separate read, write and delete access keys
separate read from write and from delete with certain access keys.
example: We may want to use spaces to upload backups to the s3 compatible storage. However if the server gets compromised and the keys get stolen, the backups may also be deleted. This is a security risk. Its a good habit to separate the 'deletion' of old backups by another instance. Hence separation of delete from the read and the read/write.