PRIVACY POLICY

Last Updated: May 20, 2026

1. INTRODUCTION

This Privacy Policy (“Privacy Policy”) describes how MyHerbalist Inc., the owner company of The Remedist brand and website, and any parent, subsidiary, and affiliate companies (collectively,“MyHerbalist”, “we”, “us”, or “our”) use Personal Information (defined below) that we collect, receive, and store about each visitor, user, or customer (each, a “user,” and specifically you, “you” or “your”) of our owned and operated website, www.theremedistapothecary.com, and of our other affiliated websites, subdomains, mobile versions, applications (including mobile applications), and online media under our operation and control, as well as all backup, mirror, replacement, or substitute websites or webpages we make available as part of the services we provide (collectively, the “Service”), the use of which shall be subject at all times to the Terms of Use.

We are committed to respecting the privacy and privacy rights of our users and recognize the need for appropriate protection and management of information that may be used, either alone or in combination with other information, to personally identify an individual or household (“Personal Information”) and, as a subset thereof, Personal Information that may be considered sensitive personal information under Data Privacy Laws (defined below) (“Sensitive Personal Information”) that is shared with us in connection with users’ use of the Service. You may choose whether to provide or disclose Personal Information in connection with your use of the Service. If you choose not to provide the Personal Information we request, you may still visit and use parts of the Service but may be unable to access or use certain features, options, programs, and services thereof. If you do not agree with any of the terms of this Privacy Policy, please do not use the Service.

The Service may contain links to, or advertisements for, websites or mobile applications operated by third parties, including, without limitation, third party social media platforms, and, therefore, not owned or controlled by MyHerbalist. The links to, and advertisements concerning, such third-party websites/mobile applications are provided for your convenience only. We are not responsible for the content, performance, or privacy practices of these third-party websites/mobile applications or for your interactions with them, and you visit them at your own risk. Our inclusion of links to, or advertisements for, such third-party websites/mobile applications does not imply any endorsement of the material, products, or services provided by such third-party websites/mobile applications or any association with such third-party websites/mobile applications or their owners or operators whatsoever.

2.CHANGES TO THIS PRIVACY POLICY

We reserve the right, at any time and from time to time, for any reason in our sole discretion, to add to, delete, and/or modify any or all of this Privacy Policy. We display the effective date of this Privacy Policy at the top of this page, indicated by the “Last Updated” legend. UNLESS OTHERWISE INDICATED, ANY CHANGES TO THIS PRIVACY POLICY WILL APPLY IMMEDIATELY UPON POSTING TO THE SERVICE. If you use the affected Service after the changes become effective, it means you agree to the changes to this Privacy Policy. You should review the provisions of this Privacy Policy on a regular and frequent basis so that you are aware of your rights.

3. CHILDREN’S PRIVACY

The Service is not intended for children under the age of eighteen (18) and we do not knowingly collect, share, or sell Personal Information from children under the age of eighteen (18). If you believe we might be in possession of any information from or about a person under the age of eighteen (18), please contact us at support@theremedistapothecary.com. Visit www.OnGuardOnline.gov for tips from the Federal Trade Commission on protecting children’s privacy online.

4. TRANSFERS OF PERSONAL INFORMATION FROM THE EUROPEAN UNION (EU) OR EUROPEAN ECONOMIC AREA (EEA), THE UNITED KINGDOM (UK), OR SWITZERLAND TO THE UNITED STATES OF AMERICA.

This Privacy Policy is intended to cover collection of information on or via our Website from residents of the United States. If you are visiting our website from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States where our servers are located and our central database is operated. The data protection and other laws of the United States and other countries might not be as comprehensive as those in your country. Please be assured that we seek to take reasonable steps to ensure that your privacy is protected. By using or visiting our Website, you understand that your information may be transferred to our facilities and those third parties with whom we share it as described in this Privacy Policy.

To communicate with you or provide the Service or our other products and offerings, the information (including Personal Information) that we collect from you may be transferred to, stored, used, and processed by MyHerbalist in the United States of America or by one of our service providers based inside or outside of the United States of America. Such entities may be engaged in, among other things, preparing and sending notifications and the provision of support services.

If you are visiting from the European Union, the broader European Economic Area, the United Kingdom or other regions with laws governing information collection and use that may differ from those of the United States of America, or any one or more of its individual States, please note that you are transferring your Personal Information to the United States of America. The laws of some countries may not provide the same levels of protection of Personal Information as your home country, particularly if you are resident in the European Union, the broader European Economic Area or the United Kingdom.

We will take reasonable steps to ensure that information about you is treated securely in accordance with this Privacy Policy, and that all information you provide to us is stored on our secure servers or those of our service providers and business partners.

YOU ACKNOWLEDGE THAT THE LAWS OF THE UNITED STATES OF AMERICA AND ITS INDIVIDUAL STATES TREAT YOUR INFORMATION IN A MANNER THAT MAY BE SUBSTANTIALLY DIFFERENT FROM, AND LESS PROTECTIVE THAN, THE TREATMENT REQUIRED UNDER THE LAWS OF OTHER COUNTRIES AND JURISDICTIONS. IF YOU DO NOT WANT YOUR INFORMATION TRANSFERRED TO THE UNITED STATES OF AMERICA, YOU SHOULD NOT SHARE YOUR INFORMATION WITH US OR MAKE USE OF THE SERVICE.

TO THE EXTENT ALLOWED BY THE LAW OF THE COUNTRY IN WHICH YOU ARE LOCATED, YOU EXPRESSLY WAIVE ANY RIGHT YOU MAY HAVE TO REQUIRE US TO TREAT YOUR PERSONAL INFORMATION IN ACCORDANCE WITH THE LAWS OF ANY COUNTRY OR JURISDICTION OTHER THAN THE UNITED STATES OF AMERICA. HOWEVER, THE FOREGOING WAIVER MAY NOT BE LEGALLY BINDING IN SOME COUNTRIES, SUCH AS THE MEMBER STATES OF THE EUROPEAN UNION, THE BROADER EUROPEAN ECONOMIC AREA OR THE UNITED KINGDOM. TO THE EXTENT IT IS NOT LEGALLY BINDING IN THE COUNTRY IN WHICH YOU ARE LOCATED, THE FOREGOING WAIVER DOES NOT APPLY TO YOU.

5. NOTICE TO RESIDENTS OF THE EUROPEAN UNION, EUROPEAN ECONOMIC AREA, AND UNITED KINGDOM

European Economic Area and United Kingdom data protection law requires a “lawful basis” for collecting and retaining Personal Information from citizens or residents of the European Economic Area and the United Kingdom, respectively. Our lawful bases for collecting such information about you are permitted under Article 6, Section 1 of the EU general data protection regulation 2016/679 (as amended from time to time, and as adopted by the United Kingdom, the “GDPR”) and are summarized below.

Consent: In certain cases, you have affirmatively provided us with your consent to collect your Personal Information for a specific purpose, such as providing your Personal Information when you contact us through the Service or enter into a contract with us.

Contract: We may need your Personal Information to comply with our contractual obligation to you to deliver the Service, such as fulfilling any future transactional services.

Legal Obligations: Sometimes the law requires us to collect and use your Personal Information, such as applicable tax laws that may require us to retain records of payments made through the Service or through our contract with you.

Legitimate Interests: This is a technical term that means we have a good and fair reason to use your Personal Information and we do so in ways which do not harm your interests and rights, such as to pursue our legitimate interests in a way that might reasonably be expected as part of running our business and that do not materially impact your rights, freedom, or interests.

For example, we (i) use identity, device, and location information to prevent abuse of the Service by users and to keep the Service secure, and (ii) analyze how users interact with our Service so we can understand better what elements do or do not work well, what services/functionalities may be necessary or desirable to provide you with the best user experience on the Service, and to ensure the safety and security of the Service, which allows us to improve and develop the quality of the online experience we offer all our users.

In accordance with the GDPR, as a resident of the European Union, European Economic Area, or the United Kingdom, you may have the following rights with respect to your Personal Information:

If the processing of Personal Information is based on your consent, the right to withdraw consent at any time for the processing of such Personal Information. This will not affect the lawfulness of any processing carried out before the consent was withdrawn;

-          the right to request access to and rectification of your Personal Information;

-          the right to object to or request restriction of the processing of your Personal Information;

-          the right to request erasure of your Personal Information; and

-          the right to receive, in a structured, commonly used and machine-readable format, the Personal Information you have provided to us based on your consent or a contract and that is processed by automated means, and to have such Personal Information transmitted to another company where technically feasible (i.e., data portability).

To make a request pursuant to your GDPR rights, you can contact MyHerbalist’s Privacy Officer either by email at support@theremedistapothecary.com or by mail at The Remedist Apothecary c/o MyHerbalist Inc., 103 Foulk Road, Suite 202, Wilmington, Delaware 19803, United States of America.

If you are not satisfied with our response to any appliable request made pursuant to your rights under the GDPR, you have the right to lodge a complaint about the processing of your Personal Information with your local data protection authority. If you are located in the United Kingdom, this is the Information Commissioner’s Office (ICO). If you are located in the European Economic Area, you can contact the Commission Nationale Informatique & Libertés (CNIL).

6. U.S. CONSUMER PRIVACY RIGHTS

Depending on your U.S. state of residence, you may have additional privacy rights with respect to your Personal Information. These rights may be accorded to you pursuant to, respectively, the California Consumer Privacy Act; the California Privacy Rights Act; the Colorado Privacy Act; the Connecticut Personal Data Privacy and Online Monitoring Act; the Oregon Consumer Privacy Act; the Texas Data Privacy and Security Act; the Utah Consumer Privacy Act; the Virginia Consumer Data Protection Act; the Montana Consumer Data Privacy Act; the Nevada Consumer Health Data Privacy Law; the Washington My Health My Data Act; the Delaware Data Protection Act; the Iowa Data Protection Act; the Nebraska Data Privacy Act; the New Hampshire Privacy Act; the New Jersey Data Privacy Act; the Tennessee Information Protection Act; the Minnesota Consumer Data Privacy Act; the Maryland Online Data Privacy Act; the Indiana Consumer Data Protection Act (effective January 1, 2026); the Kentucky Consumer Data Protection Act (effective January 1, 2026); and the Rhode Island Data Transparency and Privacy Protection Act (effective January 1, 2026) (collectively, as may be amended from time to time, “US Data Privacy Laws,” and together with the GDPR, “Data Privacy Laws”) you may have certain rights with respect to your Personal Information. For the purposes of this Section 13, Personal Information shall have the same meaning as “personal data” as such term is used under US Data Privacy Laws.

6.1 Requests to Know

You have the right to request that we disclose:

-          the categories of Personal Information we have collected about you;

-          the categories of sources from which we have collected Personal Information about you;

-          our use of the Personal Information we have collected about you;

-          the business or commercial purposes for selling or collecting Personal Information about you;

-          the categories of Personal Information sold, shared, or disclosed about you, as well as the categories – and, if you are a resident of Oregon or Colorado, the names – of third parties to whom the Personal Information was sold, by category of Personal Information for each party to whom Personal Information was sold; and

-          the specific pieces of Personal Information collected about you either (i) since this Website’s launch on May 20, 2026, if the website has been launched less than 12 months ago or (ii) for the twelve (12) months prior to the date of your request, if the website was launched more than 12 months ago.

The delivery of our response to your request to know may take place electronically or by mail. We are not required to respond to requests to know more than twice in a twelve (12)-month period.

6.2 Requests to Delete

You have the right to request that we delete any Personal Information about you that we have collected from you and retained, subject to certain exceptions. We may deny your deletion request if retaining the Personal Information is necessary for us or our service provider(s) to:

-          complete the transaction for which we collected the Personal Information, provide a good or service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform our contract with you;

-          detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities;

-          debug products to identify and repair errors that impair existing intended functionality;

-          exercise free speech, ensure the right of another consumer to exercise their free speech rights, or exercise another right provided for by Applicable Law;

-          engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the information’s deletion may likely render impossible or seriously impair the research’s achievement, if you previously provided informed consent;

-          enable solely internal uses that are reasonably aligned with consumer expectations based on your relationship with us;

-          comply with an obligation under Applicable Law; and/or

-          make other internal and lawful uses of that information that are compatible with the context in which you provided it.

6.3 Right to Opt Out of the Processing, Sale, or Sharing of Personal Information and/or Sensitive Personal Information

You have a right to opt out of the sale or sharing of Personal Information and/or Sensitive Personal Information we have collected about you to third parties. If you exercise this right, we will not sell or share Personal Information and/or Sensitive Personal Information about you. Please note that we will process Sensitive Personal Information about you only where we have obtained your prior consent to do so.

Further, you have a right to opt out of the processing of your Personal Information where you have previously provided us with your consent for purposes not otherwise compatible with Section 8 of this Privacy Policy (“Purposes for Which We Use Personal Information”). Please note that we will process Personal Information about you for purposes other than those set forth in Section 8 only where we have obtained your prior consent to do so.

We will act upon your request as soon as reasonably practicable, but in no event later than fifteen (15) days from the date of our receipt of your request. Any Personal Information and/or Sensitive Personal Information collected in connection with your request will be used only to facilitate that request. You may submit opt out requests by emailing us at support@theremedistapothecary.com.  

6.4 Requests to Correct Inaccurate Personal Information

You have the right to request that we correct inaccurate Personal Information that we maintain, or which pertains to you. Upon receipt of a verifiable request from you, we will use commercially reasonable efforts to correct the inaccurate Personal Information.

6.5 Right to Opt Out of Profiling

You have the right to opt out of “profiling.” This opt out applies to the automated processing of Personal Information that is used to render decisions that could have a legal or similarly-significant effect on a user. Examples of such decisions include those related to credit and access to fundamental goods or services. MyHerbalist does not engage in profiling as described above.

6.6 Right to Non-Discrimination

You have the right not to be discriminated against for the exercise of your US Data Privacy Laws rights described above. Unless permitted by US Data Privacy Laws, we will not as a result of such exercise:

-          deny you services;

-          charge you different prices or rates for services, including through granting discounts or other benefits, or imposing penalties;

-          provide you a different level or quality of services; or

-          to the extent applicable, suggest that you may receive a different price or rate for goods or services or a different level or quality of services.

6.7 Authorized Agents

You may designate an authorized agent to make requests on your behalf. You must provide an authorized agent written permission to submit a request on your behalf, and we may require that you verify your identity directly with us. Alternatively, an authorized agent that has been provided power of attorney may submit a request on your behalf.

6.8 Methods for Submitting Consumer Requests and Our Response to Requests

To make a request pursuant to your US Data Privacy Laws rights, you must contact MyHerbalist’s Privacy Officer either by email at support@theremedistapothecary.com or by mail at The Remedist, MyHerbalist Inc., 103 Foulk Road, Suite 202, Wilmington, Delaware 19803, United States of America.     

MyHerbalist reserves the right to verify all requests made pursuant to US Data Privacy Laws. Upon receipt of such request, we may ask you for additional information to verify your identity. Any additional information you provide will be used only to verify your identity and not for any other purpose. We will acknowledge receipt of your request within ten (10) days of receipt. Subject to our ability to verify your identity, we will respond to your request within forty-five (45) days of receipt. To protect your privacy and the security of Personal Information about you, we verify your request by requesting for additional identifying information that will only be used to verify your identity and for no other purpose.

If you are a resident of Colorado, Connecticut, Delaware, Iowa, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Tennessee, Texas, or Virginia, you may appeal our denial of your request pursuant to your US Data Privacy Law rights. To do so, you must email us at support@theremedistapothecary.com within forty-five (45) days of your receipt of our denial therefore. We will respond to an appeal within sixty (60) days of receipt for residents of Connecticut, Delaware, Iowa, Maryland, Montana, Nebraska, New Hampshire, Texas, Tennessee, and Virginia, and within forty-five (45) days of receipt for residents of Colorado, Minnesota, New Jersey, and Oregon.

If your appeal is denied and you are a Connecticut resident, you may contact the Connecticut Attorney General to submit a complaint at: https://portal.ct.gov/AG/Common/Complaint-Form-Landing-page

If your appeal is denied and you are a Texas resident, you may contact the Texas Attorney General to submit a complaint at: https://consumerprotection.texasattorneygeneral.gov/consumercomplaintportal/s/flow/TCP_Complaint_Input_Data_Privacy

If your appeal is denied and you are a Maryland resident, you may contact the Maryland Attorney General to submit a complaint at: https://www.marylandattorneygeneral.gov/Pages/CPD/Complaint.aspx

If your appeal is denied and you are a Montana resident, you may contact the Montana Attorney General to submit a complaint at: https://dojmt.gov/office-of-consumer-protection/consumer-complaints/

6.9 Categories of Personal Information We Have Sold or Shared in the Last Twelve (12) Months

We have not sold or shared (as such terms are defined under US Data Privacy Laws) any categories of Personal Information (i) since this Website’s launch May 21^st 2026, if the website has been launched less than 12 months ago or (ii) during the last twelve (12) months, if the website was launched more than 12 months ago.

6.10 Categories of Personal Information We Have Disclosed for a Business Purpose in the Last Twelve (12) Months

We have disclosed the following categories of Personal Information for business purposes (i) since this Website’s launch [May 21^st, 2026], if the website has been launched less than 12 months ago or (ii) during the last twelve (12) months, if the website was launched more than 12 months ago: Identifiers, such as your first and last name, email address, and IP address.

6.11 Shine the Light Law

California’s “Shine the Light” law allows California residents to obtain a list of third parties to whom a business has disclosed Personal Information for their direct marketing purposes. However, if a business adopts and discloses in its privacy policy a policy of not disclosing customers’ Personal Information to third parties for their direct marketing purposes unless the customer first affirmatively agrees to the disclosure, the business may comply with the law by notifying the customer of his or her right to prevent disclosure of Personal Information and by providing a cost-free means to exercise that right.

Personal Information submitted will only be used for marketing and promotional purposes. Whenever you agree to allow us to collect Personal Information, we provide you with an option to prevent such information from being shared for marketing and promotional purposes with third parties. Furthermore, you may exercise this cost-free option at any time by sending an email tosupport@theremedistapothecary.com.

Because we include a comprehensive Privacy Policy and provide you with details on how you may opt out of the use of your Personal Information by third parties for direct marketing purposes, we are not required to provide you with the third-party list.

7. INFORMATION COLLECTED AND HOW WE COLLECT IT

We may from time to time receive and/or collect the following categories of Personal Information:

-          identifiers, such as your first and last name, username, email address, telephone number, geographic location, and Internet Protocol (IP) address;

-          network activity, such as information collected from cookies and similar tracking technologies (as described below), marketing and communication preferences; and

-          any other information reasonably necessary to facilitate your dealings with us, some of which may constitute Personal Information.

Other than as expressly set forth above, we generally do not request on or through the Service Sensitive Personal Information, such as financial account information (e.g., credit report information, bank account numbers) or government-issued identification (e.g., your social security card, driver’s license, or passport), although we reserve the right to do so when such information is necessary to provide the services offered through the Service and to fulfill your requests made through the Service. Pursuant to US Data Privacy Laws (defined below), you have the right to request that MyHerbalist limit the use or disclosure of your Sensitive Personal Information. To do so, please contact us atsupport@theremedistapothecary.com.

The sources from which we obtain Personal Information are described below.

7.1. Personal Information You Provide to Us Through the Service

If you register an account, leave a product review, or sign up to receive email newsletters from MyHerbalist, via the Service, then you may provide us with, and we may collect, certain information that may constitute Personal Information and/or Sensitive Personal Information. Additionally, if you register an account, we may from time-to-time request supplementary information from you via email, which you may provide in your sole discretion, some of which may constitute Personal Information and/or Sensitive Personal Information.

7.2. Information Provided by Third Parties

We may from time to time collect information, including Personal Information, about you through non-affiliated third parties, including SSO Platforms and the Payment Processor(s) (each as defined below).

You may access the Service using Single Sign-On (SSO) through third-party platforms such as Shopify (collectively, “SSO Platforms”). If you choose to do so, we will receive certain account information from the SSO Platforms, which may include Personal Information, such as your first and last name, email address, and avatar (if applicable). This information is provided in accordance with the SSO Platforms’ privacy policies and your account settings with them. We use this information solely to create and manage your account on the Service.

When you purchase our products and/or services, including, without limitation, our holistic health products and workshop offerings, via the Service, our third-party payment processor(s), presently, Adyen N.V., Stripe, LLC (each, a “Payment Processor”), may collect your transaction information, such as the form of payment and the associated account number and billing address used to purchase such products and/or services, which may be shared with us via encrypted and tokenized methods.

To learn more about each Payment Processor’s data privacy practices, please visit the Payment Processors’ respective privacy policies, located at:

https://www.adyen.com/legal/adyen-terms-and-conditions

https://stripe.com/en-ro/legal/ssa

7.3 Information Collected Automatically

We may from time to time automatically collect certain information when you access or use the Service by means of various software tools described below (depending on your choices). In such circumstances, we use such information for log-in and systems administration purposes, information security and abuse prevention, to track user trends, and to analyze the effectiveness of the Service and to otherwise personalize the Service to you. Alone or in combination with other information, such automatically collected information may constitute Personal Information.

We may automatically collect the following information, some of which may constitute Personal Information, when you access or use the Service:

-          Log Files on the Service. The information inside the log files may include, amongst other similar types of information, IP addresses, type of browser, Internet Service Provider (ISP), date/time stamp, referring/exit pages, clicked pages, and any other information your browser may send to us.

-          Cookies. When you use or visit the Service, our servers may send a cookie to your computer. Cookies are small pieces of data that a website asks your browser to store on your computer or mobile device. A cookie contains an identifier (a string of letters and numbers) that is sent by a web server to a web browser and is stored by the browser. The identifier is then sent back to the server each time the browser requests a page from the server.

Cookies do not typically contain information that individually identifies you, but Personal Information that we store about you may be linked to the information stored in and obtained from cookies. We use cookies to make interactions with the Service easy and meaningful. We may use cookies that are session-based and persistent. Session cookies exist only during one session and disappear from your computer when you close your browser software or turn off your computer. Persistent cookies remain on your computer after you close your browser or turn off your computer. Please note that, if you disable your web browser’s ability to accept cookies, you will be able to navigate the Service but you may not be able to successfully use all the features of the Service.

If you are based in the United Kingdom or the European Economic Area, we will seek your consent to set non-essential cookies when you first visit our Service. If you click Reject All, we will only set Required Cookies (defined below).

Information regarding how we may use different categories of cookies and your options for managing cookie settings is set forth below.

7.4 Other Tracking Technologies

When you use or visit the Service, we may collect your IP address to track and aggregate information. For example, we may use IP addresses to monitor the regions from which you navigate the Service. We may also use, either alone or in conjunction with cookies, clear electronic images called “web beacons” (including pixels and tags) that can recognize certain types of information on your computer, such as cookies, when you view a particular site tied to the web beacon. This is used to compile information about your usage of the Service, your interactions with email communications from us, the effectiveness of our advertising campaigns, and to operate and improve the Service, our email communications, and our advertising campaigns. For example, we may place web beacons in email communications (including, without limitation, marketing emails) that notify us when you click on a link in the email that directs you to the Service, or when you use or access the Service.

Additionally, we implement the Meta Pixel on the Service to collect information about your activity and interactions with the Service. The Meta Pixel helps us measure the effectiveness of our advertising by tracking actions such as page views, clicks, and purchases. This data helps us better understand user behavior, optimize our marketing campaigns, and serve you more relevant advertisements across Facebook and Instagram. For more information on how Meta Pixel collects and uses data, please refer to Meta's Privacy Policy: https://www.facebook.com/policy.php. You can manage your Meta ad preferences by visiting Facebook Ad Settings.

8. PURPOSES FOR WHICH WE USE PERSONAL INFORMATION

If you submit or we collect Personal Information through the Service or as otherwise described above, we may use such Personal Information for the following general purposes:

-          to provide you with the Service and its related features, and to analyze, administer, improve, and personalize the Service;

-          to communicate with you in connection with the Service and products or offerings made available through the Service;

-          to send you updates and promotional materials pertaining to MyHerbalist or the Service;

-          to provide personalized advertising to you, on the Service and on third-party websites and mobile applications;

-          to identify and authenticate your access to the parts of the Service that you are authorized to access;

-          for research and development relating to the Service and the offerings we make available to you through the Service;

-          for electronic direct marketing in compliance with Applicable Law (defined here);

-          to protect our rights and/or our property and to ensure the technical functionality and security of the Service;

-          for the performance of our contract with you or to take steps at your request before entering into a contract;

-          where you have given consent; and

-          to comply with applicable law, including, without limitation, under U.S. federal, state, local, and foreign laws, regulations, rules, judicial or governmental orders or requests, legal process, and treaties (as may be amended from time to time, collectively, “Applicable Law”).

9. HOW WE DISCLOSE PERSONAL INFORMATION

9.1 Our Third-Party Providers

We may transfer Personal Information you provide to us through the Service to our third-party service providers and business partners to perform tasks on our behalf and to assist us in providing the Service, including, without limitation, our email marketing partner, presently Active Campaign.

We will comply with Applicable Law regarding Personal Information transfers and use commercially reasonable efforts to only engage or interact with third-party service providers and business partners that take appropriate measures to protect your Personal Information; however, it is the responsibility of each of those third-party service providers and business partners to comply with Applicable Law and their respective privacy policies, and we take no responsibility for their privacy practices or compliance therewith.

9.2 In the Event of Merger, Sale, or Change of Control

MyHerbalist may assign or transfer its rights and/or delegate its obligations under this Privacy Policy and transfer any Personal Information to any third-party company or entity that either acquires or is acquired by MyHerbalist, or is merged with or into MyHerbalist, as part of a merger, acquisition, sale, bankruptcy proceeding, or other change of control.

9.3 Other Disclosures

We may disclose Personal Information about you if required to do so by Applicable Law or if we believe in good faith that such disclosure is reasonably necessary or helpful to (i) comply with legal process, (ii) enforce the Terms of Use, including investigations of potential violations thereof, (iii) detect, prevent, or otherwise address fraud or security issues, or (iv) protect the rights, property, or personal safety of MyHerbalist, other Service users, and the public.

10. RETENTION OF PERSONAL INFORMATION

We will keep your Personal Information while you have an account with us or while we are providing services to you. Thereafter, subject to any Applicable Law, we may hold Personal Information about you for as long as is reasonably necessary:

-          to fulfill the purposes described in Section 8 above (“Purposes For Which We Use Personal Information”), including, without limitation, to comply with Applicable Law; or

-          to respond to any questions, complaints, or claims made by you or on your behalf.

We will not retain your Personal Information for longer than reasonably necessary for the purposes set out in this Privacy Policy.

11. EMAIL NOTIFICATIONS AND OPT OUT

We maintain a strict "no-spam" policy. Unless you requested otherwise in your account settings at the time of your initial registration or specifically opt out as provided herein, by accepting this Privacy Policy, you expressly agree that we may use your information to contact you by email to deliver information that is relevant to your use of the Service such as administrative notices, newsletters you have registered for, or marketing and promotional information related to the Service and/or MyHerbalist. You may choose to stop receiving these email communications from us by following the instructions included in such communications or by contacting us atsupport@theremedistapothecary.com . If a third-party vendor provides such newsletters, you may unsubscribe in accordance with the instructions provided in such newsletters or by such vendor.  

If you are located in the United Kingdom or the European Economic Area, we will not contact you by email to deliver marketing and promotional information unless we have obtained your prior consent to do so, or if otherwise permitted by law (for example, what is known as the ‘soft opt-in’).

If you are having problems unsubscribing, please forward the relevant email communication to support@theremedistapothecary.com and include in the Subject line the word "Unsubscribe". You will then be removed within ten (10) business days. Please note that we will not process any unsubscribe requests submitted as direct replies to an email communication from us.  

12. DATA SECURITY

The security of Personal Information is important to us. We follow generally accepted industry standards to protect the Personal Information submitted to us, both during transmission and once we receive it. For example, we have implemented an information security program that contains administrative, technical, organizational, and physical controls that are designed to reasonably safeguard Personal Information from unlawful use, unauthorized access, or disclosure. However, no method of transmission over the Internet, or method of electronic storage, is 100% secure. Therefore, while we strive to use commercially acceptable means to protect Personal Information, we cannot guarantee its absolute security.

13. HOW WE RESPOND TO DO NOT TRACK SIGNALS

As explained above in Section 7.4, the technologies used through the Service may be used to track Service users’ activity on the Service. How browsers communicate user preferences related to the Do Not Track signal is not yet uniform, so a standard technological response has not yet been developed. For this reason, the Service may not respond to Do Not Track signals at this time.

14. CONTACT US

If you have any questions about this Privacy Policy, please contact MyHerbalist by email at support@theremedistapothecary.com or by mail at The Remedist, MyHerbalist Inc., 103 Foulk Road, Suite 202, Wilmington, Delaware 19803, United States of America.