Here is what I would expect myself to see.

1. Who wants to know - i would hope this would be a trustworthy statement of the reader's owner.  (That seems to be missing from the std.)

2. What will they do with the information?

3. What data is requested.  Most interesting is the picture and ID #.

My guess is that in the NFC case the assumption is that the user can see who is asking.  But consider the case of a line waiting to get into a bar. Some big burly guy walks down the line asking to "see" proof of age. He harvests all the data and then just walks away.