BushFire.ai Privacy Policy

Last Modified: 20240903

BushFire.ai, its affiliates and subsidiaries (“Company” or “we” or “us” or “our”) respect your privacy and are committed to protecting it through our compliance with this Privacy Policy (the “Policy”). This Policy is meant to help you understand what information we collect when you visit our websites, mobile websites, and mobile applications available at: https://bushfire.ai/ (our "Websites and Mobile Apps") why we collect it, and how you can access, update, manage, export, and delete your information. By accessing or using the Websites and Mobile Apps, you agree to this Privacy Policy. Please read this Policy carefully to understand our policies and practices regarding your information and how we will treat it.

BushFire.ai acts as Data Controllers and/or Processor, as defined by the Data Protection Act 2017 (the “DPA”), with respect to any information collected.

We may revise and update this Agreement from time to time in our sole discretion and without notice. All changes are effective immediately when we post them and apply to all access to and use of the Websites and Mobile Apps thereafter. Your continued use of the Websites and Mobile Apps following the posting of a revised Agreement means that you accept and agree to the changes. You are expected to check this page from time to time so you are aware of any changes, as they are binding on you.

● Offline or through any other means, including on any other Websites and Mobile Apps operated by Company or any of our affiliates and subsidiaries.

● Through our Software processing data sets in practice or in test facilitations whilst carrying out our contractual obligations of service.

● When carrying out maintenance of our Software and hardware as per our contractual obligations of service.

● Through the use of ‘cookies’ (see the section on “IP Addresses and Cookies” below). This Policy does not apply to information collected by:

● Any third party, including through any application or content (including advertising) that may link to or be accessible from the Websites and Mobile Apps.

We collect information to provide better services to all our users––from remembering user preferences (“Profiling” as defined in the DPA) to contacting you regarding services or opportunities that may be of interest to you. The information we collect, and how that information is used, depends on how you use our services.

We may collect and process some or all of the following types of information from you:

● Information that you provide to us by filling in forms or creating an account on the Websites and Mobile Apps. This may include information such as personal data provided at the time of registering to use the Websites and Mobile Apps or requesting further information or services, such as: Full name, email address, phone number, mailing address, and IP address. We may also ask you for information when you report a problem with the Websites and Mobile Apps.

● Records and copies of your correspondence (including email addresses), if you contact us. ● Details of all actions that you carry out through the Websites and Mobile Apps and of the provision of services to you.

● Details of your visits to the Websites and Mobile Apps including, but not limited to, traffic data, location data, and other communication data.

The provision of your full name, e-mail address, and IP address are required from you if you choose to create an account on our Websites and Mobile Apps. We will inform you at the point of collecting information from you, whether you are required to provide the information to us. We act under the assumption that the information and personal data you provide are accurate and current at all times until you notify us otherwise.

We may use the information that we collect in a variety of ways in providing our service, including:

● To ensure that content from the Websites and Mobile Apps is presented in the most effective manner for you and for your computer and to understand and analyze your usage trends and preferences, to improve our services, and to develop new products, services, and features

● To operate, maintain, enhance, and provide all features of our services, to provide our services and information that you request, to respond to your questions, and to provide support to users of our service ● To notify you about changes to our services and provide you with information that is relevant to your use of the services.

● To provide you with information, products or services that you request from us or which we feel may interest you. You have the ability to opt-out of receiving promotional communications via the link inside of them or by emailing legal@BushFire.ai.

● We use your data (including your communications) if we think it’s necessary for security purposes or to investigate possible fraud or other violations of our Terms of Use or this Policy and/or attempts to harm other users.

We may occasionally contact you through email, phone, and/or notices posted on our Websites and Mobile Apps. We may send you messages about the availability of our services, security, or other service-related issues. We may also send messages about how to use the services, network updates, and promotional messages from us. You may contact us at any time using our Contact Information below to change your communication preferences.

3. Lawful bases for processing your information

You have choices about our use of your information. At any time, you can withdraw consent you have provided by contacting us using our Contact Information below.

We will only collect and process your information where we have lawful bases to do so. Lawful bases include but are not limited to consent (where you have given consent), contract (where processing is necessary for the performance of a contract with you (e.g. to deliver the services you have requested)), legitimate interests and compliance with any legal obligations.

If you have any questions about the lawful bases upon which we collect and use your personal data, please contact us using the Contact Information provided below.

We do not share your personal data with advertisers, other companies, or individuals, except in the following cases:

We may need to share your information when we believe it’s required by law or to help protect the rights and safety of you, us, or others. It is possible that we will need to disclose information about you when required by law, subpoena, or other legal process or if we have a good faith belief that disclosure is reasonably necessary to (1) investigate, prevent, or take action regarding suspected or actual illegal activities or to assist government enforcement agencies; (2) enforce our agreements with you, (3) investigate and defend ourselves against any third-party claims or allegations, (4) protect the security or integrity of our Service (such as by sharing with companies facing similar threats); or (5) exercise or protect the rights and safety of the Company, our users, personnel, or others. We attempt to notify you about legal demands for your personal data when appropriate in our judgment, unless prohibited by law or court order or when the request is an emergency. We may dispute such demands when we believe, in our discretion, that the requests are overbroad, vague or lack proper authority, but we do not promise to challenge every demand.

We may provide personal data to our affiliates based on our instructions and in compliance with this Privacy Policy and any other appropriate confidentiality and security measures.

If the Company is involved in a merger, acquisition, or sale of assets, we may disclose your personal data to the prospective seller or buyer of such business or assets. We will continue to ensure the confidentiality of your personal data and give affected users notice before personal data is transferred or becomes subject to a different privacy policy.

We take industry-standard security measures to ensure that all of your personal data is kept secure, including security measures to prevent personal data from being accidentally lost, used, or accessed in an unauthorized way, for the duration of your use of our services. We limit access to your personal data to those who have a genuine business need to know it. Those processing your information will do so only in an authorized manner and are subject to a duty of confidentiality.

We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach within 72 hours of becoming aware of the breach as legally required by the DPA.

Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to the Websites and Mobile Apps, therefore any transmission remains at your own risk. Once we have received your information, we will use strict procedures and security features in order to prevent unauthorized access.

We may store and use your data outside your country. We may process data both inside and outside of Mauritius and will rely on legally-provided mechanisms to lawfully transfer data across borders. Under the DPA, we have a legal duty to ensure that the recipient country has the adequate safeguards to protect your personal data. Cross-Border transfers are effected only where it is deemed to be necessary under the DPA and where such transfer is made from a register which is intended to provide information to the public. Countries where we process data may have laws which are different, and potentially not as protective, as the laws of your own country. As such, there are possible risks involved in transferring data in the absence of appropriate safeguards. In many cases, we will use Contractual Clauses with adequate data protection legal mechanisms for data transfer. These clauses are contractual commitments between companies transferring personal data, binding them to protect the privacy and security of your data. These clauses are designed to help safeguard your privacy rights and give you remedies in the unlikely event of the misuse of your personal data.

If your personal information details change, you may contact us to request an update or correction using our Contact Information below. We will endeavor to update your personal data information within thirty (30) days of any new or updated personal data being provided to us, in order to ensure that the information we hold about you is as accurate and up to date as possible.

The information that we collect from you and process as a result of your use of the services may be transferred to, and stored at, a destination outside the Designated Countries. It may also be processed by our employees operating outside the Designated Countries who work for us. Such employees may be engaged in, among other things, the fulfillment of your orders, the processing of your payment details and the provision of support services. By submitting your personal data and accessing this Websites and Mobile Apps, you agree to this transfer, storing or processing.

We retain your information for so long as it needs to be kept for legitimate business or legal purposes. Without limiting the foregoing, at minimum, we retain your data for so long as you are engaged in Active Use, as hereinafter defined, of the Websites and Mobile Apps. For purposes of this Privacy Policy, “Active Use” means either of the following: (1) User logs into the Websites and Mobile Apps within 30 days of their most recent login, or (2) User continues to host their data on Company’s servers. For so long as Active Use definition (2) is true, User will be billed for use of the service provided by the Websites and Mobile Apps. Some data can be deleted whenever you like, some data is deleted automatically, and some data is retained for longer periods of time when necessary. We try to ensure that our services protect information from accidental or malicious deletion. Because of this, there may be delays between when you delete something and when copies are deleted from our active and backup systems.

● Export a copy of any information we have about you if you wish to transfer it to a service outside of the Company.

● Browser settings: For example, you can configure your browser to indicate when we have set a cookie in your browser. You can also configure your browser to block all cookies from a specific domain or all domains. But remember that our services may rely on cookies to function properly, for things like remembering your user preferences.

The DPA gives you, the data subject, various rights in relation to your personal data that we hold and process. These rights are exercisable without charge, and we are subject to specific time limits in terms of how quickly we must respond to you. Those rights are as follows:

● Request the deletion of your personal data in certain situations and as allowed by law ● Request transfer of your personal data and receive the personal data concerning you which you have provided to us, in a structured, commonly used and machine-readable format

● Object to decisions being taken by automated means which produce legal effects concerning or affecting you

● Object in certain situations to our continued processing of your personal data

● Otherwise restrict our processing of your personal data in certain circumstances

If you would like to exercise any of these rights, please contact us using our Contact Information below. You may make any requests regarding these rights verbally or in writing. Upon receiving your request, we may request additional information so we are able to identify you and ensure you are the one making the request. We aim to respond to your request within a reasonable time and reasons will be provided if we do not comply with your request, whether in whole or in part.

The Websites and Mobile Apps may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and terms of use and that we do not accept any responsibility or liability for these policies and terms of use. Please check the applicable policies before you submit any personal data to such third party websites.

We regularly review this Policy and make sure that we process your information in ways that comply with it. We hope that we can resolve any question or concern you raise about our use of your information.

When we receive formal written complaints, we respond by contacting the person who made the complaint. We work with the appropriate regulatory authorities, including local data protection authorities, to resolve any complaints regarding the transfer of your data that we cannot resolve with you directly.

If you reside in the Designated Countries, you may lodge a complaint regarding the processing of your personal data with a supervisory authority in the Member State of your habitual residence, place of work or place of the alleged infringement.

We reserve the right to modify this Privacy Policy at any time. Any changes we may make to our Policy in the future will be notified and made available to you using the Websites and Mobile Apps. Your continued use of the services and the Websites and Mobile Apps shall be deemed your acceptance of the modified Privacy Policy. We always indicate the date the last changes were published and we offer access to archived versions for your review.

We may collect information about your computer using Google Analytics, including but not limited to your IP address, operating system and browser information, and duration of session for purposes of system administration, customer support and to collect aggregate information for internal reporting purposes. We may also monitor a user’s sessions on our Websites and Mobile Apps to improve our features and identify bugs.

In addition, our Websites and Mobile Apps use cookies. A cookie is a small file of letters and numbers that we put on your computer if you agree. These cookies allow us to distinguish you from other users of the Websites and Mobile Apps, which helps us to provide you with a good experience when you browse our Websites and Mobile Apps and also allows us to improve the Websites and Mobile Apps.

The cookies we use are "analytical" cookies. Some of the common uses for our cookies are as follows:

● To recognize and count the number of visitors and to see how visitors move around the site when they are using it. This helps us to improve the way our Websites and Mobile Apps work, for example by ensuring that users are finding what they are looking for easily.

● To identify and authenticate a user across different pages of our Websites and Mobile Apps, within our own Websites and Mobile Apps, in a session or across different sessions. This is so that the user does not need to provide a password on every page the user visits; and

● To be able to retrieve a user’s previously stored data, for example, information that the user previously submitted to the Websites and Mobile Apps, so as to facilitate reuse of this information by the user.

Our services are not intended for and shall not be used by a minor below 16 years old (“Child”). We do not knowingly collect and process personal data of a Child.

If it comes to our attention that we have collected personal data from a Child, we may delete this information without notice. If you have reason to believe that this has occurred, please contact us using the Contact Information below.

This Privacy Policy is governed by and interpreted according to the Laws of Mauritius. All disputes arising out of this Privacy Police will be subject to the exclusive jurisdiction of the Courts of Mauritius.

If any court or competent authority finds that any provision of this Privacy Policy (or part of any provisions) is invalid, illegal or unenforceable, that provision or part thereof shall, to the extent required, be deemed to be deleted, and the validity and enforceability of the other provision of this Privacy Policy shall not be affected.

If you have any issues or concerns as to the collection, acquisition, use, storage, disposal or processing of any personal data relating to you please contact our Data Protection Officer by addressing an email to legal@BushFire.ai.

Notwithstanding our best efforts, if you are unhappy with any aspect of the use and/or protection of your personal data, you have the right to make a complaint to the Data Protection Commissioner by:

● delivering the same to: “BushFire.ai Att. - Data Protection Officer, Schindlers Trust Mauritius Limited, The Hybrid, 3rd Floor, 634 La Promenade, Telfair, Moka, Mauritius”

All questions, comments and requests regarding this Privacy Policy should be addressed to: legal@bushfire.ai