User personal information is not stored in an identifiable format on the SEGW device. Instead, personal identifiers are substituted with a random permanent ID on the SEGW device, and matching is only performed backend in secured servers. Even if a malicious actor steals or hacks into the SEGW device, the data would not be in a usable format.