I'd think they just want to be assured that whomever is in the program can secure the data properly, and that they can accomplish their goals without accessing all of the end users data.