Indian apps may be a lot more dicier than you think.
A report by data privacy consultancy Arrka estimates that, on average, apps from India seek 7.9 “dangerous permissions” from users, significantly higher than those from the US, for instance.
Dangerous permissions include those to access and modify the calendar, SMS, call logs, and storage; using microphones to record audio, sharing location information; and gathering details about emails and social media accounts. Access to these can pose a risk to users’ data privacy and security.
The report analysed 100 Indian apps – 90% of which had over one million downloads – across categories like finance, travel, entertainment, and communication.
Communication apps from India fare the worst, seeking 14.5 dangerous permissions on average. Critical finance apps, including mobile wallets, also seek high levels of permissions.
“Although the type of top dangerous permissions accessed remains the same across India and the US, the percentage of apps accessing these permissions varies greatly,” the report said, adding that Indian apps access dangerous permissions 3.5 times more than US apps.
“This clearly indicates the degree to which excessive permissions are taken by Indian apps,” the report said. (The data for the US apps is sourced from a Pew Research report from November 2015, the last time the think-tank did such a survey.)
This article first appeared on Quartz.