How to Audit Your Android App Permissions (and Which Apps to Remove)

How to Audit Your Android App Permissions (and Which Apps to Remove)

A recent article on Android Police recounted how one user spent a weekend inspecting their app permissions and ended up deleting five apps they had previously trusted. The story is not unusual. Many apps request access to data they do not need, and most users never question those requests. Over time, that accumulation of unnecessary permissions can expose your location, contacts, microphone, or camera to companies—or worse, to malicious actors.

This guide walks you through a permission audit on your own Android phone. No special tools needed, just a few minutes and a willingness to uninstall apps that overreach.

What Happened

The Android Police article described someone who systematically went through every permission category on their device—location, camera, microphone, contacts, and others. They found that several well‑known apps demanded access far beyond what their core function required. For example, a flashlight app asked for precise location; a calculator wanted to read contacts; a weather app requested access to the microphone. These are classic red flags. After checking each app’s justification, the user removed the permissions or deleted the apps entirely.

The exact five apps mentioned in that article are not named here because the details are not publicly available beyond the summary. But the pattern is common enough that we can outline what to look for on your own device.

Why It Matters

App permissions are the primary way Android controls what data an app can access. When an app has permission to your location, it can track where you go. When it has access to your contacts, it can upload your address book to its servers. Many developers collect this data for advertising or analytics, sometimes without clear disclosure in the privacy policy. In worst‑case scenarios, a compromised app with excessive permissions can be used to spy on you.

Android has improved its permission controls over the years. Since Android 11, you can grant “only while using the app” for location, camera, and microphone. Android 14 introduced “approximate location” instead of precise. Android 15 expanded the privacy dashboard and made permission revocation more visible. Still, the system only works if you use it.

What Readers Can Do

Here is a practical checklist. It should take about 20 minutes.

1. Open the Permission Manager
Go to Settings > Privacy > Permission Manager on Android 12 or later. On older versions you may need Settings > Apps > App permissions. This screen lists all permission categories (Location, Camera, Microphone, etc.) and shows how many apps have access.

2. Review each category
Tap into a category and look at the list. For each app, ask: Why does this app need this permission?

• A navigation app needs location.
• A voice recording app needs microphone.
• A flashlight app should never need location, contacts, or the internet.
• A calculator app should not need camera or microphone.
• A simple QR scanner can work with just the camera and no internet access—if it requests contacts or location, be suspicious.

3. Change or revoke permissions
Tap an app to see its current permission setting. Choose:

• Allow only while using the app for location, camera, microphone (best practice).
• Don’t allow for anything that seems unnecessary.
• Approximate location instead of precise, if the app only needs a general area (e.g., weather).

4. Enable automatic permission removal
Android 11 and later allow you to auto‑revoke permissions for apps you haven’t used in months. Go to that app’s app info page, tap Permissions, and if you see “Remove permissions if app isn’t used,” turn it on. This is a useful safety net for apps you rarely open.

5. Check the Privacy Dashboard
On Android 12+, Settings > Privacy > Privacy Dashboard shows a timeline of when apps accessed sensitive data (location, mic, camera) in the last 24 hours. If you see unexplained access—such as a weather app using your microphone at 3 AM—that is a strong signal to investigate and likely uninstall.

6. Replace risky apps with privacy‑friendly alternatives
Some categories are notorious for over‑permission. Consider switching to:

• Simple Gallery Pro (open source) instead of a bloated gallery app.
• Open Camera for photography—no ads, no unnecessary permissions.
• F‑Droid as an alternative app store that often hosts open‑source apps with minimal permissions.
• A system‑level QR scanner if your phone has one built into the camera app.

Concrete red flags – (not exhaustive)

• A wallpaper or live wallpaper app requesting location or microphone.
• A free game that asks for contacts or SMS.
• A “battery saver” or “cleaner” app that asks for accessibility service access (a common vector for malware).
• Any app that does not work when you deny a permission that seems unrelated to its core function. That usually means the developer is collecting data, not providing a feature.

Sources

• Android Police article: “I spent a weekend reviewing Android app permissions and deleted 5 apps I thought I could trust” (published June 12, 2026).
• Android Help documentation on permission controls (support.google.com/android/answer/9431959).

Regular audits are not hard and can significantly reduce your exposure to data collection. Set a reminder every few months to check the Permission Manager. Your phone will run about the same, but your privacy will be better protected.