[saluki]

We built our MVP with two developers using a popular framework.

We went through a security audit + SOC-2 audit.

We passed our security audit with no issues, just two minor suggestions, they said we did better than most of the fortune 500.

If you're using a good framework and are following security best practices you should be fine. If you're not comfortable with sys/dev ops and security try to find a technical co-founder that is.

There are lots of packages/gems for SSO for various services.

As far as data, minimize what data you store that is sensitive, encrypting your database is becoming more and more common.

As far as business models and market strategies, start here: https://www.youtube.com/watch?v=0CDXJ6bMkMY (@DHH StartUp School talk 2008)

Good luck, enjoy the ride!