Rationally, you apply fines as close to the source as possible. Because they will pass those costs up the stack.

But the source could be the most likely place for corrupt reporting. Or: Maybe the source element is not dangerous but downstream by-products are.

Like you’ve said: It’s a problem.