Updated: August 23, 2023
Section 1 - About Our Organization
1.1 Brushfire
Brushfire is an online ticketing and registration platform for ministry-related organizations. For over 20 years Brushfire has served event organizers who are making a difference through events.
1.2 Software and Services
This site and software are owned and operated by E-vent Software, Inc., dba Brushfire Technology (hereafter referred to "Brushfire"). Brushfire websites and domains, including brushfire.com, mobile applications, application program interface, and all web pages contained within these websites, are offered, maintained, and provided by Brushfire. We refer to all of these as our “Service.”
E-vent Software, Inc. is a Texas for-profit corporation; our principal mailing address is P.O. Box 77122, Fort Worth, TX 76177. If you are a resident of the European Union, E-vent Software, Inc. is the responsible party or data controller with respect to Personal Data (as defined below) collected through the Service.
1.3 Users
Certain aspects of the Brushfire Service are operated on behalf of the organizations (“Clients”) who pay to use Brushfire online ticketing and registration platform as event organizers offering tickets, registrations, donations, products, and other related services on behalf of their organization to end-users (“Customers”). When applicable, Brushfire and its Clients shall be collectively referred to as “We” or, possessively, “Our.” Visitors to the Brushfire Service, including Clients and Customers, shall be herein referred to as “Users” or “you.”
Section 2 - Privacy Priority
2.1 Consent
Protecting your privacy when using the Service is Our priority. This Privacy Policy governs data usage for information that can be associated with or related to a person or can be used to identify a person (“Personal Data”) collected from Users through the Service. Certain non-identifiable data about Users may also be collected by the Service. The usage of non-identifiable data about Users is not governed by this Privacy Policy.
2.2 Data Processor
Brushfire acts as a data processor in relation to the Personal Data you provide to Clients that is stored and processed with the Service.
2.3 Data Controller
Clients using the Service act as data controllers in relation to the Personal Data you provide.
Section 3 - Collection of Your Personal Data
When using the Service, We may collect Personal Data, as outlined below:
3.1 Users
Brushfire collects Personal Data about you when using the Service, not limited to, creating a User account, submitting a customer service inquiry to Brushfire or Clients, and other miscellaneous interactions. The Personal Data collected can include name, phone, email, address, and other data used to identify you.
When using the Service, We may collect data about your computer or device hardware and the software used to access the Service. This information can include: your IP address, browser type, domain names, access times, referring website addresses and other statistical or technical data about your hardware and software. This information is used for the operation of the Service, to maintain quality of the Service, and to provide general statistics regarding use of the Service.
3.2 Clients
Clients may use the Service to collect additional Personal Data from Customers. Any information We collect from Customers, including but not limited to Personal Data and checkout information, excluding sensitive payment data, is the rightful property of Brushfire and the Clients. Our use of your Personal Data is governed by this Privacy Policy.
3.3 Customers
Customer Personal Data will be collected to facilitate payment, in any amount, through the Service, as required by Clients. Customer Personal Data may also be collected as part of registration or participation in Our use of the Service to organize events and other related activities. Brushfire release and transfer of your Personal Data with Clients is outlined below in Section 5 - Disclosure and Transfer of Your Personal Data.
Section 4 - Use of Your Personal Data
We use your Personal Data to operate the Service. We may use your Personal Data as follows:
4.1 Direct Response
We may use your Personal Data to communicate with you regarding the original use for which you provided such information.
4.2 Use of Service
We may use your Personal Data to provide you with access of use to the Service or any of it’s functionality as deemed necessary by Brushfire or Clients.
4.3 Internal Tracking
We may use your Personal Data to keep track of the websites and pages you visit within the Service, in order to determine what parts of the Service are the most popular. Your Personal Data may also be used to deliver customized content and advertising within the Service, when your previous interaction with the Service indicates that this may be beneficial to you.
4.4 Communication to Customers from Clients
Brushfire allows Clients to communicate with Customers by email that are presently interacting with or have interacted with the Service in the past.
4.5 Additional Use
If We intend to use your Personal Data in a manner not mentioned in this Privacy Policy, excluding the inclusion of third parties, we will provide prior notice or request your consent before doing so.
Section 5 - Disclosure and Transfer of Your Personal Data
5.1 Sale
Brushfire has not in the past, does not currently, and will not in the future sell, rent, or lease your Personal Data to Clients or third parties.
5.3 Business Operations
As corporate needs within Brushfire and for the Service change, Brushfire may buy, sell, or transfer business assets. Your Personal Data may be included in any transactions related to the corporate property of Brushfire. Your Personal Data may be shared with current and future Brushfire affiliates, in accordance with this Privacy Policy, as it relates to the operation of the Service. We may share your Personal Data with contractors or service providers that operate, maintain, and perform specific business-related activities for the Service and Clients. All disclosures and transfer of your Personal Data, as defined above, shall be in accordance with this Privacy Policy.
5.4 Clients
When Customers interact with Clients using the Service, Brushfire provides your Personal Data to the Client. The use of your Personal Data by that Client is not governed by this Privacy Policy. Clients are required to maintain the confidentiality of your Personal Data, and every effort should be made by Customers to review the policies and statements of use pertaining to your Personal Data by Clients of the Service.
5.5 Third Party Connections
Users will be able to connect their Service account to third party accounts, not limited to, Facebook, Twitter, Google, and Customer Relationship Management services. We may share and disclose your Personal Data with your third party account provider.
5.6 Legal Disclosure and Transfer
We also may be required to disclose your Personal Data in response to a lawful request by public authorities, including to meet national security or law enforcement requirements. Brushfire will disclose and transfer your Personal Data, without notice, only if required to do so by law or in the good faith belief that such action is necessary to: (a) conform to the edicts of the law or comply with legal process served on Brushfire or the Service; (b) protect and defend the rights or property of Brushfire; and, (c) act under exigent circumstances to protect the personal safety of users of Brushfire, Clients, Customers, or the public.
5.7 Further Transfer and Liability
If We ever were to engage in any onward transfers of your Personal Data with third parties for a purpose other than which it was originally collected or subsequently authorized, we would provide you with an opt-out choice to limit the use and disclosure of your Personal Data.
Our accountability for Personal Data that Brushfire receives under the Data Privacy Framework and subsequently transfers to a third party is described in the Data Privacy Framework Principles. In particular, We remain responsible and liable under the Data Privacy Framework Principles if third-party agents that it engages to process the Personal Data on its behalf do so in a manner inconsistent with the Principles, unless We prove that it is not responsible for the event giving rise to the damage.
Section 6 - Security and Storage of Your Personal Data
To secure your Personal Data from unauthorized access, use, transfer or disclosure, Brushfire ensures that all pages accessed within Service are protected through the use of encryption and the Secure Sockets Layer or SSL protocol. We store your Personal Data using third party servers to whom we have transferred it in accordance with this Privacy Policy.
Section 7 - Your Access to Your Personal Data
You have a right to access your Personal Data stored in Brushfire. If you are registered with a Service account, you can access your Personal Data at any time by signing in to the Service at https://brushfire.com/my and visiting the Profile or My Orders page. Any Client or Customer may contact Brushfire at any time to access, update, correct, or delete Personal Data through our online help desk at https://support.brushfire.com.
We acknowledge that European Union, Swiss and United Kingdom individuals have the right to access the Personal Data that we maintain about them. A European Union, Swiss or United Kingdom individual who seeks access, or who seeks to correct, amend, or delete inaccurate Personal Data, should submit their query to our online help desk at https://support.brushfire.com. If requested to remove Personal Data, we will respond within a reasonable timeframe.
Section 8 - Data Retention
We may retain your Personal Data as long as you are registered with a Service account or if you have been a Customer of Clients. You may close your account by making a written request through our online help desk at https://support.brushfire.com. After closing your account, We may retain your Personal Data in accordance with the practice of legitimate business purposes of the Service or Clients.
Section 9 - Use of Cookies
Brushfire may use cookies (“Cookies” or “a Cookie”) to help you personalize your online experience with the Service.
9.1 Definition
A Cookie is a text file that is placed on your hard disk by a web page server. Cookies cannot be used to run programs or deliver viruses to your computer. Cookies are uniquely assigned to you, and can only be read by a web server in the domain that issued the cookie to you.
9.2 Purpose
The primary purpose for which the Service uses Cookies is to provide a convenience feature to save you time. Cookies may tell the Service that you have returned to a specific page. For example, if you personalize Service pages, or register an account with the Service, a Cookie helps the Service to recall your specific information, including limited Personal Data, on subsequent visits. This simplifies the process of recording your Personal Data for the facilitation of future transactions. When you return to the Service in the future, the Personal Data you previously provided can be retrieved, so you can easily use the Service features that you may have customized.
9.3 Use
You have the ability to accept or decline Cookies. Most web browsers automatically accept Cookies, but you can usually modify your browser settings to decline Cookies if you prefer. If you choose to decline Cookies, you may not be able to fully experience the interactive features of the Service.
Section 10 - Choices Concerning Your Personal Data
You have choices when protecting the Personal Data you provide to the Service and Clients.
10.1 Limit Your Personal Data
You can browse and visit the Service without providing Personal Data. In order to register an account with the Service or complete a transaction through the Service you will be required to provide Personal Data. You may not be able to use the full extent of the Service if you do not choose to provide the Service or Clients with your Personal Data.
10.2 Opt-Out and Unsubscribe
(a) Service Communications
Service Communications are directly related to transactions or a Customer and their use of the Service, including but not limited to, password resets and confirmation emails. You are unable to opt-out of transactional or related communications regarding your use of the Service.
(b) Client Communications
Client Communications are communications regarding non-transactional information from Clients to Customers using the Service. You may opt-out of receiving communications through the Service from Clients that are not Service Communications as defined above. To opt-out or unsubscribe from Client Communications, without affecting the delivery of Service Communications, a single-click unsubscribe link is provided in the footer of every email sent by Clients to Customers.
(c) Cease All Communications
You may request that We cease all communication from the Service through our online help desk at https://support.brushfire.com.
(d) Application
Opt-out, unsubscribe, and cease requests may take up to 3 business days to process. We may retain your Personal Data after such requests have been made. Clients who have received your Personal Data and your opt-out, unsubscribe, or cease request, in accordance with this Privacy Policy, cannot use the Service to contact you, they may be able to contact you outside of the Service.
Section 11 - Children
Brushfire does not knowingly collect Personal Data from children under the age of thirteen. If you are under the age of eighteen, you must ask your parent or legal guardian for permission to use the Service.
Section 12 - International Usage
12.1 Service Location
The Service is controlled, operated and administered by Brushfire from within the United States. All interactions with the Service, including the transmission of Personal Data, involves sending information to our servers located in the United States. If you access the Service from a location outside the United States, you are responsible for compliance with all local laws in regards to the transmission of your Personal Data.
12.2 EU-U.S. Data Privacy Framework
Brushfire complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. Brushfire has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. DPF and from the United Kingdom (and Gibraltar) in reliance on the UK Extension to the EU-U.S. DPF. Brushfire has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/.
Section 13 - Changes to This Privacy Policy
Brushfire reserves the right, in its sole discretion, to update this Privacy Policy statement to reflect Service, Clients, and Customer feedback as well as to maintain compliance with applicable governmental regulations. The most current version of this Privacy Policy will supersede all previous versions and are effective according to the date that the update was rendered. Brushfire encourages you to periodically review this Privacy Policy to be informed of how We are protecting your information.
Section 14 - Complaints or Disputes
14.1 Complaints
Brushfire is subject to the investigatory and enforcement powers of the Federal Trade Commission. If you have a complaint about how We have handled your Personal Data or Brushfire privacy practices, please contact us in writing at:
Brushfire Technology
Attn: Privacy Officer
P.O. Box 77122
Fort Worth, TX 76177 USA
Or by email to privacy@brushfire.com. We will take all necessary and reasonable steps to work with you to attempt to resolve your complaint.
14.2 Dispute Resolution
In compliance with the EU-US Data Privacy Framework Principles, Brushfire commits to resolve complaints about your privacy and our collection or use of your personal information transferred to the United States pursuant to the DPF Principles. European Union, Swiss and United Kingdom individuals with DPF inquiries or complaints should first contact
Brushfire Technology
Attn: Privacy Officer
P.O. Box 77122
Fort Worth, TX 76177 USA
+1 (866) 825-8252
privacy@brushfire.com
Brushfire has further committed to refer unresolved privacy complaints under the DPF Principles to an independent dispute resolution mechanism, Data Privacy Framework Services, operated by BBB National Programs. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit https://bbbprograms.org/programs/all-programs/dpf-consumers/ProcessForConsumers for more information and to file a complaint. This service is provided free of charge to you.
If your DPF complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See https://www.dataprivacyframework.gov/s/article/G-Arbitration-Procedures-dpf?tabset-35584=2.