Security Requirements in Red Apps
A Red App and Red App provider must comply with the following requirements and guidelines. It is recommended that you review all of these requirements before you code your Red App and submit it to Sabre for certification.
Red App Developer Guidelines. This document is subject to change periodically, so please check the Dev Centre for updates.
Your contract with Sabre, and all addendums and attachments to your contract.
Red App Security Requirements. Some of these requirements apply to all Red Apps. PCI requirements specifically apply to Red Apps that handle cardholder or personal data. The requirements are presented on web pages in the Developer Resources section on the Dev Centre. These requirements are subject to periodic updates, so please check the Dev Centre for updates.
Red App documentation about your secure coding practices and protected data in your Red App. This is applicable to Red Apps that handle cardholder or personal data. When you submit your Red App, you provide this documentation and other information. Before you prepare to submit your Red App to Sabre, you can review the information that Sabre requires on the Dev Centre under Developer Resources.
If you upgrade your Red App and your app uses cardholder or personal data, you must also provide new documentation that Sabre requires for security.
To access the Dev Centre, log in to Sabre Red App Centre on https://www.sabreredappcentre.sabre.com/.