Yes it’s interesting that they focus on privacy.  I do agree with the main thrust of the article, that without diligence, and when just focusing on the tech, the decentralised can easily be centralised again.  And in some cases the absence of privacy can be the attack vector.  But I think I find things like the anti-disintermediation of blogging, email (gmail) and git (github) as more low-hanging examples of what we need to prevent against, where privacy had nothing to do with it.