Open in app

Sign in

Medium Logo
Write

Sign in

Manish Mishra
6 min readApr 26, 2025
Android Permissions

Android runs on billions of phones and tablets around the world.

It’s everywhere — from budget devices to high-end flagships.

If you’re someone building apps for Android, there’s a lot to think about.

One big part of that is making sure your app doesn’t just work well, but also respects people’s privacy. That’s where Android permissions come in. They’re how your app gets access to things like the user’s location, camera, or contacts — but only if the user says it’s okay.

In this post, I’m going to walk you through what Android permissions are, how they work under the hood, and how to use them in a way that keeps your users’ trust — while still giving your app the tools it needs to do its job.

What Are Android Permissions?

So, what exactly are Android permissions? Think of them as a way for users to say, “Hey, I’m okay with this app doing that.” It’s Android’s way of putting the user in charge of what an app can and can’t touch on their device.

Apps can’t just start pulling data or using hardware like the camera or microphone without permission. The system puts up a gate, and it’s the user who decides whether or not to open it.

Some common things apps ask permission for:

  • Using the camera to take photos or scan
  • Looking at or editing your contacts
  • Recording sound with the microphone
  • Tracking your location using GPS
  • Sending text messages
  • Reading files from your storage

Without the user’s go-ahead, the app simply won’t have access. It’s all about giving people more control and keeping things safe.

Types of Android Permissions

Android doesn’t treat all permissions the same — some are considered harmless, while others are more sensitive. So, it puts them into different categories depending on how much they could impact a user’s privacy.

1. Normal Permissions

These are the easygoing ones. They let your app do basic things that don’t really touch private data. Android grants these automatically when the app is installed, so the user doesn’t have to approve anything manually.

Examples:

  • Accessing the internet
  • Setting alarms
  • Checking network status
<uses-permission android:name="android.permission.INTERNET" />

2. Dangerous Permissions

Now these are the ones that matter more. They involve access to personal info or key features of the device. Because of that, Android makes sure users give the green light before your app can use them.

If your app needs one of these, you’ll have to ask the user at runtime — not just list it in the manifest. This started with Android 6.0 (API level 23), so it’s been the standard for a while now.

You’ll also need to handle what happens if the user says “no” — which is a whole part of good app design.

Examples:

  • READ_CONTACTS
  • ACCESS_FINE_LOCATION
  • CAMERA
  • RECORD_AUDIO

3. Signature Permissions

These are kind of special. Your app can only use them if it’s signed with the same certificate as the app that originally defined the permission. In other words, both apps need to come from the same developer or company.

You won’t run into these often — they’re mostly used in tightly connected systems, like when multiple apps from the same developer need to talk to each other behind the scenes. Most everyday apps don’t need to worry about this.

How to Implement Permissions in Android

Step 1: Declare Permissions in the Manifest

Every permission your app request must be declared in AndroidManifest.xml.

<uses-permission android:name="android.permission.CAMERA" />
<uses-permission android:name="android.permission.ACCESS_FINE_LOCATION" />

Step 2: Check & Request Runtime Permissions

For dangerous permissions, you need to ask users at runtime.

if (ContextCompat.checkSelfPermission(this, Manifest.permission.CAMERA)
    != PackageManager.PERMISSION_GRANTED) {
    
    ActivityCompat.requestPermissions(this,
        arrayOf(Manifest.permission.CAMERA), 101)
}

Handling the Result:

override fun onRequestPermissionsResult(requestCode: Int,
    permissions: Array<String>, grantResults: IntArray) {

    if (requestCode == 101 && grantResults.isNotEmpty() &&
        grantResults[0] == PackageManager.PERMISSION_GRANTED) {
        // Permission granted
    } else {
        // Permission denied
    }
}

Why Android Permissions Matter

1. Earning User Trust

If your app starts asking for a bunch of permissions the moment it opens, users are going to feel uneasy — and some might uninstall it right away. Instead, ask only when it’s really needed, and explain why. A little clarity goes a long way in building trust.

2. Staying on Google Play’s Good Side

Google keeps a close eye on how apps use permissions. If you’re asking for things your app clearly doesn’t need — or worse, misusing them — you’re risking more than just bad reviews. Apps that break the rules can get suspended or even removed from the Play Store.

3. Respecting Privacy and the Law

Grabbing sensitive data without a clear reason? That’s a fast track to losing user trust — and possibly getting into legal trouble. With privacy laws like GDPR and CCPA in place, developers need to be more careful than ever. Keeping things transparent and secure isn’t just smart, it’s necessary.

Best Practices for Handling Permissions

A Few Tips for Using Permissions the Right Way

  • Only ask when you really need it: Don’t ask for location access the second your app opens. Wait until the user’s actually doing something that needs it — like opening a map.
  • Give a heads-up first: Before the system pops up that permission box, explain why you’re asking. A quick message helps users understand it’s not just a random request.
  • Handle “no” gracefully: Not everyone will say yes — and that’s okay. Make sure your app still works (as best as it can) even if a permission gets denied.
  • Use helpful tools: Libraries like Jetpack’s ActivityResultContracts or EasyPermissions can make permission handling easier and your code cleaner.
  • Keep things tidy: Go through your manifest every now and then and remove any permissions your app no longer uses.
  • Be clear about privacy: If your app collects personal data, make sure there’s a solid privacy policy in place. It shows users you’re being upfront and responsible.

What Happens When Permissions Are Denied?

When a User Says “No” to a Permission

  • No crashing allowed: Just because a permission was denied doesn’t mean your app should break. Always have a backup plan.
  • Explain if needed: If it makes sense, you can gently remind the user why you need that permission — but don’t nag them.
  • Handle “Don’t ask again” smartly: If the user taps “Don’t ask again”, the system won’t show the permission prompt anymore. In that case, you’ll need to guide them to the app’s settings so they can turn it on manually — if they want to.
val intent = Intent(Settings.ACTION_APPLICATION_DETAILS_SETTINGS)
intent.data = Uri.parse("package:$packageName")
startActivity(intent)

Tools to Manage Permissions

  • ADB Shell: Want to test permissions manually? You can use commands like adb shell pm grant or adb shell pm revoke to simulate how your app behaves with different permissions — super handy during development.
  • AppOpsManager: If you’re working on a rooted device, this tool gives you more control. You can dig into app-level permissions and adjust things that aren’t always visible in standard settings.
  • Google Play Console: This is where you’ll see reports on how your app uses permissions, along with any warnings or policy issues flagged by Google. Keep an eye on this to stay compliant and avoid surprises.

Real-World Use Case Example

Example: Chat App with Photos & Location

Imagine you’re building a chat app that lets users share photos and tag their location. Here’s what you’d need to do:

  • Ask for CAMERA and READ_EXTERNAL_STORAGE when the user tries to take or pick a photo.
  • Request ACCESS_FINE_LOCATION when they want to tag where they are.

The key here? Only ask when you actually need it, make sure users understand why you’re asking, and be ready if they say no — your app should still work as smoothly as possible.

Final Thoughts

Permissions aren’t just a technical step — they’re part of how users learn to trust your app. Every permission request should have a clear purpose, and it’s on us as developers to be thoughtful and transparent about how we use them.

Stick to the best practices, stay updated with the latest Android guidelines, and you’ll be on the right track. Not only will your app work better, but users will feel safer using it — and that’s a win for everyone.

Stay tuned to GeekyMob for more developer insights, tutorials, and tips to level up your Android app development journey!

Android
Android Permissions
Geekymob
Tools And Tricks
Privacy
Manish Mishra
Manish Mishra

Written by Manish Mishra

2 followers
4 following

Hi, I’m Manish Mishra, a mobile development specialist with over 5 years of experience building apps for iOS and Android.

Responses (1)

Help

Status

About

Careers

Press

Blog

Privacy

Rules

Terms

Text to speech