Corporate wrench attack

alex

May 7, 2024 — 2 min read

I came across this blog series from Kin, a personal AI startup, about privacy in in personal AIs:

The first three parts were quite good, and do a decent job covering 1) why we should care about privacy for this use case, and 2) high level technical approaches used to preserve privacy while balancing usability tradeoffs. I'd recommend a read for anyone interested in the topic of data privacy inside and outside of AI.

My biggest issue is not with them specifically, but a trend I see across ~80-90% of startups with privacy as a core value: they focus only on the technical and gloss over the social-but-still-very-real ways that privacy can be compromised. At the end of the day, the company itself still a trusted party in the transaction, and a lot can go wrong. Off the top of my head:

CEO wakes up one day, decides privacy is overrated vs product velocity, and updates the system to undo a lot of the fancy encryption stuff so they can Move Faster(TM).
CEO gets hit by a truck, control of the company goes to a stakeholder, perhaps a family member, who is decidedly less privacy-friendly.
Company needs to juice revenue for a raise, decides they want the money from selling data, ideology be damned. Oh wait, that's not a hypothetical.
Company gets acquired and the acquirer decides that privacy is overrated and they'd rather have the money from selling data. Or they just decide to sunset the project because it's a pain to maintain and develop.

... And so on. It's the corporate version of the wrench attack. Even with a flawless technical implementation, all it takes is one human factor. Even if the code is fully public and attested, the median user is not going to read every update.

For all their faults, DAOs (remember when they were the "future of work" and the "death of the traditional firm"?) at least spent time thinking about the governance and legal structures that buttress the tech. The great shame is most of them, to my knowledge, spent so much time on governance that very little other value was delivered. Perhaps in the next crypto bull run?

Aspiration-first vs reality-first

Over the years I've noticed people seem to have two fundamental orientations towards goals: aspiration-first and reality-first. Aspiration-first thinking starts with an external or motivational stance. For example: "I need to lose 20 lb before summer to fit into my beach clothes / reach a certain BMI / etc&

App stores cause saasification

Yesterday I was editing a photo on my phone when I got hit with a prompt: $3.99/mo for premium features! It really feels like every software company and their mother wants to move to a subscription model these days. From a business standpoint, I get it: recurring revenue

RE aerial maps - SEO goggle edition

I spent a bit of time recently hacking on the mapbox api for the aerial amenities map idea. The good news: I was able to generate an image of a map with a couple of arbitrarily placed images (see appendix at the bottom). The less good news: it's

Nature in a Bottle

Here's a cute bit of interactive tech from Japan last week: 0:00 /0:20 1× This was in the Shinjuku Gyoen museum and meant to promote national parks and nature sites in Japan. There were a good handful of these bottles, each with clips several minutes long.

Read more

Aspiration-first vs reality-first

App stores cause saasification

RE aerial maps - SEO goggle edition

Nature in a Bottle