Home Contact Sitemap Checkout


Home/About Us/Certification and Compliance Print This Page




Peace of mind

Learn more about the security behind your workspace.

How we Keep your Data Safe

Highly Regulated Industries


Our primary focus is on meeting the needs of businesses operating in highly regulated industries. We serve health care providers, financial institutions, legal firms, and other industries that are legally required to comply with specific regulations regarding their business operations.


These industries value the storage and retention of critical data in addition to security and data management practices. As a business trusted to service the IT needs of these industries, we follow the same strict policies of secure storage and data retention.

Trustworthy Systems & Operations


Regulatory compliance, internal audits, and certification are extremely important factors to evaluate when choosing a hosted service provider.


Because you place your most critical applications and data in the charge of a third-party service provider, you must be able to trust their systems and operations. Our operations and systems are audited and certified to ensure an environment that can be trusted.







The Value of Independent Certification


A breach of privacy or security could lead to a costly and time-consuming replacement of, or search for critical information. Failure to comply with regulations stipulates costly fees.


Most importantly, a breach could result in the loss of reputation and goodwill, a priceless asset that is often impossible to replace and could ultimately lead to the loss of your business. Ensure that you thoroughly research your service provider and their certification.

Operations in Canada


NIRIX is a local Canadian company that hosts the core oneWorkspace 365® platform:


  • Hosted in Canada
  • Canadian owned datacenters
  • Employ Canadian staff

We Maintain the 3 Leading Certifications and Compliances

SSAE 16, ISAE 3402 & CSAE 3416 Compliance & Certification

SSAE 16, ISAE 3402, and CSAE 3416 define the professional standards, including requirements regarding compliance, security and access, backup and recovery, computer operations, and facility infrastructure for service providers that manage customer data.


This is a standard set and overseen by the American Institute of Certified Public Accountants and the International Federation of Accountants. This certification signifies that a business has prepared the controls and related documents to prove its compliance with SSAE 16, ISAE 3402, and CSAE 3416.

After one year, the practices are audited to determine that the controls and system are time-tested compliant and then certification is awarded.


NIRIX’s data center holds SSAE 16, ISAE 3402, and CSAE 3416 certification. Holding this certification means that our data centers are fully capable of handling your business-critical data and systems with the greatest care and security, and has taken measure to greatly reduce the possibility of service disruption or potential security threats. Peace of mind comes with securing your services through NIRIX.

PCI DSS Compliance & Certification

Payment Card Industry (PCI) Compliance requires the observance of PCI Data Security Standard (DSS) policies and procedures concerning credit card account data security. All organizations that accept, store, process, or transmit credit card details must follow these standards.


This multidimensional security standard includes requirements for security management, policies, procedures, network architecture, software design, and other critical protective measures to ensure a controlled and secure environment for processing sensitive information.


NIRIX’s datacenters hold full PCI DSS Certification. This means that NIRIX customers have a secure platform, that follows third-party best practices for credit card processing, to build on and run their applications.

When choosing which cloud/hosting provider to outsource your IT services to, remember: a cheaper price does not always indicate the best deal. Ensuring due diligence in selecting a service provider with regulatory compliance is of the utmost importance and rests in your capable hands.


Do not let your critical systems and data get compromised by a service provider that cannot deliver the security specifications your business legally requires! 

OIPC Compliance

The Office of the Information and Privacy Commissioner of Alberta (OIPC) works to protect the privacy and rights of those in Alberta. While its jurisdiction is Alberta-based, the criteria for data privacy is founded on reliable data protection principles.

OICP is involved with the province’s handling of the Freedom of Information and Protection of Privacy (FOIP) Act, the Health Information Act (HIA), and the Personal Information Protection Act (PIPA). They monitor the acceptable use of data and safeguard the right to privacy.

All NIRIX cloud services have been submitted and accepted by the OIPC. This means they meet the high requirements for data protection.

Our Product

The eight-core design pillars of oneWorkspace 365.

Modern Platform

Design a technology platform specifically to address the challenges and needs of today and tomorrow.

Modern Applications

Design a technology platform that delivers new and innovative applications.

Modern Collaboration

Design a technology platform that enables better, more accessible, and more efficient team collaborations.

Modern Technology

Design a technology platform that uses the most modern technology to give your business a competitive edge.

Modern Protection

Design a technology platform with modern security to address the many vectors of modern cyberthreats.

Modern Analytics

Design a technology platform that delivers better insight and visibility of your business operation. 

Modern Workflow

Design a technology platform that helps your business streamline internal and external business workflows for the digital world.

Modern Workforce

Design a technology platform that attracts the next generation workforce that no longer wants to be restricted by traditional barriers.


Learn More