website or app;
- buy train tickets or other products or services;
- enter a competition, promotion or survey; or
- report a problem with our Website or give us feedback.
We may also ask you to share your personal data with us if it is necessary for us to provide our services to you – for example, we may ask if you require mobility assistance when travelling.
We may process personal data that you manifestly choose to make public, including via social media (e.g. we may collect information from your social media profile(s), to the extent that you choose to make your profile visible).
Automated technologies or interactions:
If you use our Website, we automatically collect the following information:
- web usage information (e.g. IP address), your login information, browser type and version, time zone setting, operating system and platform; and
- information about your visit, including the full Uniform Resource Locators (URLs) clickstream to, through and from our Website (including date and time); time on page, page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks and mouse-overs).
Where we collect information about you in the ways described above, we do so on the basis that it is in our legitimate interests to collect and process this data. In most situations this will be anonymised but we collect and process this data to ensure that our site is functioning properly and that our customer experience is to the standard that you and we expect.
The Website may, from time to time, contain links to and from the websites of advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
We also use cookies on our Website. Please see section 13 for more information.
No automated decision-making or profiling will take place using your personal data.
Information we receive from other sources:
We may receive information about you if you use any other website we operate or the other services we provide. We are also working closely with third parties, (including, for example, business partners, sub-contractors in technical, payment and delivery services, advertising networks, analytics providers, search information providers, credit reference agencies) and may receive information about you from them, in particular where you purchase any of our products or services through such third parties. In addition, we may receive information about you from third parties who provide it to us (e.g. your employer, our customers and law enforcement authorities).
When we receive information from other sources, we rely on them having the appropriate provisions in place telling you how they collect data and who they may share it with. We carefully check our sources to ensure that we only receive your information when it is lawful for us to do so.
CCTV and Body Worn Video:
We employ CCTV, on-demand audio recording and body worn video (
BWV) cameras to capture, record and monitor what takes place at our offices, stations, car parks and on our trains in order to help provide a safe environment for both our employees and customers, reduce the number of assaults on our employees and prevent, deter and detect crime.
BWV will only be activated when absolutely necessary. Prior to the record mode being activated, our employees will give notice that the camera is being activated and that it will make both a video and audio recording. For further information on CCTV and retention periods, please contact us using the details provided in section 13 below.