Problem Description
Currently, users authenticated through NextAuth have access to a profile modification interface in \src/app/settings/page.tsx\ but are missing the fundamental privacy capabilities expected of modern platforms: Account Self-Deletion and Data Export.
When users test or evaluate self-hosted copies of prompts.chat, they accumulate prompts, tags, and AI usage artifacts. Without an ongoing Account Deletion mechanism, abandoned user records unnecessarily bloat the schema, and users have absolutely no right-to-be-forgotten parity (GDPR/CCPA compliance issues).
Proposed Solution
- Danger Zone Layout: Add a standard 'Danger Zone' section below the ApiKeySettings in the User Settings UI.
- Cascading Deletion API: Add a DELETE endpoint to /api/user\ that utilizes Prisma to carefully strip away a user's API Keys, user-created unlisted/private prompts, and the underlying primary User entity.
- Data Export Action: Include a Download My Data action outputting their historical Prompts library to a formatted JSON document.
Impact
Protects the platform's self-hosting admins against privacy regulation violations and vastly improves user trust by giving users control of their digital footprint.
Problem Description
Currently, users authenticated through NextAuth have access to a profile modification interface in \src/app/settings/page.tsx\ but are missing the fundamental privacy capabilities expected of modern platforms: Account Self-Deletion and Data Export.
When users test or evaluate self-hosted copies of prompts.chat, they accumulate prompts, tags, and AI usage artifacts. Without an ongoing Account Deletion mechanism, abandoned user records unnecessarily bloat the schema, and users have absolutely no right-to-be-forgotten parity (GDPR/CCPA compliance issues).
Proposed Solution
Impact
Protects the platform's self-hosting admins against privacy regulation violations and vastly improves user trust by giving users control of their digital footprint.