Application vetting services could look for android.permission.READ_CONTACTS in an Android application’s manifest, or NSContactsUsageDescription in an iOS application’s Info.plist file. Most applications do not need contact list access, so extra scrutiny could be applied to those that request it.
On both Android and iOS, the user can manage which applications have permission to access the contact list through the device settings screen, revoking the permission if necessary.
| Data Component | Name | Channel |
|---|---|---|
| Permissions Requests (DC0114) | Application Vetting | None |
| System Settings (DC0118) | User Interface | None |
Application vetting services could look for android.permission.READ_CONTACTS in an Android application’s manifest, or NSContactsUsageDescription in an iOS application’s Info.plist file. Most applications do not need contact list access, so extra scrutiny could be applied to those that request it.
On both Android and iOS, the user can manage which applications have permission to access the contact list through the device settings screen, revoking the permission if necessary.
| Data Component | Name | Channel |
|---|---|---|
| Permissions Requests (DC0114) | Application Vetting | None |
| System Settings (DC0118) | User Interface | None |