Collections and Security

Hi. I am looking to onboard my company to using postman, but have some questions regarding security.

That is, I want to find a workflow where non admin users can only directly contribute in their private workspaces, but also to ensure that variables stored in environment are not stored on a remote server. That is, we don’t want to allow remote storage of environment variables. Is that possible