First of all, I will say that I have read through the documentation, but as someone with a non-technical background it is very difficult to parse and understand, so I want to ask for some help here. I currently have GOS installed on my pixel 7 pro with everything on the owner profile, but I worry that this isn't good enough for my needs.
My threat model is; I want to isolate non-privacy-friendly apps from my personal data (emails, sms, photos, etc.) and from google or any other service that will spy on them on my phone. I've been reading a lot on here and reddit about using different profiles and I think I have it partly narrowed down, but I'd appreciate some guidance.
What is the difference in OPSEC+privacy between:
Scenario 1: A blank owner profile, a FOSS-only profile, an aurora store profile without google play, a 'needs google play services' profile, and a banking profile
and
Scenario 2: A blank owner profile, a FOSS-only + aurora store profile without google play services (using as much FOSS as possible but including social media like discord for talking with irl friends, protonmail from aurora, etc.), a 'needs google play services' profile, and a banking profile
I would prefer to use scenario 2 out of convenience, but can someone please explain what the difference is in, for example, a proprietary app like discord (from aurora without any google services) could see related to my emails, sms messages, notifications, etc on one vs the other? And what the differences in app privacy are more generally. Alternatively, if you think something else would be better let me know!
Thanks, and please let me know if clarification would help as I am aware this might not be clear enough to give advice, I'm just not sure what to explain further.