Thanks man, I’ll maybe roll with storing the private key for now and if one hasn’t been set then follow in zapplepay footsteps (backend creates it with its own key pair) and add the users handle to the event.

I’m confident the private key never leaves the users device but allowing for both options would mean anyone that is cautious isn’t completely missing out