The Permission Illusion
Android gives you a permission system that looks like you're in control. You see a list of permissions, you can toggle them on and off, and you feel like you've made a choice.
But here's the truth: it's an illusion.
Some permissions can't be changed at all. Others are granted to system apps that you can't remove. And even when you deny a permission, some apps find ways around it. The permission system was designed to make you feel in control while Google remains in control.
Your exact experience: You went to change a permission, found "Allow" checked and "Deny" grayed out, and felt like something was wrong. You were right. That's not a bug. That's a feature of how Google designed the system.
Physical Activity Permission
"Allow [app] to detect your physical activity like walking, running, or driving?"
What it claims to do: Let apps count your steps, detect when you're moving, and provide fitness tracking features.
The truth: This permission gives Google access to your phone's motion sensors—accelerometer, gyroscope, and step counter. Combined with location data, this builds a complete picture of your daily movements: when you wake up, how you commute, where you exercise, how long you sit still. It's not just step counting. It's behavioral profiling.
Why you couldn't change it: Google Play Services holds this permission as a "system privilege." The system considers it critical for features like "Do Not Disturb while driving" and fitness tracking. But as you asked: critical for whom? Not for you—for Google's data collection.
What you can do: You can change this permission, but you have to find the right menu. Go to: Settings → Apps → See all apps → Google Play Services → Permissions → Physical activity → Deny. If it's still grayed out, you may need to disable "fitness tracking" in Google Fit first.
Location Permission
"Allow [app] to access this device's location?"
What it claims to do: Let maps apps show your position, let weather apps give local forecasts, let ride-sharing apps find you.
The truth: Location is the most valuable data Google collects. Your location history reveals where you live, where you work, where you worship, who you meet with, what doctors you visit, what political events you attend. Google's location history can reconstruct your entire life.
The hidden detail: Even with location "off," Google can still approximate your location using Wi-Fi networks and Bluetooth beacons. Your phone is constantly scanning for networks and reporting them to Google—even when you're not connected.
What you can do: Go to myactivity.google.com and pause/delete location history. In settings, turn off "Wi-Fi scanning" and "Bluetooth scanning" under Location → Advanced. For real control, consider a de-Googled phone.
Microphone Permission
"Allow [app] to record audio?"
What it claims to do: Let voice assistants hear you, let recording apps capture audio, let video apps record sound.
The truth: "Okay Google" detection requires the microphone to be always listening. Google says it only activates after the hot word, but the microphone is technically active and processing audio 24/7. The audio is processed locally, but triggers send data to Google's servers.
The uncomfortable reality: Multiple investigations have found Google services sending audio snippets to servers. Google claims it's accidental, but the capability exists.
What you can do: Turn off "Okay Google" detection completely. For the paranoid: some privacy advocates put a physical tape over their laptop cameras and use "mic blockers" on phones (USB-C accessories that physically disconnect the microphone).
Contacts Permission
"Allow [app] to access your contacts?"
What it claims to do: Let messaging apps find your friends, let email apps sync your address book, let social apps suggest people to follow.
The truth: When you grant contacts permission, you're not just sharing your own information. You're sharing everyone in your address book—their names, phone numbers, emails, and sometimes addresses. You're making decisions about other people's privacy without their consent.
What you can do: Deny contacts permission to any app that doesn't absolutely need it. For apps like WhatsApp that need contacts, consider using a separate contacts list or denying permission and manually adding contacts instead.
Phone Permission
"Allow [app] to make and manage phone calls?"
What it claims to do: Let dialer apps make calls, let caller ID apps identify incoming numbers, let voicemail apps work.
The truth: This permission gives access to your phone's unique identifiers—IMEI, IMSI, and phone number. These cannot be changed or reset. They are permanent hardware IDs that track you across factory resets, across devices, across years.
Google uses these identifiers to build a permanent profile of you that survives any attempt to "reset" your privacy.
What you can do: On Android 10+, Google has started limiting access to non-resettable identifiers. But system apps still have access. No easy fix exists beyond de-Googling.
SMS Permission
"Allow [app] to read and send SMS messages?"
What it claims to do: Let messaging apps handle texts, let banking apps read verification codes automatically.
The truth: Two-factor authentication codes sent via SMS can be read by any app with this permission. Many apps request it for "convenience" but then have access to your verification codes, which can be used to hijack accounts.
What you can do: Deny SMS permission to all apps except your actual messaging app. For banking, use authenticator apps instead of SMS when possible.
Camera Permission
"Allow [app] to take pictures and record video?"
What it claims to do: Let camera apps take photos, let video chat apps show your face, let QR scanners work.
The truth: Apps with camera permission can take photos and videos at any time in the background. Android shows a notification when this happens, but most users don't notice. Malicious apps have been caught surreptitiously recording users.
What you can do: Deny camera permission to any app that doesn't absolutely need it. Watch for background camera access notifications. Consider camera covers for laptops and phones.
Why Some Permissions Are "Critical"
Remember your original frustration: you tried to change a permission and couldn't. Here's why:
1. System App Privilege
Google Play Services and other system apps are installed in a protected part of your phone's storage. They have signatures from the phone manufacturer that mark them as "trusted." The permission system assumes these apps should have access because they're part of the operating system.
2. Dependency Chains
Some permissions appear unchangeable because other system functions depend on them. For example, the "phone" permission is required for cellular network registration. If you could deny it, your phone might not work as a phone. Google uses this dependency to justify keeping permissions that also benefit their data collection.
3. The Real Reason
The real reason is business model. Google's entire revenue comes from advertising. Advertising works best when you know as much as possible about the user. Permissions that seem "critical" for functionality are actually critical for Google to understand who you are, where you go, and what you do.
Your insight was correct: Nothing is more critical than what you want with your phone. If you want to deny a permission, you should be able to—even if it breaks something. Because it's YOUR phone. The fact that you can't proves that Google, not you, is in control.
Step-by-Step: How to Change Permissions
For regular apps:
- Open Settings
- Go to Apps → See all apps
- Select the app you want to change
- Tap Permissions
- Select the permission and choose Deny
For system apps like Google Play Services:
- Open Settings
- Go to Apps → See all apps
- Tap the three dots menu and select Show system
- Find Google Play Services
- Tap Permissions
- Select the permission and choose Deny
Note: Some permissions may still be grayed out. That's the system telling you that you don't really have control.
For location specifically:
- Go to Settings → Location
- Tap App location permissions
- Review each app and set to Deny or Allow only while using
- Go back to Location settings
- Tap Advanced → Scanning
- Turn off Wi-Fi scanning and Bluetooth scanning
Phone Manufacturer Comparison
Different phone brands give you different levels of control. Here's how they compare:
| Phone Brand |
Permission Control |
Notes |
| Google Pixel |
Medium |
Pure Android, but fully integrated with Google services. Hardest to de-Google. |
| Samsung |
Low |
Samsung adds its own tracking layer on top of Google's. Two companies collecting your data. |
| Xiaomi |
Low |
Aggressive data collection, ads in system apps. |
| OnePlus |
Medium |
Closer to stock Android, but still has Google integration. |
| /e/OS Phones |
High |
Pre-installed with de-Googled Android. No Google services by default. |
| GrapheneOS (Pixel only) |
Complete |
Full control over all permissions, Google Play Services in sandbox. |
Beyond Permissions
Changing permissions helps, but it doesn't solve the underlying problem. Google still:
- Collects data through apps you use
- Tracks you across websites
- Builds profiles based on your behavior
- Shares data with advertisers and partners
- Uses your data to train AI models
Real control requires more than toggling switches in settings. It requires understanding the system and choosing alternatives that respect your ownership.
The choice is yours: You can accept the illusion of control, fight for every permission change, or take the next step toward real ownership.