Consider this: You really want a flashlight app. You go download the app and see a list of permissions. You really just want to have a light so you go ahead and click okay.
Now on iOS, you download the app and open it. A dialog pops up that says: "May DubiousFlashlight access your contacts?" Of course you tap no. Your contacts are safe and the flashlight still works.
I think the main problem is that on Android, it's the standard that most app will have need a ridiculous list of permissions. Just look at the permissions of the topmost entries for basic apps like barcode readers, flashlights, compasses and so on. Now try the same on iOS and look what permissions you will be asked for, and which permissions you will need to actually use the app. Imo, iOS protects the average user much better than Android.
This is only the case on the crap-infested, ad-riddled Play Store. On a market like F-Droid, where the apps respect your freedom, they also respect your privacy much more. The flashlight apps available there only require the permissions they need, and don't collect any kind of personal information.
Now on iOS, you download the app and open it. A dialog pops up that says: "May DubiousFlashlight access your contacts?" Of course you tap no. Your contacts are safe and the flashlight still works.
I think the main problem is that on Android, it's the standard that most app will have need a ridiculous list of permissions. Just look at the permissions of the topmost entries for basic apps like barcode readers, flashlights, compasses and so on. Now try the same on iOS and look what permissions you will be asked for, and which permissions you will need to actually use the app. Imo, iOS protects the average user much better than Android.