TfL holds two types of information which allow us to operate the scheme effectively:
Cameras capture images whenever a vehicle travels within the Road User Charging zone. Our computer system checks whether the Road User Charge has been paid for that particular vehicle, or if it is eligible for discount or exemption. If so, the images are deleted in accordance with the Data Protection Act 1998, by midnight of the next working day. All other images are retained for enforcement purposes.
Details of the registered keeper are then provided by the Driver and Vehicle Licensing Agency (DVLA) which allows TfL to issue a Penalty Charge Notice for non-payment of the charge.
In order to comply with the Data Protection Act 1998, your details will only be kept for:
This doesn't include information which we are legally obliged to keep for longer periods in order to comply with accounting and auditing regulations.
If you've received a Penalty Charge Notice, there will be two images on the notice itself. If you would like to receive additional images of your vehicle, or other personal data which TfL holds in relation to Road User Charging, then you must make a formal subject access request, and pay a £10 fee, to obtain this under the Data Protection Act 1998.
You can make a subject access request using the form below, or contact our Road User Charging Call Centre on 0845 900 1234 (TfL call charges) and we'll post one to you.
If you have not received a Penalty Charge Notice then there are only limited circumstances in which we might hold images of your vehicle. You will still need to submit a subject access request and payment to obtain any such images.
Road User Charging Subject Access Request form
It would be a breach of the Data Protection Act 1998 to disclose such information without the account holder's written permission. This is true whether the person is a member of your family or someone not directly related to you.
All financial details are stored on our database using the latest encryption and firewall technology. This is the most advanced and the safest, 'industry standard' protection.
In addition, we make sure we don't store entire credit/debit card numbers. Nor do we keep the security code of customers' credit or debit cards. These are always requested during each transaction.
Occasionally, personal information held in relation to Road User Charging may be requested by, and disclosed to:
Personal data may be shared by TfL when a valid reason to obtain the data under the Data Protection Act 1998 is provided by the organisation making the request. Such requests are dealt with on a strictly case-by-case basis.
Additionally, in the course of our day-to-day work, we randomly monitor vehicles, including those registered for a discount. If we think we've discovered a persistent evader, or someone committing fraud, we'll hand the information over to the local authority or the police, who will follow it up.
TfL has a contract with a third party service provider which provides the majority of the administration and 'back office' services that ensure the efficient day-to-day operation of the schemes. Some of the associated technical support services are provided from outside of the UK.
While all of our customer data is physically stored in UK data centres, in the event of technical problems arising with our IT systems, some of your personal information may need to be accessed by our service provider from operations centres based in India. Any such processing will be carried out in strict accordance with UK/EU privacy legislation and appropriate contractual safeguards which TfL has put in place.
The Home Secretary has signed a certificate confirming that TfL, and the Metropolitan Police Service (MPS), are exempt from certain provisions of the Data Protection Act 1998 for the purpose of providing the MPS with real time access to the information captured by the network of cameras used for the operation of the Road User Charging zone.
Police access to the camera data is solely for the purpose of safeguarding national security and not for investigating general crime. These are the specific terms of the certificate and the MPS's use of the data is strictly controlled.
We take the privacy of our customers seriously and robust procedures are in place to control and safeguard access to, and use of, the information. The Information Commissioner, who is the independent regulator for data protection matters, is aware of the certificate and receives an annual report from the MPS on the operation of the data transfer.
TfL, its subsidiaries and service providers, will use your personal information (including data captured by camera) for the purposes of customer services and administration, the enforcement of road user charging schemes, the provision of travel related information, customer research and fraud prevention. Your personal information will be properly safeguarded and processed in accordance with the requirements of the Data Protection Act 1998.
We may share your information with the Driver and Vehicle Licensing Agency, local authorities and other organisations for the administration (including verification of discount entitlement) and enforcement of road user charging schemes; the prevention and detection of crime and protection of public funds. TfL randomly selects and monitors vehicles subject to a discount to identify possible fraudulent use. If you persistently fail to pay any road user charges due or attempt to defraud TfL, we may record your vehicle's movements to assist in tracing persistent evaders and those committing fraud.
In certain circumstances, TfL may also share your personal information with the police and other law enforcement agencies for the purposes of the prevention and detection of crime.
TfL and its subsidiaries may also contact you about our offers and promotions. Please tick the relevant box if you do not want to receive this information.
For more information about privacy contact: firstname.lastname@example.org.