That's not entirely true. Take for example, passwords. If your requirement is "store passwords securely, so they can only be used to check logins", then you implement that as salted, one-way encryption. But if you add the shadow requirement "and be able to retrieve anyone's password when the government requests it", then your password storage will inevitably be much more vulnerable.
Agreed, data not stored is more secure than data that's stored, but I stand by my point that data stored in such a way as to provide the minimal necessary access can be substantially more secure than data stored in such a way as to provide that access, plus additional back-door access for spooks.
The only way to prevent it is to not store data.