Skip to content

Terms of Use

Effective date: May 2026
Last updated: May 2026
Contact: info@oztp.org

The Short Version

OZTP provides free, open source Zero Trust guidance and tools based on publicly recognized frameworks. We do not guarantee specific security outcomes. Using this site or our products does not make you compliant, breach-proof, or audit-ready — it helps you understand and pursue Zero Trust security maturity on your own terms.

What OZTP Is

The Open Zero Trust Project (OZTP) is an open source initiative that produces educational content, assessment tools, and software agents to help organizations implement Zero Trust security principles.

Our guidance is grounded in publicly recognized frameworks including:

  • NIST SP 800-207 — Zero Trust Architecture
  • CISA Zero Trust Maturity Model (ZTMM) v2
  • CIS Controls
  • ISO/IEC 27001

OZTP interprets and applies these frameworks — we do not represent, speak for, or hold any affiliation with the organizations that publish them.

No Guarantee of Security Outcomes

Use of this website, OZTP tools, Agent Zeta, or any associated content does not:

  • Guarantee that your organization is secure
  • Certify compliance with any regulatory standard (SOC 2, HIPAA, PCI DSS, FedRAMP, etc.)
  • Constitute a professional security assessment or audit
  • Substitute for the advice of a qualified information security professional

Security outcomes depend on your organization's specific environment, policies, personnel, and how controls are implemented and maintained. OZTP helps you understand and work toward Zero Trust maturity — the results depend on your execution.

Informational Use Only

All content on this site — including advisories, blog posts, framework mappings, checklists, and tool outputs — is provided for informational and educational purposes only. Nothing here constitutes legal, compliance, or professional security advice.

If your organization has specific regulatory obligations or is preparing for a formal audit, consult a qualified security professional or legal advisor.

Open Source Software — No Warranty

OZTP software is licensed under the Apache License 2.0. As stated in that license:

THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT.

By using OZTP tools, you accept the terms of the Apache 2.0 license.

Agent Zeta

Agent Zeta is an AI-assisted Zero Trust advisor. Its responses are generated by a large language model and are intended to help you think through ZT posture — they are not authoritative security findings. Do not share sensitive organizational data (credentials, PII, regulated data) in chat sessions.

Third-Party Frameworks and Content

References to third-party frameworks, standards, and publications (NIST, CISA, CIS, ISO, MITRE ATT&CK, etc.) are for informational context. OZTP does not hold endorsement from or official relationship with any of these organizations.

Changes to These Terms

If we make material changes, we will update the effective date at the top of this page. Continued use of the site or products after changes constitutes acceptance.

Contact

Questions about these terms:
info@oztp.org
Open Zero Trust Project