I've always been amazed at how people will put all their credentials into an Android phone. You can pretty much guarantee all your private data is being scraped and sold.
Er, no; there exist Android phones that are insecure, or even malicious, but generalizing that to guaranteed compromise of all Android phones is nonsense.
I put my credentials in, hoping that LineageOS is enough protection software-wise, but I don't have the means to defend myself if the hardware is also working against me.
