Killjoy I'm new to GrapheneOS so please forgive me if I'm wrong. I read multiple people here who want to put Google Play/spyware apps in the private space, but doesn't it make more sense to put that in the main profile and then use trusted / open source apps in the private space?
That is what I am going to do. I don't think it make more sense as such; regardless of what profile you put Google Play and their apps in, they cannot see or talk to apps in any other profile. Some prefer to put Google Play and their apps in the private space, because that way they can be shut down by simply locking the private space, so they cannot even track when you use your phone or not. But I prefer to have all privacy sensitive things in the private space, so I can keep that data and those files encrypted and locked away most of the time, in case my device is taken. And that is of course only trusted open source apps. It depends on your use case.
DeletedUser87 not at all, no. The owner profile has the most insight into the other profiles, you can imagine it as an "admin lite".
Apss running in owner profile should not have more permissions than apps running in any other profile. Especially no kind of admin like permissions. This includes Google Play and Google Play Services, which are just regular apps in GrapheneOS without any special permissions.