GrapheneOS is a privacy-focused and security-hardened Android operating system. It runs on Pixel devices and replaces stock Android with a version that has no Google services, sandboxed app permissions, and significantly hardened attack surfaces.
For high-risk users who require a mobile device without Google’s data collection, GrapheneOS provides a defensible baseline. Applications can be installed from alternative sources or sandboxed Google Play if needed.
Trade-offs: setup requires technical comfort, some apps may not function without Google services, and it requires a Pixel device.
What it means in practice
GrapheneOS is a hardened Android build designed for maximum privacy and security. It removes Google services by default (they can be run sandboxed), provides stronger app isolation than stock Android, and receives rapid security updates. It runs on Google Pixel hardware. The practical trade-off is compatibility with apps that require Google Play Services — most apps work, but some do not. For journalists and activists who need a hardened device without full threat-model justification for a Tails setup, it is the most practical high-security option.
Related articles
Your device was seized. Here’s what they can extract in 6 hours. — Build your threat model in 20 minutes.