So I have Aurora in my main profile that allows apps from play store with no play services installed it just uses the open source aurora store and my bank apps all work without playservices. And I don't use streaming services in anyway I buy everything on bluray and then rip it to my server. But with private space on android 15 you can install sandboxed play services in private space and it is 100% seperate sandboxed from your main profile and can use apps like Netflix etc that do require sandboxed play services and then when not using it you can pause private space essentially shutting it all down and preventing any of the apps from running in the background at all. Plus with sandboxed play services on GOS you can control all permissions for play services all way down to network so you can only allow network or more just depends on your personal threat level or how comfortable you are sharing the data. But even with sandboxed play services in a main profile would still be more secure as it only installs the play store and play services apps no AI.
As soon as Apple announced AI for iOS I sold my iPhone 15 and got a pixel and installed GrapheneOS on it and have no Apple or Google services installed all open source. And more importantly no AI.
This just seperates it into a secondary profile but all apps in your main profile are already sandboxed as well the only apps that are not sandboxed are system apps such as Play services. But you could use the app in a work profile(shelter) under a seperate Google account that would add a bit more anonymity. But android default app sandbox could be more secure there are other custom ROMs that do just that making the regular app sandbox even more secure.
Here is more information on how each android app is sandboxed(except Play Services)
Thank you already seen this and like I said if it's a system app it's a no go for me any app to do with Google needs to be sandboxed being a privileged app is why I won't use it.
I use this on my pixel with Graphene OS and it works great once I completely degoogoled my entire phone my spam calls and text pretty much all went away.
As long as micro G is a system app in my opinion it is the same why not run it as a sandboxed app. There is probably a reason why it can't just think it would be more privacy first approach to sandbox it but that is just my opinion everyone's threat model is different I don't use Google at all anymore so non issue for me. Still better than stock Google Play true just think micro G could do more.
Yes but it's just as bad Micro G is still installed as a root app in the system and still uses proprietary Google code required for MicroG to work so micro G may limit the data the get but the are still getting it. I use proton mail on GOS with no sandboxed Google Play and just notifications are broke and that's fine by me.
No there would be no blocking the would just shut it down but the could sanction any company that violates the ban that's about it for enforcement. But a VPN to another country would bypass it but it would not be US version of tiktok.
You have to disable Play Protect it now blocks unknown apks on android 15 and higher most users will give up only tech inclined users will most likely pursue that cource.
So I have Aurora in my main profile that allows apps from play store with no play services installed it just uses the open source aurora store and my bank apps all work without playservices. And I don't use streaming services in anyway I buy everything on bluray and then rip it to my server. But with private space on android 15 you can install sandboxed play services in private space and it is 100% seperate sandboxed from your main profile and can use apps like Netflix etc that do require sandboxed play services and then when not using it you can pause private space essentially shutting it all down and preventing any of the apps from running in the background at all. Plus with sandboxed play services on GOS you can control all permissions for play services all way down to network so you can only allow network or more just depends on your personal threat level or how comfortable you are sharing the data. But even with sandboxed play services in a main profile would still be more secure as it only installs the play store and play services apps no AI.