Compliance & Data Protection
Compliance & Security
Civic CMS is built from the ground up to meet the specific legislative, regulatory, and accessibility requirements that Canadian municipalities must satisfy. WCAG 2.1 AA compliance is enforced structurally — not checked after the fact. Delivered as a full source code licence, your municipality retains complete control over the deployment, data, and security posture.
Canadian Municipal Compliance
Municipal & Provincial Regulations
Purpose-built for Canadian municipalities, with full alignment to federal, provincial, and municipal legislation governing public-sector data management.
Ontario
Full compliance with legislative requirements for public posting and records management. Council meeting agendas, minutes, by-laws, public notices, and other municipally required postings are published through structured content types with configurable retention schedules. AODA and bilingual publishing obligations met through template-enforced accessibility and synchronized EN/FR publication.
Ontario
Complete audit trail of all content creation, editing, approval, and publication events with user identity, timestamp, and action detail. Privacy-compliant built-in analytics — no third-party scripts, no personal data collected from website visitors without consent. Content containing personal information is managed with access controls and role-scoped permissions.
Ontario
WCAG 2.1 AA compliance structurally enforced across all published pages, content blocks, templates, and navigation elements. Accessible Template System (spec 4.1) ensures proper heading hierarchy, colour contrast validation (4.5:1 normal text, 3:1 large text), keyboard navigation, and focus management. Content Accessibility Checker (spec 4.2) blocks publication of pages with critical accessibility issues. Target: 100% WCAG 2.1 AA compliance across all published content.
Canada (Federal)
Website visitor privacy enforced by design — no external tracking scripts, no third-party analytics cookies. Digital forms (spec 9) include consent management for data collection. Privacy policy publishing workflows ensure up-to-date privacy notices. Cookie consent management for any optional analytics or functionality.
Canada (Federal)
Subscription Manager (spec 3.4) enforces CASL compliance for all notification subscriptions. Express and implied consent tracking with 2-year implied consent expiry. Unsubscribe processing within 10 business days. All notification templates classified as transactional (CASL-exempt) or commercial (requires consent). Immutable consent ledger for audit trail.
Ontario
Alignment with the Ontario government's cybersecurity standards for public sector organizations including risk assessment, incident response, and continuous monitoring. CMS infrastructure hardened against OWASP Top 10 web application vulnerabilities including XSS, CSRF, and SQL injection.
Canada (Federal)
Infrastructure and operational controls aligned with the Government of Canada's cloud adoption guardrails for Protected B data classification, including Canadian data residency and encryption requirements. All website data and visitor analytics stored exclusively within Canadian borders.
“Compliance is not a feature we bolted on after launch — it is the architectural foundation every line of code is written against. Canadian municipalities deserve a platform that treats their legislative obligations as first-class requirements.”
Civic Engineering
· Platform Architecture TeamRegulatory Compliance
Industry Frameworks
Beyond municipal legislation, satisfies internationally recognized compliance frameworks.
Ontario legislation mandating web accessibility for public sector organizations. WCAG 2.1 AA is the internationally recognized standard enforced by AODA. Civic CMS structurally enforces compliance rather than relying on manual audits.
- Accessible Template System (spec 4.1) enforces heading hierarchy, colour contrast, keyboard navigation, and focus management in all templates
- Content Accessibility Checker (spec 4.2) validates every element before publication — alt text, heading structure, link text, table structure, language declarations
- Critical accessibility issues block publication until resolved — compliance is structural, not aspirational
- Document accessibility validation for uploaded PDFs with remediation queue for non-compliant documents
- VPAT (Voluntary Product Accessibility Template) available for third-party compliance verification
- Colour palette validation prevents administrators from configuring themes that violate contrast requirements
Ontario legislation governing access to municipal records and protection of personal privacy. Civic CMS maintains complete audit logs of all content and administrative actions for MFIPPA compliance.
- Complete audit trail of all content creation, editing, approval, workflow, and publication actions
- User identity, timestamp, IP address, and action detail logged for every CMS operation
- Content version history with full revision comparison (diff view) for disclosure response
- Role-based access controls ensure content authors access only their department's content
- Privacy-compliant analytics — no personal visitor data collected without consent
Federal legislation governing commercial electronic messages. The Subscription Manager (spec 3.4) enforces CASL compliance for all notification capabilities.
- Express and implied consent tracking with automatic 2-year implied consent expiry
- Template classification — transactional (CASL-exempt) vs. commercial (requires consent)
- Unsubscribe processing within 10 business days with confirmation
- Re-consent outreach 30 days before implied consent expiry
- Immutable consent ledger for audit trail — consent records cannot be modified or deleted
Provincial legislation establishing requirements for public posting of municipal information. Civic CMS provides structured content types for legislatively required postings.
- Structured content types for council agendas, minutes, by-laws, public notices, and reports
- Configurable retention schedules per content type aligned with municipal records management guidelines
- Bilingual publishing workflows ensuring EN/FR compliance for municipalities with bilingual obligations
- Version history maintained for all published content with audit trail
- Public inspection compliance — legislatively required content published with appropriate retention
- PDF/A archival export for long-term record preservation
Data Sovereignty
Canadian Data Residency
All Civic CMS data — website content, media assets, visitor analytics, form submissions, and configuration — is stored and processed exclusively within Canadian borders. With a full source code licence, municipalities can deploy on their own infrastructure or approved Canadian cloud providers — ensuring no website data or citizen interaction data is transferred to, stored in, or accessible from infrastructure located outside of Canada.
Hosting
Canadian Only
Centres
3 Redundant
Encryption
AES-256
Sovereignty
PIPEDA / MFIPPA
Platform Security
Security Capabilities
Click any capability to explore the technical details behind each security layer.
Auditability
Audit Trail Features
Every action is logged, timestamped, and immutable — providing the complete audit trail required by provincial legislation and municipal accountability standards.
Every content action logged with user, timestamp, IP address, and action type (create/edit/approve/publish/unpublish/delete/schedule)
Every content modification logged with full version history and revision comparison (diff view)
Every administrative action logged — role changes, permission modifications, theme changes, configuration updates
Every login and authentication event logged including SSO assertions, MFA challenges, and session management events
Exportable audit reports filtered by user, date range, content type, department, and action
Immutable audit log — entries cannot be modified or deleted by any user role including system administrators
Configurable audit data retention periods meeting provincial requirements (minimum 7 years, default 10 years)
Real-time anomaly alerting: mass content deletion, unauthorized template changes, suspicious login patterns, privilege escalation attempts