diff --git a/private/app_neverallows.te b/private/app_neverallows.te
index c2ef14ccedd43eefab41f39b2824efb318a843c7..8c530308a4a5db8904a4670a7e7ef12cf8daf0ae 100644
--- a/private/app_neverallows.te
+++ b/private/app_neverallows.te
@@ -265,8 +265,3 @@ full_treble_only(`
 
 # Untrusted apps are not allowed to find mediaextractor update service.
 neverallow all_untrusted_apps mediaextractor_update_service:service_manager find;
-
-# Untrusted apps are not allowed to use the signature|privileged|development
-# android.permission.READ_LOGS permission, so they may not read dropbox files.
-# Access to the the dropbox directory is covered by a neverallow for domain.
-neverallow all_untrusted_apps dropbox_data_file:file *;
diff --git a/private/platform_app.te b/private/platform_app.te
index eec503a743beee583218ee9a39c3cb97a0628222..1ee65d3632fe89bba3aad8181738ef1b06e51b11 100644
--- a/private/platform_app.te
+++ b/private/platform_app.te
@@ -27,9 +27,6 @@ allow platform_app asec_apk_file:file create_file_perms;
 allow platform_app media_rw_data_file:dir create_dir_perms;
 allow platform_app media_rw_data_file:file create_file_perms;
 
-# Read access to FDs from the DropboxManagerService.
-allow platform_app dropbox_data_file:file { getattr read };
-
 # Write to /cache.
 allow platform_app cache_file:dir create_dir_perms;
 allow platform_app cache_file:file create_file_perms;
diff --git a/private/priv_app.te b/private/priv_app.te
index f24afc0d900eabd206672a2a705e6eca2609413c..101c448092aad28cd53f82ed0d9cd8ed0a521c96 100644
--- a/private/priv_app.te
+++ b/private/priv_app.te
@@ -54,9 +54,6 @@ allow priv_app ota_package_file:file create_file_perms;
 allow priv_app media_rw_data_file:dir create_dir_perms;
 allow priv_app media_rw_data_file:file create_file_perms;
 
-# Read access to FDs from the DropboxManagerService.
-allow priv_app dropbox_data_file:file { getattr read };
-
 # Used by Finsky / Android "Verify Apps" functionality when
 # running "adb install foo.apk".
 allow priv_app shell_data_file:file r_file_perms;
diff --git a/private/system_app.te b/private/system_app.te
index 7a7411f4c9c979689d2112a0b033410e2fff1ffc..4ed19824e1b0790917d46b38cccb54ab788f0180 100644
--- a/private/system_app.te
+++ b/private/system_app.te
@@ -24,9 +24,6 @@ allow system_app misc_user_data_file:file create_file_perms;
 # Access to vold-mounted storage for measuring free space
 allow system_app mnt_media_rw_file:dir search;
 
-# Read access to FDs from the DropboxManagerService.
-allow system_app dropbox_data_file:file { getattr read };
-
 # Read wallpaper file.
 allow system_app wallpaper_file:file r_file_perms;
 
diff --git a/public/app.te b/public/app.te
index 932116e6ac02b286c8c1d07a60d8c249d4f8b220..62a63cdf1f9822077bd25e4c20e7faaaab2cd7d8 100644
--- a/public/app.te
+++ b/public/app.te
@@ -350,6 +350,9 @@ allow appdomain cache_file:dir getattr;
 # Allow apps to run with asanwrapper.
 with_asan(`allow appdomain asanwrapper_exec:file rx_file_perms;')
 
+# Read access to FDs from the DropboxManagerService.
+allow appdomain dropbox_data_file:file { getattr read };
+
 ###
 ### Neverallow rules
 ###