Quick googling gave that Stockholm is deeper on average, although the deepest point of London metro is currently deeper than Stockholm. No drastical differences that should affect this question I think.
(This will change when they are done with Sofia station, a new station in Stockholm that they are building 100 m below the surface.)
According to this report [1] the appeal was about specific requirements like encryption, and he claimed he had delegated it. So it is clear that it is hard to actually hold people responsible.
> The appellate court rejected the prosecution's argument and dismissed all charges. In its unanimous decision, the court stated that neither the GDPR nor the applicable Finnish healthcare legislation required encryption or pseudonymisation of patient data at the time in question.
> Prosecutors alleged that Tapio knew about the March 2019 breach and failed to act. They claimed he neglected legal obligations to report and document the incident and did not take sufficient steps to protect the database. Tapio denied the claims, saying he was unaware of the breach until autumn 2020 and had delegated technical oversight to external IT professionals.
> The court found there was no clear legal requirement at the time obliging Tapio, as CEO, to take the specific security measures cited by the prosecution. These included firewall management, password policies, access controls, VPN implementation, and security updates.
> According to the ruling, the failure to adopt such measures did not, in the court’s view, constitute criminal negligence under Finnish law.
> Tapio’s conduct during and after the 2019 breach did not meet the threshold for criminal liability, the court concluded.
It isn’t absolutely everything, it’s for negligence. If you don’t have basics in place, like independent pen-tests, ISO 27001 audits — or some equivalent — when you’re handling clinical data, then that’s negligence.
If a breach happens and you were seen to have followed best practice, you won’t be found criminally negligent.
That is part of being an executive. The buck stops with you — if you’re an executive, you’d better understand your obligations, you get the big bucks for a reason, it isn’t just a fancy job title.
Other people in the organisation can be held accountable for criminal acts, but when it comes to criminal negligence, it’s the executives that are liable, because it’s a systemic failure and you’re deemed to be in-charge of the system.
>if you’re an executive [...] you get the big bucks for a reason
In Finland? Notably wage-compressed Finland?
No comment on the specifics of this case, I agree with you that the executive should be where the buck stops. But you would be surprised how many various execs I have met here over the years who admit behind closed doors they really do treat it as a fancy job title that barely pays above their last position, but comes with 3x the stress, and they do it simply because, well, someone has to. You can't really be surprised that most of the folks here who you might want to be in the C-suite decide it's just not worth it, that remaining a middle manager or even an IC is simply a far better value proposition.
Posting anonymously here. I was on the leadership team of a Nordic public company, reporting to the CEO, presenting to the board and representing the company at the AGM. Total comp a little under $200k.
The compensation really didn’t match what you take on in terms of responsibility and legal liability. The stress was significant too. That said, as you point out, the work needs doing.
Recommended if you have an over-active sense of duty, not otherwise.
But this is not “absolutely everything”. No one is saying CEOs should be accountable for every action of an individual employee.
So if not the CEO, who is accountable when something like this breach happens? The CTO? The PM The DBA? Nobody? Maybe they’ll care developer who wrote the code or botched the configuration should be prosecuted?
CEOs can justify their pay be being accountable for what their company does. They’re the CEO, after all. Maybe they’ll care more when they have some actual skin in the game.
When a bridge fails, it is the professional engineer that signed off on that part. If you want someone to sign off on software or IT you will need to pay them quite a lot.
Yes, I would expect compensation to increase proportionally with accountability. What makes no sense is compensation that increases irrespective of accountability.
Being the CEO of a company that handles risky, sensitive things should be risky for the CEO, personally. And their compensation can reflect that.
That could be outlawed as well as it probably wouldn’t be too difficult to show that person wasn’t actually making any of the decisions. Not that I expect any of this will ever happen.
I wouldn't describe software as most people experience it as more complex.
And civil engineering projects are constantly fixing unforeseen design problems either during construction or afterwards.
I would distinguish the failure modes as different though eg analog vs digital. Real world engineering can absorb an awful lot of minor mistakes through safety factors etc. Failure can be gradual or just a matter of degree or even just interpretation of standards. Software failures are often more digital or only matter when "under attack"
Yeah, a lot of this is just .. well, I hesitate to use the over used phrase "deep state", but a lot of it is the work of people in the security institutions who "advise" the government, rather than the changing cast of the thin democratic bit on the front. There's long been authoritarianism in response to the fear of terrorism, from the IRA onwards. Then there's things like the "spycops" scandal, which make you wonder whether certain protest groups are deliberately engaging in really unpopular stunts in order to facilitate a crackdown.
The British public are in an odd place on this. There's a lot of "folk libertarianism", but that mostly consists of not having ID cards, while at the same time supporting all sorts of crackdowns on protest as soon as it's mildly inconvenient.
And then there's immigration. As in the US, it's a magic bullet for discourse that allows any amount of authoritarianism (or headshots to soccer moms) as long as you promise it will be used against immigrants.
Hannah Arendt convincingly made the case that any government power used against immigrants will eventually be turned against citizens. History keeps proving her right.
It's a problem with pretty much anyone. Things are bad from a fundamental structural failings for decades, elect new person, don't see immediate turn-around, they're massively unpopular.
The only way out of this is if you successfully blame $marginalised_group for the peoples problems. Or spend decades undoing the damage, but nobody ever gets decades in power.
Most don't want any of the options presented to them. Almost all the parties don't really serve the electorate, so a large number of people are abstaining.
I appreciate this in an anecdotal but I've spoken to quite a few people I know in my family, that saw it as their civil duty to vote and they told all told me some variation of "there is nobody worth voting for", "I don't think it matters who I vote for".
There are good options I think for most people. I did not like labors party policy, so I voted for the Lib Dems in a large labour area, did it achieve anything for them? No, did I do my civil duty?
I am sure many green voters felt the same way for many years and now they stand a decent chance of getting many seats!
Your best option in your area was a protest vote, but you still believe there are good options. To me that sounds like cognitive dissonance.
I don't vote. There are many reasons I don't vote. However the biggest reason I don't vote is that the whole premise or at least how it is presented to you is false. The way it is presented to you both in school, media etc. is that you are supposed to read the manifesto, consider the candidates arguments and history etc. etc.
People don't do that, they vote for their team. People have their political teams, much like Premiership Football it often comes down to the "Reds vs the Blues" (literally Man U vs Man City).
That might be true, but the votes (not seats, first past the post, almost guarantees people aren't represented):
Labour: 9.7M
Conservatives 6.8M
Reform: 4.1M
Liberal Democrats 3.5M
The point clearly stands that had Reform not been a thing, 2024 would have been a conservative landslide.
What we got was a Labour landslide, what we should have got was some coalition.
As the sibling comment said. You are making the assumption that every Reform voter would have held their nose and voted Conservative instead. A lot more people would have stayed home I think. I don't think anyone thought the Conservatives could win and that includes the Conservatives themselves.
Yes, though I'd be careful about assuming that votes are Conservatives <-> Reform on a left-right median voter model. The other aspect that Reform has (and will have at least until it forms a government) is anti-system/populist credentials. Labour had a little of that last time (they are a deeply establishment party, especially under current leadership, but they were coming off a period as very public opposition to the government and the current state of things) but will have very little next time.
It's certainly not a given that all the 2024 Reform vote would have gone to the Conservatives: a good chunk of it would have likely been disgusted abstention, another chunk to other anti-system parties (mostly of the right fringe, I suspect, but not excluding the Greens despite wild ideological differences), and likely a further (if smaller) chunk to other parties which were simply not the Conservatives (including Labour and the Lib Dems).
Edit: the best analysis on this is likely to be in the latest volume of the long-standing The British General Election of XXXX series, which has just been published online[0]. I haven't had time to look at it yet, though.
Some of it is deliberately attempting to appeal to Reform voters, in ways which have infuriated Labour supporters while not winning any Reform support.
Which is even more bizarre given appointing someone as divisive and pig-ignorant as Priti Patel the Home Secretary would have the tabloids crucifying a Labour PM. Johnson and his after-dinner speeches about the Mayor from Jaws forgave a lot of blunders during C19.
Remember also that when Sunak stepped down, Priti was put forward for leader. If she had played off her Zionist aspirations just a few years later she'd be right in the current newscycle re proscribed organisations and 'domestic terrorism' charges in the UK, and possibly in the running for the big chair.
Yet these laws and general direction have been in place through half a dozen prime ministers, including ones initially very popular (Johnson especially, but Cameron wasn't particularly unpopular until the brexit mess)
Right. When I'm at a counter-protest facing the local† Nazis (who in this incarnation have decided to call themselves "patriots") among all the rhetoric accusing us of supporting terrorists (no matter where brown people may come from they're apparently "ISIS" or "Taliban" these days) or rapists or any number of weird conspiracies, one thing they often yell about is that Keir Starmer is (to quote them) "a Wanker" and I have observed to other protesters that uniquely this is probably a widely shared viewpoint. Yeah, he is, but, why you are you being so racist, why do you want to terrify my neighbours, what does that have to do with Keir?
† Local in the sense of being the ones who turn up, my guess is that a good number of them travel by car from quite some distance, personally I live five minutes walk away.
Film is manufactured on huge rolls, and is cut down to different sizes and formats, so its not really that expensive on the manufacturing side to support a lot of formats. From the buy side, cameras are expensive, and almost all cameras only support one format. The big change came with film developing labs on teh high street, as when development was at home it was fairly manual, but once it was automated the machines were designed for fewer formats (for a long time 35mm, and often medium format). But even then, the process doesnt change per format and the chemicals are the same, so supporting variation is relatively cheap.
In the early days there were as many formats as there were camera backs because the exposure was at the size of the print. These were positives that were developed directly rather than that they went through an intermediate step of a negative and subsequent enlargement.
The glass plate sizes were relatively well standardised, eg whole plate, half plate quarter plate, although other countries had metric and imperial versions. Before the plates were mass produced they may have varied more.
My dad collected old cameras, he had 100's, and the number of formats in use was not all that much smaller than the number of cameras, to the point that we had to cut glass or paper quite often. We also sensitized our own plates and developed metal plates (which is insanely dangerous).
Thats difficult for most people to implement in their applciations, and it increases latency to be closer to networked SSD anyway. So it remains fairly niche.
reply