how do you and others get past all the permissions that onesec needs? They say everything remains on device; however, it's a closed source application so there's not really any way to confirm that besides looking at the packets that are going out of your phone.
I don't have this app installed, but I would use the App Privacy Report in settings to inspect the App Network Activity to see what domains it connects to and how often. While not conclusive, I think it could provide some level of insight to whether it's handing off your information or not. Ideally it wouldn't make any network connections.
