Can an app denied the network permission exfiltrate data via Play Services?

xe3

Some people deny play services to Google Apps (Google Camera+Photos for instance). In a scenario where Google Camera, Photos, and Sandboxed Play Services are installed to the same user profile and Camera and Photos are denied network permission, is it possible that:

Is it theoretically and technically possible that data or metadata could be intentionally or unintentionally sent to Google by way of sandboxed play services?
Do we have the technical means to know for sure whether this is or is not happening?

DeletedUser115

xe3 1. If Sandboxed Play Services has Network permission then yes, it can receive some data from other apps via IPC and potentially send it to Google. Some data needs to be sent to Google if apps are using Google APIs.

One could MITM at the router level or VPN level and inspect the traffic to see what exactly is being sent to where.

[deleted]

xe3 Is it theoretically and technically possible that data or metadata could be intentionally or unintentionally sent to Google by way of sandboxed play services?

It is possible, however I don't think that Google Play services will do it (at least for non-google apps).

xe3

[deleted] it is Google apps I had in mind (Things like Gboard, Google photos, camera, messages, etc)