For reference, I am referring to these articles. (Not to mention claims that it steals your bandwidth.)
They're still using a proprietary BIOS, but have people working on a Free one. The main thing, though, is that Purism is working to give you all the privacy and freedom they can -- with more coming as they keep working to replace proprietary bits of the OS, BIOS, and hardware drivers with Free Software. Best of all, even if you don't need a new laptop right now, you can download PureOS and run it on any compatible hardware you already own.
The next step is to update documentation and submit updates to the patches they have already submitted upstream to FreeBSD. ASLR is the first step in a long list of exploit mitigation technologies HardenedBSD plans to implement.
The article notes, "This has immediately raised concerns. Today, if a Windows user finds that an update breaks something that they need, they can generally refuse that update for an extended period. ... For Windows 10 Home users, this isn't going to be an option. If a future update breaks something essential, the user is going to be out of luck." Windows 10 Pro users will be able to delay updates for some period of time, and Enterprise users will have update functionality similar to that of Windows 8.