Nithin Kamath - Latest News and Information
  • All Technology
  • AI
  • Autonomy
  • B2B Growth
  • Big Data
  • BioTech
  • ClimateTech
  • Consumer Tech
  • Cybersecurity
  • DevOps
  • Digital Marketing
  • Ecommerce
  • EdTech
  • Enterprise
  • FinTech
  • GovTech
  • Hardware
  • HealthTech
  • HRTech
  • LegalTech
  • Nanotech
  • PropTech
  • Quantum
  • Robotics
  • SaaS
  • SpaceTech
AllNewsDealsSocialBlogsVideosPodcastsDigests

Technology Pulse

EMAIL DIGESTS

Daily

Every morning

Weekly

Tuesday recap

Top Publishers

Top Creators

  • Ryan Allis

    Ryan Allis

    194 followers

  • Elon Musk

    Elon Musk

    78 followers

  • Sam Altman

    Sam Altman

    68 followers

  • Mark Cuban

    Mark Cuban

    56 followers

  • Jack Dorsey

    Jack Dorsey

    39 followers

See More →

Top Companies

  • SaasRise

    SaasRise

    196 followers

  • Anthropic

    Anthropic

    39 followers

  • OpenAI

    OpenAI

    21 followers

  • Hugging Face

    Hugging Face

    15 followers

  • xAI

    xAI

    12 followers

See More →

Top Investors

  • Andreessen Horowitz

    Andreessen Horowitz

    16 followers

  • Y Combinator

    Y Combinator

    15 followers

  • Sequoia Capital

    Sequoia Capital

    12 followers

  • General Catalyst

    General Catalyst

    8 followers

  • A16Z Crypto

    A16Z Crypto

    5 followers

See More →
NewsDealsSocialBlogsVideosPodcasts
Nithin Kamath

Nithin Kamath

Creator
0 followers

Founder & CEO @Zerodhaonline @Rainmatterin Learnings at @RainmatterOrg Musings on business & life: http://nithinkamath.me

Do Banking Apps Really Need All These Permissions?
Blog•Mar 17, 2026

Do Banking Apps Really Need All These Permissions?

Banking apps frequently request broad device permissions such as SMS, contacts, and phone access, raising privacy concerns. The author argues that these demands conflict with the Principle of Least Privilege, which advocates minimal access for security. Zerodha’s Kite trading app exemplifies a privacy‑first model by requesting no permissions while still complying with SEBI’s mandatory two‑factor authentication. The post positions this approach as a benchmark for the industry.

By Nithin Kamath