Multifactor unlock. (Fingerprint+ pin)

Different cold boot passphrase.

Hardware token support for unlock or boot (yubikey, etc)

Each user should be able to have a work profile.

Work profiles shouldn’t be special, why not unlimited profiles per user.

Disable / freeze any app (not just pause notifications). If I have a game I like to play on airplane flights, I can have it frozen all the other time.

Prefer wifi mode, go into airplane mode, turn off cellular radio when attached to good wifi.

Better customization of the share screen, I don’t fucking need or want apps to put my contacts I to the share bar. Google loves to rotate contacts into my share bar. This needs to be a optional feature, because it leaks who you are communicating with outside of the app

When using multiple users allow for notifications to be shared to the active user.

Your 2 features are good choices.

Some developers have added the “disable screenshots” feature (Privacy Browser, for example) activated by default.

I think desktop mode is all about the hardware. My phone can do it, and my partner’s more powerful phone cannot. I’m probably wrong though.

I think all phones should have hardware switches to kill camera, WiFi, etc.

Installing apps without having to deal with Google or shady app stores.

1. Education regarding advertising ID and its deletion presented during setup (consent).

2. Addition of internet permission on per-app basis. Just like notifications now, every new downloaded app must get your permission to use the internet, else work in offline mode.

3. Give permission to only selected media to apps rather than everything. This is such a security risk, one bad app and it can steal whatnot.