Compliance & Data Protection
Security & Compliance
Enterprise security and regulatory compliance for Accounts Receivable
Canadian Municipal Compliance
Municipal & Provincial Regulations
Purpose-built for Canadian municipalities, with full alignment to federal, provincial, and municipal legislation governing public-sector data management.
Ontario / Canada
The revenue recognition engine enforces PSAB Public Sector Accounting Standards Section 3510 for all receivable types — government transfers, exchange transactions, and unilateral transfers. Earned-vs-deferred recognition, multi-period allocation, and year-end accruals are all system-driven, producing PSAB-compliant financial statements without manual journal entries.
Ontario / Canada
Unpaid receivables eligible under the Municipal Act Section 398 can be added to the property tax roll through a structured workflow with appropriate approvals, debtor notification, property linkage verification, and automated GL transfer from AR to property tax subledger — ensuring full legal compliance and audit trail.
Ontario / Canada
Customer records, invoice data, and payment history are classified and handled in compliance with the Municipal Freedom of Information and Protection of Privacy Act. Access controls enforce need-to-know principles, data exports are audited, and privacy impact assessments are embedded in workflows involving personal financial information.
Ontario / Canada
Where applicable, personal information collected through the debtor self-service portal, payment processing, and customer communications is handled per the Personal Information Protection and Electronic Documents Act — with explicit consent management, purpose limitation, retention policies, and data breach notification procedures.
Ontario / Canada
All automated communications — invoice delivery, collection reminders, payment confirmations, and portal notifications — comply with Canada's Anti-Spam Legislation. Express consent is obtained and tracked, unsubscribe mechanisms are available for optional communications, and transactional messages are properly categorized as CASL-exempt.
Ontario / Canada
HST and GST calculations are automated per the Excise Tax Act for every invoice line item. Tax-exempt services, zero-rated supplies, and point-of-sale rebates are properly handled by revenue type. ITCs (Input Tax Credits) are trackable, and HST reporting aligns with CRA filing requirements for public bodies including the 68% rebate calculation.
Ontario / Canada
The collection workflow tracks statutory limitation periods under the Limitations Act, 2002. Aging alerts notify AR staff when receivables approach the two-year basic limitation period, enabling timely collection action, acknowledgment of debt documentation, or deliberate write-off decisions before legal recourse expires.
“Compliance is not a feature we bolted on after launch — it is the architectural foundation every line of code is written against. Canadian municipalities deserve a platform that treats their legislative obligations as first-class requirements.”
Civic Engineering
· Platform Architecture TeamRegulatory Compliance
Industry Frameworks
Beyond municipal legislation, satisfies internationally recognized compliance frameworks.
Customer financial data, payment information, and portal user records are processed in accordance with PIPEDA's fair information principles — with purpose-limited collection, accuracy maintenance, and security safeguards.
- Security controls implemented
Information classification on all customer and invoice records ensures appropriate handling under MFIPPA. Personal financial information is protected at rest (AES-256) and in transit (TLS 1.3). Access logging supports MFIPPA request responses.
- Security controls implemented
Revenue recognition, receivable measurement, allowance for doubtful accounts, and financial statement presentation follow PSAB standards. The system automates PS 3510 revenue classification and measurement, producing audit-ready schedules.
- Security controls implemented
Financial controls, segregation of duties, approval hierarchies, and reporting requirements align with Municipal Act provisions. Section 398 add-to-tax-roll workflows include all required procedural safeguards and debtor notification requirements.
- Security controls implemented
Data Sovereignty
Canadian Data Sovereignty — No Cross-Border Data Flow
Every byte of municipal financial data — customer records, invoices, payment information, collection files, and audit logs — remains in Canadian data centres. No cross-border processing, no foreign-government access, and no exceptions.
Hosting
Canadian Only
Centres
3 Redundant
Encryption
AES-256
Sovereignty
PIPEDA / MFIPPA
Platform Security
Security Capabilities
Click any capability to explore the technical details behind each security layer.
Auditability
Audit Trail Features
Every action is logged, timestamped, and immutable — providing the complete audit trail required by provincial legislation and municipal accountability standards.
Financial Transaction Register
Segregation of Duties Report
Customer Confirmation Letters
AR Aging Schedule — Audit Grade
Allowance for Doubtful Accounts
User Access & Permission Audit
Data Access & Export Log
Configuration Change History