Article 6 sub 4 second and third paragraph of the DMA[0] states the following:
> The gatekeeper shall not be prevented from taking, to the extent that they are strictly necessary and proportionate, measures to ensure that third-party software applications or software application stores do not endanger the integrity of the hardware or operating system provided by the gatekeeper, provided that such measures are duly justified by the gatekeeper. Furthermore, the gatekeeper shall not be prevented from applying, to the extent that they are strictly necessary and proportionate, measures and settings other than default settings, enabling end users to effectively protect security in relation to third-party software applications or software application stores, provided that such measures and settings other than default settings are duly justified by the gatekeeper.
This isn't so clear-cut and open to interpretation. To me it sounds like this would be referring to technical limitations like the ones already put in place by the OS - ie prohibiting a third-party "Settings" app with "root" capabilities or a "file manager" app able to access data across all other apps would be fine.
Apple themselves explicitly approving each installable app does not seem strictly necessary and proportionate.
Very surprising. A reference or pointer to the relevant section would be great.