AppXpose v6.9.1 / file 001

GET IT ON JETZT BEI Google Play

MEDIUM Risk · Score 51/100

Snapchat

com.snapchat.android

Snapchat is a feature-rich social messaging app with end-to-end encrypted content but significant metadata collection and location tracking. The app requests 9 verified trackers including Meta SDK and Firebase Analytics, plus 8 dangerous permissions (location, contacts, microphone, camera) that are largely justified by its core features but enable extensive behavioral profiling. While Snap Inc. is transparent about data practices, the combination of granular location sharing, contact access, and ad-tech integration creates moderate privacy risk.

51

out of 100

9

Trackers Found

4

Dangerous Permissions

8

Risk Factors

1

Known Breaches

Warning

Data Breach: Snapchat

2014-01-01 · 4,609,615 accounts affected

In January 2014, one week after Gibson Security detailed vulnerabilities in the service, 4.6 million usernames and phone numbers were exposed via brute force enumeration.

Geographic locationsPhone numbersUsernames

Regulatory & Legal

2021 FTC settlement: $100M fine for child safety violations, inadequate parental controls, and deceptive privacy practices. Ongoing EU investigations (2023–2024) into GDPR compliance and data processing of minors.

Score Breakdown

How we got to 51.

Scored using deterministic pattern matching and DEX analysis. Compare against research data from 3,745 analyzed apps.

+7

Unexpected Dangerous Permissions

Background location and contact write access exceed typical social app scope

+2

High-Risk Permissions Outside Scope

READ_PHONE_STATE and WRITE_CONTACTS not essential for messaging

+8

Verified Tracker Count

9 confirmed trackers including Meta SDK for cross-app profiling

+6

Location Data Collection

Foreground + background location, Mapbox SDK, Snap Map feature

+5

Contact & Identity Data

READ/WRITE_CONTACTS + Facebook Login + Google Sign-In enable identity correlation

-3

Encryption Scope

E2E encryption for messages and Stories content

-4

Developer Reputation

Publicly traded, Privacy Center, no major breaches post-2014

+4

Data Sharing with Third Parties

Meta SDK, Firebase, Mapbox, Braintree receive behavioral data

Trackers

9 SDKs detected

Hidden inside the code.

Firebase Analytics Analytics

Google Firebase Analytics

Meta SDK Advertising

Firebase Cloud Messaging Push

Facebook Login Authentication

Google Sign-In Social

Snapchat SDK Social

Braintree Payment

Mapbox Location

Permissions

4 flagged

What it asks for.

high

ACCESS_BACKGROUND_LOCATION

Snap Map tracks you even when the app is closed

medium

READ_CONTACTS

Reads your entire contact list for friend discovery

high

WRITE_CONTACTS

Can modify your contacts - unusual for a messaging app

medium

READ_PHONE_STATE

Can read your phone number and device identifiers

Evidence

From the scan.

Snapchat scan - Known breach: 4.6M accounts exposed in 2014 — Known breach: 4.6M accounts exposed in 2014

Snapchat scan - AI analysis summary and risk breakdown — AI analysis summary and risk breakdown

Snapchat scan - 9 verified trackers detected by DEX scan — 9 verified trackers detected by DEX scan

Related

Keep reading.

How to detect spyware on Android, for real this time

Forget battery drain tips. Here is what actually works to find spyware and hidden trackers on your Android phone, step b...

What is a tracker in an app, and why should you care

Trackers are code libraries hidden inside apps that collect your data for third parties. Here is how they work, what the...

Also scan

Similar risk profiles.

9 trackers · 5 permissions

9 trackers · 3 permissions

Adobe Acrobat 52

7 trackers · 5 permissions

Scan Snapchat yourself.

Get the full report on your device - with real-time DEX analysis, permission auditing, and breach monitoring. Free, no account needed.

GET IT ON JETZT BEI Google Play View all scans