The invention is related to a device for handling sensitive data comprising at least one first integrated circuitry for forming a first trust zone and at least one second integrated circuitry for forming a second trust zone wherein the first integrated circuitry comprises at least one secure processing unit adapted for processing sensitive data, the second integrated circuitry comprises at least one persistent memory area within its trust zone for storing the sensitive data wherein the second integrated circuitry is separated from the first integrated circuitry, the processing unit of the first integrated circuitry is adapted to transfer the sensitive data from the first trust zone to the second trust zone for securely storing said data in the persistent memory area of the second trust zone, the second integrated circuitry is adapted to transfer the sensitive data stored in its persistent memory area to the processing unit of the first trust zone, wherein the first and the second integrated circuitry comprise crypto means for securely transferring the sensitive data based on a symmetrical crypto method using a secure key, and wherein the second integrated circuitry comprises means for initiating a new key generation to replace the active secure key.