solidprivacy-nl commited on
Commit
6cc7111
·
1 Parent(s): dcbacd2

Add WP51 ICP and pricing hypothesis

Browse files
Files changed (1) hide show
  1. ICP_AND_PRICING_HYPOTHESIS.md +426 -0
ICP_AND_PRICING_HYPOTHESIS.md ADDED
@@ -0,0 +1,426 @@
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
1
+ # WP51 — ICP and pricing hypothesis
2
+
3
+ Status: business/design/documentation-only.
4
+
5
+ Repository: `solidprivacy-nl/scrub`
6
+
7
+ ## 1. Short summary
8
+
9
+ This document defines a first ICP and pricing hypothesis for SolidPrivacy Scrub after WP50.
10
+
11
+ The hypothesis compares two early validation tracks:
12
+
13
+ ```text
14
+ Scrub Legal — legal teams and legal document workflows.
15
+ Scrub Zorg — care-organization teams and operational document workflows.
16
+ ```
17
+
18
+ This is not a sales plan and not a production offer. It is a working hypothesis for interviews, controlled pilots and positioning decisions.
19
+
20
+ ## 2. Assumptions and limits
21
+
22
+ Current assumptions:
23
+
24
+ - Scrub is still a risk-driven MVP, not a certified production platform.
25
+ - The Hugging Face app is a demo and development surface.
26
+ - The intended confidential route is local processing.
27
+ - Scrub output requires human review.
28
+ - Scrub Key output is pseudonymized and reversible with the key.
29
+ - DOCX comments, metadata and hidden parts remain a known product-risk area until the DOCX hygiene line is further integrated.
30
+ - PDF support remains text/TXT-only; no OCR and no restored PDF output.
31
+ - Residual-risk reports are support tools, not guarantees.
32
+
33
+ Commercial boundary:
34
+
35
+ ```text
36
+ Do not sell full automation, production certification, legal compliance guarantees, medical compliance guarantees, or complete anonymization as current capabilities.
37
+ ```
38
+
39
+ ## 3. ICP Legal
40
+
41
+ ### Best-fit organization type
42
+
43
+ The strongest first Legal ICP is likely:
44
+
45
+ ```text
46
+ Small to mid-sized Dutch legal teams that frequently prepare confidential documents for AI-assisted review, summarization, drafting or sharing.
47
+ ```
48
+
49
+ Potential segments:
50
+
51
+ - small and mid-sized law firms;
52
+ - legal departments;
53
+ - legal operations teams;
54
+ - privacy/compliance teams with legal document flows.
55
+
56
+ ### User
57
+
58
+ Likely users:
59
+
60
+ - lawyer;
61
+ - legal assistant;
62
+ - paralegal;
63
+ - legal operations employee;
64
+ - privacy/compliance reviewer.
65
+
66
+ ### Buyer
67
+
68
+ Likely buyer:
69
+
70
+ - managing partner;
71
+ - legal operations lead;
72
+ - head of legal;
73
+ - privacy/compliance lead;
74
+ - innovation lead.
75
+
76
+ ### Approver or blocker
77
+
78
+ Likely approver/blocker:
79
+
80
+ - privacy officer;
81
+ - security officer;
82
+ - IT lead;
83
+ - records/information governance lead;
84
+ - professional-risk owner.
85
+
86
+ ### Suitable workflows
87
+
88
+ Best first workflows:
89
+
90
+ - preparing legal text for AI support;
91
+ - sharing a scrubbed version for review;
92
+ - creating safer examples for internal analysis;
93
+ - controlled reinsert after AI or review;
94
+ - residual-risk discussion before external use.
95
+
96
+ Avoid as first workflows:
97
+
98
+ - high-volume batch processing;
99
+ - direct production publishing;
100
+ - scanned PDF workflows;
101
+ - workflows that depend on perfect DOCX hidden-content cleanup.
102
+
103
+ ### Main pain
104
+
105
+ Legal users need to preserve meaning while reducing exposure of sensitive values. Generic redaction or manual replacement is slow, inconsistent and hard to audit.
106
+
107
+ ### Why they may pay
108
+
109
+ Willingness-to-pay drivers:
110
+
111
+ - lower manual review burden;
112
+ - safer AI preparation;
113
+ - clearer audit trail;
114
+ - reversible pseudonymization through Scrub Key;
115
+ - better context preservation than blunt redaction;
116
+ - local-first direction.
117
+
118
+ ### Sales risks
119
+
120
+ Hard parts:
121
+
122
+ - high trust bar;
123
+ - fear of missed sensitive values;
124
+ - need for local deployment;
125
+ - unclear liability expectations;
126
+ - current DOCX/PDF limitations;
127
+ - buyers may expect full automation too early.
128
+
129
+ ### What a pilot must prove
130
+
131
+ A Legal pilot must prove:
132
+
133
+ - user understands the workflow;
134
+ - review effort is acceptable;
135
+ - output stays readable;
136
+ - residual-risk reporting is useful;
137
+ - Scrub Key risk is understood;
138
+ - current limitations are clear enough.
139
+
140
+ ## 4. ICP Zorg
141
+
142
+ ### Best-fit organization type
143
+
144
+ The strongest first Zorg ICP is likely:
145
+
146
+ ```text
147
+ Dutch care organizations with project, quality, privacy, IT or innovation teams that prepare operational documents for internal analysis, training, supplier conversations or AI support.
148
+ ```
149
+
150
+ Potential segments:
151
+
152
+ - care organizations with privacy/quality teams;
153
+ - care-technology project teams;
154
+ - functional application management;
155
+ - innovation and information-management teams;
156
+ - digital transformation teams.
157
+
158
+ ### User
159
+
160
+ Likely users:
161
+
162
+ - project manager;
163
+ - privacy or quality officer;
164
+ - functional application manager;
165
+ - policy or support staff;
166
+ - innovation staff;
167
+ - information-management staff.
168
+
169
+ ### Buyer
170
+
171
+ Likely buyer:
172
+
173
+ - manager ICT;
174
+ - privacy officer or DPO-adjacent owner;
175
+ - quality manager;
176
+ - innovation manager;
177
+ - operations or transformation lead.
178
+
179
+ ### Approver or blocker
180
+
181
+ Likely approver/blocker:
182
+
183
+ - privacy officer;
184
+ - security officer;
185
+ - ICT management;
186
+ - information governance;
187
+ - legal/procurement for later production use.
188
+
189
+ ### Suitable workflows
190
+
191
+ Best first workflows:
192
+
193
+ - preparing operational documents for internal learning;
194
+ - safer AI-assisted summarization of project notes;
195
+ - creating controlled training examples;
196
+ - sharing scrubbed versions with internal project teams;
197
+ - discussing residual-risk reports with privacy/quality staff.
198
+
199
+ Avoid as first workflows:
200
+
201
+ - direct processing of production care records;
202
+ - unmanaged cloud-demo usage for confidential material;
203
+ - high-risk clinical decision workflows;
204
+ - large batch processing.
205
+
206
+ ### Main pain
207
+
208
+ Care organizations have many operational documents with sensitive context. Teams want to use AI and share examples, but privacy review is slow and risk-sensitive.
209
+
210
+ ### Why they may pay
211
+
212
+ Willingness-to-pay drivers:
213
+
214
+ - safer internal AI experimentation;
215
+ - less manual preparation work;
216
+ - better privacy-office confidence;
217
+ - local-first route;
218
+ - audit and residual-risk language for governance;
219
+ - support for training/project examples.
220
+
221
+ ### Sales risks
222
+
223
+ Hard parts:
224
+
225
+ - strong need for privacy approval;
226
+ - local deployment expectations;
227
+ - unclear ownership between ICT, privacy, quality and operations;
228
+ - low tolerance for confusing limitations;
229
+ - current DOCX hidden-content risk must be explained clearly.
230
+
231
+ ### What a pilot must prove
232
+
233
+ A Zorg pilot must prove:
234
+
235
+ - the workflow is understandable for non-legal users;
236
+ - local-first direction is credible;
237
+ - review effort is acceptable;
238
+ - residual-risk reporting helps governance;
239
+ - current limitations do not create false confidence.
240
+
241
+ ## 5. Legal vs Zorg comparison
242
+
243
+ | Dimension | Legal hypothesis | Zorg hypothesis |
244
+ |---|---|---|
245
+ | First value | AI/share preparation for legal documents | AI/share preparation for operational documents |
246
+ | Strongest buyer pain | Meaning-preserving confidentiality control | Privacy-safe internal analysis and learning |
247
+ | Trust bar | Very high | High, with governance focus |
248
+ | Access path | Harder, more trust-driven | Potentially faster through care-sector network |
249
+ | Best first offer | Guided controlled pilot | Guided controlled pilot / workshop |
250
+ | Main blocker | liability and professional trust | privacy/security approval and local deployment |
251
+ | Likely wedge | legal AI preparation | operational document preparation |
252
+
253
+ Initial commercial priority hypothesis:
254
+
255
+ ```text
256
+ Scrub Zorg may be the fastest validation wedge because the project already has care-sector context and access. Scrub Legal remains a strong product story but may require more trust evidence before conversion.
257
+ ```
258
+
259
+ ## 6. First buyer personas
260
+
261
+ ### Legal persona A — Managing lawyer / legal owner
262
+
263
+ - Wants safer AI use without losing legal context.
264
+ - Needs trust, control and auditability.
265
+ - May pay for risk reduction and workflow efficiency.
266
+ - Blocks if the tool sounds like unsupported automatic anonymization.
267
+
268
+ ### Legal persona B — Legal operations / privacy lead
269
+
270
+ - Wants repeatable process and governance.
271
+ - Needs residual-risk language and review evidence.
272
+ - May prefer a controlled pilot before buying.
273
+
274
+ ### Zorg persona A — Privacy/quality lead
275
+
276
+ - Wants safer internal sharing and AI preparation.
277
+ - Needs clear boundaries and local processing direction.
278
+ - May sponsor a guided pilot if governance is clear.
279
+
280
+ ### Zorg persona B — ICT/project lead
281
+
282
+ - Wants practical tooling for project and support documents.
283
+ - Needs easy local run path and clear support model.
284
+ - May become buyer or internal champion.
285
+
286
+ ## 7. Pricing model comparison
287
+
288
+ | Model | Advantage | Disadvantage | Risk | Best moment |
289
+ |---|---|---|---|---|
290
+ | Free demo/discovery | Low friction | No revenue signal | Attracts unqualified users | Before pilot |
291
+ | Paid pilot | Validates willingness to pay | Requires clear scope | May feel early if product limits are unclear | After demo interest |
292
+ | Consultancy-assisted pilot | High trust and learning | Time-intensive | Hard to scale | Best first paid offer |
293
+ | Per user per month | Simple SaaS logic | Less aligned with local desktop/security route | May underprice value | Later MVP |
294
+ | Per organization per month | Fits governance buyer | Needs support model | Needs mature local deployment | Later pilot/early production |
295
+ | Local desktop license | Fits local-first promise | Requires packaging/support | Premature before WP49B or later | After packaging proof |
296
+ | Enterprise/support model | Fits larger organizations | Complex sales | Too heavy early | Later only |
297
+
298
+ ## 8. First pricing hypothesis
299
+
300
+ This is a cautious hypothesis, not a price list.
301
+
302
+ Suggested bands:
303
+
304
+ ```text
305
+ Discovery/demo: free or very low threshold.
306
+ Paid controlled pilot: small fixed fee.
307
+ Consultancy-assisted pilot: higher fixed fee because guidance and review sessions are included.
308
+ Later subscription/license: only after product validation and local deployment proof.
309
+ ```
310
+
311
+ Suggested initial direction:
312
+
313
+ ```text
314
+ Start with a consultancy-assisted paid pilot rather than a self-serve subscription.
315
+ ```
316
+
317
+ Reason:
318
+
319
+ - product trust is not yet fully proven;
320
+ - users need guidance on limitations;
321
+ - feedback quality matters more than scale;
322
+ - a guided pilot can validate willingness to pay and risk language.
323
+
324
+ ## 9. Pilot offer vs production offer
325
+
326
+ ### Pilot offer
327
+
328
+ Purpose:
329
+
330
+ - learn;
331
+ - validate workflow value;
332
+ - measure review burden;
333
+ - collect structured feedback;
334
+ - test messaging and trust.
335
+
336
+ Included:
337
+
338
+ - controlled document set;
339
+ - guided session;
340
+ - feedback interview;
341
+ - residual-risk discussion;
342
+ - no production claim.
343
+
344
+ ### Production offer
345
+
346
+ Later only.
347
+
348
+ Requires before offering:
349
+
350
+ - local runtime confidence;
351
+ - document hygiene path;
352
+ - clearer support model;
353
+ - security/privacy approval material;
354
+ - packaging or deployment decision;
355
+ - pricing validation.
356
+
357
+ ## 10. What must not be sold or claimed yet
358
+
359
+ Do not claim:
360
+
361
+ - production certification;
362
+ - full automation;
363
+ - full anonymization without review;
364
+ - complete DOCX hidden-content handling;
365
+ - OCR or restored PDF output;
366
+ - guaranteed detection of all sensitive values;
367
+ - encrypted Scrub Key container;
368
+ - enterprise deployment readiness;
369
+ - compliance approval.
370
+
371
+ Allowed positioning:
372
+
373
+ ```text
374
+ A guided, local-first-oriented workflow for controlled document scrubbing validation, with human review, Scrub Key awareness and residual-risk visibility.
375
+ ```
376
+
377
+ ## 11. Validation questions
378
+
379
+ Use these in interviews or guided pilots:
380
+
381
+ 1. What document workflow would you want to use Scrub for first?
382
+ 2. What would make you trust or distrust the output?
383
+ 3. How much review time is acceptable per document?
384
+ 4. Which missed items would be unacceptable?
385
+ 5. Which false positives are annoying but acceptable?
386
+ 6. Is the Scrub Key concept clear?
387
+ 7. Do the warnings make the workflow safer or more confusing?
388
+ 8. Are DOCX/PDF limitations clear enough?
389
+ 9. Would local processing change your willingness to test or buy?
390
+ 10. Who would approve a pilot in your organization?
391
+ 11. Who would block it?
392
+ 12. What would make you pay for a controlled pilot?
393
+ 13. What would make you refuse to buy?
394
+ 14. Would you prefer a guided pilot, desktop license or subscription later?
395
+ 15. What evidence would you need before production use?
396
+
397
+ ## 12. Go / no-go criteria
398
+
399
+ The hypothesis gets stronger if:
400
+
401
+ - users understand the workflow;
402
+ - users accept human review;
403
+ - users see clear time or risk value;
404
+ - users understand limitations;
405
+ - users can explain Scrub Key risk back correctly;
406
+ - users consider a paid pilot reasonable;
407
+ - a clear buyer and approver path emerges.
408
+
409
+ Pause or revise if:
410
+
411
+ - users want only automatic anonymization;
412
+ - users require immediate production certification;
413
+ - users reject local install or controlled pilot constraints;
414
+ - DOCX/PDF limitations block the main use case;
415
+ - willingness to pay is absent;
416
+ - the buyer is unclear.
417
+
418
+ ## 13. Recommended next step
419
+
420
+ Recommended next workpackage:
421
+
422
+ ```text
423
+ WP52 — Pilot intake and NDA process
424
+ ```
425
+
426
+ WP52 should define the practical intake and agreement process before any real external pilot activity is started.