Lesson from the Tea data leak: "Can't do evil" > "Won't do evil" Crypto made "can't do evil" possible for financial apps: devs can program exchanges, lending, or yield protocols all without operating as the intermediary. Apps with personal data needs to be next: devs should be able to program on user data without the liability of custodying such sensitive data. In the age of vibe coding, asking devs to learn and implement better opsec for user data is just unrealistic. Leveraging trusted execution environments & cryptography, we can build systems that enforce self-sovereignty of personal data.