Legal & Compliance Directorate
Legal & Compliance now operates as a standalone directorate, no longer housed under People & Administration. The restructure reflects what was always operationally true: legal risk is the Command's primary existential constraint, and the function that manages it must report directly to the Oversight Board rather than through an administrative chain. Counter-manipulation work inhabits a permanent legal gray zone. The techniques we study are legal to document but dangerous to possess. The platforms we monitor have Terms of Service that forbid the kind of access our instrumentation requires. The jurisdictions we operate across have conflicting definitions of surveillance, fraud, and consent. Legal & Compliance exists to navigate all of this without the Command ever becoming prosecutable, discoverable, or — worst of all — indistinguishable from the manipulation networks it dismantles.
Practice Areas
Rules of Engagement
Every field action the Command authorizes operates within a legal envelope defined by this practice area. Rules of engagement establish the boundaries of proportionality, the escalation thresholds that require General Counsel sign-off, and the hard prohibitions that no operational authority can override. RoE review is mandatory before any operation escalates beyond passive collection, and violations trigger automatic stand-down and independent review by the Oversight Board.
Evidence Admissibility & Chain-of-Custody
Intelligence that cannot survive evidentiary scrutiny is intelligence that dies at the courtroom door. This practice area maintains chain-of-custody protocols for every artifact the Command collects — from raw telemetry captures to processed behavioral-pattern analyses. Custody standards are calibrated to the most demanding jurisdiction in the operation's footprint, ensuring evidence remains admissible regardless of which regulator or prosecutor ultimately receives it.
Manipulation & Platform-Liability Law
The intersection of manipulation law and platform liability is the fastest-moving legal terrain the Command operates in. This practice area tracks emerging legislation — from the EU Digital Services Act to US state-level dark-pattern statutes — and maps how each new regime affects both the targets the Command investigates and the Command's own operational exposure. Counter-pattern injection, telemetry collection, and reverse-engineering all carry distinct legal profiles that shift with every legislative session.
Governance, Contracts & Licensing
This practice area consolidates the Command's governance obligations — directorate and charity compliance, regulatory filings, board reporting cadences — with the contractual architecture that underlies operational partnerships. API licensing agreements, authorized-researcher frameworks, data-sharing MOUs, and vendor contracts all flow through this desk. The merger reflects operational reality: governance failures and contract failures produce the same outcome — exposure of operational activity through administrative channels that should have been routine.
Whistleblower & Exposure
An organization that operates in secrecy to counter organizations that operate in secrecy faces a unique exposure calculus. This practice area manages the legal architecture around internal dissent, external disclosure, and the structural guarantees that prevent the Command from becoming a closed system. It also governs the legal protections for operators who invoke the ethical-objection protocol — the right to refuse orders believed to violate doctrine without career consequence.
Compliance Register
This register tracks operational obligations against the jurisdictional scope, assessed risk level, review cadence, and the accountable counsel position for each domain. Review cadence is set per-obligation based on regulatory velocity and operational exposure — fast-moving areas cycle quarterly or per-operation; stable frameworks cycle annually.
| Obligation | Jurisdiction | Risk Level | Review Cadence | Accountable Counsel |
|---|---|---|---|---|
| Dark-pattern controls | Multi-jurisdictional | MEDIUM | Quarterly | Manipulation Law Counsel |
| Evidence & referral law | Target jurisdiction | HIGH | Per-operation | Evidence Counsel |
| Charity governance | Domicile | LOW | Annual | Governance Counsel |
| Data protection (GDPR/equiv.) | EU + operating regions | HIGH | Quarterly | Data Protection Officer |
| OPSEC & technique containment | Internal doctrine | CRITICAL | Continuous | General Counsel |
| RoE proportionality | Per-target | CRITICAL | Per-escalation | General Counsel |
| Evidence retention & custody | Multi-jurisdictional | HIGH | Monthly | Records & Custody |
| Platform Terms of Service navigation | Per-platform | MEDIUM | Per-engagement | Platform Counsel |
Referral & Prosecution
Layered legal identity
The Command does not exist as a single legal entity. Operations are distributed across a constellation of research foundations, consulting LLCs, and technology licensees — each incorporated in a jurisdiction selected for its combination of privacy law, limited discovery obligations, and regulatory cooperation posture. The Unranked public-facing entity holds no operational data and employs no field personnel. Compromise of any single layer exposes only that layer's scope of activity.
Regulatory handoff without source exposure
When counter-manipulation intelligence needs to reach a regulator or prosecutor, it travels through a structured handoff protocol designed by this directorate. Evidence is sanitized of source-identifying metadata, repackaged into formats consistent with the receiving agency's own collection authority, and delivered through pre-established channels that carry no attribution back to the Command. Coordination flows through Dispatch & Target Dossiers and Operations.
Platform Terms of Service
Legal navigates the terms-of-service landscape for every target platform, mapping which UNDERTOW activities operate in ToS gray zones and which require legal insulation. Counter-pattern injection, telemetry collection, and reverse-engineering all carry distinct ToS exposure profiles that Legal tracks per-platform. Each engagement receives a ToS risk assessment that classifies activities as compliant, gray-zone, or requiring structural insulation before proceeding.
The Whistleblower Paradox
This section addresses the most uncomfortable question in the Command's charter: how does an organization that exists to oppose covert manipulation handle internal dissent? An organization that operates covertly against manipulative platforms must hold itself to a higher ethical standard than the entities it opposes — anything less collapses the moral distinction that justifies the Command's existence.
Protected reporting within the Command
Any operative, analyst, or staff member who witnesses conduct that contradicts the
Command's charter — disproportionate action, unauthorized surveillance, misuse of
counter-pattern techniques, or the suppression of prior complaints — may file a report
through the GOVERNOR: ETHICS-DIRECT channel. This channel is architecturally
isolated: reports are encrypted to the General Counsel's keys alone, stored outside the
Command's primary infrastructure, and carry no metadata that could identify the reporter
to operational leadership. The General Counsel reports to the Oversight Board on ethics
matters, not to the Director of Operations. Separately, any operator may invoke the
ethical-objection protocol to refuse an order they believe violates doctrine — a right
that carries no adverse career consequence and is reviewed by the Oversight Board rather
than the operator's chain of command.
When the internal channel is not enough
If the misconduct involves the General Counsel, the Oversight Board, or if a reporter has reason to believe the internal channel has been compromised, this directorate maintains a pre-arranged relationship with two independent external law firms — neither of which knows the other's identity. Either firm can receive a disclosure, provide legal representation to the reporter, and if necessary, initiate contact with relevant regulatory authorities without the Command's knowledge or consent. The existence of this external pathway is not a contingency plan. It is a structural guarantee that the Command cannot become a closed system.
Section Documents
Rules of Engagement →
Operational boundaries and the authorization framework governing every field action.
QH-LEGAL-0003Evidence Admissibility →
Chain-of-custody standards for intelligence that may transit to external authorities.
QH-LEGAL-0004Platform & Manipulation Law →
Navigating ToS frameworks, data protection regimes, and computer fraud statutes across jurisdictions.
QH-LEGAL-0005Whistleblower Paradox Protocol →
Internal dissent architecture and the structural guarantees against becoming a closed system.
QH-LEGAL-0006Platform ToS Navigation →
Per-platform terms-of-service analysis and UNDERTOW legal-exposure mapping.
