This week, WIRED reported that Dialog, a private, invitation-only society for powerful figures in tech, finance, and government, left its membership records exposed online. The records named participants and revealed personal details they had been promised would stay private. Among those members are the founders and directors of some of the largest surveillance, data-broker, and advertising-data companies in the country.
The people who profit from collecting and selling personal information could not protect their own.
Dialog’s chairman is Auren Hoffman, who founded the location-data broker SafeGraph and the identity-resolution firm LiveRamp, two of the most significant suppliers in the consumer data economy. The exposure itself was basic: a member directory embedded in the group’s own website code, readable by anyone who viewed the page source. A separate registration list named 222 people signed up for the group’s 2026 retreat.
What leaked is the part worth paying attention to. The records were stored in Airtable, a standard commercial database. For each person, the group logged a membership history, a biography, a home city, relationship status, and a private access token that functioned as a login credential. The registration form had also asked members for their political leaning, with an explicit promise that the answer would never be shared. It was exposed the moment the database was left open.
This is the core problem in consumer data privacy, playing out on the people who built the industry. Sensitive information gets aggregated into a single database. Access controls are an afterthought. One careless decision exposes everyone in it. The members of Dialog understand these risks better than almost anyone, because monetizing this kind of data is their business. They still could not escape the model they created.
If the architects of the data economy cannot keep their own profiles off the open web, ordinary Americans, who never agreed to any of this and have no real way to opt out, are far more exposed. The fix is the one privacy advocates have argued for all along: collect less, secure what you collect, and build accountability before the breach rather than after.
;
