I just realized that with introducing securepoll-related user groups to testwiki _and_ allowing bureaucrats to grant them, we effectively allowed testwiki's bureaucrats to grant users access to confidential information. That's because SecurePoll election admins can see IP addresses and user agents of voters in "their" elections".
SecurePoll requires admins to be both in electionadmin group as well as be added as an admin to the particular election in order to be able to view private details. So this doesn't mean that bureaucrats can arbitrarily view PII of voters in all elections. PII is also hidden from all users 60 days after the election has ended on all wikis.