I'd be surprised it you couldn't find some instances, but I'm also confident that those cases were dealt with by procedural enhancements.
Just recently we had a case where an employee was caught snooping in some address and family data. The person was fired, reported to the police for investigation, and the relevant employer is now looking at their processes to make sure it doesn't happen again. Along with that, everybody directly affected has been notified. That seems like a reasonable response to me.
I'm much more concerned with all the times we don't find out. We need strong checks on access to this data, which is fortunately also a legal requirement. I generally trust that the relevant authorities are keeping track of that.
Importantly, what I hope you're seeing from this reply is a trust in the institutions of my government. I trust that the processes are being followed, and that the processes are built in such a way that they check each other.
alt Hacker News
I'd be surprised it you couldn't find some instances, but I'm also confident that those cases were dealt with by procedural enhancements.
Just recently we had a case where an employee was caught snooping in some address and family data. The person was fired, reported to the police for investigation, and the relevant employer is now looking at their processes to make sure it doesn't happen again. Along with that, everybody directly affected has been notified. That seems like a reasonable response to me.
I'm much more concerned with all the times we don't find out. We need strong checks on access to this data, which is fortunately also a legal requirement. I generally trust that the relevant authorities are keeping track of that.
Importantly, what I hope you're seeing from this reply is a trust in the institutions of my government. I trust that the processes are being followed, and that the processes are built in such a way that they check each other.