Can you give us an idea of the scale of the problem? Is handling flagged accounts something that could plausibly be improved by creating a "large enough", dedicated team? Or do legal and/or practical constraints (e.g. too many cases to look at) prevent that?
(Again, just answering for me personally, not with my official Google hat on.)
Good question. Just like a good programmer finding a bug should ask "How could I prevent this bug from happening next time?" it's pretty common that when a situation like this occurs, the relevant people at Google ask "How could we prevent this situation from happening next time?"
In this case, I believe the solutions that have been proposed elsewhere on this thread (letting the outside person know about the suspected violation, letting the outside person have access to their data) can be fraught with potential legal difficulties.
I'm sure that people at Google will be discussing what different steps could prevent a situation like this from happening in the future.
