About Zeph Tech
We build modular management software designed around how your organization actually operates — not the other way around.
Our Mission
Organizations of every kind deserve management software that works the way they do — not the other way around. Off-the-shelf solutions force compromises. Custom development costs a fortune. Per-seat licensing punishes teams for growing.
Zeph Tech exists to fix that. We build a fully modular Custom Management Solution that can be configured as a CMS, a CRM, an online document archive, a public records portal, a FOIA request system — or any combination of the above. Our flagship CME/CME+ offering extends the platform with PACS imaging, EDRS integration, toxicology and lab interfaces, evidence chain of custody, and death certification for coroner and medical examiner offices.
Every module is optional. Every deployment is configured to match your operations. We believe in honest pricing, data sovereignty, and software that serves the organization — not the other way around.
What We Offer
Document Archive
EssentialsSecure, searchable online document repository with role-based access, version control, and retention scheduling.
Public Portal
EssentialsPublic-facing records portal with search, FOIA request workflow, and configurable disclosure rules.
Case Management
ProfessionalFull case lifecycle management with intake, tasks, workflows, reporting, CRM, and document management.
CME / CME+
EnterpriseOur flagship offering — purpose-built for ME/C offices with forensic imaging, evidence, toxicology, death certificates, and more.
Where We Are
We're transparent about where we are in development:
Platform & UI
Fully designed and built. Live demo available with all modules.
Backend / API
75+ production endpoints. Authentication, cases, documents, RBAC, and audit chain.
Third-Party Integrations
HL7 (lab), DICOM (imaging), and state EDRS adapters are in progress.
First Production Deployment
Targeted Q3 2026 with our first pilot partner organization.
General Availability
Broader availability following successful pilot deployments.
Security Accreditations & Process Maturity
These are self-assessments against published frameworks, backed by verifiable artifacts in our codebase and documentation. We document gaps honestly. Full security posture →
45 CFR Part 164
HIPAA Security Rule
24 of 25 applicable technical and administrative controls implemented.
v5.9.2 (FBI)
CJIS Security Policy
Advanced authentication, AES-256 encryption, immutable audit trail, RBAC with least privilege.
Annex A Controls
ISO 27001:2022
58 of 66 applicable controls substantially or fully addressed.
February 2024
NIST CSF 2.0
76 of 82 scoped controls addressed. IS policy, risk register, and incident catalog in place.
Theoris V3.0 Worksheet
CMMI-DEV Level 3
Score places Zeph CMS in the Level 3 — Defined band. All 5 categories scored.
Cloud Security Alliance
CSA STAR Level 1
Registered on the Cloud Security Alliance STAR registry.
Proof of Work — By the Numbers
Licensing: BSL 1.1
Zeph is released under the Business Source License 1.1 (BSL 1.1). Here's what that means for your organization:
- Auditable codebase — licensed customers can review and verify the source code. No black boxes.
- Converts to Apache 2.0 four years after the initial commercial release — fully open source.
- No vendor lock-in — when the license converts, you own a fully auditable, open-source system.
Licensed under the Business Source License 1.1. Full license text available upon request.
Our Values
Your Data, Your Control
Your data belongs to your organization. Encrypted, isolated per tenant, fully exportable, and never sold or shared.
Honest Pricing
No surprise fees, no per-seat penalties. Pricing is straightforward and based on what your organization actually needs.
No Vendor Lock-In
BSL 1.1 means you can audit the code today, and own it outright when it converts to Apache 2.0.
Partnership, Not Just Sales
We're building this with our pilot partners, not just for them. Your feedback shapes the product.