1. Introduction
Parking Compliance Services Ltd (“PCS Ltd”, “we”, “us”, “our”) is committed to protecting and respecting your privacy.

This Privacy Policy explains how we collect, use, process and protect personal data in accordance with:
• UK General Data Protection Regulation (UK GDPR)
• Data Protection Act 2018
• Protection of Freedoms Act 2012 (PoFA)
• The Private Parking Single Code of Practice
• DVLA Keeper at Date of Event (KADOE) contract requirements

This policy applies to all individuals whose personal data we process in connection with our parking management and enforcement services.

2. Data Controller
PCS Ltd acts as the Data Controller for personal data collected in relation to parking enforcement and site management.

Contact Details:
Parking Compliance Services Ltd
privacy@pcs-pcn.com

3. Types of Personal Data We Collect
We may collect and process the following categories of personal data:

3.1 Vehicle & Parking Data
• Vehicle registration number (VRM)
• Make, model, colour (where available)
• Entry and exit times (ANPR data)
• Images of vehicles

3.2 Registered Keeper Data (DVLA)
• Name and address of the registered keeper
• Obtained via DVLA under KADOE agreement where lawful

3.3 Correspondence Data
• Appeals and representations
• Emails, letters, and call recordings
• Evidence submitted (e.g. receipts, permits)

3.4 Payment & Financial Data
• Payment status of parking charges
• Transaction reference numbers
(We do not store full card details)

3.5 Technical Data
• IP address
• Website usage data (cookies where applicable)

4. Lawful Basis for Processing
We process personal data under the following lawful bases:

4.1 Legitimate Interests (Article 6(1)(f))
• Managing parking facilities
• Enforcing parking terms and conditions
• Preventing misuse or unauthorised parking

4.2 Legal Obligation (Article 6(1)(c))
• Compliance with PoFA 2012
• Compliance with DVLA KADOE requirements
• Regulatory and audit obligations under the Single Code

4.3 Contract (Article 6(1)(b))
• Where a parking contract is formed by use of the site

5. Purpose of Processing
Your data is used for:
• Monitoring compliance with parking terms
• Issuing Parking Charge Notices (PCNs)
• Obtaining keeper details from the DVLA
• Handling appeals and complaints
• Recovering unpaid parking charges and tariffs
• Legal enforcement (including court proceedings where necessary)
• Site security and fraud prevention

6. ANPR and Surveillance
Where ANPR or CCTV is used:

• Clear signage is displayed at site entrances and throughout
• Systems are used for enforcement and security purposes only
• Images are processed fairly, lawfully, and proportionately

7. Data Sharing
We may share personal data with:

7.1 Regulatory and Government Bodies
• DVLA
• Courts and enforcement authorities

7.2 Service Providers
• Debt recovery agents
• Legal representatives
• IT and ANPR system providers
• Appeals services (e.g. IAS or relevant adjudication body under the Single Code)

7.2 Landowners/Clients
• Where necessary for contract performance or reporting

All third parties are required to process data securely and lawfully.

8. Data Retention
We retain personal data only as long as necessary:
• PCN and enforcement data: up to 6 years (limitation period for legal claims)
• ANPR data (non-enforcement): typically 30–90 days
• Appeals data: aligned with enforcement retention periods

Retention periods are reviewed regularly and comply with the Single Code.

9. Your Rights
Under UK GDPR, you have the right to:
• Access your personal data
• Request correction of inaccurate data
• Request deletion (where applicable)
• Restrict processing
• Object to processing based on legitimate interests
• Data portability (where applicable)
To exercise your rights, contact us using the details in Section 2.

10. Complaints
If you are unhappy with how we handle your data:
• Contact PCS Ltd first
• You may also complain to the Information Commissioner's Office (ICO)
ICO Contact:www.ico.org.uk | Tel: 0303 123 1113

11. Data Security
We implement appropriate technical and organisational measures, including:
• Secure storage systems
• Access controls and staff training
• Encryption where appropriate
• Regular system monitoring

12. International Transfers
We do not routinely transfer personal data outside the UK.
Where this is necessary, appropriate safeguards will be applied in accordance with UK GDPR.

13. Cookies and Website Tracking
Where our website uses cookies:
• Users are informed via a cookie banner
• Non-essential cookies require consent
• Users can manage preferences at any time

14. Automated Decision-Making
We may use automated systems (e.g. ANPR matching) to identify parking events. However:
• No solely automated decisions with legal effects are made without human review

15. Special Category Data
We do not intentionally collect special category data (e.g. health data).
If provided during appeals, it will be handled strictly in accordance with data protection law.

16. Updates to This Policy
We may update this Privacy Policy from time to time.
The latest version will always be available on our website.