Your contention is that the review process entirely fails at enforcing privacy and security rules that cannot be achieved entirely through automation, or fails at such a high rate that it may as well be entire?

That doesn’t reflect my experience submitting apps, nor as a user of Apple devices. It’s certainly imperfect, but it achieves a lot more than if they simply stopped doing it.

[edit] and in fact, some of the automated checks wouldn’t be practical to run on a user’s device—are those also totally ineffective?