Data is segregated at the database layer so no one outside your organisation can access your data..
Other frequently asked security questions include:
How do you encrypt user data?
Who can see or have access to user data?
What are your disaster recovery processes?
How do you screen your employees and contractors?
What measures do you have in place to prevent unauthorised viewing of customer data?