← Tablets
D

Samsung Galaxy Tab S9

$800 tablet that shows ads in the weather app. Facebook pre-installed and undeletable.
Serious concerns
Samsung · 🇰🇷 South Korea · WiFi + Cellular + Bluetooth
PolicyApp PermissionsNetwork TrafficFirmwareRegulatory
Technical details
FCC ID: A3LSMX710
Chipset: Qualcomm Snapdragon 8 Gen 2 for Galaxy
App: com.sec.android.app.samsungapps
Manufacturer: Samsung Electronics
Model: Galaxy Tab S9

⚠️ The bottom line

Samsung sells you an $800 tablet and shows you ads in the weather app, payment app, and game launcher. The operating system itself is an advertising platform — and they call this "prioritizing your privacy.". Samsung calls it "customization" but it reads your texts, analyzes who you call most, scans your calendar, and tracks every website you visit — all to show you ads. This is on by default on a device you paid full price for.

Legal jurisdiction
🇰🇷 South Korea (headquarters)
PIPA read more →
Strict data protection — fined Google, Meta. But National Intelligence Service has broad surveillance powers
🇺🇸 United States (data storage)
CLOUD Act read more →
US govt can demand your data from this company even if stored overseas
FISA §702 / PRISM read more →
NSA collects stored emails, photos, messages without individual warrants
Geofence warrants read more →
Police can demand location data for everyone near a crime scene
Spying
3/4 HIGH
Is someone spying on me?
Kids at risk
Data Sharing
3/4 HIGH
Who gets my data?
Security
2/4 MODERATE
Is it actually secure?
Honesty
4/4 EXTREME
Can I trust what they say?
Kids at risk
REPLACE Extreme risk. Look for alternatives or lock down hard.
8Contradictions
2Critical
4High
2Medium
4Sources
Findings by concern
Spying 3/4 HIGH 1 finding
⚠️ criticalpolicy claims vs app permissions
Samsung calls it "customization" but it reads your texts, analyzes who you call most, scans your calendar, and tracks every website you visit — all to show you ads. This is on by default on a device you paid full price for.

What they claim: Samsung Customization Service described as providing "an enhanced user experience, including customized content and recommendations."

What we found: Collects: complete contact list, call/text history (analyzed "to determine your relationships with others"), calendar data ("to identify your location"), full browsing history including search keywords. Enabled by default during setup. Ctrl.blog: "a handful of minor features in exchange for a lot of personal information."

Data Sharing 3/4 HIGH 4 findings
⚠️ criticalpolicy claims vs firmware analysis
Samsung sells you an $800 tablet and shows you ads in the weather app, payment app, and game launcher. The operating system itself is an advertising platform — and they call this "prioritizing your privacy."

What they claim: Samsung privacy policy: "We know how important privacy is to our customers." Samsung's security page promotes Knox "defense-grade security."

What we found: Samsung embeds ads in stock apps (Weather, Samsung Free, Pay, Health, Gaming Hub). Ad SDK is non-removable system component. Samsung Ads Privacy Notice confirms Samsung operates its own ad network collecting identifiers, online activity, geolocation.

⚡ highpolicy claims vs firmware analysis
Knox is marketed as your security guardian, but it is also a telemetry pipeline collecting device IDs and app lists, sharing analytics with Google. The lock on your front door is also a camera pointed at you.

What they claim: Knox marketed as "defense-grade security" with "multiple layers of defense." Documentation: "data collection restricted to only that which is necessary."

What we found: Knox collects IMEI, serial, OS version, app package names on ALL devices including consumer tablets. Knox Privacy Policy admits "third-party analytics services such as Google Analytics." Knox Asset Intelligence sends near-real-time telemetry.

⚡ highpolicy claims vs app permissions
Samsung says you control your data, but they pre-install Facebook as a system app you literally cannot delete. You paid for the tablet, but Samsung and Facebook made a deal about what lives on it permanently.

What they claim: Samsung offers "tools to help you manage your privacy." Users can "manage your personal information."

What we found: Facebook App Manager pre-installed as system app via commercial partnership. Cannot be uninstalled, only disabled to ~53KB stub. TIME: "Samsung Users Cannot Delete Facebook." Jeff Chester (Center for Digital Democracy): "These apps power the spy in your pocket." Removal requires ADB or root.

⚫ mediumpolicy claims vs app permissions
You pay $800 for a "premium" tablet and Samsung still shows ads in the weather app, pre-installs Facebook, and sells your browsing data to ad networks. Premium price, budget-phone privacy model.

What they claim: Galaxy Tab S9 marketed as premium tablet ($799.99 MSRP) with "premium experience" and "Galaxy AI."

What we found: Despite premium pricing: ads in stock apps, pre-installed Facebook, Customization Service harvesting data, Samsung operating ad network. California disclosure confirms sharing with ad networks, analytics providers, social networks.

Security 2/4 MODERATE 2 findings
⚡ highpolicy claims vs firmware analysis
Samsung promises 7 years of security updates for the Galaxy Tab S9, but the tablet receives patches every 3-4 months — not monthly like the flagship phones. During those gaps, hackers exploit Samsung-specific zero-day vulnerabilities (like CVE-2023-21492, a kernel information leak) that Galaxy S phones received patches for weeks earlier. The same company, the same vulnerability, the same brand — but your tablet waits in the queue behind the phones Samsung cares about more.

What they claim: Samsung announced "up to 7 years" of security updates (Jan 2024), marketed as industry-leading commitment.

What we found: Tab S9 on quarterly schedule, not monthly. US variant stuck on Nov 2023 patch through Mar 2024 — 4 month gap. During gaps, CVE-2024-44068 and CVE-2025-21042 (LANDFALL spyware) remained unpatched on tablets while phones got fixes first.

⚫ mediumfirmware analysis vs regulatory findings
Spyware designed for Samsung devices exploited a bug for 8+ months before Samsung fixed it. Your tablet's quarterly schedule meant even longer exposure than Samsung phones.

What they claim: Samsung: "we continuously innovate to address evolving threats." Publishes monthly Security Maintenance Releases.

What we found: LANDFALL spyware exploited CVE-2025-21042 from mid-2024. Samsung patched April 2025 — 8+ months of active exploitation. Unit 42 found spyware in DNG files targeting Samsung devices. CISA KEV Nov 2025. Tab S9 quarterly schedule = even longer exposure.

Honesty 4/4 EXTREME 1 finding
⚡ highpolicy claims vs firmware analysis
Your tablet simultaneously reports to Samsung, Google, AND Microsoft — even for apps you never opened. Three companies watching everything, and Samsung arranged for all of them at unboxing.

What they claim: Samsung collects data "necessary for basic operation." Knox: "data collection restricted to only that which is necessary."

What we found: Trinity College Dublin (Leith et al., 2021): Samsung simultaneously transmits to Samsung, Google, AND Microsoft — even for apps never opened. Google Ad ID sent to Samsung enabling cross-party linking. Microsoft apps transmit to aria.microsoft.com without being opened.

What happened to real people
Documented incidents involving Samsung products and user data.
Lapsus$ stole 190GB of Samsung source code including biometric unlock algorithms and bootloader source. Potentially compromises security of every Galaxy device. [source]
What your data is worth to governments
Jurisdiction: KR (Korean National Intelligence Service Act).
Documented: Lapsus$ stole 190GB of Samsung source code including biometric unlock algorithms and bootloader source. Potentially compromises security of every Galaxy device.
Sources