What information might we collect about you and for what purposes?
RATP is required to collect different categories of personal data about you, be it directly from you, or indirectly through its information systems, relating in particular to your identification data, professional data (for job applications), location data, payment data or data related to your Navigo smart card.
Some data processed is referred to as sensitive (for example, data relating to infringements or social difficulties) and is only processed if the data is necessary with regard to the purpose of certain processing operations.
Your personal data may therefore be processed, with the main aim of ensuring:
- Recruitment management (management of unsolicited applications and those responding to job offers)
- Customer relations management and monitoring and, in particular,
- Contractual relationship management;
- Processing customer requests and complaints as well as mediation requests;
- After-sales service operations management;
- Performing statistical analyses of network usage;
- Measuring the operational quality of the ticketing system;
- Handling of objects lost or found on the network;
- Management of the maRATP relationship program and its subscribers, the sending of newsletters and traffic alerts;
- Management of interactions with users via blogs and social networks;
- Improvement of customer knowledge and new services offers.
- Management and monitoring of security within its facilities and network, namely,
- Access and traffic management on the RATP network for staff members, service providers, visitors, etc.;
- Setting up CCTV protection within the network for the security of people and property, as governed by the Internal Security Code;
- Management of security alerts on its network;
- Incident prevention and the detection of infringements in the context of interventions by RATP internal security service staff, through the use of mobile cameras;
- Recording calls on station intercoms.
- Monitoring social prevention and solidarity actions
- Monitoring of social prevention actions in collaboration with regional players;
- Monitoring of homeless people on the network and accommodation requests.
- Management and prevention of disputes and infringements: namely,
- Management and monitoring of tickets and collection of fines;
- Management of legal and judicial files;
- Management of validation data in the context of technological fare evasion.
- Management of accidents occurring on the network:
- Management of insurance files;
- Management of assistance to victims in the context of accidents occurring on the networks.
- Management of competitions and events organized by RATP
- Management of polls, surveys and public consultations
- Measuring customer satisfaction,
- Collecting opinions from residents/passengers/institutions on the creation/modification of network infrastructure,
- Improving transport service for people with reduced mobility.
- Monitoring the use of RATP websites, blogs and apps
- Management of RATP suppliers
- Management of suppliers and tenderers via the RATP website Purchasing portal,
- Billing management,
- Data processing within the framework of legal due diligence obligations,
- Performance evaluation in the context of certain contracts.
- Management of institutional relationships (regional players)
- Management of requests from data subjects to exercise their rights (data protection regulations)
- Trial tests on the network
When trial tests take place on the RATP network, dedicated information regarding them is displayed on the RATP website and/or in the facilities concerned.
Within what legal framework is this data processed?
RATP carries out these different processing operations insofar as some:
- are necessary for the exercise of the public interest mission with which it is invested;
These are essentially processing operations carried out for the purpose of checking tickets; handling objects found on the networks; managing and maintaining infrastructure in operational conditions; managing security on the networks, in particular through CCTV; reporting any event threatening security to the police; social and statistical monitoring of homeless people on the networks.
- are necessary for the fulfillment of a contract;
This essentially means processing carried out for the production, personalization and management of tickets on the various networks; supplier management; call center management; Wi-Fi service management on the RATP network; management of the Mobility as a Service (MaaS) offer in the Île-de-France region in partnership with mobility service providers.
- are necessary for the purposes of its legitimate interest;
This essentially means processing carried out for the purpose of managing and improving customer relations, particularly remotely and through statistical monitoring of the use of mobile applications intended for customers; managing the technological fare evasion detection system; carrying out studies on the fine collection rate; payment for tickets using an electronic payment terminal; controlling revenue; managing the cleaning of passenger areas in stations; managing passenger flows on the RATP network.
These processing operations are necessary for RATP to best perform its missions, and more specifically, to prevent any technological fare evasion, guarantee the security of its premises and its computer systems, and manage and improve the services and information provided to its customers.
- are implemented as part of the fulfillment of a legal obligation;
These processing operations aim to manage requests from data subjects to exercise their rights. They are also processing operations within the framework of compliance with due diligence obligations, and implemented by staff members under oath, in particular for safety and the prevention and detection of violations.
- have been subject to the consent of the data subjects.
You can withdraw your consent for these processing operations at any time, by unsubscribing via the dedicated link in newsletters or traffic alerts or, in other cases, by contacting the Data Protection Officer by email at: [email protected]
Who can access this data?
People who can access this data internally include:
- customer services for handling customer requests, and staff members at stations for managing lost/found items;
- the marketing department for the management of the maRATP relationship program, newsletters and traffic alerts;
- the sales or communication departments for the management of competitions; blogs and pages on social networks;
- the recruitment department and the operational staff involved in the recruitment process for the management of applications;
- authorized security service staff for CCTV recordings and the management of security alerts;
- the customer control department for monitoring tickets and collecting fines;
- the legal department for insurance and litigation cases;
- the staff members responsible for application maintenance.
People who can access this data externally include: RATP service providers who are liable to intervene in the context of these processing operations, under instructions from RATP.
RATP takes special care in choosing its external service providers and transfers your personal data only for the following necessary reasons:
- Subcontracting, in order to ensure the optimal functioning of its various sites and applications and to provide you with suitable and high-quality products and services, particularly in terms of customer relations, payment, marketing services or combating fare evasion;
- Provision of services ordered (particularly in terms of transport, etc.).
How long is this data kept for?
RATP makes sure to keep your personal data only for as long as it is strictly necessary for the purposes of its collection.
Thus, being aware of the importance of preserving the anonymity of passengers’ journeys, the personally identifiable traces of journeys (time stamp - place of validation - card number) are only kept for a few hours for the sole purpose of detecting technological fare evasion. Beyond that, the data is anonymized for statistical purposes. Only the daily accumulations of validations made at the entrances and/or exits of our rail networks for the current month and the previous month (without place of validation) are kept for quality monitoring of Navigo smart cards.
CCTV recordings, governed by the provisions of the Internal Security Code, are kept for a few hours, up to a maximum of 15 days. Beyond that, they are automatically deleted.
Customer data for processing complaints and requests is kept for three years from the last contact.
The data of job applicants is kept for two years from the last contact to allow RATP to check consistency during this period.
The data of competition participants is kept for three months after the end of the game and the awarding of prizes.
Recordings of communications made from intercoms in stations are kept for one month.
Data processed in the context of monitoring alerts (reporting of anomalies on the network) is kept for a maximum of one year.
Data processed in the context of following up legal cases is kept for the duration of the case plus five years.
How is the data protected?
RATP undertakes to implement technical and organizational measures to guarantee the security and confidentiality of the data it processes, and to choose partners and providers offering such guarantees.
How can data subjects exercise their rights?
Individuals affected by RATP processing operations have various rights over their personal data, namely:
- A right of access, allowing them to know what information is available to RATP as well as certain information referred to in article 15 of the GDPR;
- A right of rectification, allowing them to ask RATP to correct or complete the information it holds due to its inaccuracy;
- A right of objection, allowing them to object to their information being used by RATP for one or more determined purposes, with the exception of cases where the processing in question is for legitimate and compelling reasons or necessary for the establishment, exercise or defense of legal claims;
- A right to object to an automated individual decision-making allowing them not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning them or similarly significantly affects them;
- A right to restrict processing, allowing them either to temporarily freeze the use of their information by RATP pending the granting of another of their rights under the GDPR, or to prevent the erasure of their information by RATP with the purpose of establishing, exercising or defending their legal rights;
- A right to erasure, allowing them to ask RATP to delete certain information, under the conditions provided for in article 17 of the GDPR; and,
- A right to data portability, allowing them to recover some of the information available to RATP in a standard and usable format in order to transmit it to another data controller of their choice.
They can exercise these rights at any time by contacting the RATP Data Protection Officer
- by post to the following address: Délégué à la protection des données de la RATP, 185 rue de Bercy, LT73, 75012 Paris
- by email at the following address: [email protected]
The RATP Data Protection Officer will rule on the request within a maximum period of one month, it being understood that this period may be extended by two months, notably due to the complexity and number of requests.
In the event of a refusal to follow up on the exercise of one of these rights, the data subjects are informed of the reasons for this refusal as well as of the possibility of lodging a complaint with the French Data Protection Authority, the Commission Nationale Informatique et Liberté (CNIL) and seeking legal remedy.
TRIAL TESTS CURRENTLY IN PROGRESS ON OUR NETWORK
In accordance with article L. 2251-4-1 of the Transport Code as modified by law no. 2016-339 of 22 March 2016 and law no. 2019-1428 of 24 December 2019, until the end of 2021 we are carrying out a trial consisting of equipping some of our Internal Security Service staff with individual mobile cameras. The conditions of use of these cameras are specified by decree no. 2016-1862 of 23 December 2016.
The purpose of processing data from the cameras is: (1) to prevent incidents during intervention by RATP internal security service staff; (2) to collect evidence to detect infringements and take action against perpetrators; (3) to train its security staff after anonymization of recorded video sequences. The video sequences are kept for six months after their recording. They are reserved for the use of those responsible for processing them by virtue of their functions and can only be communicated to legally authorized authorities.
In addition, in the current context of the fight against COVID-19, the RATP, in collaboration with Ile de France Mobilités, is experimenting in Châtelet -les-Halles, from May 4, 2020 and for a period of 3 months, an anonymous detection system of respiratory protection masks to measure the share of travelers complying with the obligation to wear the mask in public transport. This device is based on an algorithm detecting, from a video stream captured by the CCTV system in Châtelet, whether or not the mask is worn by RATP users: the images are analyzed in real time to get the exact number and percentage of people masked and are not kept. This experiment, which at no time makes it possible to identify a person, could make it possible to carry out awareness-raising actions with users to encourage them to respect health rules and thus ensure the safety of all in transport in the context of deconfinement. In order to ensure compliance with the data protection regulations, an impact analysis was carried out and sent to the CNIL.
For more information about these experiments or to exercise your rights of access, rectification, objection and, if applicable, your rights to data portability, restriction or erasure, you can contact the RATP Data Protection Officer at the following address: [email protected]