I am a l colleague of John's who was part of the same Moodle course. I don't have access to Moodle Tracker so will add my comments here. This is only intended to give you some insight into why this is a big issue for some people. If my tone is a bit strident, please take it in that spirit.
Online privacy is a big issue for all people no matter what their age. I believe that forcing Moodle participants to display email addresses deterred participants from claiming badges in the course John was talking about and would also prevent them from using this feature of the Moodle LMS with their students. I feel compelled when using badges in Moodle for online professional development events to post a prominent privacy alert warning people that Moodle does not give them control over whether this personal information will be displayed or not.
Using an email address to connect Moodle and Mozilla backpack makes sense to me. However, I've read the MZ privacy statement and it says: "Each badge you push to the Mozilla Badge Backpack contains your Persona username and data about what the badge means and who issued it." It does not say your Persona email address will be published in order to ensure you are who you say you are. The decision to include earner emails in badge assertions has been made at the Moodle end. Other badge management organizations (eg. Credly) do not automatically do that.
Moodle seems to be working from the assumption that an email address is like a social insurance number --- that we have a unique email address for all learning experiences and that it will stay with us forever and ever. Only if that were true would an email address differentiate one 'john smith' from another. The first John Smith may have many email addresses across his learning lifetime and also at any one period in his life. ( I have at least 10 of them right now.) His portfolio might display badges earned at different stages of his life from different organizations and under different email addresses. Having all those different email addresses revealed in his portfolio would not create a story of continuity and would not be a way for an outside observer to be sure that the same John Smith was recipient of all those badges. If he changed service providers, his email address would change. if he earned badges through employment training and used his work email address for that purpose, when he changed jobs, that email would become completely defunct. Email addresses don't offer a great way to legitimize badge earners from my point of view.
There will be unscrupulous people trying to cobble together portfolios using other people's badges. That is going to happen. The greater worry, I think, is that someone can find my email address on a Moodle badge displayed publicly, misrepresent him/herself as me using that information, and hack my email address (which those who know me trust to come from me). if you've ever been hacked in that way, you'll know how much trouble it is to notify everyone not to open emails that look like they're from you and to change all your accounts to a new email address.
I think what's missing from Moodle & other assertions is a statement from the badge earner about how the evidence he/she provided was a good demonstration of the learning or accomplishment embodied in the badge. Potential employers would be able to question candidates about these experiences or ask to see the artifacts in order to ensure false claims were not being made. (They have to take some responsibility and do their due diligence to vet digital claims.) Taken together, these recipient statements would tell an interesting story of learning, skill development, and achievement that is missing in open badges at this point.
Those are my thoughts. Thanks for listening.
Sue Hellman
('email withheld' -LOL)