Best way to isolate an android app - Island, Insular or Shelter

I need to install some rather intrusive company apps (Microsoft intune + teams/outlook).

If I install these in an isolating app would it be able to access contacts or what apps are installed. Also after I am done with it can I just wipe out the space containing there apps with no residue left over.

According to Microsoft if I installed it directly on to my device I wouldn’t even be able to uninstall it unless I unenroll my device. I do not like the idea of not being able to uninstall the app when ever I want.

The device is a Samsung s23 running android 13 if that matters.

All of these use more or less the same mechanism to achieve isolation from the main profile: Using Android‘s built-in “Work profile“.

Android treats the work profile essentially like a second useraccount, seperating out file and app access, as well as permissions and app data. Installed Apps on the main Profile can be mirrored to the work profile, having two different versions installed won‘t work.

Some data is shared between the two profiles, like Light/Dark mode state, ringtone preferences, Monet-Generated color scheme (Android 12+) and whether location is enabled, just to name a few. Some data that isn‘t shared is default choice of apps, like your default keyboard for instance. That will have to be mirrored to the secondary profile manually.

As all of these rely on the same mechanism, the isolation on that front is practically the same.

1 Like

Is there a list of what data is accessible from the work profile? Tried looking for documentation on the android dev site but I couldn’t find it

I don’t think anybody made a comprehensive list, no.

It is literally written on the website. Please read before asking questions.

“Shelter is recommended over Insular and Island as it supports contact search blocking.”