You're on the right track. It need not be custodial for a hosted solution to enable a good experience. Read-only personal proxy could go very far in aggregating and filtering data from relays thereby significantly reducing bandwidth requirements for a client.
Some people already are working on this type of personal proxy.
With subkey delegation and revocation added to the Nostr spec it could be even more powerful without risking the user's main private key.