Cathedral understands its obligations in regard to data security and takes the necessary steps to ensure it. We adhere to, and comply with, regulations including but not limited to:

• Gramm-Leach-Bliley Act (GLBA)
• HIPAA and HITECH
• Sarbanes-Oxley Act (SOX)
• Massachusetts Privacy Law 201 CMR 17
• California Consumer Protection Act of 2018 (CCPA)
• Florida Section 282.318 F.S. Rule 60GG-2 F.A.C.

Production site security includes:

• Restricted access to buildings

• Closed-circuit recording and monitoring of facility entrances and production areas

• All guests registered and escorted

• No cell phones allowed in production

• Access controlled and recorded via key fob, programmed at employee level



• Damaged documents shredded on site