Comment by ThePowerOfFuet 5 days ago
>Give me a Pixel & all the Google stuff but without Google, and with advanced data protection and Apple's tracking protection and transparency and I'm in.
GrapheneOS may interest you.
>Also, on either platform, why is it still not possible to toggle off network access in app permissions. Its a glaring and deliberate omission.
GrapheneOS specifically supports this for all installed apps.
You might want to take a gander at this list: https://privsec.dev/posts/android/banking-applications-compa...
Looks like the list includes those apps that require access to Google Play services - which defeats the entire point of the OP wanting the privacy.
GrapheneOS not only provides a sandbox for Google Play (meaning it's just another app with no special privileges, and you can grant/revoke permissions (including network!) as you desire), it also heavily promotes user profiles for further isolation.
I have a "banking" profile set up with Google Play services installed. 98% of the time I'm using my phone, I'm using the primary Owner profile. All the other profiles are encrypted-at-rest, meaning that until I enter my Banking-profile-specific PIN, the apps and data (including the Google Play Services installed there) are just encrypted files, and unable to do anything at all. (There are provisions for allowing a secondary profile to run in the background, but in this case I have obviously left that disabled.)
All of my banking apps that are required for 2FA would probably not work.