On Xiaomi smartphones, among the standard system utilities is a little-known but critically important application, Permissions, which is hidden from the eyes of most users, but is responsible for one of the key security features: controlling the access of applications to sensitive data and hardware modules of the device. Without the right setup of this tool, your phone risks becoming vulnerable to spyware, ad viruses or even bank fraudsters.
In this article, we will go into detail about what the Permissions app on Xiaomi is, where to find it, how to use it, and why you can not ignore its settings. We will focus on hidden features that are not written about in the official instructions, as well as the typical errors that users accidentally open access to their data from unauthorized applications. If you have ever wondered why a program asks for permission to access the camera, microphone or geolocation, here you will find the answers.
What is the “permissions” application and why it is needed
Permissions (com.android.permissions) is a system component MIUI, And the main purpose of this tool is to give the user control over which apps can use certain functions of the smartphone:
- 📸 Take photos and videos through the camera without your knowledge;
- 🎤 Listening to conversations through a microphone;
- 📍 Track your location in real time;
- 📱 Read SMS and call logs (including bank codes).
Starting with Android 6.0, Google introduced a dynamic permissions system where the user can flexibly configure access for each application. Xiaomi went further and added a new feature to the app. MIUI Extended options, for example:
- 🔄 Automatic permission reset for unused applications;
- 🛡️ Banning changes to system settings by third-party programs;
- 📊 Permission activity log (who and when requested access).
It's important to understand that the Permissions app is not just a checklist, it's a security center that protects your data from leakage, for example, if you installed a photo editing app, but it suddenly requested access to contacts or access to a photo editing app. SMS — That's a reason to be wary.
Where to find the “permissions” app on Xiaomi
Unlike most system utilities, the Permissions app doesn't have a desktop shortcut or appear in the menu of all apps. There are three ways to open it:
- Through Security Settings: Go to Settings → Annexes → Application management → Permits.
- Through search in settings: In the top row of settings, enter the request for “permissions” – the system will show the desired section.
- Through the Hidden Menu (for Advanced Users): Open Settings → About the phone and 5 times tap on the item "Version" MIUI». After that, a new section “Developer” will appear in the main settings menu, where you can find advanced permission options.
On some models (for example, Redmi Note 12 or POCO X5) The path may be slightly different due to versions. MIUI. If you haven’t found a section on the standard route, try an alternative method:
Settings → Privacy → Application permissionsYou can also use the voice assistant: say “Open Application Permissions”, and the system will redirect you to the desired section.
💡
If the “Permissions” section is not in the settings, check if it is hidden through the “Special features” function (Settings). → Special opportunities → Simplified regime).
What permissions can be set up in Xiaomi
Permit system in MIUI It's divided into several categories, each one responsible for accessing a particular type of data or hardware module:
| Permit category | What controls | Potential risks |
|---|---|---|
| Camera. | Access to the main and front camera | Hidden photo/video shooting, espionage |
| Microphone | Recording sound through a built-in microphone | Eavesdropping on conversations, recording surrounding sounds |
| Geolocation | Data data GPS, Wi-Fi and mobile towers | Tracking of movements, targeted advertising |
| Warehouse | Reading/write files on the device | Theft of photos, documents, installation of viruses |
| Contacts | Reading/changing the contact list | Spam on your behalf, leaking personal data |
| SMS call logs | Reading messages, call history | Bank code interception, fraud |
| Phone. | Call execution, changing communication settings | Calls to paid numbers, redirect calls |
| Body sensors | Access to the pulse meter, pedometer, etc. | Collecting health data for advertising |
It is especially dangerous to give permissions SMS Fraudsters often disguise malware as useful utilities (such as flashlights or wallpaper) to access bank messages. MIUI 14+ There is a function "Prohibit change" SMS-permissions, which blocks access to messages for all applications except system.
Also in MIUI There's a unique option called Auto Reset Permissions, which is that if you haven't used an application for more than 3 months, the system can automatically revoke all permissions, and it's useful for neglected utilities that continue to run in the background.
How to properly set up permissions on Xiaomi
Many users either blindly allow everything or block access to everything, which causes applications to stop working, and here is a step-by-step guide to how to set up permissions safely and efficiently:
☑️ Correct setting of permissions
Step 1. Check current permits
- Open Settings → Applications → Application Management.
- Choose any app (such as Instagram or Instagram) VK).
- Slip on the "Permissions" item - here will be a list of all the accesses that the application requested.
Step 2: Analysis of requests
Ask yourself:
- 🤔 Does this application need such permission? (For example, why does the messenger need access to geolocation?)
- 🕵️ When did it request access? (If it's normal right after installation. If it's suspicious a month later.)
- 🔄 Can it be replaced with an alternative with lesser requirements?
Step 3: Set up notifications
Enable the Notify Permission Request option in the security settings, so you’ll see when the app first requests access to a camera, microphone, or geolocation.
Step 4: Special access
Some permissions are hidden in the Special Accesses section (e.g., the ability to draw on top of other applications or start when the system starts).
Settings → Applications → Special AccessesYou have to disable unnecessary options for little-known programs, for example, if a utility has the right to "Start at Start", it will constantly hang in memory and consume the battery.
Which apps are most often abused by permissions?
Hidden features of the “permissions” app on Xiaomi
In addition to the basic options, in MIUI There are a few hidden features that few people know about, and they allow you to control security even better:
- 🔒 Blocking system settings: Some applications (such as launchers or optimizers) attempt to change system settings, such as screen brightness or sound. → Permits → Changes to system settings can be prohibited from doing so.
- 📡 Background activity control: In the Auto Start section (Settings) → Battery and productivity → Autostart control, you can turn off background work for unnecessary applications, not only saving battery life, but also limiting their access to data.
- 📋 Permission activity log: B MIUI 13/14 There's a hidden log that shows you which apps and when you used permissions. To open it, type in the permission log search for settings».
- 🔄 Scheduled permission reset: You can enable automatic permission resets for unused applications (e.g. once a month) in your security settings. This is useful if you install and uninstall programs frequently.
One of the most useful hidden features is "Ban installation from unknown sources." Even if you've allowed installation. APK-You can prevent this from happening to specific applications (e.g. browsers) so you can reduce the risk of accidental virus installation.
Another little-known trick is website permissions, where you can configure in Mi Browser which sites have access to your geolocation or camera, and this is true if you use web versions of instant messengers or social media a lot.
💡
The most dangerous combination of permissions for an application is access to the app. SMS + geolocation + These rights are often requested by banking Trojans.
Common mistakes when working with permits
Even experienced users sometimes make mistakes that compromise data security, and here are the most common mistakes and how to avoid them:
⚠️ Note: If you see a request for permission to access SMS or call logs from an unknown application, it is almost always a sign of malware. Immediately remove such an application and check the phone with antivirus.
- 🚫 Automatic resolution of everything: Many people just click "Allow everything" when installing an application without reading what it is requested.
- 🔄 Ignoring permission updates: Once the app is updated, it may request new permissions. Always check what exactly has changed.
- 📱 Installation APK Unreliable sources:.apk files from third-party sites often contain hidden permissions that don’t appear on Google Play.
- 🔒 Disable permission notifications: If you have disabled the Notify New Permissions option, you won’t know when the app first requests access to a microphone or camera.
- 🗑️ Forgotten wide-regulated apps: Deleted the game a year ago but it still has access to your geolocation? regularly check the permission list for old programs.
Another common mistake is allowing notifications to be accessed by lesser-known apps, which allows them to read your messaging and banking messages. SMS. Check which programs have such access:
Settings → Notifications → Access to NotificationsIf you see unfamiliar names here, immediately revoke the permission.
How to protect yourself from malware applications through permissions
Attackers are constantly inventing new ways to trick users, and here are specific signs that the app could be dangerous:
- 🕵️ Requests unnecessary permission: The flashlight asks for access to SMS? Wallpaper wants your geolocation.
- 📦 Requests permissions immediately after installation: These applications usually only request access when needed (e.g., messenger will ask for a microphone before calling.
- 🔄 Changes permissions after update: After update, app suddenly gets access to camera? check what changed in new version.
- 📵 If a program is constantly hanging in memory and using the Internet, although you do not use it, it can be a botnet or a miner.
To minimize the risks:
- Install apps only from Google Play (but even there are fakes).
- Before installing, read reviews and check the rating.
If you suspect that there is already malware on your phone, follow the following steps:
- Open the Settings. → Applications and sort the list by installation date.
- Remove any unknown or suspicious programs.
- Go to Settings. → Google accounts → Security and check for suspicious activity.
- Reset permissions for all applications (Settings) → Permits → Reset all permits).
⚠️ Note: Some malware masquerades as system services (e.g. com.android.system).If you see an unknown process with that name, check it through antivirus or Google search.