Risk Register
A frank examination of how the Kolshee mesh survives — and quietly profits from — the kinds of shocks that flatten ordinary supply chains.
Fragile systems break in shocks. Robust systems resist them. Antifragile systems benefit from them. Kolshee is engineered for the third category.
Risk Framework
Risks are categorized by their target surface (supply, demand, lane, regulatory, technical) and by the recovery mechanism the system applies (failover, hedge, substitute, reroute, freeze). Every category has a primary mitigation and at least one cold backup.
Geopolitical / Conflict
| Scenario | Direct exposure | Mitigation |
|---|---|---|
| Closure of Suez or Hormuz | MENA-NE / MENA-TX lanes | Hot backups via Jeddah-LATAM-US triangle; pre-positioning |
| Conflict in Levant | Beirut · Amman origin | Cairo + Istanbul cold backups; weekly lane health re-eval |
| US sanctions / counter-sanctions on key origin | Selected SKUs | Origin substitution via supplier graph; private-label pivot |
| Port strike / customs disruption | Newark · Houston | Pre-staged 14-day rolling buffer in cold storage |
Currency
Cross-border procurement creates FX exposure. Kolshee runs a treasury layer with rolling 90-day forward hedges on the top eight origin currencies, dynamically resized by lane volume forecast. A 25% adverse FX shock on any single currency modeled to impact net revenue by less than 1.6%.
Regulatory
- ▸Halal certification regimes (US, GCC, UK, EU): native compliance metadata at SKU level.
- ▸Data privacy (CCPA, GDPR, PDPL): household signals processed in a privacy-preserving cohort layer; raw PII never crosses borders.
- ▸Labor regulations (CA AB-5 analogs): fulfillment couriers run as independent batched contractors with platform-grade benefits.
- ▸Customs & trade: in-house customs brokerage; programmatic HTS classification; dynamic duty calculation.
Climate & Harvest
Yield-shock models drive sourcing diversification. Any SKU dependent on a single climate zone is auto-flagged for a secondary origin within two harvest cycles. Climate signal is ingested directly into the Lane-Health and Supplier-Reliability models.
Technical & Cyber
- ▸Event spine: triple-region replicated, 30-day write-ahead recovery, immutable append-only.
- ▸Per-merchant data isolation; tenant-scoped encryption keys.
- ▸Quarterly red-team engagement; SOC-2 Type II from Y2.
- ▸Fallback "manual mode" allows mesh stores to operate Kolshee functions on a 72-hour offline window if the spine is unreachable.
Cross-Platform & Store Intelligence
| Scenario | Surface | Probability | Mitigation |
|---|---|---|---|
| Platform resistance to driver mesh integration | Logistics mesh revenue | Medium | Structure offer as Kolshee paying platforms a coordination fee per matched order. Platforms earn incremental revenue on orders they would not otherwise fill efficiently. |
| Driver contractor classification challenge | Legal / regulatory | Medium (MA, CA, NY) | Drivers remain contracted to their original platform. Kolshee acts as logistics broker only — no employment relationship. Legal opinion required before Phase 3 activation. |
| Store owner resistance to financial data sharing | Store OS adoption | Medium | All financial data is tenant-scoped and never shared individually. Cross-store intelligence operates exclusively on anonymised, aggregated cohorts. |
| Major distributor detects benchmarking and retaliates | Supplier network | Low–Medium | Retaliation is commercially irrational once pooled procurement creates volume dependence. The supplier loses access to combined purchasing volume of every mesh store. |