Hacker News new | ask | show | jobs
by extra88 22 days ago
None of that legal complexity has anything to do with putting "aria-labels on absolutely everything."

> And for the attacker, they only need to find one case of violation - while you need to be correct 100% of the time.

I don't know how European regulators work but even in the litigious U.S., this is not true, at least not in the courts. However, for small businesses, which are more likely to be targeted by the trolls, the cost of proceeding far enough to get a suit dismissed is burdensome. And in the EU, I thought individuals couldn't bring cases to a judge, they have to complain to a regulatory body that can decide whether proceeding is warranted or not.

> implement defensive overcompliance far beyond practical usability requirements

This is like complaining about having fewer grams of rat turd in your flour than legally mandated; "Oh no, we made our product too good!"

In practice, building "reasonable software" has never included making it work for people with disabilities, despite WCAG and the web standards themselves existing for decades.
1 comments
DocTomoe 21 days ago
> And in the EU, I thought individuals couldn't bring cases to a judge, they have to complain to a regulatory body that can decide whether proceeding is warranted or not.

EU regulations get made into member state laws, and these vary massively in who can sue through what way.

In Germany, for example, a common enforcement vector is the "Abmahnung" under unfair competition law. In theory, if a regulation imposes costs on compliant businesses, competitors should not gain an advantage by ignoring it.

The problem is that this has historically created an ecosystem of professional cease-and-desist mills. A competitor (or an organisation acting on their behalf) identifies a violation, sends a lawyer's letter, demands reimbursement of legal costs, and requests a cease-and-desist declaration with contractual penalties for future violations.

Whether the underlying issue is accessibility, consumer protection, labeling requirements, privacy notices, or something else is almost secondary. Once compliance becomes sufficiently complex, the enforcement mechanism itself becomes a business model. The cynic in me can't help but notice that our parliaments are made up disproportionately by lawyers.

That is why many businesses are worried less about accessibility itself and more about legal uncertainty around accessibility requirements. The concern is not "making websites accessible is bad."

The concern is that compliance costs are barely predictable, while litigation risk arising from ambiguous compliance boundaries is not.

link