Integrated IT Support · Trust Center

Compliance & Trust

ARIA and Integrated IT Support meet enterprise procurement requirements across ISO 27001, SOC 2, PIPEDA, and GDPR Article 22. Below are our current posture, self-assessment tools, and policy disclosures.

Current posture

HostingNetlify (SOC 2 Type II)
Data residencyUS/EU edge · Canadian tenant routing on request
Encryption in transitTLS 1.2+ (monitored daily)
Encryption at restAES-256 (Netlify Blobs)
PII redactionAt the edge (email, SIN/SSN, card, phone)
Tenant isolationPer-tenant audit logs · automated SOC 2 self-test
Vulnerability disclosureActive program · security/disclosure
SOC 2 auditSelf-assessment complete · Type II planned on-award
ISO 27001 certificationSelf-assessment complete · roadmap on-award
PIPEDA complianceSelf-assessment complete
GDPR Article 22Automated-decision notice published

Self-assessment tools

SOC 2 · AICPA TSC

SOC 2 Readiness Self-Assessment

Track readiness across Common Criteria (CC1-CC9) + Availability, Confidentiality, Processing Integrity, Privacy. Progress saved locally. Export when engaging an auditor.

Open tool →
ISO 27001 · Annex A

ISO 27001 Readiness Self-Assessment

Walk through Annex A controls: organizational (A.5), people (A.6), physical (A.7), technological (A.8). Score tracked per domain.

Open tool →
PIPEDA · Canada

PIPEDA Readiness Self-Assessment

Personal Information Protection and Electronic Documents Act self-assessment for Canadian organizations. 10 fair information principles.

Open tool →
GDPR Art. 22 · PIPEDA

Automated Decision-Making Notice

What ARIA decides automatically, what it doesn't, your rights under GDPR Article 22 and PIPEDA, opt-out path, model disclosure, audit logging.

Read notice →

Pre-filled questionnaires (for procurement)

CAIQ-Lite (Cloud Security Alliance) SIG-Lite (Shared Assessments) SOC 2 controls self-assessment

Policies

Privacy Policy Terms of Service AI Governance Vulnerability Disclosure Program security.txt

How to request more

For SIG-Full, vendor risk questionnaires, DPAs, or a Type II report scoped to your procurement timeline: email ahmad.wasee@iisupp.net or book a 15-min call at iisupp.net/book.

Integrated IT Support Inc. · D-U-N-S 241726397 · 30 Fothergill Crt, Whitby ON L1P 1L4, Canada
Last updated 2026-06-18. Compliance posture verified daily via automated self-tests.