Security & Compliance

Your data is protected by a strong ISO security framework

We invest in the certifications, controls, and processes that help protect sensitive planning data, customer information, and cloud environments. This page explains what our ISO standards mean for your team, your data, and the way security is managed across Ratio.City.

What these standards cover

Three ISO certifications that strengthen trust

These certifications reflect how we manage organizational security, cloud-specific controls, and personal data protection in practice.

ISO 27001

Organizational security

Our information security management systems are audited and certified to international standards, covering governance, risk management, access controls, and incident response.

ISO 27017

Cloud services security

This standard adds cloud-specific controls to help ensure that our platform meets rigorous security requirements as a cloud service provider and user.

ISO 27018

Personal data protection

We follow internationally recognized practices for protecting personally identifiable information stored and processed in cloud environments.

What this means for customers

A stronger foundation for your data and workflows

Your data stays in Canada

Ratio.City operates in a Canadian cloud environment designed for organizations that care about data residency, governance, and trust.

Encryption and MFA are part of the baseline

Multi-factor authentication and strong encryption practices are built into how security is managed. They are not treated as optional extras.

Built for public-sector expectations

Our certification framework supports the needs of municipalities, planners, consultants, and teams working with sensitive project and policy information.

Clear processes when risk appears

Documented response procedures and operational controls help us act quickly and communicate clearly if an issue ever needs to be addressed.

There is no such thing as perfect digital security, but there are meaningful steps you can take to reduce risk. At Ratio.City and Esri Canada, we have invested in certifications and processes that support the way our customers work and the trust they place in us every day.
Erin Morrow, Co-Founder & President, Ratio.City
🗄️

Certified together with Esri Canada

Since joining Esri Canada’s Planning and Housing division, Ratio.City operates within a shared certification framework. ISO 27001, ISO 27017, and ISO 27018 apply across that environment, giving customers the confidence of an established GIS leader backed by a team that understands Canadian cities and planning workflows.

Security in practice

Explore the controls behind the certifications

Select a category below to see how security is applied across identity, endpoints, applications, and cloud operations.

👤

Identity and Access

Access to information should be intentional, role-based, and regularly reviewed.

  • Multi-factor authentication
  • Single sign-on support
  • Privilege access management
  • Password management
  • Role-based access control
  • Access audits

Questions about ISO or data security?

Talk to our team or explore a practical checklist.
or email us directly at hello@ratio.city
Contact us Read checklist