I think one of the key innovations in web3.storage was recognition that following roles in the system could be played by different actors
In traditional systems customer = owner, which implies they have to handle access control.
Resource owner is responsible for setting up resource access as they find fit without having to coordinate with a service or customer handling billing. They could create a groups (teams, projects or whatever you want to call them)
Team manager (holder of the team key) can add members by delegating access to them
ℹ️ It is worth calling out that from UCAN perspective there is no difference between teams