An idea for enhancing transparency in app stores

[Original source](https://www.flickr.com/photos/gabeandchry/9318305000), [CC-BY 2.0](https://creativecommons.org/licenses/by/2.0/) Original source, CC-BY 2.0

I saw an article today about apps that send location data to third parties. This isn’t especially new, but it got me thinking. https://techcrunch.com/2018/09/07/a-dozen-popular-iphone-apps-caught-quietly-sending-user-locations-to-monetization-firms/

I’ll preface this to say I’m not really a mobile developer, I have hacked some stuff together in the past, but mostly in support of other things. I also don’t own an app store, so I’m unable to implement this on any sort of broad scale. But I’m thinking of some sort of app-sandbox-whitelisting, that only allows communication to specific endpoints without user consent, and requires user consent for additional, ‘value-added’ services.

I think it would be fairly straightforward, and could be done in a way similar to permission escalations today. Or similar to a browser extension (‘this app requires access to all sites, *.somesite.com, etc):

I don’t think this is necessarily intended to block traffic, at least not at the beginning, but about giving users enough information to make an informed decision. Just an idea. Tell me what you think!