We do not store customer data or sensitive information in our databases. All the information used and displayed is requested on the fly, meaning, we perform the requests and show the information directly. Thus, we don't jeopardize the protection of your data.
Whenever we need to store information, we rely on Jira's mechanisms for doing so. For example, when we need to store API tokens to access external services, we encrypt and store them in Jira properties.
You can access to our security statement here: Security.