Loading...
Answers
MenuWe're developing a web product with a team of 10 developers. How can I protect my source code if anyone leaves the company?
What can I do to protect my tech IP so that any developer leaving the company can't steal the source code?
Also, I want to give laptops to my team members so that they can work from their home, however I am not sure what process I should follow to protect my tech assets.
Answers
If you're using source control, it's easy to track source and control access — or revoke access — if someone leaves the company.
Also, your developers should have signed a contract about the project itself that clearly places the source code under your/the client's/the company's control, and if/when they leave, they release all rights to code created under that contract.
You can never be 100% sure, but these small steps will at least ensure a legal high ground should anyone steal code.
Good luck!
I have intern for a company that sees a lot of developers for projects, along with a different company that was very strict with VPN access.
First of all: contract, contract, contract. Non-compete and NDA at the least. We can have all of the security protection in the world, but if you don't put in legal writing that the IP and any code that you write for the project belongs to them (including anything written on the machine you provide), then there's no legal bounds for stealing the code.
One common way is to minimize local files on the computer; if an employee steals the computer, all of the files could be there. Host that on a secure server with authentication. You can also add another layer of protection with VPN access to the server. Doing this, you don't have public access to the server that hosts your code. Hard drive encryption also protects the employee and yourself from theft; even if the computer is stolen, BitLocker will render that data useless when the thief tries to take the laptop out the computer.
There are many many other mechanisms you can have in place, but that should get you started about the mindset you'll need to protect your source code.
What programming languages are using ? What operating system ?
If you are on windows platform , you can enforce security so the devices and operating system. If you are using Microsoft compatible programming languages, you can use TFS as a source control and ticketing system. You can also use token based systems / cisco vpns and enforce security policies so that users can only use the internal servers / network to commit the code. ( Your IT Department security consultant can help with that ) .
If platform level security can't be guaranteed, you can still use distributed source controls, like GIT or SVN. Software management systems, like Jira or Versionone, can be used for the ticketing, and you can use smart commits for every commit, to help link code on feature basis . That also can be a base for a future plan for implenting TDD and continuous integration .
Finally, your team should be singing an NDA and make sure you work with people with work ethics. Motivate your team to be your asset and grow with you. This is your 100% guarantee.
Let me know if you need more help. .
Good Luck!
As everyone has mentioned , it all starts with your NDA and your employment agreement. Next keeping a highly motivated team that has a healthy culture of ethics. Finally from an architecture perspective you might be well advised to figure out a way to modularize things so not all people get all source. There are ways to do this which can be a benefit to the system you are making, the teams and responsibilities of the staff as well as a physical separation of concerns and access to help mitigate your problem of code availability.
Good luck!
Protecting the source code isn't trivial, since there are plenty of ways to get access to it, one way or the other, with the right motivation.
Step one is NDAs and non-competes, so that you can protect the IP if needed, in extreme cases.
Step two is hiring people with certain reputation. A lot of the good developers are involved with communities of some sort - related to the programming platform or something else. They maintain GitHub profiles and use other methods to be respectable in their niche. Those people are less likely to turn against you and perform shady activities, since their reputation can also be affected.
Step three is communication. Most of the internal conflicts happen due to the lack of proper communication - people getting rejected in a rude way, or not treated properly. Whatever happens over the months (years) can be communicated properly. Even if you part ways one day, it would be clear what the reason is, and it will be justifiable.
Most conflicts happen after a serious company drama that escalated with time, and with the right contract and attitude they could be prevented as well.
Legally or physically?
Unfortunately, the reality is that you just have to assume that everyone who has access to your code has a copy of it on their home PC. They probably don't, but there's very little that you can do to stop them if they wanted to. Think of it this way - have you ever met someone in sales who didn't have a copy their rolodex and some good sample contracts at all times?
The "good" news here is that just having IP is not enough. Software development is so fast and efficient these days that even starting with code, unless you have some very particular formulae (and if you do you should keep them somewhere else with limited access to that code), most of your code is not particularly relevant. To anyone wishing to compete with you its probably fairly simple to copy your product, but much harder to copy the business itself. If you have reasonable employment agreements you can probably make the risk of copying greater than the benefit that a new competitor would get by doing so, and that's often the best you can do.
That's both a blessing and a curse. I've started a few successful "product" companies that relied on SaaS software and would be happy to discuss it further if you like.
As a startup founder, I have the same problem as you do. I researched online and found very few tools (https://ontoborn.com/ontoarmour) that solve this problem.
Related Questions
-
What is the best platform for the B2B technology market? We are using LinkedIn & Google Ads right now with poor conversion for sign-ups.
Quora to show subject matter expertise and 'nurture' your relationship with cold leads to generate more educated and eager signups. We did an episode on Quora marketing: (https://anchor.fm/marketing-automation/episodes/A-Quick-Intro-To-Quora-Marketing---General-Strategy-e1vlpr/a-a4noru) https://youtu.be/X9Akg7Z-KPI?rel=0 In fact, Quora is getting pretty busy due to the fact people like me have gotten very good at marketing on Quora. The ‘white hat’ version of this is below. I consult with founders and marketers to help them execute on this very strategy to help grow their personal brands which inevitably grows their business. The name of the game for marketing on Quora is showing THOUGHT LEADERSHIP (https://right2revenue.com/managed-thought-leader-creation-program/). This will result in: 1. More credibility to whatever you promote anywhere. 2. Recognition of your brand (it shows up next to your name if you edit your tagline correctly). 3. Targeted and educated traffic to your landing pages. Here are the steps in this thought leadership strategy: **Step 1 = Choose a topic** * Strategy: I start with the focus keyword for your product/service. For an example, I am about to focus my attention on the keyword “thought leadership” because I want to find those most-interested in building their personal brand recognition and credibility in a field (i.e. a Quora topic). For a founder of a SaaS tool, this would probably be the pain point your tool solves - the search term that you want to get traffic from. **Step 2 = Create a sheet with question links, total answers, views of the top answer, average views per answer (if you have time), and followers.** * Strategy: You need a formatted database of the potential for your content on quora so you can prioritize your time. * How data-miner, but I employ a team of data specialists trained in grabbing the right content from the right places on Quora (https://right2revenue.com/product-category/data-enrichment/), and then going about enriching that data to grab linkedin profiles and email addresses. **Step 3 = Answer them in a google doc** * Strategy: This is so you can make copies of the content and turn it into multiple types - i.e. a linkedin article, an article for your blog, a number of tweets… Also, if you have collaborators (editors), you can simply give them access to this doc. * How: Simply create the doc and share it. One doc per question. **Step 4 = Edit and publish related answers as an article on your blog** * Strategy: You want to have it on your blog and indexed first so you have attribution and the chance to outrank the quora question with the same headline, or at least be close to it. * How: Add the version of your answer to your blog. **Step 5 = Submit that article URL to google to be indexed using your webmaster tools (search console)** * Strategy: As mentioned, you want google to crawl/index your answer on your site before they index the same text on quora. * How: Head to your webmaster tools (https://www.google.com/webmasters/tools/) **Step 6 = Bring your friends and colleagues into a Quora ‘Pod’** * Strategy: You need initial engagement to ensure exposure of your answers. The first 24 hours are key, so find a group of people who also publish on Quora and create your own pod. * How: Reach out to colleagues, ask if they answer questions on Quora. If so, start a WhatsApp or Telegram group and invite them. Post links and share there. **Step 7 = Publish the answers to Quora** * Strategy: Now that the answer is on your blog, go ahead and format it for Quora. A video is ideal, but at least add some images. * How: Head to http://Quora.com (http://quora.com/) **Step 8 = Share the links to the answers with your friends and colleagues.** * Strategy: This is where you post to your pod or email/message friends to engage immediately after posting. * How: Any way you prefer. Or... hire me to do it all for you :) ~~<>~~AG
-
How can I sell a product with someone else's IP?
If the person doesn't have a patent, trademark, or copyright on the thing you want to copy, then you can copy as much as you want. Current IP law in the USA is "first to file" (see: https://en.wikipedia.org/wiki/First_to_file_and_first_to_invent) If the person has any of those things, and you want to copy them legally then you have to ask them for a licence. If the person has any of those things, but doesn't have the money to sue you for infringement, then you might be able to copy it with legal repercussion. That wouldn't be very cool though.LV
-
What are the hottest technological innovation today that are investment-worthy?
Investors on the East Coast and West Coast are polar opposites. It's a generalization, since there is variation within those regions as well, but here are a few generalizations to help you play to your audience. BAY AREA: Big ideas (with some foundation under them) win, the kind of ideas that can produce 1000x+ returns. If the space is going to be owned by whichever company gets to market with a good product first and/or the value will be in billions if they own a huge market (think SnapChat). PHILLY/NYC/ETC: Great for biotech. For SaaS and other tech, focus less on "hottest" innovations and more on how to displace industry leaders in big markets (like SalesForce) with something that is simpler and solves a major pain point in a way that the industry leaders do not. IMPORTANT: Regardless of which region you plan to raise funds in, ignore what's "hot" and focus on where you have unique insight and experience. If you are an engineer, try Internet of Things or a startup catering to some engineer-heavy industry you're familiar with. If you're a doctor, don't try to start a social network for teens - start one for patients and their family/friends (another hot space), or something else highly related to your experience. If you have credibility in your space, your odds of success are MUCH higher, and therefore investors will be more eager to invest in you. If you want help identifying the right investors and creating a pitch deck that doesn't get thrown in the trash, schedule a call and I'll sign an NDA if we end up getting deep in the idea together.RD
-
Is it advisable to outsource to an agency to create our MVP? Are my security concerns unfounded?
It's not unusual at all. If you do outsource, try and make sure you have a project lead that you can trust. Once revenues get up to a certain point they might want to see the project through and come on board full time OR they will have enough pride in their work to make sure a proper transition takes place. As far as security, make sure you have an airtight non-disclosure/non-compete agreement with a penalty clause that includes financial remuneration.MM
-
Are hashtags helpful to increase Instagram followers?
Yes, you should use hashtags to solve the query. But, it also means finding the right hashtags to use. Here's some things to look for with hashtags and some other ideas for growing your following: 1. Find trending hashtags. If a hashtag is only used 100 times, it will be difficult to "get into the mix." Find popular and trending hashtags to add into. 2. Don't use one word hashtags that everyone else is using. Phrases as well as specific to your topic are better to get responses. Remember that what you use as hashtags appears in results and will get noticeability depending on your focused topic, meaning you need to have relevant information to your brand and images. 3. Engagement. Participate in others conversations and use hashtags. Even if you aren't following someone, engage with their pictures and use hashtags. This will drive more engagement to your profile then back to your Instagram account. 4. Use longer descriptions. Hashtags are great. They are even better when you write more as a caption for your picture. These also serve as a keyword base to help followers find you. 5. Brand. I suggest looking at some of the top influencers and looking at what they are doing. You will notice that their pictures are all the same color, tone and with similar content. Someone will follow you if you add value to their scroll. Make sure you stick out from the crowd. There's always more to do with Instagram. :) It's an incredibly powerful tool and it builds your recognition in ways that other social accounts can't. Be consistent with your posts and you will get the followers you want. Have more questions? I'm happy to help! Contact me if you would like more info.BH
the startups.com platform
Copyright © 2025 Startups.com. All rights reserved.