Privacy Policy

Harbor Wealth LLC

Last Revised: 03/20/2026

https://harborwealthpro.com

ARTICLE I — INTRODUCTION AND SCOPE OF THIS POLICY

This Privacy Policy (“Policy”) is published by Harbor Wealth LLC (“Company,” “we,” “our,” or “us”), a limited liability company formed under the laws of Wyoming, United States. The Company operates the website located at https://harborwealthpro.com and distributes health and wellness newsletters, dietary supplement commentary, medical news dispatches, and related editorial content through associated digital channels (collectively, the “Platform”).

This Policy describes the categories of personal information the Company collects, the purposes for which such information is used, the parties to whom it may be disclosed, and the rights available to individuals with respect to their personal information. The Policy applies to every natural person who visits the Platform, receives an electronic communication from us regardless of how we came to hold that individual’s contact details, or otherwise provides personal data in connection with the Platform.

This Policy should be read together with our Terms & Conditions, which govern your use of the Platform and establish defined terms — including “Publications,” “Protected Parties,” and “Health Content” — that are used in both documents. In the event of any conflict between this Policy and the Terms & Conditions, the Terms & Conditions shall control.

The Platform constitutes a commercially funded digital publication and may contain advertising, sponsored content, affiliate promotions, and references to dietary supplements and wellness products. Nothing in this Policy is intended to expand the Company’s obligations beyond those independently imposed by applicable law.

The Company adheres to data-handling standards designed to satisfy applicable United States federal and state requirements and, where independently required by law, relevant international data-protection obligations.

Your continued use of the Platform, or your receipt of electronic communications from us, signifies your acknowledgment of and agreement to the practices described herein. If any provision of this Policy is unacceptable to you, please discontinue use of the Platform and avail yourself of the opt-out mechanisms described in Article VI.

ARTICLE II — IDENTITY OF THE DATA CONTROLLER

For purposes of any applicable data-protection framework that assigns accountability to a “controller” or equivalent designation, the responsible entity is:

Harbor Wealth LLC
136 E 2nd St
Casper, Wyoming, 82601, United States
Electronic Mail: support@harborwealth.com
Telephone: +1 (307) 223-7386

ARTICLE III — AGE RESTRICTIONS AND PROTECTION OF MINORS

Section 3.1 — Minimum Age Requirement.

The Platform is designed exclusively for individuals who have attained the age of eighteen (18). We do not knowingly collect, solicit, or process personal information from any individual under the age of eighteen.

Section 3.2 — COPPA Compliance.

Consistent with the requirements of the Children’s Online Privacy Protection Act (“COPPA”), 15 U.S.C. §§ 6501-506, the Company does not knowingly collect or retain personal information from children under the age of thirteen (13). In the event the Company discovers that personal information from a child under thirteen has entered its systems, it will take prompt and commercially reasonable steps to delete such information. If you believe a child under thirteen has submitted personal data through the Platform, please notify us immediately at support@harborwealth.com.

ARTICLE IV — CATEGORIES OF PERSONAL INFORMATION COLLECTED

Section 4.1 — Information Provided Directly by You

When you subscribe to our newsletter, complete a web form, respond to a survey, or otherwise communicate with us, you may voluntarily provide personal information such as your name, email address, telephone number, or other details at your discretion.

Section 4.2 — Information Collected Through Automated Technologies

When you visit the Platform or open one of our electronic communications, automated technologies may collect data about your interaction. These technologies include cookies, tracking pixels (including pixels embedded within email communications), web beacons, JavaScript tags, and, where deployed, browser-fingerprinting routines. The categories of data that may be captured include:

• (a) your Internet Protocol address and the approximate geographic region it implies;
• (b) device type, operating system, browser version, and screen characteristics;
• (c) pages viewed, session duration, click paths, and links activated;
• (d) the referring URL or search query that directed you to the Platform;
• (e) cross-device recognition signals where such capabilities are active; and
• (f) email-engagement signals, including open timestamps, click events, and forwarding activity, captured via tracking pixels embedded in our communications.

Section 4.3 — Information Obtained from External Sources

The Company may supplement the personal information it collects directly with contact records and audience data obtained from vetted external partners. Such sources may include licensed marketing-data providers, co-registration and lead-generation platforms, audience-development services, publicly accessible registries and directories, and advertising-technology vendors.

Each external data partner is contractually required to represent that the information it supplies was collected in compliance with applicable law and that it is authorized to share that data with the Company for the purposes described in this Policy. The Company maintains a risk-based vendor diligence program — including contractual protections, qualification reviews, and suppression-file matching — designed to promote responsible data sourcing and to honor consumer opt-out preferences across its marketing systems.

Section 4.4 — Categories of Data the Company Does Not Seek

The Company does not intentionally solicit sensitive personal data, including government-issued identification numbers, precise geolocation coordinates, financial-account credentials, or biometric identifiers. With respect to health and medical information specifically, please refer to Article X (HIPAA and Health Information) for a complete description of the Company’s practices concerning such data.

ARTICLE V — PURPOSES AND LEGAL GROUNDS FOR PROCESSING

Section 5.1 — Operational Purposes

The Company processes personal information — including data generated through interaction with Publications as defined in the Terms & Conditions — for the following operational purposes:

• (g) operating, maintaining, and improving the Platform;
• (h) delivering editorial health newsletters, dietary supplement commentary, wellness Publications, promotional messages, and third-party offers by electronic mail;
• (i) measuring audience engagement, campaign performance, and Publications effectiveness;
• (j) detecting, investigating, and preventing fraud or unauthorized access;
• (k) attributing advertising impressions, clicks, and conversions for billing and compensation purposes;
• (l) satisfying applicable legal and regulatory obligations;
• (m) enforcing the Company’s Terms & Conditions and other agreements; and
• (n) responding to inquiries, feedback, and support requests.

Section 5.2 — Legal Grounds Under International Frameworks

Where the General Data Protection Regulation (Regulation (EU) 2016/679), the UK General Data Protection Regulation, or the Swiss Federal Act on Data Protection applies, the Company relies on the following legal grounds:

(a) Consent. Your affirmative agreement to receive marketing communications or to the activation of non-essential tracking technologies. Consent is the Company’s primary basis for direct marketing, including where your contact details were sourced from an external provider.

(b) Legitimate Interests.Processing necessary for the Company’s commercial operations — including analytics, fraud prevention, and security — provided that such interests are not overridden by your fundamental rights and freedoms. In conducting its balancing assessment, the Company considered the nature and granularity of the data processed (primarily technical identifiers and engagement signals rather than sensitive health information), the proportionality of processing to its stated purpose, and the availability of meaningful opt-out controls at all times.

(c) Legal Obligation. Processing mandated by statute, regulation, or binding governmental order.

Where your contact information was sourced from an external provider and you reside in a jurisdiction that requires prior consent for direct marketing — including the EEA and the UK — the Company relies on that provider’s binding contractual confirmation that valid consent was obtained before the data was transferred. You may withdraw consent at any time through the mechanisms in Article VI; withdrawal does not affect the lawfulness of processing that occurred prior to revocation.

ARTICLE VI — ELECTRONIC MAIL COMMUNICATIONS

Section 6.1 — Program Overview.

Electronic mail distribution is a core operational function of the Platform. Once your email address enters the Company’s systems — whether you provide it directly or it reaches us through an authorized external source — you may receive commercial messages from us. These may include health and wellness newsletters, dietary supplement news and commentary, promotional offers, and messages featuring third-party advertisers and affiliate partners active in sectors such as nutritional supplements, health technology, medical news services, wellness platforms, and related consumer health categories.

Section 6.2 — Message Frequency.

The volume and cadence of messages will fluctuate in response to editorial calendars, promotional programs, and audience-engagement indicators.

Section 6.3 — CAN-SPAM Compliance.

The Company’s commercial email practices are designed to comply with the Controlling the Assault of Non-Solicited Pornography and Marketing Act of 2003 (“CAN-SPAM Act”), 15 U.S.C. § 7701 et seq. Each commercial email includes accurate sender identification, a valid physical mailing address, and a clear and conspicuous opt-out mechanism. All opt-out requests are processed within ten (10) business days of receipt, or such shorter period as may be required by applicable law. For the full legal framework governing email consent, opt-out rights, and mobile messaging, please refer to Part VI of our Terms & Conditions.

Section 6.4 — How to Unsubscribe.

To stop receiving commercial email from the Company, click the “unsubscribe” link in any message or write to support@harborwealth.com. After opting out, you may continue to receive non-commercial, transactional, or relationship-based messages that fall outside the scope of the CAN-SPAM Act.

Section 6.5 — Suppression Procedures.

The Company maintains internal suppression procedures — including suppression-list matching applied to all externally sourced contact lists prior to any campaign dispatch — designed to prevent re-contact of individuals who have exercised an opt-out. Upon receipt of an unsubscribe request, your address is removed from all active distribution lists and recorded in a dedicated suppression file maintained on a rolling basis. This suppression file is preserved without a fixed expiration date to protect against inadvertent future contact as the Company’s datasets are refreshed or augmented over time.

Section 6.6 — Email Delivery Partners.

The Company routes email through multiple third-party delivery providers, each operating under a written agreement that limits them to processing your data exclusively for the purpose of transmitting Company communications in accordance with documented instructions. Providers may be added or changed at any time without advance notice.

ARTICLE VII — TRACKING TECHNOLOGIES AND ANALYTICS

Section 7.1 — Technologies Deployed.

The Platform makes use of first-party and third-party tracking technologies — including cookies, pixel tags, clear GIFs, and JavaScript beacons — for session management and essential functionality, usage measurement and audience analytics, advertising attribution and conversion tracking, behavioral segmentation and audience modeling, and cross-site or cross-device recognition where those capabilities are active.

Section 7.2 — Email Pixel Tags.

Pixel tags embedded in electronic communications allow the Company to determine whether a message was opened, the time and device on which it was opened, and which links were activated. Data points captured include the recipient’s IP address, email-client attributes, and interaction timestamps.

Section 7.3 — Third-Party Tracking Instruments.

Certain tracking technologies are operated by third-party advertising and analytics vendors. The Company does not control the independent data-handling practices of such vendors. Users are encouraged to consult the privacy policies of any third-party vendor whose tools they encounter through the Platform.

Section 7.4 — User Controls.

You may restrict cookies through your browser settings, though doing so may impair certain features of the Platform. To block email pixel tags, configure your email client to suppress automatic image loading.

Section 7.5 — Do Not Track Signals.

No binding industry or regulatory standard has been established for interpreting browser-transmitted Do Not Track signals. The Platform does not currently modify data-collection practices in response to such signals. The Company will reassess this position if authoritative guidance is issued by a relevant regulatory or standards body.

ARTICLE VIII — ADVERTISING, AFFILIATES, AND COMMERCIAL RELATIONSHIPS

Section 8.1 — Revenue Model.

The Platform is funded in part through advertising and affiliate partnerships. The Company may receive compensation from third-party advertisers, affiliate networks, and sponsors whose products or services are featured in, linked from, or referenced by its Publications or email communications. Compensation structures may include cost-per-click fees, cost-per-action commissions, revenue-sharing arrangements, fixed sponsorship placements, and hybrid models. A complete description of the Company’s material commercial relationships and FTC disclosures is set out in Part V of the Terms & Conditions.

Section 8.2 — Categories of Commercial Partners.

Entities that compensate the Company may include, among others: dietary supplement and nutraceutical manufacturers, health technology and wellness platform providers, medical news and health information services, fitness and nutrition program vendors, and other commercial enterprises operating in the consumer health sector.

Section 8.3 — Disclosure and Disclaimer.

Compensation arrangements may influence which products or services are featured, their prominence and positioning, and the editorial framing applied. The presence of an affiliate link or advertisement does not constitute an endorsement, guarantee, warranty, or suitability determination by the Company. The Company does not independently assess the efficacy, safety, or regulatory compliance of any dietary supplement or wellness product referenced through the Platform. You should conduct your own independent evaluation and consult qualified healthcare professionals before making any health-related decision or purchasing any supplement or wellness product.

ARTICLE IX — DISCLOSURE OF PERSONAL INFORMATION TO THIRD PARTIES

The Company may share personal information with the following categories of recipients, each serving a distinct function within the framework of this Policy. The term “Protected Parties” as used in the indemnification and liability provisions of the Terms & Conditions encompasses the affiliated entities and service providers described below.

Affiliated Entities. Parent companies, subsidiaries, and entities under common control may receive personal information for joint marketing initiatives, cross-platform Publications distribution, delivery of health-related products and services, and centralized administrative functions. All affiliated entities are bound by data-protection standards equivalent to those described in this Policy.

Email Delivery Vendors. Third-party message-transmission services operate under written agreements that restrict processing of personal information exclusively to delivering Company communications per documented instructions.

Technology and Infrastructure Providers. Web-hosting services, content-delivery networks, cybersecurity vendors, and similar infrastructure partners necessary to operate the Platform.

Analytics Platforms. Third-party measurement services engaged to assess audience engagement, Publications performance, and campaign outcomes.

Advertising and Affiliate Partners. Advertisers, affiliate networks, and sponsors receive technical signals — including device identifiers, IP addresses, click-stream data, and related telemetry — for advertising attribution, conversion verification, and compensation settlement.

Legal and Regulatory Authorities. Government agencies, regulatory bodies, law-enforcement authorities, and courts, to the extent required by applicable law, legal process, or governmental directive, or to safeguard the rights, property, or safety of the Company, its users, or the public.

Professional Advisers. External legal counsel, auditors, accountants, and consultants retained for business operations.

Corporate Successors. In any merger, acquisition, asset sale, divestiture, or insolvency proceeding, personal information may transfer to the acquiring or successor entity.

The Company does not rent or sell personal information to unaffiliated third parties for their own independent promotional purposes beyond the activities outlined above. Certain disclosures to advertising and affiliate partners for attribution and conversion tracking may, however, constitute a “sale” or “sharing” of personal information as defined under the California Consumer Privacy Act (“CCPA”) or comparable state statutes. Categories of personal information potentially affected include: (i) Identifiers such as device identifiers and IP addresses; (ii) Internet or electronic-network activity data including click records, browsing behavior, and email-engagement metrics; and (iii) Geolocation data inferred from IP-address analysis. Opt-out rights are described in Article XI.

ARTICLE X — HIPAA AND HEALTH INFORMATION

Section 10.1 — Scope and Applicability

The Health Insurance Portability and Accountability Act of 1996 (“HIPAA”), as amended by the Health Information Technology for Economic and Clinical Health Act (“HITECH”), and the implementing regulations promulgated thereunder (collectively, “HIPAA”) establish standards for the protection of individually identifiable health information. This Article describes the Company’s practices with respect to health-related information and its relationship to HIPAA’s requirements.

The Company operates as a digital media publisher and does not function as a “Covered Entity” (as that term is defined in 45 C.F.R. § 160.103) in the ordinary course of its operations. The Platform does not provide healthcare services, does not conduct healthcare transactions as defined under HIPAA, and does not maintain designated record sets containing Protected Health Information (“PHI”) in the course of normal editorial activities. Accordingly, HIPAA’s Privacy Rule (45 C.F.R. Part 164, Subpart E) and Security Rule (45 C.F.R. Part 164, Subpart C) do not apply to the Company’s processing of information collected in connection with its newsletter subscriptions and email marketing activities.

Section 10.2 — Health-Related Publications and Incidental References

The Platform may, from time to time, publish editorial Publications that reference health topics, medical research, dietary supplement studies, physician commentary, clinical findings, or other health-adjacent subjects — collectively referred to as “Health Content” as defined in the Terms & Conditions. Such Publications are provided for general informational and educational purposes only and do not create a patient-provider relationship, a treatment relationship, or any other healthcare relationship between you and the Company or any of its personnel.

In the ordinary course of editorial operations, the Company may reference healthcare professionals, medical institutions, or clinical research solely for illustrative or informational purposes. Such references do not constitute endorsements of any healthcare provider, institution, or treatment protocol.

Section 10.3 — Voluntary Submission of Health Information

The Company does not solicit, request, or require you to submit any information that constitutes Protected Health Information, as that term is defined in 45 C.F.R. § 160.103, including but not limited to diagnoses, treatment information, prescription records, or information regarding your medical conditions. If you voluntarily submit information that could be characterized as health information — for example, through a contact form inquiry or survey response — the Company will:

• (o) process such information only to the minimum extent necessary to respond to your communication;
• (p) not use such information for marketing or analytical purposes without your explicit consent;
• (q) implement reasonable safeguards appropriate to the sensitivity of the information; and
• (r) not share such information with third parties except as required by applicable law or as strictly necessary to respond to your inquiry.

The foregoing commitments are complemented by the protections described in Section 3.3 of the Terms & Conditions, which governs the Company’s obligations with respect to voluntarily submitted health information in the context of your use of the Platform.

Section 10.4 — Dietary Supplements and Health Claims

Publications may reference or discuss dietary supplements, nutraceuticals, functional foods, and related products. In accordance with applicable law, including the Dietary Supplement Health and Education Act of 1994 (“DSHEA”), the Federal Food, Drug, and Cosmetic Act (“FDCA”), and the Federal Trade Commission Act (“FTC Act”), the Company observes the following:

(a) No Medical Advice. Nothing in the Platform constitutes medical advice, a medical diagnosis, a treatment recommendation, or a prescription for any health condition. All health-related Publications are provided for general informational purposes only.

(b) No FDA Evaluation. Statements regarding dietary supplements published through the Platform have not been evaluated by the U.S. Food and Drug Administration (“FDA”). Dietary supplements are not intended to diagnose, treat, cure, or prevent any disease.

(c) Professional Consultation Required. You are strongly encouraged to consult a licensed and qualified healthcare professional — including a physician, registered dietitian, pharmacist, or other credentialed practitioner — before using any dietary supplement, particularly if you are pregnant, nursing, have an existing medical condition, or are taking prescription medications.

(d) Individual Results May Vary. Any testimonials, success stories, or results described in the Platform reflect individual experiences and are not representative of typical outcomes. Individual results will vary based on a wide range of factors including age, health status, diet, exercise habits, and compliance with product instructions.

Section 10.5 — Emergency Medical Situations

The Platform is not designed or intended to provide emergency medical assistance. If you are experiencing a medical emergency, you must contact emergency services (911 in the United States) or proceed immediately to the nearest emergency medical facility. Do not rely on the Platform or any communication from the Company in connection with a medical emergency.

Section 10.6 — Security of Incidentally Received Health Information

In the event that the Company receives health information from you incidentally or inadvertently, such information will be subject to the same administrative, technical, and organizational safeguards described in Article XII of this Policy. The Company will not retain such information beyond the period reasonably necessary to address your communication and will take commercially reasonable steps to ensure its appropriate handling.

ARTICLE XI — YOUR STATUTORY PRIVACY RIGHTS

Section 11.1 — California Residents (CCPA / CPRA)

This Section applies to individuals who qualify as California residents under the California Consumer Privacy Act of 2018, as amended by the California Privacy Rights Act of 2020 (collectively, “CCPA”).

In the preceding twelve (12) months, the Company may have collected, disclosed for a business purpose, or sold or shared the following categories of personal information: Identifiers (name, email address, IP address, device identifiers); Internet or electronic-network activity information (browsing history, interaction data, email-engagement signals); Geolocation data (approximate location derived from IP address); Commercial information (products or services considered, purchasing tendencies); and Inferences drawn from the foregoing categories (preferences, behavioral characteristics).

This information reaches the Company through three channels: directly from you when you interact with the Platform; automatically through cookies, tracking pixels, and similar technologies; and from external providers including data brokers, co-registration partners, lead-generation services, and advertising partners.

Subject to applicable exceptions, California residents have the right to: know what personal information the Company holds and how it is used; access and receive a portable copy of that information; request its deletion; request correction of inaccurate data; opt out of any sale or sharing; limit the use of sensitive personal information where applicable; and exercise all foregoing rights without discriminatory or retaliatory consequence.

To submit a verifiable consumer request, email support@harborwealth.com with the subject line “California Privacy Rights Request.” The Company will acknowledge receipt within ten (10) business days and endeavor to respond substantively within forty-five (45) calendar days, with a possible forty-five (45) day extension upon notice. Identity verification may be required. Authorized agents must present written authorization and proof of identity.

To opt out of any disclosure constituting a “sale” or “sharing” under the CCPA, email support@harborwealth.com or activate any “Do Not Sell or Share My Personal Information” link on the Platform. The Company honors Global Privacy Control (“GPC”) signals received from California IP addresses as valid opt-out requests.

Under California Civil Code § 1798.83 (Shine the Light), you may request information about disclosures of personal information to third parties for their direct-marketing purposes by writing to support@harborwealth.com.

Section 11.2 — Nevada Residents

Nevada residents may direct the Company not to sell covered information as defined under Nevada Revised Statutes Chapter 603A by contacting support@harborwealth.com.

Section 11.3 — Residents of Other U.S. States

If you reside in a U.S. state that has enacted comprehensive consumer privacy legislation, you may have legally enforceable rights regarding your personal information, including the right to access, correct, or delete that information, to receive it in a portable format, and to opt out of its use for targeted advertising or its sale. The Company honors these rights to the extent required by the applicable law of your state of residence. To submit a request, email support@harborwealth.com.

Section 11.4 — European Economic Area, United Kingdom, and Switzerland

Where the GDPR, UK GDPR, or Swiss Federal Act on Data Protection governs the Company’s processing of your personal data, you may have the right to: access your personal data; rectify inaccuracies; request erasure in qualifying circumstances; restrict processing; receive your data in a portable format; object to processing based on legitimate interests or for direct-marketing purposes; and withdraw consent at any time without affecting the lawfulness of prior processing. Address rights requests to support@harborwealth.com. The Company will respond within the period prescribed by law — generally one month, subject to extension. You retain the right to lodge a complaint with your local supervisory authority.

Section 11.5 — Canadian Residents

To the extent that Canada’s Personal Information Protection and Electronic Documents Act (“PIPEDA”) or applicable provincial privacy legislation governs the Company’s activities, Canadian residents may access, correct, and withdraw consent regarding their personal information, subject to legal and contractual limitations. Canada’s Anti-Spam Legislation (“CASL”) may impose supplementary requirements on commercial electronic messages directed at Canadian recipients. Contact support@harborwealth.com. for inquiries or to exercise applicable rights.

ARTICLE XII — DATA RETENTION AND SECURITY

Section 12.1 — Retention Periods

The Company retains personal information only for as long as reasonably necessary to fulfill the purposes for which it was collected, or as required by applicable law. In calibrating retention periods, the Company considers the nature and sensitivity of the data, applicable legal, regulatory, tax, and accounting obligations, dispute-resolution and enforcement needs, and fraud-prevention requirements.

Section 12.2 — Security Safeguards

The Company maintains a layered security program incorporating technical safeguards (including transport-layer encryption (TLS/SSL) for data in transit, role-based access controls, and multi-factor authentication), administrative safeguards (including security policies, staff training, and access reviews), and organizational safeguards (including vendor security assessments and incident-response planning).

No electronic system is entirely immune to intrusion or unauthorized access. The Company does not guarantee the absolute security of personal information. Information you transmit to the Company traverses public networks outside the Company’s control, and you do so at your own risk. The Company is not liable for security incidents arising from circumstances beyond its commercially reasonable control.

Section 12.3 — Breach Notification

In the event that a security incident involving personal information triggers mandatory notification obligations under applicable federal or state law — including applicable state data-breach notification statutes — the Company will notify affected individuals and relevant regulatory authorities within the timeframes and through the procedures those statutes require.

ARTICLE XIII — ARTIFICIAL INTELLIGENCE IN CONTENT PRODUCTION

The Company may employ AI-assisted writing and editing tools, including large language models, in the preparation of Publications distributed through the Platform. These tools support editorial efficiency but do not replace the judgment of the Company’s editorial staff. All Publications are reviewed by a staff member with relevant subject-matter familiarity before publication.

Notwithstanding this review process, AI-assisted Publications may contain errors, omissions, outdated information, or statements that do not reflect the most current medical or scientific developments. Publications are not a substitute for advice from qualified healthcare professionals, and users should independently evaluate health-related information before acting upon it. The Company does not operate automated systems that make profiling-based decisions with legal or similarly significant consequences for individual users.

ARTICLE XIV — INTERNATIONAL DATA TRANSFERS

The Platform is administered from the United States. If you access it from outside the United States, your personal information will be transferred to and stored in the United States and potentially in other jurisdictions where the Company, its affiliates, or its service providers maintain facilities. Data-protection standards in those jurisdictions may differ from — and may offer less protection than — those of your country of residence. By using the Platform, you expressly consent to these transfers.

Where the GDPR or other international data-protection frameworks require specific safeguards for cross-border data transfers, the Company will implement appropriate mechanisms as required by law, which may include the European Commission’s Standard Contractual Clauses or other recognized transfer instruments.

ARTICLE XV — REGULATORY SCOPE, ACCESSIBILITY, AND MISCELLANEOUS

Section 15.1 — Regulatory Scope Limitation

The Company is organized and operates under the laws of the United States. To the extent this Policy references data-protection frameworks of other jurisdictions, such references are included on a conditional basis and are operative only where and to the extent the referenced framework independently applies to the Company’s processing activities. Nothing in this Policy constitutes a voluntary submission to the jurisdiction of any foreign data-protection authority or a waiver of any jurisdictional defense otherwise available to the Company.

Section 15.2 — Accessibility

The Company is committed to making the Platform and this Policy reasonably accessible to individuals with disabilities, consistent with applicable standards including the Americans with Disabilities Act. If you encounter accessibility barriers, please contact support@harborwealth.com.

Section 15.3 — Amendments to This Policy

The Company reserves the right to modify, amend, or update this Policy at any time, in its sole discretion, without prior notice. Changes take effect upon publication of the revised Policy on the Platform bearing a new “Last Revised” date. Your continued use of the Platform after any revision constitutes your acceptance of the updated Policy. Where applicable law requires affirmative notice of material changes, the Company will provide such notice through the Platform or by other appropriate means.

ARTICLE XVI — CONTACT INFORMATION

Questions, concerns, or requests regarding this Policy or the Company’s data-handling practices should be directed to:

Harbor Wealth LLC
136 E 2nd St
Casper, Wyoming, 82601, United States
Electronic Mail: support@harborwealth.com
Telephone: +1 (307) 223-7386

© 2026 Harbor Wealth LLC. All rights reserved.