the most obvious thing missing here is simply this:
You hate Apple’s built-in Contacts app so you go to the App Store and download a 3rd-party replacement. It will ask you for permission to access your contacts – which means the contacts database in which Apple’s built-in app governs data – and boom, all your information is there and ready to use. For what?
Do you know what happens if you grant access to your your contacts, your current location, your mails, etc?
Do you know what happens if you like to revoke access to your Contacts app?
The simple answer is
you can’t know it because the answer is in the developer’s code you don’t have access to.
To ask for the user’s permission before accessing personal information is a step in the right direction. And some of the information these apps are collecting are necessary for them to work properly. But once an app has permission to collect that information, it can share your data with anyone the app’s developer wants to.
This is expressed in the Third-Party Doctrine, a legal theory that holds that people who voluntarily give information to third parties – such as banks, phone companies, internet service providers, developers of apps, e-mail servers, etc – have “no reasonable expectation of privacy.”
Thanks for reading.