---
title: Data security
description: The Orchestration SDKs do not save or load any user data, such as username or password, or personal information in memory. The only stored keys and data are the Session and OAuth 2.0 tokens required for authentication, and security-related certificates hashes.
component: orchsdks
page_id: orchsdks::security/security-data
canonical_url: https://developer.pingidentity.com/orchsdks/security/security-data.html
revdate: Wed, 17 May 2023 14:10:20 +0100
keywords: ["PingOne Advanced Identity Cloud", "PingAM", "Journeys", "Setup & Configuration", "Source Code", "Security", "SDK"]
---

# Data security

The Orchestration SDKs do not save or load any user data, such as username or password, or personal information in memory. The only stored keys and data are the [Session and OAuth 2.0 tokens](security-tokens.html) required for authentication, and security-related certificates hashes.

The Orchestration SDKs for iOS and Android support *SSL Pinning*. The certificate information used is passed in the form of certificate key hashes in the SDKs configuration file. This means you do not have to bundle certificates with your iOS `.ipa` or Android `.apk` files.