What are the privacy implications of installing a bunch of Google apps?

ZorkLV

First I'd like to offer kudos to the devs. Everything about GOS thoroughly satisfies my "neat and clean" OCD affliction, from initial boot to the docs layout, and even the forum design. I imagine the code powering the project is also of the same high quality. Well done!

My question is specifically about privacy, not security.

What are the privacy implications of installing a bunch of Google apps? My app list and install procedure looks like this:

// Note: Every app is denied Network and Location permissions
// Note: Do not disable any default GrapheneOS system apps

- Install sandboxed Google Play Services and dependencies
- Install Google apps: Pixel Camera, Gboard, Calculator, Clock, Contacts, Phone by Google, and Google Messages
- Uninstall sandboxed Google Play Services and dependencies

My thought is that denying Network and Location permissions should reduce my Privacy risk level to near-zero. That, combined with the fact that every app runs sandboxed, seems pretty solid.

Do I have that right or am I missing something?

Even if I'm right, I'd love to hear any constructive criticism on my plan to install all these Google apps.

My concern is that some of those apps require permissions I don't understand the implications of. For example, GCamera, GPhone and GMessages require the camera permission, which provides the system media intents. Also, GContacts, GPhone and GMessages require the phone permission, which I don't understand the implications of.

Xtreix

ZorkLV Hello, I'm not an Android developer, so take my message with a grain of salt.

ZorkLV What are the privacy implications of installing a bunch of Google apps? My app list and install procedure looks like this:

Well, It depends on the application, as they will all work as normal unprivileged applications, I wouldn't worry, revoke the permissions you don't like or install them in a separate profile, of course, some apps might malfunction if you revoke something you shouldn't have, but it's easy to fix, generally speaking, it's with system apps that you shouldn't mess around.

ZorkLV My thought is that denying Network and Location permissions should reduce my Privacy risk level to near-zero. That, combined with the fact that every app runs sandboxed, seems pretty solid.

Yes, revoking the network is also much more effective than maintaining a block list.

ZorkLV GCamera, GPhone and GMessages require the camera permission

Its apps ask you to authorize the camera for reasons that seem obvious to me, such as taking a photo and sending it via GMessage, adding personalized photos for contacts or making a video call via GPhone (Google Duo is integrated into GPhone). If you're concerned about the camera's authorization, simply revoke their access.

I don't know exactly what "system media intents" are, so I'd rather not answer.

Viewpoint0232

ZorkLV

What is the point of installing Play Services and then uninstalling it again? Wouldn't it also mean that you won't get any more app updates?

An alternative could be using Aurora Store to download and update these apps, without a Google account. Unless I'm misunderstanding your intent.

Xtreix

Xtreix As Viewpoint0232 wrote, you shouldn't uninstall Google Play Services and its dependencies if you've been using it to install apps, this is a point I've missed and you gain absolutely nothing by doing so, you no longer receive updates.

ZorkLV

Xtreix Excellent point.

My default position was, the fewer Google stuff installed, the better.

Therefore if my initial theory is correct (still hoping for more input), that simply denying network and location permissions to all Google apps is sufficient, I see no harm in leaving GOS's sandboxed Google Play Services and dependencies installed.

And you are both correct, automatic updates will be much less of a hassle.

Xtreix

ZorkLV My default position was, the fewer Google stuff installed, the better.

This is not a problem, GrapheneOS is not ungoogled and does not seek to prevent you from using all Google applications, the OS teaches them to behave in a non-invasive way. There are far more malicious and invasive applications than those produced by Google.

ZorkLV Therefore if my initial theory is correct (still hoping for more input), that simply denying network and location permissions to all Google apps is sufficient

I'd then advise you to check which applications might need the network and localization to avoid something going wrong, you can authorize localization only when you're using the application. You might also consider disabling sensors, as many applications currently don't need them, and their use poses privacy issues.

By default, I disable access to the camera, microphone and sensors and then adjust the settings, the applications that don't require accounts can run offline.

ZorkLV And you are both correct, automatic updates will be much less of a hassle.

Manual updates are possible with .apk files from the official repositories, which is what I use on my main profile with an RSS feed reader alongside Accrescent, an open-source application store still in beta but very promising.

Xtreix

ZorkLV MAJ : Please note that free Google applications and the Google Workspace program do not have the same privacy policies, and that the impact on your privacy also depends on the information you transmit to them.