Location Data Blocking

propsecprv2

Hi all i am trying to set up my device to not have any location data at all. Here are the specifics: I want to have a secure device that I can use to access web services like email, signal, browser, etc. For these I will route everything throught vpn connection either on the device it self or through a travel router. I think I need to down load a work email app for when i am traveling but I can make sure it only has access to the wifi going through a vpn. The part that is tripping me up is the sim card. I know the sim card will have to have some location info since it needs to be able to send/receive calls and sms. The question is can I keep the rest of my device from getting access to that location information.
In my model the consequence of someone retrieving location data from phone companies is something I cannot prevent but it is not probable therefor I am willing to eat that risk. The threat in my model is not from a state actor.

In short can the sandboxed google play apps get acces to the sim location data for the purposes of sending that data up stream. For instance, if I was to use the gmail app would the app be able to get the accurate (non ip based) location data (assuming I have wifi scanning off and/or an ethernet connection for my device?

ryrona

propsecprv2 In short can the sandboxed google play apps get acces to the sim location data for the purposes of sending that data up stream.

In short, if you have a SIM card plugged in, all apps can access the SIM card provider name and country information. So, all apps would know in which country you are in. Theoretically, a misconfigured cellular network might leak your location information down to 1km radius to apps, since all apps can also read the assigned IP addresses, which should be local, that is, not leaking any location information, but in practice is anything the cellular network decides, including leaking information about what cellular tower you are connected to. Both of these issues are prevented by not having a SIM card plugged into your phone.

Apps might also be able to deduce in which country you are in based on configured timezone, keyboard language and system display language.

Besides this, you need to grant either Location or Nearby Devices permission to an app for it to be able to estimate your location more precisely. As long as you do not assign these permissions to any app, you should be safe. They will know nothing else than what country you are in, as long as the network you are connected to is correctly and not maliciously configured, and as long as you are using a VPN.

propsecprv2

ryrona Thanks for the response.

What I am trying to figure out is if there is a way I can still use phone/sms services without leaking sim location info to the other apps. The idea would be to turn off mobile data and only use apps that require network access on a vpn connection. I am trying to think through how I can use sandboxed apps without access to location sharing and nearby devices without having to give up any location data.

Specifically, I may need to load my company email client and I dont want to send my location information back to my company's network. This means a separate work phone does not help me since I would still have the issue of trying to keep location information from most other apps. I need to be available over email while traveling away from my home office.

ryrona

propsecprv2 Specifically, I may need to load my company email client and I dont want to send my location information back to my company's network.

An app cannot get your exact location, unless you give that app Location or Nearby Devices permissions. Without those permissions, the app can only see which country you are in, or a similar very coarse location.