What is unclear to me is since organization and user IDs are included, what security risk this poses to my account. I know the API includes sending the organization.

While I'm sure my name, email and location are out there already, I am also disappointed to see leaks of (what I view as) PII.

Discussion: https://news.ycombinator.com/item?id=46065585