Settings — coach account self-delete

Settings → Security has a working Delete account action. The disabled placeholder button is gone.

What happens when you confirm:

• Profile data on your coach record — name, bio, photo, business details, Stripe IDs, slug, email — is anonymised on the spot.
• An audit-log row is written so the deletion is provable for DSGVO accountability.
• Your auth user is banned and your email on the auth side is replaced, so the account can't be signed back in to.
• Every active session on every device is signed out via signOut({ scope: 'global' }).
• You're redirected to the login screen with a confirmation banner.

What we keep:

• Past invoices, payments and bookings tied to your coach ID stay on file. German tax law (and DSGVO Art. 17(3)(e), the legal-obligation override) requires us to retain invoice records for the full retention period — typically ten years. The coach row itself is anonymised so nothing personal links back to you.
• Clients you previously coached keep their own data on their own accounts. Their workout history doesn't get nuked when you leave.

How to use it:

• Settings → Security → Danger zone.
• Click Delete account.
• Confirm with your password, optionally tell us why you're leaving, and type DELETE to confirm.

This action is irreversible. If you change your mind later, you'll need to sign up fresh.