Flask uses cookie based sessions by default, but there is support for custom sessions that store data in other places. … When the session data is stored in the server you can be sure that any data that you write to it is as secure as your server .
Read more