@crossingthethreshold I'd start looking for disclosures on the app store page and the creators website. Look for dodgy and evasive language in their privacy policy. If it sounds like corporate-speak gobbelty-gook they are probably dirty. I guess I'd also do a web search for the "app name + privacy" and see what that pops up.