On grapheneos user profiles can be used to compartimentalize, but the mais reason is to stop possibilities of IPC communication between apps. Default Android behaviour is apps can talk to each other if both apps consent.
As of now, the main handicaps for this kind of usage are lack of across profile notifications and the lack of “send to another user profile” function.
I find it quite usable though.
Bear in mind that app sandbox is much better in android than linux, though arguably inferior to xen (considering one app per appvm).
1 Like