[inlined]

Sadly mid-level employees would probably be the ones going to jail. The tech lead and/or PM sign off on compliance. I used to joke that one of my responsibilities was to put my freedom at stake.

None of my products violate GDPR in any way I could conceive, but I’d hate to be handed down a mandate to do so. Both not accepting a project and not signing off on it are pretty bold moves.

[hobofan]

Even though it's not optimal, maybe that's what it takes? Then top-tier engineers would think twice about working for companies with shady privacy practices and Google would finally have an incentive to better themselves.

[inlined]

Common retort: don’t just downvote me, tell me why I’m wrong. I’m a professional who had signed off on legal documents. Why would the buck not stop at me? That’s the way it works in architecture and other professions.

[jodrellblank]

Common retort: don’t just downvote me, tell me why I’m wrong.

"Please don't comment about the voting on comments. It never does any good, and it makes boring reading." - https://news.ycombinator.com/newsguidelines.html

[hobofan]

I _think_ this rule is intended to discourage "Have an upvote" (and similar) comments, commonly seen on Reddit.

Reminding fellow readers/commenters to not just shallowly dismiss comments once in a while doesn't do much harm, and actually lead me to reply to the parent.