Secure Data with Zymkey HSM on Raspberry PI

I'm trying to do secure data encryption/storage through a raspberry pi and the zymkey HSM. The program should: 1. Store data in a secure, encrypted, format 2. Require a master password at startup to decrypt the data. Doesn't require a password throughout the lifetime of the program to deccrypt data 3. During the lifetime of the program, no other program should be able to decrpyt the data, even if it tries to read the program's memory. (maybe the program should run in a TEE for this?) Looking at the Python API (https://docs.zymbit.com/api/python_api/ ) I can only find functions to lock/unlock data for the whole system, whereas I want data to be unlockable only for the specific program Is this possible, and if so can someone help me with this?