App privacy policies openly contradict the far more visible "nutrition labels." //

Mozilla rates a few Google apps like Gmail as "needs improvement," but that's missing the forest for the trees. The report doesn't dive into this, but for Android, Google likes to do privacy sleight-of-hand and center the discussion around the idea of "app privacy," when "OS privacy"—privacy from Google—should probably be more of a concern. Google and your device manufacturer both have system-level access to the OS that exists outside the app security model, so they can basically do whatever they want on your phone, including collecting all your data. //

The same "privileged permissions" model also applies to preinstalled apps, which is part of the reason Facebook works so hard to be preinstalled on most Android phones—more permissions means better spying. It would be nice if the Play Store labels were accurate, too, but nobody wants to talk about the entire OS.