I am not allowed to store my PAT's in the cloud

I am only allowed by policy to store PAT details locally/in our already trusted locations. I have read that if I only stick to using the current section of my environment configuration, those values will not be sync’d to the cloud, but sync’ing can still occur if I accidentally use the wrong field (initial).

Our infosec team has said they are unsure if this is adequate for the policy, and are reviewing internally, but I need to be ready to look at using a different (non-postman) tool.

Is there a setting I can set in postman (and show to my infosec team) that stops environment from sync’ing to the cloud?

Is my organization the only one that has these sorts of requirements? That feedback would be useful too… (As I try to plead my case to infosec)