I completely agree that those are without a doubt the main drivers. But it's still curious why the outcry for no-kyc and verifiable security is so big, and there's still a good amount of software used that doesn't follow those principles as much as they could.

To be fair, there is a telegram FOSS https://f-droid.org/en/packages/org.telegram.messenger/