1. Introduction

This Privacy & Data Protection Agreement (“Agreement”) explains how Tickrush LLC (“Tickrush,” “Company,” “we,” “us,” or “our”) collects, uses, processes, stores, discloses, and protects Personal Data in connection with the Tickrush mobile application, website, and related services (collectively, the “Services”).

This Agreement is designed to comply with US federal and state privacy laws, CCPA/CPRA, GDPR, UK GDPR, and other applicable international regulations. It aims to reduce risk, demonstrate good-faith compliance, and clarify responsibilities for                Tickrush, event organizers, and users.

2. Scope and Acceptance

This Agreement applies to all users of the Services, including:

• Event organizers
• Attendees / account holders
• Website or app visitors
• Business partners

By accessing or using the Services, you acknowledge that you have read, understood, and agreed to this Agreement. If you do not agree, you must stop using the Services immediately.

3. Definitions

• Personal Data: Any information relating to an identified or identifiable individual.
• Processing: Any operation performed on Personal Data, including collection, storage, use, disclosure, transfer, or deletion.
• Controller / Processor: Roles defined under GDPR and equivalent laws.
• User: Any individual or entity accessing or using the Services.

4. Roles Under Data Protection Law

4.1 Tickrush as Controller

Tickrush is the Data Controller for Personal Data collected for its own operational and business purposes.

4.2 Tickrush as Processor

When processing data on behalf of event organizers, Tickrush acts as a Data Processor. Event organizers remain solely responsible for compliance with applicable laws.

5. Categories of Personal Data Collected

• Identifiers (name, email, phone)
• Account credentials
• Event listings, registrations, and ticketing information
• Payment metadata and transaction records (excluding full card details)
• Communications with support or other users
• Device, log, IP, Location and usage analytics data
• Cookies and tracking data

       Tickrush does not sell Personal Data.

6. Sources of Personal Data

• Directly from users during registration or use
• Automatically through the Services (logs, cookies, analytics)
• From authorized third-party service providers (e.g., payment processors, analytics tools)

7. Purposes of Processing

        Tickrush processes Personal Data to:

• Operate the Services
• Facilitate events, ticketing, and payments
• Communicate updates and notifications
• Maintain security and prevent fraud
• Improve platform functionality and user experience
• Comply with legal obligations

8. Legal Bases for Processing (GDPR)

        Where GDPR applies, processing is based on:

• User consent (Article 6(1)(a))
• Contractual necessity (Article 6(1)(b))
• Legal obligation (Article 6(1)(c))
• Legitimate interests (Article 6(1)(f))

9. Data Sharing and Disclosure

        Tickrush may share Personal Data with:

• Event organizers for event management
• Payment processors and financial institutions
• Hosting, analytics, and security providers
• Authorities where required by law

       Tickrush does not sell Personal Data.

10. International Data Transfers

Personal Data may be transferred to the US and other jurisdictions. Tickrush ensures appropriate safeguards, including Standard Contractual Clauses, where required by law.

11. Cookies and Tracking Technologies

        Tickrush uses cookies and similar technologies to:

• Ensure functionality of the Services
• Analyze usage and improve performance
• Maintain security

        Users may control cookies via their browser or device settings.

12. Data Retention

Personal Data is retained only as long as necessary to fulfill the purposes in this Agreement or as required by law. Anonymized or aggregated data may be retained indefinitely.

13. Data Security

Tickrush implements reasonable administrative, technical, and organizational safeguards. No system is completely secure, and Tickrush disclaims guarantees of absolute security.

14. User Rights

       Depending on jurisdiction, users may have the right to:

• Access their Personal Data
• Correct inaccurate data
• Request deletion
• Restrict or object to processing
• Withdraw consent

        Requests may be submitted to support@tickrush.com.

15. California Privacy Rights

       California residents may exercise rights under CCPA/CPRA, including:

• Right to know what Personal Data is collected
• Right to delete Personal Data
• Right to opt-out of certain data processing

        Tickrush does not discriminate against users who exercise these rights.

16. Children’s Privacy

The Services are not intended for children under 13. Tickrush does not knowingly collect personal data from children.

17. Third-Party Services

Tickrush is not responsible for the privacy practices or content of third-party websites or services linked through the Services.

18. Business Transfers

Personal Data may be transferred in connection with mergers, acquisitions, reorganizations, or asset sales, in compliance with applicable law.

19. Disclaimers and Limitation of Liability

Services are provided “as is” and “as available.”
Tickrush disclaims all warranties, express or implied, and limits liability for indirect, incidental, or consequential damages to the maximum extent permitted by law.

20. Indemnification

Users agree to indemnify and hold harmless Tickrush LLC from claims arising out of misuse of the Services or violation of applicable law.

21. Governing Law and Jurisdiction

This Agreement is governed by the laws of the State of Wyoming, United States, without regard to conflict-of-law rules.

22. Changes to this Agreement

Tickrush reserves the right to modify this Agreement at any time. Continued use of the Services constitutes acceptance of the updated Agreement.

23. Contact Information

Tickrush LLC
support@tickrush.com

Appendix A – Plain-Language Privacy Summary

Tickrush uses personal data to provide events, sell tickets, process payments, and communicate updates.

We only share data with organizers, service providers, or authorities when required.
We do not sell personal data.

Appendix B – App Store & Google Play Privacy Disclosures

• Data Collected: Contact info, identifiers, purchases, usage data, diagnostics
• Purpose: Functionality, analytics, security, support
• Tracking: No cross-app tracking for ads (update if you add ads later)

Appendix C – In-App Consent Language

• Account Creation: “I agree to the Privacy Policy and Terms of Service.”
• Marketing: Optional, separate checkbox. Cannot be pre-checked.

Appendix D – Privacy FAQ

      Q: Do you sell my data?
      A: No.

      Q: Who is responsible for event data?
      A: Event organizers; Tickrush is a service provider.

      Q: How do I delete my data?
      A: Email support@tickrush.com.

      Q: Is payment data secure?
      A: Yes. Processed by secure third-party providers.

       Q: Third-party services?
      A: Tickrush is not responsible for external service privacy.