This Data Protection Guidance is designed to give employees who handle data an understanding of the legal requirements and procedures Meridian must follow to ensure compliance with data protection regulations, such as General Data Protection Regulation (GDPR), Health Insurance Portability and Accountability Act (HIPAA), Gramm-Leach-Bliley Act (GLBA), and California Consumer Privacy Act (CCPA). No matter how data is collected, stored, recorded, and used (e.g., on a computer, other digital media, hard copy paper, or images), personal information must be managed properly to ensure compliance. This Guidance provides instructions, guidelines, and best practices on how to implement required policies and procedures related to data protection regulations and should be read in conjunction with Meridian’s Data Protection Policy and Privacy Policy.
See attachment for full Guidance.