I wonder if there should be some set of standards that orgs can opt into and know that they will be audited for compliance? I am very sensitive to the tradeoffs here with being a small org that can move quickly, so maybe pledging to not to do these things could be like a higher level of certification for orgs large and secure enough to handle the overhead?
I wonder if there should be some set of standards that orgs can opt into and know that they will be audited for compliance? I am very sensitive to the tradeoffs here with being a small org that can move quickly, so maybe pledging to not to do these things could be like a higher level of certification for orgs large and secure enough to handle the overhead?
Yeah I think allowing people to sort into the kind of org they want to be a part of would be good.
This seems problematic, as small orgs that move fast are exactly a place where these things can cause problems.
I’m not really a fan of this as I expect this would result in things getting a lot more political.