1: Install and Maintain Network Security Controls

Requirement 1.4.4

System components that store cardholder data are not directly accessible from untrusted networks.

To meet this requirement, you must not store cardholder data on a server that is connected to the internet. For more information, see Configuring cardholder data storage locations.

Systems that are used by external Python programs are out of scope of IBM® Safer Payments. External Python programs could be used to store data on external systems. You must ensure that no Cardholder Data is stored on servers that are accessible from the internet.