Yes, nor their private keys. This enables these services to sign any kind of Bitcoin transactions, of any complexity (as long as their are valid), without ever touching user's private keys or having to migrate its users to their own [web] client-side wallet.