Mobile App Risk is Business Risk.

Regulators are watching Enterprise mobile apps. Users demand transparency. Get instant visibility into privacy risks, AI data exposure, dangerous permissions and suspicious network connections across your entire enterprise app portfolio.

Search 2,000+ Enterprise Apps. Know Your Risk in Minutes.

iOS

ANDROID

Random App Search

ANDROID

TP-Link Tapo

The Tapo app helps you set up the Tapo smart devices within minutes and puts everything you need at the tip of your fingers
• Control your smart device from anywhere.
• Control the device via voice with Google Home and Amazon Echo.
• Preset Away mode to make it seem like someone is home.
• Set a countdown timer to automatically turn the device on or off.
• Schedule when to turn the device on or off automatically at times.
• Invite families to manage the device together.

TP-Link Tapo

Package ID

com.tplink.iot

Version

5814

Developer

TP-LINK SYSTEMS INC.

Store Rank

111

App Store Link

View in Google Play

Developer Privacy Policy

Observations Summary:

Permissions: DETECTEDSensitive Data Collection and Sharing: SENSITIVE INFO FOUNDAI: DETECTEDNetwork Connections: DETECTEDPrivacy Declarations: NOT DETECTED

Permissions Observations

DETECTED

Permissions defined by Apple and Google as dangerous have been observed.

Observed During Analysis

Allows an app to access location in the background.
Allows an app to access approximate location.
+ 31 more

Allows an app to access precise location.

Allows applications to access information about networks.

Allows applications to access information about Wi-Fi networks.

Allows applications to connect to paired bluetooth devices.

Allows applications to discover and pair bluetooth devices.

Required to be able to connect to paired Bluetooth devices.

Allows applications to pair bluetooth devices without user interaction, and to allow or disallow phonebook access or message access.

Required to be able to discover and pair nearby Bluetooth devices.

Required to be able to access the camera device.

Allows applications to change network connectivity state.

Allows applications to enter Wi-Fi Multicast mode.

Allows applications to change Wi-Fi connectivity state.

Allows a regular application to use Service.startForeground.

Allows a regular application to use Service.startForeground with the type "dataSync".

Allows a regular application to use Service.startForeground with the type "location".

Allows a regular application to use Service.startForeground with the type "microphone".

Allows applications to open network sockets.

Allows a calling application which manages its own calls through the self-managed ConnectionService APIs.

Allows an application to modify global audio settings.

Required to be able to advertise and connect to nearby devices via Wi-Fi.

Allows an app to post notifications

Allows an application to read from external storage.

Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.

Allows an application to receive the Intent.ACTION_BOOT_COMPLETED that is broadcast after the system finishes booting.

Allows an application to record audio.

Allows an app to create windows using the type WindowManager.LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.

Allows an app to use device supported biometric modalities.

This constant was deprecated in API level 28. Applications should request USE_BIOMETRIC instead

Allows access to the vibrator.

Allows using PowerManager WakeLocks to keep processor from sleeping or screen from dimming.

Allows an application to write to external storage.

show less

See Your App’s Risk Profile

Why Permissions Matter

If not managed properly, dangerous permissions can permit malicious access to sensitive data, and device features.

Sensitive Data Collection and Sharing Observations

SENSITIVE INFO FOUND

This app collects, stores, or shares information that is often designated as sensitive and private.

Observed During Analysis

Email Address
Username
See Your App’s Risk Profile

Why Data Collection and Sharing Matters

If not managed properly private data can expose enterprises, customers, employees and partners to breach and compliance violations.

AI Observations

DETECTED

This app uses artificial intelligence and may introduce risks including loss of IP, privacy concerns, or other unintended consequences.

Observed During Analysis

OpenCV (Open Source Computer Vision Library)
LiteRT model
+ 2 more

See Your App’s Risk Profile

Why AI Matters

AI features can process sensitive data in unexpected ways, potentially exposing proprietary information or creating liability.

Network Connections Observations

DETECTED

Network analysis has detected communication with external servers and data transfer patterns.

Observed During Analysis

Connected Hostname:

amazon.com
google.com

Server Locations:

Ashburn, Virginia, US
Mountain View, California, US
+ 1 more

See Your App’s Risk Profile

Why Network Connections Matter

Uncontrolled communication with external servers by an employee-used app could expose sensitive business data to unauthorized third parties. This unauthorized access can lead to data breaches, regulatory non-compliance, and damage to your business's reputation and financial standing.

Privacy Declarations Observations

NOT DETECTED

This test did not detect a discrepancy, indicating all required declarations are disclosed.

See Your App’s Risk Profile

Why Privacy Declarations Matter

Declarations matter because they provide transparency on how apps collect and use sensitive data. iOS requires Privacy Manifest declarations, while Android requires Data Safety disclosures and manifest permissions.

All trademarks, logos, and brand names are the property of their respective owners. All company, product, and service names used in this website are for identification purposes only. Use of these names, trademarks, and brands does not imply endorsement.

MARC App Directory

Before You Approve That App: Build a Vetting Process That Actually Works

Mobile App Risk is Business Risk.

TP-Link Tapo

TP-Link Tapo

Package ID

Version

Developer

Category

Store Rank

App Store Link

Developer Privacy Policy

Observations Summary:

Permissions Observations

Observed During Analysis

Why Permissions Matter

Sensitive Data Collection and Sharing Observations

Observed During Analysis

Why Data Collection and Sharing Matters

AI Observations

Observed During Analysis

Why AI Matters

Network Connections Observations

Observed During Analysis

Connected Hostname:

Server Locations:

Why Network Connections Matter

Privacy Declarations Observations

Why Privacy Declarations Matter

NowSecure provides detailed risk assessments for millions of mobile apps. We Can Help Secure Your App.

Before You Approve That App: Build a Vetting Process That Actually Works

Mobile App Risk is Business Risk.

TP-Link Tapo

TP-Link Tapo

TP-Link Tapo

Package ID

Version

Developer

Category

Store Rank

App Store Link

Developer Privacy Policy

Observations Summary:

Permissions Observations

Observed During Analysis

Why Permissions Matter

Sensitive Data Collection and Sharing Observations

Observed During Analysis

Why Data Collection and Sharing Matters

AI Observations

Observed During Analysis

Why AI Matters

Network Connections Observations

Observed During Analysis

Connected Hostname:

Server Locations:

Why Network Connections Matter

Privacy Declarations Observations

Why Privacy Declarations Matter

NowSecure provides detailed risk assessments for millions of mobile apps. We Can Help Secure Your App.

Ready to Reduce Enterprise Mobile App Risk?