Multiple stages of account deletion #15
Description
If a user clicks "Delete account" in the UI, the account has to be deleted immediately from the user point of view and all collaborators. (In the case of organization users this action potentially may be unavailable - only organization admins can delete users.) It should also delete user data in any marketing/communication lists, e.g. in Salesloft.
This does not delete underlying data to give some period to recover, but after a reasonable (configurable? ~30 days) time workspaces owned only by this user are deleted, including their backups (or backup keys are dropped).
If there were any financial transactions, however, we should keep them on file, a good term seems to be 7 years after the last transaction. During that time we may also want to keep some information about the account, like the name and last used email.
After 7 years financial transactions should be dropped as well and Stripe customer record should be deleted. It seems that if there is a legal need to keep some data longer, Stripe will take care of that regardless of what we do. But it does not delete stale customers automatically.