For Enterprise IT + Procurement Teams

AI IT support that passes procurement.

Built for the procurement-team test. SOC 2 + ISO 27001 + PIPEDA readiness self-assessments public. CAIQ-Lite + SIG-Lite + HECVAT-Lite prefilled. ISO 29147 vulnerability disclosure policy. PII redaction at the edge. Per-tenant audit log. White-label theming. Public Node + Python + Go SDKs.

Request enterprise packet Try ARIA — 15 min free

What enterprise procurement evaluators get on day 1

We have run the questionnaires before. The artifacts are ready.

Public assets evaluators can pull right now

SOC 2 readiness self-assessment

iisupp.net/soc2-readiness

ISO 27001 readiness self-assessment

iisupp.net/compliance/iso-27001-readiness

PIPEDA readiness self-assessment

iisupp.net/compliance/pipeda-readiness

Automated decisions notice (GDPR Art. 22)

iisupp.net/compliance/automated-decisions

Vulnerability disclosure policy

iisupp.net/security/disclosure

security.txt

iisupp.net/.well-known/security.txt

CAIQ-Lite prefilled

Cloud Security Alliance Consensus Assessments Initiative Questionnaire — Lite version prefilled for typical SMB / mid-market RFPs. Ready to share within hours of NDA.

Self-attested, evidence on request

SIG-Lite prefilled

Shared Assessments Standardized Information Gathering questionnaire — Lite version prefilled. Covers the 18 most-asked vendor security questions.

Self-attested, evidence on request

HECVAT-Lite prefilled

Higher Education Community Vendor Assessment Tool — Lite version prefilled for university IT evaluators. Ready for education vertical engagements.

Self-attested, evidence on request

Why ARIA passes the enterprise procurement test

Vendor sub-processor list public

Anthropic (LLM reasoning core), Netlify (hosting + functions + Blobs), Stripe (billing), Resend (transactional email). Each has its own SOC 2 + DPA. No surprises in your vendor risk review.

Encryption + PII redaction at the edge

TLS 1.2+ everywhere. AES-256 at rest. Per-edge PII redaction: emails, SSNs, SINs, credit cards (Luhn-validated), phones all scrubbed before any log entry. No customer data in vendor support tickets.

Per-tenant audit log + admin console

500-event-cap audit log per tenant. Admin-token-gated retrieval. Your compliance officer pulls on demand. White-label theming so the experience matches your brand internally.

BCP + DR documented

Business continuity plan published. Backup + recovery tested. RPO + RTO documented per service tier. Multi-region failover for serverless components.

Pen test + cyber insurance bindable on award

Pen test scoped specifically for the engagement (typical $5-15K, billed transparently). Cyber liability + E&O + CGL bindable within 5 business days of contract award.

Founder direct access for first 25 customers

Ahmad Wasee (founder, 15+ yrs IT operations) is the named technical account contact for the first 25 enterprise customers. After that, a customer success role we hire — but you keep founder-direct.

Documents we can produce within 48h of NDA

CAIQ-Lite (Cloud Security Alliance) — outputs/CAIQ-Lite-prefilled.md ready
SIG-Lite (Standardized Information Gathering) — outputs/SIG-Lite-prefilled.md ready
SOC 2 Type I control evidence package — current state self-assessment
ISO 27001 control crosswalk — /compliance/iso-27001-readiness
PIPEDA compliance attestation — /compliance/pipeda-readiness
Architecture + data-flow diagram (anonymized)
Vendor sub-processor list (Anthropic, Netlify, Stripe, Resend) with their respective DPAs
Insurance proof on award — Cyber Liability + E&O + CGL bindable within 5 business days of contract
BAA template (US healthcare-adjacent engagements)
VPAT 2.5 (US Section 508 accessibility — for US federal sub-prime work)
HECVAT Lite (education sector security questionnaire)
Founder bio + 15-year IT operations history — happy to provide W-9 / W-8BEN / Canadian equivalent on award

Pricing for enterprise

Public pricing at /plans. Enterprise pricing can be quoted per-seat or per-contract-year per your procurement standard. Multi-year commitments unlock locked-rate guarantees.

Small Business / Department

$156,000 USD/yr

Single department or small agency (under 250 users)

Mid-size / Multi-department

$312,000 USD/yr

Multi-department or regional rollout

Enterprise / Pan-Canadian

$625,000 USD/yr

Federal department or provincial network

Request enterprise packet Discuss our procurement fit