I'm working on a project that creates a new wallet for the user that is not controlled by them, what would be the safest option for storing newly created private keys programmatically?

Currently, this is what I implemented: Creates new wallet with user-input randomness coupled with server side randomness, encrypts the private key with a password that is stored offline, clears the non-encrypted private key from memory, then writes the encrypted private key to the database.



What can I improve or change?