If you don't get a reply from a Certbot dev here you might try the Certbot channel on EFF's Mattermost. That's what they recommend before submitting a PR
That is the equivalent of setting 777, which would make the Private and Account keys globally readable to all users.
That should be doable with group permissions.
You can also use the --config directive to use a single install for multiple users (each having their own config).
Is there a reason for running Certbot as a non-root user? Other ACME clients may be better for non-root use cases, but all clients generally require root permissions (or a root to configuring routing) for the HTTP-01 challenges.