I don’t need to. It’s visible in their software. It runs on a UNIX kernel, so the application and operating system layers are independent. They restrict all APIs, both first and third-party, until a request for access has been approved by the user. The encryption they use for iCloud, iMessage, and FaceTime transmission is end-to-end, and local device encryption is hardware encoded, requiring local passcode entry to decrypt.