XML export reveals non-public information

[utrenkner]

Looking at https://yawik.org/demo/en/export/xml, I can see that the YAWIK Demo User is registered with the address [email protected] (in this special case, I can even request a reset of password; the reset finally fails but I am logged in anyway).

In any case: The user's e-mail addresses should surely not be made public! Please review, which data fields can/should be exported and which ones need to remain private.