Who We Are
Our website address is: https://orders.navigationinn.co.uk and https://navigationinn.co.uk
Navigation (Buxworth) Limited. Navigation Inn, Buxworth, High peak, Derbyshire, SK23 7NE.
We are committed to protecting and respecting your privacy. For the purposes of data protection legislation, we are the data controller and we will process your personal data in accordance with the Data Protection Act 2018 (The UK’s implementation of the General Data Protection Regulation (GDPR)). Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.
What Personal Data We Collect and Why We Collect It
When you use our online food ordering and delivery services, we collect the following personal data:
Name: We collect your name to personalize your experience and to address you appropriately in our communications.
Address: Your address is needed for delivery purposes. It ensures that your food is delivered to the correct location.
Phone Number: We collect your phone number so that we can contact you in case of any issues related to your order or delivery.
Email: Your email address is used for communication purposes, including order confirmation, updates, and customer support.
IP Address and Web Browser Type: We collect this information for security and analytical purposes. It helps us identify potentially malicious activities and understand user preferences.
Order Choices (Meal and Drink Choices): We collect your meal and drink choices to fulfill your order accurately and provide you with the products and services you requested.
We use this information solely for the purpose of providing food online ordering and delivery services.
We do not sell your data to anyone.
Card Payment Handling:
We take your privacy and security seriously. For online transactions, be assured that no card details are processed or transmitted via our website server. Instead, we utilize the secure payment portals provided by industry-leading services such as Stripe Hosted Payments and PayPal. These platforms employ state-of-the-art encryption and security protocols to ensure that your sensitive information is safeguarded during the payment process. Additionally, both Stripe and PayPal are PCI DSS compliant, offering an added layer of protection for your financial data. Your trust and confidence in our commitment to protect your data are of utmost importance to us.
Table Reservation Deposits:
In order to secure your reservation and ensure a delightful dining experience, we may require a deposit. Please note that this deposit is non-refundable, even in the event of a cancellation. This policy helps us manage our table availability effectively and ensures that our valued guests have the opportunity to enjoy their dining experience as planned.
Data Security Measures and Data Breach Protocols
We take the security of your personal data seriously. To prevent unauthorised access, maintain data accuracy, and ensure the correct use of information, we have implemented the following security measures:
All data collected is stored on secure servers with restricted access.
We use encryption protocols to safeguard sensitive data during transmission.
As standard we enforce strong password policies and access controls.
Firewall protection is in place to prevent unauthorized access to our systems.
Regular security assessments and audits are conducted to identify and address vulnerabilities.
In the event of a data breach, we have in place a robust protocol to ensure swift and effective response. This includes:
Identification and isolation of the breach.
Notification of the relevant supervisory authority and affected individuals, if required, within 72 hours of becoming aware of the breach.
Investigation and remediation to prevent future breaches.
Payment transaction information
We may collect information such as items purchased, date and time of your transaction and amount purchased. We use the information to fulfil your order and complete your transaction.
Comments, chat and opinions
When you contact us directly (e.g., by email, phone, mail or by completing an online form or participating in online chat), we may record your comments and opinions. We may also record comments and opinions you express when responding to surveys, entering a contest or sweepstakes or taking part in a promotion. We use this information to respond to your question or comment, to evaluate and improve our products and services and to inform our marketing and advertising activities. When you contact us directly to submit a concern, complaint or question, we may record your comments and collect the personal information contained in your communications (e.g., contact information, health or medical information, photos, etc.). We use this information to respond to your questions or concerns, and to evaluate and improve our products and services.
Cookies are used for various purposes, including:
Improving Website Functionality: Cookies help our website function smoothly, allowing you to navigate pages and access secure areas.
Personalising Your Experience: Cookies may store information that allows us to tailor our content and services to your preferences.
You can control and manage cookies in your browser settings. Please note that disabling cookies may affect certain functionalities of our site.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behave in the exact same way as if the visitor has visited the other website.
We may collect analytics data, or use third party analytics tools, to help us measure traffic and usage trends for the Service and to understand more about the demographics and behaviours of our users.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators and workers with access can also see and edit that information.
What rights you have over your data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
We will only use your personal data where the law allows us to. Most commonly this will be for:
a. Performance of the contract we enter into with you;
b. Where necessary for compliance with a legal or regulatory obligation we are subject to.
Where we send your data
In addition to the third parties mentioned above, we may disclose your information to:
Staff members to facilitate the provision of goods to you;
IT and Software providers that store and process data on our behalf;
Government and bodies where we are under a legal duty to disclose or share personal data in order to comply with any legal obligation.