I've had a few instances where developers have pushed tags accidentally/in error. After this point it's really difficult to get rid of them in a big team as - once they're on the remote - they tend to keep reappearing even if they're deleted as other developers end up with them in their local repos and re-pushing them accidentally.

It would be amazing if it was possible to restrict who had permission to push tags to a Bitbucket hosted Git repo in the first place to stop this happening.

Also, due to compliance and permissions policy requirements, its critical to give the ability to Workspace/Project or Repo Admins to limit number of users who can manipulate Tags, example: by adding or removing a tag.