Oracle can audit the app code and also probably sandbox the back end in such a way that they can be fairly sure things aren't escaping, at least not on a large scale.