Lock the server address
Users cannot change the managed XMPP hostname or port, preventing an accidental or malicious move to a non-organization server.
SP-POLICY · SELF-HOSTED
Create named policy templates for staff, contractors, field teams, kiosks, or high-risk users. SecurePhone applies the assigned posture when Global Chat returns to the foreground—without reinstalling the app or handing users a checklist of settings.
Managed policySynced just now
ACTIVEServerchat.securephone.co
LockedScreenshotsNot allowed
OnRetention7 days
ActiveFederationOrganization only
ClosedPolicy can lock identity, transport, capture, retention, and presence behavior while leaving the Global Chat experience familiar to the person using it.
Users cannot change the managed XMPP hostname or port, preventing an accidental or malicious move to a non-organization server.
Keep the install single-account so personal XMPP identities cannot sit alongside the organization account inside the same app.
Limit conversations to identities in the same customer organization when a closed deployment is safer than open federation.
Android FLAG_SECURE blocks screenshots, screen recording, and readable recent-app thumbnails across managed chat surfaces.
Set a retention window so local message history older than the policy limit is removed automatically from the device.
Apply a standard presence note for compliance language, on-call rotations, operational instructions, or brand tone.
Policies become a reusable operational control instead of a setup document that drifts as users change settings.
Start from the threat model for a role or cohort and select the app controls that belong to it.
Attach the template to each user or customer that should inherit the same posture.
Global Chat retrieves current policy during its normal lifecycle and applies supported runtime controls.
Edit the template centrally; assigned devices adopt the new posture on their next refresh.
These controls shape Global Chat itself. Camera, microphone, location, Bluetooth, screen-lock, and system-app restrictions require the managed-device layer provided by SecurePhone MDM.
See device managementRuntime app controls do not grant Android Device Owner permissions.
A device must reconnect and refresh before receiving a changed policy.
Screenshot blocking cannot stop someone from photographing an unlocked screen with another camera.
Retention removes local history; server archive behavior is governed separately.
Map roles, retention rules, federation boundaries, and capture requirements into reusable SecurePhone templates.
Configure yours