If you set up an ERC20 token for say XYZcompany, the person setting it up then has the private key and can send tokens at will to their private account.
Doing it jointly with others just proliferates the problem.
Is it possible to have a mechanism that requires multiple sign-offs before large or frequent payments can be made?