CSM module: secure code, unsecure data


I have a question regarding the CSM module. It's stated in the documentation that code running in unsecure memory cannot read/write to memory that is secure or from flash. How can I know if I have code running in unsecure memory?

I've checked my *.cmd and sections .cinit, .pinit, .text are in flash. The section ramfuncs is loaded from flash and running in RAML0, so secured memory. Does this mean that my code is running in secured memory?

IQTABLES, FPUTABLES and .stack are in unsecure memory. The code running in secure memory can read/write to memory that is unsecure?