Regulatory authorities have mandated that data shared via the Account Aggregator framework must remain end-to-end encrypted. This data cannot be stored by entities within the framework — unless the user has explicitly permitted them to do so.
To top it off, Fi implements the best practices in data security during any information exchanges with banks.