Skip to main content

Zen Mesh Trust

Zen Mesh helps teams generate, organize, retain, and export operational evidence for webhook delivery and event processing. This evidence can support your compliance programs — but Zen Mesh does not certify customer compliance, and is not itself certified against any framework.

Trust Areas

AreaDescription
Compliance CoverageHow Zen Mesh maps product evidence to common compliance frameworks
EvidenceValidation evidence, runtime evidence, export, and retention
SecuritySecurity controls, mTLS, HMAC, tenant isolation, cryptographic enrollment
SupportSupport channels, SLAs, and response expectations
Data HandlingEvent data, retention, and processing boundaries — documentation in development
SubprocessorsThird-party services used in the platform — documentation in development
LegalTerms of service, privacy policy — documentation in development

What Zen Mesh Trust Is

  • A public umbrella for transparency around security, compliance, evidence, and operations.
  • A framework for helping customers map operational evidence to their compliance programs.
  • A technical hardening initiative (CIS Benchmark alignment) where evidence exists.

What Zen Mesh Trust Is Not

  • SOC 2, ISO 27001, PCI DSS, HIPAA, FedRAMP, or any formal certification.
  • A compliance determination for your use of Zen Mesh.
  • A replacement for your own auditor, compliance team, or legal review.

How to Use This Section

  • Security / compliance reviewers — start with Compliance Coverage.
  • Operational evidence reviewers — start with Evidence then Security.
  • Procurement / legal reviewers — review Evidence export and retention; Data Handling, Subprocessors, and Legal documentation are in development.