I am with the OP on this one; there's a lot of things they could have done to diagnose the device whilst preserving the safety of his data. Also there was a recent case he linked to in his tweet where Apple employees were lifting personal images off their customers' phones...

Troy has done some excellent work on security and I for one applaud his attitude.