As you already suggested, probably offering the creation of a new nsec in-app in a good solution.