Delve It Till You Make It

The industry of automation and cutting corners couldn't have produced anything else:

Delve achieves its claim of being the fastest platform by producing fake evidence, generating auditor conclusions on behalf of certification mills that rubber stamp reports, and skipping major framework requirements while telling clients they have achieved 100% compliance. Their “US-based auditors” are Indian certification mills operating through empty US shells and mailbox agents. Auditors breach independence rules by signing off anyway, leaving companies unknowingly exposed to criminal liability under HIPAA and hefty fines under GDPR.

https://deepdelver.substack.com/p/delve-fake-compliance-as-a-service

And I can see why it happened. We now have a whole generation of people who think privacy and compliance are just annoyances standing between them and their “real job.” They don’t take it seriously and treat it as just another checkbox to tick because the compliance team asked for it. It was only a matter of time before these people started founding startups.

That’s exactly the problem here. And it will persist as long as people see privacy and compliance as something separate from the work they’re actually paid to do.

Compliance isn’t a hurdle to clear so you can move on. It’s part of the work.