Save your journeys, with our helpful Favourites tool

Hide This
Favourite Journeys

GDPR will apply from 25 May 2018

18 January 2018

The deadline for the implementation of the new General Data Protection Regulation (GDPR) is fast approaching and we are making steady progress towards compliance through the delivery of our GDPR Preparedness Plan.

Protection of the personal data of our staff and customers continues to be a high priority for Translink and we are in the process of making the necessary arrangements and adopting the appropriate safeguards in readiness for GDPR.  However, you may have already realised that the GDPR requires us to have a binding contract in place with those that process personal data on our behalf. 

We have identified a number of existing contracts involving the processing of personal data, and which will be in place after 25 May 2018, that require updating to bring them into line with the new Regulations.  This will involve updating contract terms based on the generic clause published in the Cabinet Office’s Procurement Policy Note (PPN) 03/17 and ensuring specifications and service delivery schedules reflect the roles and responsibilities between the data controller and the processor as required by the new regulations.  The PPN can be found at In addition, the Central Procurement Department (CPD) will be updating our procurement documentation to reflect the new Regulations for contracts to be awarded on or after 25 May 2018.

You will undoubtedly also be preparing for GDPR and I would like to take this opportunity to wish you well with your progress and to let you know that Contract Managers for the relevant contracts impacted by GDPR will contact you separately in this regard.  

For further information or advice on GDPR, please contact the Information Commissioners Office (ICO) or refer to its useful Guide to the GDPR and the ICO 12 Step Preparedness Plan. 


View All Procurement