Insular indeed creates a different file system that can only be accessed by the apps installed in it.
Being a layman when it comes to this stuff, I’m not sure about phone / sim data, mac adress, etc. I suppose the work profile does have access to these in order to function.
As an example, I requested my whatsapp information before deleting it. Whatsapp was in the work profile (= Shelter or Insular) and had access to :
- phone number
- ip adress
- device type
- OS build number
- Device manufacturer
- Device model
- Which ISP I use
and this does not include all the data it collected about my application use (e.g. who you chat with, for how long, length of the texts, at what time you use the app, how many times a day, your location if not disabled, and much more.)
Line seems to follow the same surveillance capitalism principles to collect as much data about you as possible. The 49 permissions as shown by the page shared by @athair_birb seem to indicate that only isolating it in Insular is not quite enough to protect your privacy.
Just a few of the 49 permissions Line requests that (I think) Insular does not protect you against :
- access approximate location (network-based)
- access precise location (GPS and network-based)
- view network connections
- view Wi-Fi connections
- find accounts on the device
- retrieve running apps
- have full network access
- control Near Field Communication
- read phone numbers
- read phone status and identity
Once again I do not know much more than you, so take what I write with a pinch of salt.