Terms of Service

1. About Meridian Compass LLC

Meridian Compass LLC is an independent navigation and referral service that helps defense contractors understand their Cybersecurity Maturity Model Certification (CMMC) requirements and connect with certified assessment partners.

By using our website or engaging our services, you agree to these Terms of Service. If you do not agree, please do not use our website or services.

2. What We Are Not

It is important that users of our services understand the nature and limits of what Meridian Compass LLC provides. We are not any of the following:

3. Informational Nature of Our Guidance

All information, guidance, and recommendations provided by Meridian Compass LLC — whether through our website, the self-assessment tool, direct conversations, email correspondence, or any other medium — are provided for informational purposes only.

Our guidance does not constitute:

• — Legal advice or interpretation of law or regulation
• — Compliance advice or a formal compliance determination
• — Cybersecurity advice or a security posture assessment
• — A guarantee of any regulatory outcome

You should consult qualified legal, compliance, and cybersecurity professionals for advice specific to your situation. Our scoping conversations and self-assessment tool are starting points for further inquiry — not definitive determinations.

4. Our Referral Model and Compensation Disclosure

Meridian Compass LLC operates on a referral model. When we introduce a defense contractor to an assessment or remediation partner and that introduction results in a formal engagement, we may receive compensation from the partner organization.

This compensation model is:

• — Disclosed to all parties at the time of introduction.
• — Paid by the partner, not by the contractor. Our navigation services are provided at no direct cost to the defense contractor.
• — Not contingent on the scope or cost of the engagement recommended. We have no financial incentive to recommend a more expensive solution than you need.

This model is analogous to how independent insurance brokers or mortgage advisors operate — we work to match clients with the right partner for their situation, and we are compensated by the partner for that introduction.

5. Self-Assessment Tool

The CMMC self-assessment tool available on this website is designed to provide a preliminary, indicative picture of your likely CMMC requirements based on your responses to general questions.

The self-assessment tool:

• — Provides indicative guidance only and does not constitute a formal compliance determination.
• — Does not substitute for a formal CMMC assessment conducted by an authorized C3PAO.
• — Relies on the accuracy and completeness of information you provide. Results may be inaccurate if your responses are incomplete or imprecise.
• — Is intended as a starting point for a scoping conversation, not as a definitive answer to your compliance obligations.

6. No Guarantee of Certification Outcome

Meridian Compass LLC makes no representation or warranty that engaging our services, following our guidance, or being introduced to one of our assessment partners will result in CMMC certification or any other regulatory outcome.

CMMC certification is determined solely by the outcome of a formal assessment conducted by an authorized C3PAO based on the contractor's actual cybersecurity posture at the time of assessment. Certification depends on the contractor's own systems, policies, and practices — factors that are entirely outside Meridian Compass LLC's control.

7. Limitation of Liability

To the fullest extent permitted by applicable law, Meridian Compass LLC and its members, officers, employees, and agents shall not be liable for any indirect, incidental, special, consequential, or punitive damages arising out of or related to:

• — Your use of or reliance on information provided through our website or services.
• — Any failure to achieve CMMC certification or any other regulatory outcome.
• — Any actions taken or not taken based on our guidance or recommendations.
• — The performance, conduct, or services of any assessment or remediation partner to whom we have made an introduction.

Our total liability for any claim arising out of or related to these terms or our services shall not exceed the amount, if any, paid by you to Meridian Compass LLC in the twelve months preceding the claim.

8. Use of Artificial Intelligence

Meridian Compass LLC uses artificial intelligence tools in the creation and delivery of certain content, including but not limited to: website content, resource articles, self-assessment tools, readiness reports, and email communications.

While we make reasonable efforts to verify the accuracy of AI-assisted content against authoritative sources (including official DoD publications, the Federal Register, NIST standards, and Cyber AB guidance), AI-generated content may contain:

• — Inaccuracies, outdated information, or unintentional errors ("hallucinations") presented with apparent confidence.
• — Potential biases inherited from training data that may not reflect the most current regulatory interpretations.
• — Generalizations that may not apply to your specific compliance situation, contract requirements, or IT environment.

AI-assisted content is not a substitute for professional legal, compliance, or cybersecurity advice. All compliance decisions — including CMMC level determination, scope definition, and remediation strategy — should be validated by qualified professionals with knowledge of your specific environment.

Your readiness assessment results are generated algorithmically based on the information you provide and should be treated as a preliminary indicator, not a definitive compliance determination. Actual CMMC readiness can only be established through a formal assessment by an authorized C3PAO.

9. Intellectual Property

All content on this website, including text, graphics, layout, and assessment tools, is the property of Meridian Compass LLC and is protected by applicable intellectual property laws. You may not reproduce, distribute, or create derivative works from any content on this site without our prior written permission.

10. Governing Law

These Terms of Service are governed by and construed in accordance with the laws of the State of Wyoming, without regard to conflict of law principles. Any disputes arising under or related to these terms shall be subject to the exclusive jurisdiction of the courts located in Sheridan County, Wyoming.

11. Changes to These Terms

We may update these Terms of Service at any time. When we do, we will update the effective date at the top of this page. Continued use of our website or services after changes are posted constitutes your acceptance of the updated terms.

12. Contact

If you have questions about these Terms of Service, please contact us: