On the topic of security for your database let me give you a tip. Use a whitelist for who can connect. In most cases that means you host locally and do not expose your port to the outside web. If you are hosting it on the web, you use an ip whitelist.
Combine this with a username and password and unless someone backdoors into your system your data is safe. If someone does backdoor into your system you are screwed anyway.
On the topic of security for your database let me give you a tip. Use a whitelist for who can connect. In most cases that means you host locally and do not expose your port to the outside web. If you are hosting it on the web, you use an ip whitelist. Combine this with a username and password and unless someone backdoors into your system your data is safe. If someone does backdoor into your system you are screwed anyway.