Data Protection


Data Protection

View all FAQs

What are the current Data Protection Acts?

The current Data Protection Acts are the Data Protection Acts (DPA) 1988 and 2003.

Back to top

What is the purpose of the Data Protection Acts?

The Data Protection Acts are in place to regulate the use of personal information within all organisations. They are also in place to create a legal right for individuals to request access to their personal information.

Back to top

What are the main sections of the Data Protection Acts?

The Data Protection Acts state that any organisation which processes personal information must be open about how that information is used and must comply with the following eight data protection principles:

  1. Obtain and process personal information fairly and lawfully
  2. Keep personal information only for one or more specified, explicit and lawful purposes
  3. Use and disclose the personal data we collect only in ways compatible with the purpose for which the data was collected
  4. Keep personal data safe and secure
  5. Keep personal data accurate, complete and up-to-date
  6. Ensure that the personal data collected is adequate, relevant and not excessive
  7. Retain personal data for no longer than is necessary for the purpose for which it was collected
  8. Provide a copy of his/her personal data to an individual on request

Back to top

What access rights do I have to the information eFlow holds on me?

The Data Protection Acts give individuals the rights, subject to certain exemptions, to:

  1. Obtain a copy of the data an organisation is keeping about him or her
  2. Know the categories of their data and the purposes for which it is being processed
  3. Know the identity of those to whom the data is disclosed
  4. Know the source of the data, unless it is contrary to public interest

If you wish to avail of any of these rights, please write to us at

eFlow, Cape House, Westend Office Park, Dublin 15, marked for the attention of the "Data Protection Officer".

Please provide relevant details that will enable us to identify your data such as; Full name, Address, Licence Plate Number, eFlow account number.

eFlow is legally obliged to answer your query within 40 days.

Back to top

Where can I find out more regarding the Data Protection Acts?

Further information about the Data Protection Acts can be found by contacting the Office of the Data Protection Commissioner directly, as follows:

The Office of the Data Protection Commissioner
Canal House
Station Road
Portarlington
Co. Laois


LoCall:  1890 252 231
Tel:         057 868 4800
Fax:        057 868 4757
Email:    info@dataprotection.ie
Website: www.dataprotection.ie

Back to top

Does eFlow's operation of the M50 toll gantry breach my data protection rights?

No - the Office of the Data Protection Commissioner engages in extensive interactions with the Transport Infrastructure Ireland in relation to the electronic tolling system. The operation of this system involves limited access by a private entity (emovis operations Ireland) to official vehicle ownership data, but an appropriate legislative basis exists for such access (under the provisions of the relevant Roads Acts).

emovis operations Ireland is acting under the auspices of the Transport Infrastructure Ireland in the operation of the system and, subject to contracts between the two entities, it would be entitled to access the information in certain restricted circumstances.

Back to top


View all FAQs or Back