Doctors and lawyers and possibly other schools have to take courses in ethics, and then can loose their license to practice for ethical violations. We should impose the same for software. Each company that produces software for public use should be issued a license to operate. If the company is found guilty of violating the ethics of that license, they lose the license. That means their software is now no longer legal to sell.

That is a wild overreaction! If there's a legal consensus nobody is going to violate that. Even the huge companies that get vilified on here spend millions trying to comply with all the various jurisdictions' rules. Different parts of the EU can't even agree on how to interpret their own laws yet.

Licensure tends to be a protective mechanism to keep salaries high. If that's your goal, great, but it's a weird hammer to apply to fix your subjective opinion of what's ethical.

>If there's a legal consensus nobody is going to violate that.

Talking about wild speculation! Shall we have a look at all of the laws and the companies that break them that have only received slap on the wrist level fines? So clearly, there are some sort of regulations, otherwise, how would these fines be imposed? If there were no violations of those regulations, why are fines being imposed. So, your "nobody going to violate that" is already starting the conversation on shaky ground

Yes there is a massive rule of law problem in our times. Big Tech literally laugh at governments and regulation.

This is analogous to solving murder by telling everyone to stay home since serial killers run free on the street instead of catching & jailing murderers.

Maybe we could enforce the (existing!) laws against malware, fraud, spam, etc so that people can continue to install apps & use them and be confident knowing that nothing bad will happen, and if it does happen then the offenders will be punished appropriately?

GDPR breaches aren't limited to apps btw, it happens on websites and even in real life (Tesco stores in the UK for example have a notice inside the store about data collection; presumably they're doing Bluetooth/Wi-Fi MAC address tracking - by the time you read the notice you're already being stalked, and there's no way to opt-out other than inconveniencing yourself by manually toggling the relevant radios before going to the store).

I meant this in a hypothetical world where we'd "solve" murder by letting murderers walk free and telling people to hide at home (your proposed approach to solving GDPR breaches) instead of applying the law and jailing them.

Informing people only helps if they have a choice whether or not to use the app/service.

In many cases, people are tracked by services they cannot really avoid. One example is the German "Deutsche Bahn" app, which is full of trackers. Some organizations are now trying to fight this using legal means. Another example was the Covid vaccine registration page in my canton in Switzerland, where Google Analytics was being used (right on the page with my sensitive medical information). It wasn't even being mentioned in the privacy policy.

We have laws that say what's legal and what's illegal. If something is illegal, those laws should be enforced. Especially when users have no choice.

> Informing people only helps if they have a choice whether or not to use the app/service.

People always have a choice. Blinded by comfort, convenience and other "first world problems" they may not immediately recognise it as a choice, but by historical standards they absolutely always have one.