Trustzone is different, although it can be used to wall things off from the user (and their viruses) it's more of a secure hypervisor, or way of constructing a TPM-equivalent that shares chip resources.
If you have control over the boot process on an ARM chip, you don't have to enable Trustzone.
If you have control over the boot process on an ARM chip, you don't have to enable Trustzone.