In third-party install without proper configuration, it may be possible to circumvent Spam blacklist via this tool.
Even if in Wikimedia project where external website can not be linked, there's no technical means to prevent users from repeatly creating short URLs from e.g. en.wikipedia.org/wiki/Example's_real_name_is_John_Doe_123123 . This may be first blacklisted in Spam blacklist, and when such URL are inputted, not only creation are blocked, there will be records in spam blacklist log, so Meta sysops or stewards will block them.
I admitted that 1. this can not block such privacy-violating URLs completely, and 2. If hits are logged there will still be issues like T221072: URL shortener link creation should be logged (though this will only happen in extreme cases). Does anyone have better ideas?