Yes. In many cases a “threat model” is those recreational hackers in a basement, crooks like ransomware pukes, and of course all those sites that love to mine data and make money selling obtrusive ads. Not a government.
Qubes works well for that, too.