what? are you just gonna “oh okay then why dont you actually stop yippity yappity and go prove it” instead of actually taking their feedback and figuring out a solution? your only problem (as of right now, besides point of failure) is trust as everyone has said. someone can claim that x is exploiting when its just part of the game feature. since your goal is to have a semi-global ban list, of course you cant give the developers access to put anyone in the global ban list. but also legally, whats stopping you from misusing your own service? what if your service fails/broke down? what if your service is breached?
“global” carries a lot of weight, you are responsible for keeping all of this together, secure, and cohesively.