? it would be hypocritical to do the opposite thing - to restrict access on stolen data