Outlook
Microsoft Outlook is a mature, enterprise-grade email client with no dangerous permissions and strong encryption. Minor risk from telemetry collection and cloud data processing, but typical for productivity apps and clearly disclosed.
How we got to 22.
Microsoft diagnostic SDK for crash reporting and usage analytics
Email, contacts, calendar processed on Microsoft servers (Exchange Online)
Microsoft Graph API, OAuth for background sync and task management
Zero dangerous permissions - relies on cloud sync, not local device access
Major vendor with established security teams and vulnerability disclosure
Detailed privacy policy; data processing agreements for enterprise users
TLS in transit, AES-256 at rest; S/MIME for advanced E2E
Monthly or more frequent updates addressing vulnerabilities
DEX headers valid, signing intact, no tampering detected
Outlook app has not suffered major data breaches
Hidden inside the code.
Keep reading.
I scanned 47 apps on my phone. Here's what I found.
A full weekend audit of every app on a normal Android phone. 47 apps, 211 trackers, and a permission count that would ma...
What is a tracker in an app, and why should you care
Trackers are code libraries hidden inside apps that collect your data for third parties. Here is how they work, what the...
Similar risk profiles.
Scan Outlook yourself.
Get the full report on your device - with real-time DEX analysis, permission auditing, and breach monitoring. Free, no account needed.