I read through it all, i'm just not sure I understand the use case. Even if the admin controls all keys that have access (except for external teams through nostr.json), we still have the issue of transfering the keys to the rightful owner.