Add Privacy Policy related improvements

various thing to make sure we're GDPR, et al compliant

api/prisma/schema.prisma

@@ -31,11 +31,12 @@ model User {
   createdAt DateTime @default(now())
   updatedAt DateTime @updatedAt
 
-  image    String? // url maybe id or file storage service? cloudinary?
-  bio      String? //mark down
-  Part     Part[]
-  Reaction PartReaction[]
-  Comment  Comment[]
+  image                String? // url maybe id or file storage service? cloudinary?
+  bio                  String? //mark down
+  Part                 Part[]
+  Reaction             PartReaction[]
+  Comment              Comment[]
+  SubjectAccessRequest SubjectAccessRequest[]
 }
 
 model Part {
@@ -79,3 +80,14 @@ model Comment {
   createdAt DateTime @default(now())
   updatedAt DateTime @updatedAt
 }
+
+model SubjectAccessRequest {
+  id      String @id @default(uuid())
+  comment String
+  payload String // json dump
+  user    User   @relation(fields: [userId], references: [id])
+  userId  String
+
+  createdAt DateTime @default(now())
+  updatedAt DateTime @updatedAt
+}