I dare say that I don't expect automatic deletion of emails from your inbox is not a feature many users are clamoring for, whether they have privacy concerns or not. Hence I don't think the lack of it is for monetization puposes or the lack.

If you are a business customer you can set an email retention period for your domain (under the 'Compliance' section) which deletes all emails and chat messages after N days.

Users should clamor for a feature that automatically delete emails with subject=password after say a week.

In theory the links are only valid for a few hours. In practice I don't trust that.

Even then, it's not about clamoring, but just having a way to create rules. You just can't do that easily in gmail.

Why not just delete the mail right after clicking the link?

There's a new "confidential" toggle on the web Gmail (at least for gapps accounts) that let newly composed email expire after a certain amount of time. Not available on Android Gmail yet. Just saw it yesterday.

The actual email to non-gmail addresses is just a link to fetch the mail body, which can be validated with SMS.