It seems, at least when you store the TOTP codes locally, then they are not stored encrypted - therefore I opened this feature request a while ago: Option to encrypt the locally stored data of the Authenticator app on the device
It seems, at least when you store the TOTP codes locally, then they are not stored encrypted - therefore I opened this feature request a while ago: Option to encrypt the locally stored data of the Authenticator app on the device