I read the article and still do not know how this data is not secure? Encryption at REST, remote delete, central account password administration….how can this not just be wiped or have access denied? Does the Taliban have full access to the database like unencrypted data on disks they physically have? So what if they get their hands on a few face scanners?