I'm trying to remove unwanted applications from an Android. I do want a File Manager, Gallery App, and Music Player. Most of these require read/write access to the file system/memory card.
If you dig through Google Play, to try and find the permissions, many have network access. So in theory could read your file system, and upload files.
So the question is, how do we trust these applications?
Do the gatekeepers to the applications stores test these applications for these kind of exploits?
Beyond uploading my Photos, and Music, and Downloaded Files, is there any other risk of an application having access to the file system. Or rather, are things like a Contacts database encrypted and only accessible by trusted applications?
Can you sandbox applications? With native Android tools, or possibly other applications?
I'm not overtly paranoid but don't have trust on these platforms enough to use them for phone calls and messaging at this point.
Any pointers welcome, and thank you in advance.