Consider the following use cases, and a hypothetical scenario of what would happen normally in an organization which does not solve these explicitly
- A developer wants to convert sensitive doc from base64 to plain text
- people go to public websites & paste PII data due to ignorance
- People want to shorten links and create bookmarks. for example company.links/mis should take you to the data analytics platform
- everyone creates there own set of bookmarks, and migrations to new domains are essentially messages on public channels etc..
- Dashboard of all internal services
- bookmarks again
- People want to chat using ChatGPT / Claude
- they user either personal accounts with their own configuration
- Marketing wants to transcribe a un-released, probably sensitive video and extract text
- upload to some website which offers a free tier
- Convert & Join PDFs
- some random online tools
- Share files between devices
- personal whatsapp or telegram would be used
There are many other use cases where employees default to their own preferred method without really thinking about data security
Instead if the company opts to run a small server under a VPN, then for each of these problems, there is a nice solution which is data sec friendly
Here is how it would look like in a world where the company uses something like runTipi to self host inside a VPN
- A developer wants to convert sensitive doc from base64 to plain text
- People want to shorten links and create bookmarks. for example company.links/mis should take you to the data analytics platform
- Dashboard of all internal services
- People want to chat using ChatGPT / Claude
- Marketing wants to transcribe a un-released, probably sensitive video and extract text
- Convert & Join PDFs
- Share files between devices
- Something along the lines of Send
The organization can have its own universe of self hosted & well designed tooling which solves these problems really well.
More importantly, self hosting is deemed to be too scary. I disagree. Its actually very much doable with the current compute speeds and docker based backups.
Companies should give it a honest shot at a small scale to start with and see how it goes.