Saw it.
Well, it’s perfectly fine to have a dedicated user that gathers actions for non-registered / anonymous useres, but here I’m talking about an administrative / settings / permissions-related page, that moreover is changed upon user login, I think it should be handled by a different user from the one that holds anonymous page comments.
To tell it all, I find a bit strange too that the just logged in user is the same user that updates his own user page - our XWiki is connected to LDAP so the user page fields are updated on each access - I could see another spot for a service user here, especially if the user has no rights at all on the instance.
I need to check this twice, but as I reported in this post the user can’t view nor edit his profile page, yet he edited the page: