I use xprivacylua to prevent whatsapp from having access to most of the possible software and hardware information to mitigate the fingerprint and now I’m also using the imagepipe to send any image through it.
However, the doubt came.
And the photos taken directly into the option within the application?
Can you still capture metadata?
Note: I use degoogle smartphone. And I do not speak English so excuse any fault.
Use xnviewmp or exiftool or irfanview or whatever program works for you on your PC. Imagepipe and scrambled exif simply remove everything, they are safe.
Disable camera permission to the app, as well as mic. Do audio recordings externally and send them.
Use whatsapp only in a shelter work profile with seperate contacts that only use whatsapp.
Use a vpn for whatsapp to avoid IP fingerprinting with other activities.
I am so happy I can just not use it. But on GrapheneOS I miss XPrivacyLua