> For example, the Android(/iOS?) permission based model at kernel level where apps (that could be processes in general?) can only access some private storage

They have access to _all_ storage. Permissions on Android are at the DOS level, all or nothing.