This is a great list.
How about for the times if we run requests against production data, does Postman keep that information at its servers? I went to their information page on what data is being collected (below), and it is not clear if the requests or the response contents are collected and stored:
It could very well be the case, implied by this section that seems to cover everything:
Information you provide to us
We collect information about you when you input it into the Services or otherwise provide it directly to us.
Account and Profile Information:…
Content you provide through our products: The Services include the Postman products you use, where we collect and store content that you create, send, receive and share. This content includes any information about you that you may choose to include: we collect feedback you provide directly to us through the Services; and we collect clickstream data about how you interact with and use features in the Services.