Does anyone have experience running an instance of Sakai where users are allowed to store sensitive information? Any suggestions for what to do differently?