Agreed. Then there is the problem of a single private key. If that key is compromised, we are no longer in control over our identity. This is particularly problematic for companies that need to share their private key with several people.

If Nostr were to have two private keys, one of them a master key with admin capabilities for the identity, the protocol would need a new architecture.

As a result, whenever a Nostr spin-off architecture solves this problem, every company, corporation and security-minded user will migrate to the protocol with higher security. That's just how things work.