That companies will go with malicious compliance 9999 times out of 10,000. So ensuring compliance would require immense enforcement efforts from the get-go that still haven't really surfaced.