Arukh HaShulchan Yomi · Startup Mensch · On-Ramp

Arukh HaShulchan, Orach Chaim 252:14-253:1

On-RampStartup MenschFebruary 7, 2026

Hook

You’re a founder. You’re driven. You see an opportunity, you build, you iterate, you scale. But in the relentless pursuit of growth, that little voice sometimes whispers: "Am I pushing too hard? Am I cutting a corner that looks small now but could become a chasm later?" This isn't about outright malice; it's about the insidious creep of ethical compromise. You start with a legitimate process, a smart hack, a clever marketing angle. But what prevents that initial, permissible step from sliding into something regrettable? How do you build a culture where the team doesn't accidentally "stir the coals" and burn down the house?

This isn't a hypothetical. Every founder faces the tension between speed and integrity. Between optimizing for short-term gains and building a sustainable, trustworthy enterprise. The real dilemma is proactive risk management in the ethical domain. How do you design systems that account for human nature – the "eagerness," the "forgetfulness" – and preemptively prevent transgressions, rather than reacting to them after the damage is done? The Sages, millennia ago, wrestled with precisely this challenge in the most practical terms, offering a masterclass in preventative ethical engineering that directly applies to your startup's long-term ROI.

Text Snapshot

The Arukh HaShulchan explains that while starting a task before Shabbat that completes itself during Shabbat is permissible, the Sages "forbade certain practices, due to a decree lest one stir the coals on Shabbat in order to hasten the cooking." This "lest one" (Gezeirah) reflects a deep understanding of human fallibility: "in his eagerness to eat he might forget that it is Shabbat and stir the coals." The text then meticulously details various types of ovens (kirah, kupach, tanur) and fuels (straw, gefet, wood), highlighting their differing heat retention and risk profiles, demonstrating that ethical safeguards are context-dependent.

Analysis

Insight 1: Proactive Risk Mitigation over Reactive Punishment

The Sages weren't content to simply declare an action forbidden. Their genius lay in anticipating human behavior and building "fences" to prevent transgression before it happened. The text explicitly states, "due to a decree lest one stir the coals on Shabbat... he might forget that it is Shabbat and stir the coals, thereby transgressing." This isn't about punishing intentional wrongdoing; it's about designing a system that protects individuals from their own human "eagerness" and "forgetfulness." They understood that a small, seemingly innocuous action ("stirring the coals takes but a moment") could lead to a significant ethical breach.

  • Decision Rule for Founders: Assume human fallibility, not malice. Your team members are generally good people, but they operate under pressure, with deadlines, and with an "eagerness" to succeed. Ethical systems must be designed to prevent accidental drift, not just to police explicit violations. This means proactive "protective measures" are more valuable than reactive disciplinary actions. Don't wait for a data breach to implement data access controls; build them in from day one. Don't wait for a harassment claim to establish clear reporting channels and training; embed them in your culture.
  • Business Application: Consider a sales team incentivized by aggressive targets. The "eagerness" to close deals might lead to exaggerating product capabilities or making promises that can't be kept. A reactive approach would be to fire the salesperson after a customer complaint. A proactive approach, inspired by the Sages, would involve:
    1. Clear Guardrails: Standardized sales scripts, mandatory review of large deals, clear rules on what can and cannot be promised.
    2. Systemic Checks: CRM flags for unusual discounts or overly aggressive timelines, requiring managerial approval.
    3. Training: Emphasizing ethical selling and long-term customer relationships over short-term gains.
    • KPI Proxy: "Ethical Incident Prevention Rate" – the inverse of reported ethical near-misses or policy violations per 1,000 employee-hours. A higher rate indicates more effective proactive measures.

Insight 2: Context Matters for Ethical Design

The Arukh HaShulchan dedicates significant space to detailing the various "manners of cooking," types of ovens, and fuel sources: "Their ovens were not opened from the side as ours are... They had three types of ovens: kirah, kupach, and tanur... Their fuel consisted either of straw and stubble... or of gefet—the waste product of olives or sesame seeds." This isn't just arcane detail; it's critical for understanding why certain decrees were made. The risk of stirring coals to "hasten the cooking" is vastly different depending on whether you have a low-heat straw fire in an open kirah versus a high-heat gefet fire in a well-insulated tanur. The "protective measures" had to be tailored to these specific contexts.

  • Decision Rule for Founders: Generic ethics policies are often useless. Ethical design must be deeply contextual, understanding the specific technologies, operational realities, market dynamics, and human interfaces involved. What creates an ethical risk in one part of your business might be irrelevant in another. A "one-size-fits-all" approach to ethics is a "no-size-fits-all" approach.
  • Business Application:
    1. Data Privacy: A company handling medical records (high-risk "tanur" data) requires exponentially more stringent access controls, encryption, and audit logging than a company collecting anonymous website traffic data (low-risk "kirah" data). The ethical "decree" regarding data access needs to be specifically designed for each data type and its operational context.
    2. AI Ethics: If you're developing an AI for medical diagnosis, the ethical "fences" around bias, explainability, and safety are far more critical and complex than for an AI that recommends movies. The "fuel" (training data) and "oven" (algorithm architecture) are unique to each, requiring tailored ethical considerations.
    3. Global Expansion: Ethical considerations around labor practices, environmental impact, or data sovereignty vary dramatically by region. A "protective measure" for a factory in one country might be entirely inadequate or overly restrictive for another.
  • Transparency and Trust: Being transparent about why specific ethical rules exist (e.g., "we have this strict data anonymization process because of the sensitive nature of X data, which falls under Y regulation") builds trust with employees, customers, and regulators.

Insight 3: Proportionality and Tiered Risk Management

The text's detailed description of different oven types and fuels highlights their varying characteristics: "The kupach... retained heat more than the kirah. The tanur likewise held one pot, but it was wide at the bottom and narrow at the top, and therefore retained heat far more than the kupach. In addition, they would stoke the tanur more intensely than the kirah." Similarly, fuel types ranged from "very weak fire and yielded few coals" (straw) to "very strong fire with many coals" (olive waste). This granular understanding implies that the risk of "stirring the coals" was not uniform. A weaker fire might tempt less, or require less intervention, than a strong, long-lasting fire.

  • Decision Rule for Founders: Ethical safeguards, like business controls, should be proportional to the assessed risk. Not every potential ethical breach or compliance requirement warrants the same level of intervention, cost, or complexity. Over-engineering ethical guardrails for low-risk scenarios can stifle innovation and create unnecessary overhead, while under-engineering for high-risk areas is catastrophic.
  • Business Application:
    1. Product Release Cycle: A minor bug fix in a non-critical feature might only require a peer review before deployment. A major new feature involving sensitive customer data or significant financial transactions should undergo a multi-stage ethical review, security audit, legal sign-off, and A/B testing with a small user group. The "protective measures" are tiered according to the potential impact ("stirring the coals" risk).
    2. Vendor Management: A low-risk vendor providing office supplies might only need a basic contract. A high-risk vendor handling your core infrastructure or customer PII needs extensive due diligence, security audits, contractual clauses around data protection and ethical labor, and ongoing performance monitoring. The "fuel" (their operational integrity) and "oven" (their service offering) dictate the proportionality of your ethical and compliance checks.
    3. Competition: Understanding your competitors' "fuel" (their resources, ethical culture, investor expectations) and "oven" (their business model, technology) allows you to assess their ethical risk profile. If a competitor is known for aggressive, boundary-pushing tactics (a "tanur" with "gefet"), your response needs to be robust and anticipatory, while for a more conservative player (a "kirah" with "straw"), different competitive and ethical strategies apply.
  • ROI of Proportionality: By applying appropriate levels of ethical scrutiny, you optimize resource allocation, preventing both overspending on unnecessary controls and catastrophic failures from inadequate ones.

Policy Move

Policy: The "Ethical Burn Rate" Review (EBR)

We will establish a mandatory "Ethical Burn Rate" (EBR) review for all new product features, significant process changes, and market entry strategies. This proactive process is designed to prevent "stirring the coals" scenarios before they become actual ethical or compliance incidents.

  1. Risk Mapping (The "Oven & Fuel" Analysis): For any new initiative, the lead team must identify potential "stirring the coals" scenarios—actions that, while perhaps legitimate initially, could lead to ethical breaches due to human "eagerness" or "forgetfulness" under pressure. This includes mapping the specific "oven" (technology, platform, market conditions) and "fuel" (user behavior, competitive landscape, internal incentives) that could exacerbate these risks. For instance, a new user onboarding flow (oven) with an aggressive upsell prompt (fuel) could tempt users into unintended commitments.
  2. Guardrail Design & Tiering: Based on the risk mapping, the team will propose specific "protective measures." These safeguards must be tiered proportionally to the assessed risk (e.g., a simple disclaimer for low risk vs. mandatory multi-factor authentication and human review for high risk). These aren't just policies; they're embedded system designs: automated checks, default privacy settings, mandatory dual approvals, specific training modules, or clear user consent flows.
  3. Pre-Mortem & Simulation: Before launch, a cross-functional "EBR Committee" (including legal, product, engineering, and ethics representatives) will conduct a "pre-mortem." They will imagine the initiative has failed ethically in the worst possible way (e.g., a major data breach, a public outcry over unfair practices) and work backward to identify the "stirring the coals" moments that led to it, strengthening the proposed guardrails. Where feasible, simulations will test the robustness of these safeguards.
  4. Continuous Monitoring: Post-launch, an "Ethical Burn Rate" KPI will be tracked (e.g., % of new features or processes with zero "red flag" incidents reported within the first 90 days), and regular post-mortems will be conducted on any ethical near-misses or incidents to refine the guardrails and feed learnings back into the EBR process.

Board-Level Question

"Given our strategic imperative to [insert company's key strategic goal, e.g., achieve aggressive market share in AI, rapidly expand into emerging markets, monetize new data streams], how are we proactively mapping potential ‘stirring the coals’ risks across our critical operational processes and new product development pipelines? Specifically, what is our calculated ROI on the 'protective measures' (ethical guardrails, compliance systems, and proactive training) we are investing in to prevent ethical drift, and how does this investment directly mitigate brand erosion, regulatory penalties, and long-term valuation risk, rather than simply being a cost of doing business?"

This question forces the Board to move beyond viewing ethics as a mere compliance checkbox. It frames ethical infrastructure as a strategic investment with a quantifiable return, directly linked to preventing costly failures (brand damage, lawsuits, regulatory fines) and ensuring sustainable growth. It demands a proactive, context-aware approach to ethical design, asking leadership to articulate not just what safeguards are in place, but why they are proportional, how they are integrated, and what value they bring to the company's bottom line by preserving its integrity and market trust.

Takeaway

The Sages, in their meticulous legal reasoning, provide a powerful framework for ethical entrepreneurship. True integrity isn't about perfectly avoiding every potential pitfall; it's about proactively designing systems that account for human nature, understand contextual nuances, and apply proportional safeguards. By thinking like the Sages – anticipating the "eagerness" to "stir the coals" and building smart "protective measures" – founders can minimize ethical burn rate, safeguard their brand, and build a resilient, trustworthy enterprise that delivers long-term ROI.