ChatGPT
ChatGPT is a legitimate productivity app from OpenAI with strong encryption, but requests several permissions that exceed typical chat app needs - location, camera, media access, and screen capture detection. Conversations are stored on OpenAI servers for service improvement, and the app includes ad-tech integrations.
Regulatory & Legal
Conversations may be reviewed by OpenAI staff for safety and improvement purposes. Location permission requested without clear justification for text chat functionality.
How we got to 38.
7 dangerous permissions including location, camera, and screen capture detection
Conversations stored on OpenAI servers for safety and improvement
Firebase, Mixpanel, Segment, and AD_ID permission for ad targeting
ChatGPT Plus subscription paywall with usage limits on free tier
TLS 1.2+ encryption in transit; data encrypted at rest on OpenAI servers
OpenAI - transparent privacy policies and regular security audits
Active development with consistent security patching
GDPR-compliant; users can request data access and deletion
Hidden inside the code.
What it asks for.
Precise GPS - not needed for a text chat app
Approximate location tracking for analytics
Image analysis features, but granted by default
Voice chat features - granted by default
Unusual for a chat app - may prevent screenshot sharing
Keep reading.
What trackers are actually hiding in your apps
We scanned 32 of the most-installed Android apps and counted every embedded tracker SDK. The average app hides 5 tracker...
Why does this app need microphone permission?
Why do apps request microphone, location, or contacts access they don't need? A field guide to Android permission creep ...
Similar risk profiles.
Scan ChatGPT yourself.
Get the full report on your device - with real-time DEX analysis, permission auditing, and breach monitoring. Free, no account needed.