I can see how that might feel a little spooky. That url was intentionally made to be shareable, to make getting device information from an end user easier when troubleshooting (if, for instance, IT didn't have access to Fleet directly). One strategy I've seen used to lock thins up a bit is to restrict access to the endpoint to internal networks.