Multiple profiles

greenpowercube22

Hi guys, I just want to move from iOS to Graphene OS but I have one question. Lot of you are using Google Play services on other profile, not on main. I wanted to ask if it's necessary or it's just other "layer" of security and privacy. As I understood, when I want to use only one - main profile, Google play is running in sandbox and even each app is sandboxed. Is there some potential risk I will be taking when I will use only main profile with sandboxed google play? All apps I am planning to download from Aurora store, I don't want any gmail account logged in the device. Thanks for help

treequell

There's certainly not a necessity to use Google Play Services in a separate use profile. As you're moving from iOS, I'd recommend starting off simple with everything in the owner profile. If you decide to later, you can always start moving apps to a separate user profile, to keep them separate if you wish to.

As you say, Google Play Services are sandboxed like other apps on GrapheneOS. So anything that Google Play Services can do, any other app can also do. It doesn't get any special treatment. I'd argue that's already a big step in privacy compared to iOS or stock Android.