Sorry, my poor choice of words! I meant the back end holding the data should be secured against hacking, including encrypting the data so that if the black-hats get through everything else the data still isn't usable.
You can't help wondering if, in this instance, TT were actually storing data on the front-end server....