The Culture Wellness

Terms & Conditions

Please read and accept the following policies to continue.

Privacy Policy

Effective Date: March 30, 2026

1. Introduction

This Privacy Policy describes how The Culture Wellness LLC collects, uses, and protects information when you use our platform.

2. Information We Collect

Account Information: Name, email, business info, login credentials.

Usage Data: Platform activity, order data, system interactions.

Payment Information: Processed via secure third-party gateway. We do not store full card details.

3. How We Use Information

Operate platform, process subscriptions and credits, manage accounts, fulfill orders, improve services, communicate updates.

4. Credits and Billing

Credits are non-refundable, non-transferable, and have no cash value.

5. Data Sharing

We do not sell data. Shared only with service providers, fulfillment partners, or as required by law.

6. Data Security

We implement industry-standard protections, though no system is fully secure.

7. Data Retention

Data is retained as necessary for services, compliance, and dispute resolution.

8. User Responsibilities

Users must maintain account security and are responsible for all activity.

9. Third-Party Payments

Clients handle their own customer payments independently.

10. Your Rights

Users may request access, correction, or deletion of their data by contacting us.

11. Updates

Policy may be updated at any time.

12. Contact

info@theculturewellness.com


Terms of Service

Effective Date: March 30, 2026

1. Acceptance of Terms

By using the platform, you agree to these Terms.

2. Services Provided

We provide order management and fulfillment coordination. We do not process customer payments for clients.

3. Account Registration

Users must provide accurate info and maintain account security.

4. Subscriptions and Billing

Subscriptions are recurring and non-refundable unless required by law.

5. Credits

Credits are prepaid, non-refundable, non-transferable, and have no cash value.

6. Client Responsibilities

Clients handle their own payments, compliance, and order accuracy.

7. Prohibited Activities

No illegal use, unauthorized access, or system interference.

8. Intellectual Property

All platform content is owned by the Company.

9. Limitation of Liability

We are not liable for indirect damages or third-party issues.

10. Termination

Accounts may be suspended for violations.

11. Modifications

Terms may be updated at any time.

12. Governing Law

Governed by Nevada law.

13. Contact

info@theculturewellness.com


Acceptable Use Policy

Effective Date: March 30, 2026

1. General Use

Use platform only for lawful business purposes.

2. Prohibited Activities

No illegal activity, fraud, harmful code, or security bypass.

3. Restricted Industries

We may restrict certain high-risk industries.

4. Payment Responsibility

Users are responsible for their own payment processing.

5. Enforcement

We may suspend or terminate accounts without notice.

6. Reporting Violations

Report to info@theculturewellness.com

7. Updates

Policy may be updated at any time.

Data Processing Agreement (Business Customers)

Effective Date: March 30, 2026 · Last updated: July 12, 2026

This Data Processing Agreement (“DPA”) applies to business customers (“Client”) whose use of the platform involves The Culture Wellness LLC (“TCW”) processing personal data on the Client’s behalf. It forms part of, and is governed by, the Terms of Service. The Annexes at the end of this DPA form an integral part of it.

1. Roles & Documented Instructions

The Client is the data controller; TCW is the data processor. TCW shall process personal data only on the Client’s documented instructions — including with regard to international transfers — unless otherwise required by applicable law, in which case TCW will (where legally permitted) inform the Client of that requirement before processing. The Client’s instructions are set out in the Terms of Service, this DPA, and the Client’s ordinary use of the platform.

2. Nature & Purpose of Processing

TCW processes personal data solely to receive, store, pick, pack, ship, track, and support orders on the Client’s behalf, and to provide the associated Client Portal and reporting.

3. Categories of Data & Data Subjects

Personal data may include recipient names, shipping and contact details, and order information relating to the Client’s own customers and recipients. The Client shall not submit special-category or otherwise sensitive personal data through the platform unless expressly agreed by the parties in writing.

4. Security Measures

TCW maintains appropriate technical and organizational measures designed to protect personal data against unauthorized or unlawful processing and against accidental loss, destruction, or damage. These measures are described in Annex II and may include, as applicable: encryption of data in transit; least-privilege, role-based access controls; audit logging; regular encrypted backups and disaster-recovery procedures; network protections; personnel access controls and reviews; routine security patching and vulnerability management; and secure disposal of data no longer required. TCW may update or replace its technical and organizational measures from time to time, provided that the overall level of security protection is not materially diminished.

5. Sub-processors

The Client provides a general authorization for TCW to engage sub-processors to deliver the services, by the categories listed in Annex III — including shipping carriers, cloud infrastructure providers, transactional email providers, and, where applicable, payment processors, customer-support systems, and analytics providers. TCW imposes on each sub-processor data-protection obligations no less protective than those in this DPA and remains responsible for its sub-processors’ performance. TCW will make available the then-current list of sub-processors on request and will give the Client a reasonable opportunity to object to a material change.

6. Confidentiality

TCW ensures that personnel authorized to process personal data are bound by appropriate obligations of confidentiality.

7. Data-Subject Rights & Assistance

Taking into account the nature of processing, TCW will reasonably assist the Client — by appropriate technical and organizational measures, insofar as possible — in responding to requests to exercise data-subject rights and in meeting the Client’s obligations regarding security, breach notification, and data-protection assessments.

8. Personal-Data Breach

TCW will notify the Client without undue delay and, where required by applicable law, within the applicable statutory timeframe after becoming aware of a personal-data breach affecting the Client’s personal data, and will provide reasonable information to assist the Client’s notification obligations.

9. Return, Deletion & Retention

On termination of services, TCW will, at the Client’s choice, return or delete the Client’s personal data, except to the extent retention is required by applicable law or legitimate business need — for example operational and shipping records, accounting and tax records, records retained for fraud-prevention or legal-defense purposes, and copies held in routine backups until they expire on their normal cycle. Retained data remains subject to the protections of this DPA.

10. International Transfers & Compliance

Where personal data is transferred across borders, TCW implements an appropriate lawful transfer mechanism as required by applicable law — which may include the EU Standard Contractual Clauses (SCCs), the UK International Data Transfer Addendum, or another equivalent mechanism. Each party will comply with the data-protection laws applicable to it, which may include the GDPR, UK GDPR, and CCPA/CPRA to the extent they apply.

11. Audit & Demonstrating Compliance

Upon reasonable written request, and no more than once per year (or as required by a supervisory authority or applicable law), TCW will make available information reasonably necessary to demonstrate compliance with this DPA. Any audit is subject to reasonable confidentiality, security, and scheduling conditions and must not unreasonably disrupt TCW’s operations.

12. Government & Legal Requests

Unless prohibited by law, TCW will notify the Client before disclosing the Client’s personal data pursuant to a subpoena, court order, or other legally binding governmental request, and will disclose only what is legally required.

13. Liability

Each party’s liability under this DPA is subject to, and counts toward, the limitations and exclusions of liability set out in the Terms of Service.

14. Survival

This DPA takes effect together with the Terms of Service and survives their termination for so long as TCW processes the Client’s personal data.

15. Contact

Data-protection inquiries: info@theculturewellness.com.

Annex I — Parties & Processing Details

Controller / Data Exporter: The Client (the business customer identified in its portal account), acting as controller of the personal data it submits.

Processor / Data Importer: The Culture Wellness LLC, Las Vegas, Nevada, USA — contact: info@theculturewellness.com — acting as processor to provide fulfillment, logistics, and distribution services.

Subject matter & duration: Processing of order and shipping personal data for the duration of the services and any legally required retention thereafter.

Nature & purpose: Receiving, storing, picking, packing, shipping, tracking, supporting, and reporting on orders on the Client’s behalf.

Categories of data subjects: The Client’s customers and order recipients.

Categories of personal data: Names, shipping and contact details, and order information.

Annex II — Technical & Organizational Measures

TCW maintains a program of technical and organizational measures that, as applicable, includes:

  • Encryption of data in transit (TLS/HTTPS).
  • Enforced password controls (strong bcrypt password hashing) with immediate session revocation on logout, password reset, and administrative action.
  • Least-privilege, role-based access controls separating client, admin, and warehouse roles.
  • Logical tenant isolation so each client’s data is segregated from others’.
  • Audit logging of authentication, administrative actions, inventory events, and order processing.
  • Network protections, including a default-deny inbound firewall.
  • Routine security patching and vulnerability management.
  • Regular encrypted backups and disaster-recovery procedures.
  • Personnel confidentiality obligations and periodic access reviews.
  • Secure disposal of personal data that is no longer required.

Annex III — Authorized Sub-processor Categories

  • Shipping carriers — e.g., UPS (for carrier services, labels, and tracking).
  • Cloud infrastructure / hosting providers — for the servers and databases that run the platform.
  • Transactional email providers — for order, tracking, and account notifications.
  • Payment processors — where payment handling applies.
  • Customer-support systems — where used to assist the Client.
  • Analytics providers — only if and where applicable.

© 2026 The Culture Wellness. All rights reserved.

Powered by Lithos®