Agree about the privacy and security worries shared by some in the list.

From a software maintenance pov, developing a new tool is sometimes easier but maintaining and keeping up with the ever-changing internet standards (and new vulnerabilities and security changes) is hard. That said, a movement that actively uses surveys and forms does need to make the personal data transactions secure. To be able to do that, using both open source tools and (preferably self-hosted) platforms that use e2ee (which provides better security except in some extraordinary situations [1]) should be preferred. I'd argue a proprietary platform that protects user data in surveys and collects little metadata is far better than an open source one that collects and saves user data in plaintext in cloud. But open source helps to some extent as proprietary platforms could claim many things when there is no option for public audit of proprietary platforms. But just open source does *not* help. An additional level of security is a must and should be the foundational layer when it comes to a survey platform.

As far as possible solutions go, it would be a good investment to support developers from the open source community for a survey tool that protects the privacy of survey participants by the use of e2ee and can be well integrated into MediaWiki (bonus if not a primary goal). The Foundation and the larger community (including Chapters and User Groups) would be greatly benefitted from this. But until a good in-house solution is there, it might be useful to reach out to other friendly faces in the development world -- Access Now, Article 19, Amnesty International, etc. -- to check what works for them now.