This all makes sense to me since we deal with it at work. I would maybe add a service vs route point to differentiate things like UI that need external exposure. The main difference is we use kustomize instead of helm. Out of curiosity if you had any experience with both and why did you settle in helm?
This seems similar to the EUs requirements. It really speaks about the US laws when even archaic Japanese legislators (see Japanese copyright laws) are ahead of that market in customer rights/options.