Is the user's PIN safe?
Yes. Hover's SDK leverages Android's Keystore System, which creates a software secure element on the device. Because of this, the PIN never leaves the device and, when it is used, it is encrypted. The PIN is deleted from the device as soon as it has been used within the USSD session. It never leaves the device and is not provided to the developer in any way.