App Security Statement – IP-INTEGRA Solutions

Statement of Software Integrity and Security
Security Declaration for IP-INTEGRA VoIP Application

Overview

This statement confirms that IP-INTEGRA VoIP app, developed by FREUND Elektronika d.o.o, is designed with a "Security by Default" architecture. The application serves strictly as an intercom interface and does not possess the capabilities, code, or intent to perform malicious actions, harvest unauthorized data, or compromise the integrity of the host mobile device.

1. Controlled Installation and Distribution
• Official Channels: The application is distributed exclusively through the Apple App Store and Google Play Store. Both platforms perform rigorous automated and manual security "sandboxing" and malware scans before any version is approved for public release.
• User Consent: The application cannot be installed silently. Installation and account provisioning are entirely under the control of the end-user and the SIP server administrator.

2. Limited Permissions & Data Privacy
The application requests only the minimum permissions necessary for its core function as a communication tool. Each permission is prompted to the user via the OS-standard authorization flow:
• Microphone & Camera: Required strictly for duplex audio/video intercom calls.
• Phone Access: Required to manage VoIP call states and integration with the device’s native calling UI.
• Overlay (Appear on Top): Required only to ensure the user can answer an intercom call from a locked screen or while using another app.
Note: Our application does not request access to device contacts, GPS location, SMS, or file storage.

3. Data Integrity & Restricted Communication
The application operates within a closed-loop ecosystem, significantly reducing the attack surface:
• Restricted Input: The app only accepts data (contact lists and door triggers) from the authorized IP-INTEGRA SIP Server. It does not browse the open web or execute third-party scripts.
• Push Notifications: We utilize standard Apple (APNs) and Google (FCM) protocols for wake-up notifications, ensuring that background processes are only active when a legitimate call is incoming.
• No Malware/Adware: The application contains zero third-party advertising SDKs, trackers, or hidden background processes.

4. Statement of Non-Malfeasance
FREUND Elektronika d.o.o hereby declares that IP-INTEGRA VoIP app does not contain any:
• Malware, Viruses, or Trojans: No code designed to damage or gain unauthorized access.
• Spyware: No unauthorized data collection or transmission of user activity.
• Backdoors: No hidden access points for unauthorized remote control.