I've been developing an online platform for three years now, and it's fully deployed with client data and proprietary source code. I have concerns that if I were to become inactive for any reason, this important project might be lost. Is there a technical or procedural way to ensure someone can have emergency access if I don't respond for a certain time? However, I'm worried about giving emergency access to someone, even if I trust them, because I fear they could misuse it. I'm looking for advice on how to balance trust and risk in this setup. Also, are there communities or resources where I can find further guidance on this issue?
5 Answers
You might want to look into "Digital Estate Planning." It involves setting things up so that your loved ones can access important info after you've passed. It's not just about your project but also about easing the burden on those left behind. You don't need anything overly complex—just a straightforward plan like a last will and testament could work wonders.
There are a couple of methods that might help you. First, you could store the necessary info with a solicitor, specifying who gets access under what conditions. But if you're concerned about situations like ending up in a coma, consider a digital vault where you can keep sensitive information and share keys with the solicitor. Another option is a system that lets others request access after a set time. If you don’t respond, they gain access. It's like a dead man’s switch, where you need to confirm your status regularly.
Have you considered a 'Dead Man's Switch'? This method allows access to be granted only if you don’t check in regularly. Services like Google Inactive Account Manager or password managers like Bitwarden offer emergency access options. Instead of sharing raw credentials, store instructions and partial secrets, and make sure you test the system while you're still active to ensure it does what you need.
Thanks, that’s really helpful!
You might check out Iron Mountain for their code escrow services. Some vendors use this to ensure important data is secured properly. Just be aware that implementations can change if companies scale or shift their operations.
Remember that the trust issues and access problems can be handled separately. Options like time-delayed access mechanisms or sealed-envelope arrangements with a lawyer can grant conditional access without giving someone blanket permission. Only those who meet certain conditions would have access, reducing the risk of misuse.
Interesting, thanks for the heads-up!