In distributed systems, it is more likely that more than one administration domain will be involved. This means not just multiple groups within the organization, but also external companies. There might be conflicts there—for example, you might need to pass on user IDs to a third-party service for something such as user monitoring. However, this might be against the policies of the identity/profile service team—who is responsible for maintaining the customer information. The architect would then need to build glue systems that allow these multiple administration/policy domains to work together. In the case of user IDs, one possible solution could be building obfuscation logic for passing IDs to the third-party service.