Option to disable public access to all projects and repositories at workspace level

We are using Bitbucket Cloud for internal projects. To help us guard our intellectual property it would be safer to have an option at the team level to block all anonymous access instead of having to mark each repository as private. This would also allow us to better manage read access to repositories (and projects in the future if BCLOUD-13202 gets implemented).

Bitbucket Server already has a concept of global permissions, if we could inherit that to be an account/team-level options that would be great.