Trust Center

Security & Trust for Local Government AI

Ordinal is built from the ground up for local government — which means governance, oversight, and accountability are built into the product from day one, not bolted on later.

Grid ImageGrid Image

AI that can explain itself

High-impact workflows require human approval. The system documents what happened, when, and who authorized it.

Your data stays yours

Resident data is never used to train AI models. US-hosted by default. Ownership is documented contractually.

Purpose-built governance

Human oversight, prompt injection testing, and explicit disclosure of AI capabilities and limits — because local government requires it.

If something goes wrong

Defined escalation timelines, documented notification decisions, and post-incident reviews, all on record.

Compliance Frameworks

Framework mappings available for customer review on request.

NIST CSF 2.0

CIS Controls v8.1 IG1

OWASP Top 10

OWASP Top 10 for LLMs

NIST AI RMF

NIST Privacy Framework

Security Controls

Line Image

Multi-factor authentication (MFA) for administrative access

Icon

Least-privilege access with named accounts

Icon

Access reviewed on a recurring basis

Icon

Encryption in transit (TLS)

Icon

Encryption at rest

Icon

Peer code review required before production deployment

Icon

Dependency & secrets scanning in CI/CD pipeline

Icon

Vulnerability scanning with risk-based remediation tracking

Icon

Documented change management process

Icon

Security awareness training for staff

Icon

Documented incident response process

Icon

Backup and restore with documented recovery targets

Icon

Data Governance

Line Image

Data residency

US-hosted by default

Customer data used for AI model training

Icon

Customer data ownership

Customer retains ownership

Data retention policy

Documented; configurable by agreement

Encryption at rest

Icon

Data deletion upon contract termination

Icon

Data export

Supported — within 15 business days

Subprocessor disclosure

Icon

Subprocessor oversight

Documented vendor risk management

AI Governance

Line Image

AI use cases and data boundaries documented

Icon

Human approval required for high-impact AI workflows

Icon

Prompt injection and sensitive disclosure testing

Icon

Hallucination-risk and quality review cadence

Icon

Model / provider change review before release

Icon

Customer-facing AI discloses capabilities and limits

Icon

Third-Party Certification

Ordinal does not currently hold SOC 2, FedRAMP, or ISO 27001 certification. We are actively building toward third-party audit readiness. Customers may request supporting documentation for their own diligence processes at any time.

Security review, vulnerability disclosure, or procurement diligence: security@ordinalforgov.com

Book Your Demo

Ready to see Ordinal in action? Book some time with our team and we’ll show you just how valuable this could be for you and your staff. 

Schedule Demo

Icon
Cta Image

We create innovative solutions that simplify complexities and empower success for communities everywhere.

HomeCompanyResources
City PlannersMayors & City ManagersEconomic DevelopmentInnovationInformation Technology (IT)
Trust CenterSupportTerms & ConditionsPrivacy Policy

Copyright 2025 - BreakGround Technologies