For apps with sensitive data or files, you may want to encrypt the persisted contents of the app in case the file system is compromised.
Extraction of the persistent storage will only expose encryption ciphertext as opposed to the readable data.
The recommended approach is to use the AppConfig Community best practices to enforce device passcodes on iOS devices to ensure DAR encryption. Similarly, on Android, apply an MDM policy to enforce encryption on the device.
One alternative approach for Android is to use the AirWatch SDK’s encryption read / write methods to encrypt your app data.