For all those worried people, Certificate Pinning is an alternative to trusting Root CA's. Your app (ie. an app that YOU wrote) chooses NOT to trust the Root CA's installed into the operating system's "trusted root certificate authorities", and instead verifies the certificate itself.
You'll know IF you are doing this: your app is already hard-coded or requires special configuration for the trusted certificates.
You'll know WHY you are doing this: you don't trust every single Root CA in your operating system's list of Root CA's (who even knows if the ones on your system are the ones that Microsoft put there via updates?!). Your app is security-critical, and it would be negligent of you not to batten down every hatch.
Chances are high that your app instead trusts the Root CA's that the Operating System trusts. You opt for this convenience so that you don't have to bother with changing the certificate every few years, like this.