[deleted] while it doesn't inherently come with 'more' privacy issues. If you're overall aim or desire is to reduce to the absolute minimum what data Google has access to sandboxing them certainly reduces this drastically but still not to the degree that not running them would. Just be aware that when it comes to privacy it is you not the OS that holds the control because it is down to you what you give it access to and what information you provide them. This includes installing them and letting them see the other apps in the profile. other apps hooking into them and the ability of apps to use IPC to communicate between each other where both explicitly consent to do so. Controlling privacy is controlling exposure of data. The best way is to use GrapheneOS as is at first use, everything you do from then must be seen as a considered compromise based on your threat model.
The reason the project provides sandboxed Play Services is to enable everyone to use what they need, how they need to, based on what I said above, using all the tools the OS provides.
It is for this reason for my use case and when asked I advise using them in a secondary user profile. However my daily use case permits me to operate a 90/10 split between my non Google/Play user and my Play Services user.