this post was submitted on 05 Jul 2026
11 points (70.4% liked)

Privacy

49788 readers
403 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 6 years ago
MODERATORS
 

Posting here because the whole reason Compass exists lines up with why a lot of you are on Lemmy: no ads, no tracking, no account, no Big Tech middleman.

It's a news aggregator that pulls public RSS/Atom feeds and opens articles in a built-in reader that strips out the scripts, ad slots and tracking pixels before rendering. Everything — your feeds, saved stories, settings — lives on your device. The app collects nothing.

Android, closed testing right now. If the ethos resonates and you'd like to test, DM me the email on your Play account and I'll add you. Feedback from people who actually care about this stuff is worth more than a hundred casual installs.

you are viewing a single comment's thread
view the rest of the comments
[–] vk6flab@lemmy.radio 2 points 1 week ago (1 children)

Which Android permissions does it require, since that's pretty much the single biggest determinant of me even contemplating the installation of any app.

[–] DiscoDan_IN_NZ@lemmy.world 0 points 1 week ago

Checked the merged manifest, so this is the real answer, not a guess: The app requests exactly one permission: INTERNET. That's it — needed to fetch the news feeds and article pages, and nothing else. No storage, location, contacts, camera, microphone, phone state, Bluetooth, or notification permissions. It doesn't request them because it doesn't do anything that would need them. Saved articles and settings live in the app's own private sandbox, which doesn't require a storage permission. The only other line you'll spot in the manifest is DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION at the signature protection level. That's not a user-facing permission and grants the app no access to anything — Android auto-generates it to lock the app's internal broadcast receivers to its own signing key. Every modern Android app targeting recent API levels has it; it's a security measure, not a capability. So if you install it and check, you should see a single permission: internet access. If it ever asks for more, something's wrong and I'd want to hear about it.