And at least in my mind associated with Maya rituals.

Yes some of them are sacred sites for the Mayan peoples.

I'm thinking GP is saying that maybe human sacrifice rituals aren't the best look for a medical tech startup?

Perhaps not a good look, but oddly fitting given the current state of affairs.

Advice to Australians - use this once you have your joint (bank) accounts sorted out, otherwise your life will get more difficult.

It may apply to some other services as well.

That's a little confusing because faux is pronounced fo or foe.

what i want are dumb cars.

Doesn't this bring the US in line with the EU, Australia, and I would assume a range of other countries ?

IIRC, wasnt this their stated intention from the beginning, along with a plan to virtually test against DNA?

Maybe it's my ignorant paranoia - but entering my google password into a login box produced by an app i just downloaded makes me nervous.

I am (mostly) sure it was doing a legitimate OAuth - but how can I tell?

I noticed the exact same thing and the fact it didn't pick up my login session in safari... which for me raised some alarm bells that this "could" be a nice ploy to grab my google credentials.

For this reason it was a hard no, I proceeded no further and deleted the app.

No problem, thanks for giving it a try. You're welcome to use the Google SSO, provided this gives you more assurance.

Happy to discuss any specific concerns or issues you had during your log in session.

You're welcome to use the Google SSO, handled by.. Google. Hopefully this gives you a bit more assurance.

I note that section 1.6 is "Comply with all industry security standards relevant to your business such as PCI DSS, HITRUST, ISO27001, and SSAE 18".

That looks larger than all the other requirements.

I think the intent here is to note that there may be business requirements about these that affect the security of your business.

For example, if anyone pays you through credit cards, PCI DSS is non-optional. Certain transactions of health information will require Hitrust. Without them, you won't be able to do business, and while they seem large (PCI DSS if you have another company handle the cards, is a very simple self-assessment.)

IME the human time cost and direct expense associated with obtaining HITRUST, even if you've already done SOC2, is roughly in line with buying a Lamborghini.

Yes, unsurprisingly, this is set up to protect incumbents that have collected all these certifications.

In many places, but not word (sadly).

word its CTRL-V then CTRL-T

I got into scheme, prolog, smalltalk, Haskell, and ocaml - without an academic background in those languages.

I dont find them useful commercially YMMV but I do think they stretch the way you program and I actually enjoy them more. Prolog is my favourite.