undefined

May I ask, if you (a) just want to be technically correct, (b) don't see the difference or (c) are trying to make a point I don't understand and if so would be willing to explain?

---

[0] https://piunikaweb.com/2026/02/02/grapheneos-non-pixel-hardw...

by 4gotunameagain9 hours ago|

parent|

prev|

[-]

I would rather pay a one off ransom to google, than have them harvest all my data and profit from them in perpetuity.

Better yet, you can buy a used pixel phone.

by burningChrome9 hours ago|

parent|

[-]

Pixel 9 Pro handsets are going for around $500 on the secondary markets like ebay. That's a only a single generation off from their current Pixel 10 models and you still get OS and security updates until 2031.

Not a bad deal and pretty crazy how fast smartphones depreciate now.

by microtonal8 hours ago|

parent|

[-]

Indeed and Pixel 10 was 549 Euro here just a few weeks ago and Pixel 9a as low as 338 Euro.

by TobTobXX12 hours ago|

prev|

[-]

The outlook webapp is quite decent. I've never used their native app, but I've manahed to get by fine with their webapp, even though notifications don't work (I just check it regularily). IIRC K9/Thunderbird also has support for exchange now.

by sheiyei12 hours ago|

prev|

[-]

Apparently a lot of banking apps work with the sandboxed Google malwares. Not sure though, I'm not a user (wrong hardware)

by microtonal11 hours ago|

parent|

[-]

Correct. I am using my Dutch bank and credit card apps without any issues. Someone linked the curated GrapheneOS banking list already. If your bank does not support it, you could either contact them. If they require remote attestation, this can be implemented for GrapheneOS as well:

https://grapheneos.org/articles/attestation-compatibility-gu...

If the bank is very hard-nosed about it, you could consider keeping an old iPhone or Pixel (because long security updates) for banking if it is practical to do for you. 95% without big tech is also a big win. Of course, if you need to have it with you at all times, that might not be a worthwhile option.

by wafflemaker12 hours ago|

parent|

prev|

[-]

can confirm. And there are even some pages that list banking and other apps working on GrapheneOS. It's actually very few that don't work with sandboxed Google Play API.

edit: https://privsec.dev/posts/android/banking-applications-compa...

by zwarag6 hours ago|

prev|

[-]

Theres e/OS where you can have a locked bootloader with some phones

by ekjhgkejhgk10 hours ago|

prev|

[-]

Why do people need banking on their phones though? Banks have websites too.

by gyulai10 hours ago|

parent|

[-]

> Why do people need banking on their phones though? Banks have websites too.

2FA. I was a smartphone hold-out for longer than anyone I know, but banks mandating 2FA with no options for doing it in a standards-compliant way or any way that doesn't involve the app stores was what finally broke my resistance.

by pmontra10 hours ago|

parent|

prev|

[-]

This is asked again and again. Apparently you guys in the USA or in other parts of the world are still lucky, but in Europe banks must be compliant with regulation that more or less force them to do 2FA through their app with the biometric authentication of either an Android or an iOS phone. There are other ways (eg giving a hardware OTP generator to customers,) but apps are the cheapest solution.

by kruffalon7 hours ago|

parent|

[-]

Do you have a link with information about this?

I'm just wondering since I'm currently using 3 different European banks without any biometric authentication to unlock my phone, password manager or provide a 2FA.

I'm asking so that I can adjust in time to any new regulations I'm not aware of.

by pmontra2 hours ago|

parent|

[-]

This https://en.wikipedia.org/wiki/Strong_customer_authentication

by kruffalon1 hours ago|

parent|

[-]

Thank you!

I kind of jumped at the "biometric" part of your original comment.

Now I understand what you mean better and I'm not worried about my setup (although I question how it complies, but that is another matter).

by fsflover8 hours ago|

parent|

prev|

[-]

You can still find banks in Europe that do not force Google and Apple on you. They may ask you to use their own security devices for instance.

by zipping154910 hours ago|

parent|

prev|

[-]

My bank has no website or physical branches. They’re mobile-only, but their app is leaps and bounds ahead of the competition.

by rkagerer11 hours ago|

prev|

[-]

I don't much like the official Outlook app. Been using Nine for ages, it does everything I've needed.

by kgwxd11 hours ago|

prev|

[-]

Can you not setup your work email through a regular email client? I thought the days of being locked into Outlook specifically went away with Exchange. Everywhere I've worked since has been able to.

Also, what kind of banking are people doing that requires an app? I genuinely don't know what it could be.

by duozerk10 hours ago|

parent|

[-]

> Also, what kind of banking are people doing that requires an app? I genuinely don't know what it could be.

Close to every bank in the EU requires their user to have an app, for MFA (both for logging in and for validating transactions - transfers, payments). They use the smartphone's TPM. I have yet to see one that allows you to use your own MFA app.

The few I've seen that don't require it will validate the same through text messages (not everyone has a smartphone); though if you associate their app even once, you're screwed - the app it is from now on.

by bluebarbet10 hours ago|

parent|

[-]

>Close to every bank in the EU requires their user to have an app

Possibly this was hyperbole but in any case it's not correct at all.

Anecdotally, of my two EU (massive legacy French) banks, neither requires a mobile app. SMS all the way.

Even Wise, a cutting-edge neobank, does not require you to use its app. And its website accepts standard TOTP authenticator for 2FA.

Revolut is app-only, which is why I never use it.

by microtonal8 hours ago|

parent|

[-]

Here in The Netherlands banks used to offer authenticator devices, which they are phasing out (you can still use them, but they wont replace them once they run out of battery). Pretty much all banks switched to app-only.

No SMS at all (which is not surprising, because SMS is not secure).

Also, IMO fingerprint/face-based authentication is much nicer/quicker, especially for online payment flows like iDEAL (Dutch predecessor to Wero). And banks here work on GrapheneOS, so not much is lost.

by bluebarbet3 hours ago|

parent|

[-]

>And banks here work on GrapheneOS

Until they don't.

by duozerk8 hours ago|

parent|

prev|

[-]

> Anecdotally, of my two EU (massive legacy French) banks, neither requires a mobile app. SMS all the way.

My wording was bad, sorry; but try to install their app just once. After that, I'd bet you won't ever be able to go back to SMS validation (which is what I was talking about at the end of my comment).

If not, I'd be curious to know the banks you're talking about (to consider switching to them, for one thing). What I said above is true of Caisse d'Epargne, HSBC, CCF, among others.

by bluebarbet3 hours ago|

parent|

[-]

>I'd be curious to know the banks you're talking about

Fortuneo (internet-only subsidiary of Crédit Mutuel) and LCL. I have had both their apps installed at points in the past. In both cases they defaulted back to SMS 2FA upon uninstalling, though I remember worrying I would have the problem you describe.

Ultimately I can't see how a bank could get away with forcing (rather than just pushing) existing customers to install an app. This would surely be a breach of contract.

by wizzwizz48 hours ago|

parent|

prev|

[-]

> though if you associate their app even once, you're screwed

Can you go in branch and get that fixed?

by wafflemaker11 hours ago|

parent|

prev|

[-]

It's way more comfortable to login with fingerprint and not going through a longer login to the website.

Especially since in many countries it requires a national e-ID that is an app on your phone.

by scrollop9 hours ago|

parent|

prev|

[-]

It's nice to have widgets.