Yes, I have. You aren’t allowed to build a faulty bridge, even free of charge.
Maybe you are allowed to build that faulty bridge in, I dunno, Laos or whatever, and if people go to Laos specifically to drive on your bridge, then that’s on them if it collapses. But countries can and do successfully regulate how software is handled in their jurisdiction, see GDPR for example. It’s not an unsolvable problem, and even if there are cracks (like there are with GDPR), the solution isn’t to throw our hands up and say “welp, nothing to be done, just have to accept that sometimes people’s intimate personal details gets leaked.”
If you think my suggestion is bad (which it very well may be), happy to hear your take on how to prevent things like this and and other negligent software.
You keep on pretending an information leak is as deadly as a
bridge collapse. They obviously aren't. The comparison you are making is asinine. Information leaks could be in theory deadly, but the overwhelming majority of the time aren't.
That is why they are not treated the same.
As for considering the implications. You obviously haven't seriously thought about them.
You give the example of the GDPR. Those stupid cookie popups for ever site was an unintended consequence of the GDPR. They are such an annoyance I run a browser which specifically removes them. Does that really protect my data? Nope.
In the UK (online safety bill) it is literally killing online communities e.g LFGSS (just look up the meta discussion topic on lfgss if you don't believe me) that have been around for decades, because of the legal and financial liabilities involved.
I was thinking of building a replacement for Skype, I can't and I do have the ability and security know how. There is no point as long as I am in the UK or the laws stay the same. I am not the only person I've spoken to that has said the same thing.
So the scope of the regulation you are suggesting could hamper literally everything and is potentially unlimited and I doubt it will actually solve the problem you think it will.
Even if a company makes every effort to secure their data it may still get leaked. OPSEC is not a simple thing that you can license into existence.
> If you think my suggestion is bad (which it very well may be), happy to hear your take on how to prevent things like this and and other negligent software.
You should take responsibility yourself and be careful about what information you give to third parties. You can do this right now and without any licenses/regulation. I assume that these companies will leak my data and give as little of it over as possible.
If you are going to then argue that this is too much effort or people won't understand it. My father (who is completely computer illiterate) understood this without any prior prompting back in 2003
I often find when people make these arguments such as yours they want the whole world to turn on its head instead of them making some (quote often) simple changes themselves.
Maybe you are allowed to build that faulty bridge in, I dunno, Laos or whatever, and if people go to Laos specifically to drive on your bridge, then that’s on them if it collapses. But countries can and do successfully regulate how software is handled in their jurisdiction, see GDPR for example. It’s not an unsolvable problem, and even if there are cracks (like there are with GDPR), the solution isn’t to throw our hands up and say “welp, nothing to be done, just have to accept that sometimes people’s intimate personal details gets leaked.”
If you think my suggestion is bad (which it very well may be), happy to hear your take on how to prevent things like this and and other negligent software.