Especially when you have to account HIPAA/GDPR/legalese, and some serious SecOps behind that.