Mainstream mobile operating systems (mOSes), such as Android or IOS, do not allow applications to perform network traffic analysis (NTA) by design for security reasons. Indeed, users' network traffic data contain sensitive information, such as browsing history, that can be maliciously exploited, e.g., sold to entities or for blackmailing. In this paper, we explore the problem of providing a secure and efficient way to grant full network data access to a mobile application willing to perform NTA while preventing misuse of the latter data. We consider the network data to be misused if the latter is sent or leaked out of control of the mobile device, e.g., to an external server. To this aim, we design SANEM, an ondevice kernel-level solution. It takes the form of permission that provides a means for an application to perform NTA without being able to misuse the user's network data.We implement a corresponding prototype atop Android 14. Our evaluation on a rooted Samsung S20 shows that SANEM incurs a small overhead on NTA applications that load it and the overall system resources. Furthermore, compared to other workaround mechanisms, such as on-device local/fake VPNs, the overhead with SANEM is considerably lower.