Thank you for the reply. This confuses me, as what is the point of a non-sandboxed app to request Full Drive Access and other permissions, if it already can read sensitive data such as data from sandboxed apps? I'm particular concerned about non-sandboxed apps accessing data from Chrome and Safari.