All editions · Leadership Edition
Your Community, Your AI — CC BY 4.0The Horizon — What's Coming, and Why It Sharpens the Case for Sovereignty
The first five articles were about AI as it is today. This one looks a little further out — at a technology that is not yet part of daily operation but is close enough that any board setting policy on its data should understand it. This is not a set of predictions. It is a set of plain briefings, each following the same shape: what the thing is, why it matters to your organisation, what actually changes, what a platform you control does about it, what you can ask, and how certain any of it is. As new technologies come over the horizon, this article will grow. Today it carries one briefing. (Any unfamiliar term is defined in plain language in the glossary.)
Last reviewed: July 2026.
Briefing 1 — Quantum computing and the encryption question
What it is
A quantum computer is not a faster server. It is a different kind of machine that uses the physics of very small things to do a narrow set of calculations no ordinary computer can. For almost everything an organisation does, it is irrelevant. But for a few problems — including some of the mathematics that keeps information secret — a large enough quantum computer could, in principle, do in hours what would otherwise take longer than the age of the universe.
Why it matters to your organisation
Almost everything confidential today rests on encryption: online banking, correspondence, and the records your organisation holds — board papers, member and constituent details, a sealed matter. That protection depends on mathematical problems ordinary computers cannot solve in any reasonable time. A large enough quantum computer could unpick some of it. The machine capable of this does not yet exist at the scale required — and yet the risk is already present, which makes it a question for the board rather than a matter to leave with the technology.
For a body with a duty of care, this frames as a fiduciary and risk question. The information you are charged with protecting does not all have a short shelf life. Some of it must stay confidential for years — and the organisation that holds it remains accountable for it over that whole period, not only on the day it was collected.
The threat: harvest now, decrypt later
The reason is straightforward, and worth stating plainly. An adversary does not need the machine today. They can quietly record your encrypted information now and wait — decrypting it years later, once a capable quantum computer arrives. So something the organisation considers safely confidential today could be exposed retroactively. Anything that must stay confidential for a decade — and a good deal of what a governance body holds falls into that category — is already within reach of this problem.
What a sovereign platform does about it
The defence is post-quantum cryptography: a new generation of encryption designed to resist a quantum attack, whose international standards were finalised in 2024. The sovereignty point is the timeline. A platform that controls its own infrastructure can move to post-quantum protection on its own schedule, and tell the board when it has; an organisation renting space on Big Tech infrastructure waits for a vendor whose priorities are not its own, and may never be told — which leaves the migration decision, and its timing, outside the board's control.
Village is built for exactly this kind of change. Its encryption records how each piece of information was protected — the method is stored alongside the data — so moving to post-quantum methods is a matter of configuration rather than rebuilding the system. That migration is planned, not yet switched on; today the platform uses strong, current encryption. What matters for governance is that the design makes the change possible without re-engineering — the difference between a door you can open when the time comes and a wall you would have to knock down.
What you can ask
Three questions put the matter in the board's hands, whatever platform the organisation uses:
- Does our platform or vendor have a plan — and ideally a date — to migrate to post-quantum encryption?
- Is our most sensitive, long-lived data exposed to harvest now, decrypt later?
- Who owns the migration decision — the organisation, or a vendor?
Status and confidence
A quantum computer able to break today's encryption does not yet exist, and serious experts disagree about when one might — estimates range from several years to a couple of decades. What is not uncertain: the post-quantum standards exist now, and the harvest-now-decrypt-later logic means that preparing is a present decision, not a future one. This is preparedness, not alarm — the same argument the rest of this series makes about AI. The technology that is imminently of relevance is worth understanding before it arrives, not after — and worth putting on the board's agenda while there is still a decision to make.
Want to use AI tools well, and safely? Our free courses — Working with Claude and Agents at Work — teach the practical skills. For the full technical architecture behind Village AI, see Village AI — Agentic Governance.
Useful? Share this article, or show a QR code to scan.