diff --git a/whitechapel/vendor/google/file.te b/whitechapel/vendor/google/file.te
index b8c22e12..9b4c95b4 100644
--- a/whitechapel/vendor/google/file.te
+++ b/whitechapel/vendor/google/file.te
@@ -185,6 +185,8 @@ type sysfs_video, sysfs_type, fs_type;
 
 # UWB vendor
 type uwb_vendor_data_file, file_type, data_file_type, app_data_file_type;
+type persist_uwb_file, file_type, vendor_persist_type;
+type uwb_data_vendor, file_type, data_file_type;
 
 # PixelStats_vendor
 type sysfs_pixelstats, fs_type, sysfs_type;
diff --git a/whitechapel/vendor/google/file_contexts b/whitechapel/vendor/google/file_contexts
index 11445e44..fdbd87e1 100644
--- a/whitechapel/vendor/google/file_contexts
+++ b/whitechapel/vendor/google/file_contexts
@@ -349,6 +349,9 @@
 # Uwb
 # R4
 /vendor/bin/hw/hardware\.qorvo\.uwb-service                          u:object_r:hal_uwb_default_exec:s0
+/vendor/bin/init\.uwb\.calib\.sh                                     u:object_r:vendor_uwb_init_exec:s0
+/mnt/vendor/persist/uwb(/.*)?                                        u:object_r:persist_uwb_file:s0
+/data/vendor/uwb(/.*)?                                               u:object_r:uwb_data_vendor:s0
 
 # RILD files
 /data/vendor/rild(/.*)?                                                     u:object_r:rild_vendor_data_file:s0
diff --git a/whitechapel/vendor/google/hal_nfc_default.te b/whitechapel/vendor/google/hal_nfc_default.te
index f98e78c6..b6477925 100644
--- a/whitechapel/vendor/google/hal_nfc_default.te
+++ b/whitechapel/vendor/google/hal_nfc_default.te
@@ -7,3 +7,7 @@ set_prop(hal_nfc_default, vendor_secure_element_prop)
 # Modem property
 set_prop(hal_nfc_default, vendor_modem_prop)
 
+# Access uwb cal for SecureRanging Applet
+allow hal_nfc_default uwb_data_vendor:dir r_dir_perms;
+allow hal_nfc_default uwb_data_vendor:file r_file_perms;
+
diff --git a/whitechapel/vendor/google/hal_uwb_default.te b/whitechapel/vendor/google/hal_uwb_default.te
index 2d513b61..8165dc21 100644
--- a/whitechapel/vendor/google/hal_uwb_default.te
+++ b/whitechapel/vendor/google/hal_uwb_default.te
@@ -6,3 +6,6 @@ add_service(hal_uwb_default, hal_uwb_service)
 
 hal_server_domain(hal_uwb_default, hal_uwb)
 binder_call(hal_uwb_default, uwb_vendor_app)
+
+allow hal_uwb_default uwb_data_vendor:dir create_dir_perms;
+allow hal_uwb_default uwb_data_vendor:file create_file_perms;
diff --git a/whitechapel/vendor/google/vendor_uwb_init.te b/whitechapel/vendor/google/vendor_uwb_init.te
new file mode 100644
index 00000000..716af19c
--- /dev/null
+++ b/whitechapel/vendor/google/vendor_uwb_init.te
@@ -0,0 +1,10 @@
+type vendor_uwb_init, domain;
+type vendor_uwb_init_exec, exec_type, vendor_file_type, file_type;
+
+init_daemon_domain(vendor_uwb_init)
+
+allow vendor_uwb_init vendor_shell_exec:file rx_file_perms;
+allow vendor_uwb_init vendor_toolbox_exec:file  rx_file_perms;
+
+allow vendor_uwb_init uwb_data_vendor:file create_file_perms;
+allow vendor_uwb_init uwb_data_vendor:dir w_dir_perms;