diff --git a/sepolicy/OWNERS b/sepolicy/OWNERS
new file mode 100644
index 0000000..5232bc3
--- /dev/null
+++ b/sepolicy/OWNERS
@@ -0,0 +1,4 @@
+include device/google/gs-common:/sepolicy/OWNERS
+
+adamshih@google.com
+
diff --git a/sepolicy/cheetah-sepolicy.mk b/sepolicy/cheetah-sepolicy.mk
new file mode 100644
index 0000000..650b3af
--- /dev/null
+++ b/sepolicy/cheetah-sepolicy.mk
@@ -0,0 +1,3 @@
+# sepolicy that are shared among devices using whitechapel
+BOARD_SEPOLICY_DIRS += device/google/pantah-sepolicy/cheetah
+
diff --git a/sepolicy/cheetah/README.txt b/sepolicy/cheetah/README.txt
new file mode 100644
index 0000000..67a320f
--- /dev/null
+++ b/sepolicy/cheetah/README.txt
@@ -0,0 +1,2 @@
+This folder holds sepolicy exclusively for one device. For example, genfs_contexts
+paths that are affected by device tree.
diff --git a/sepolicy/cheetah/cccdk_timesync_app.te b/sepolicy/cheetah/cccdk_timesync_app.te
new file mode 100644
index 0000000..1a4264d
--- /dev/null
+++ b/sepolicy/cheetah/cccdk_timesync_app.te
@@ -0,0 +1 @@
+allow vendor_cccdktimesync_app hal_bluetooth_coexistence_service:service_manager find;
diff --git a/sepolicy/cheetah/file.te b/sepolicy/cheetah/file.te
new file mode 100644
index 0000000..6e3395b
--- /dev/null
+++ b/sepolicy/cheetah/file.te
@@ -0,0 +1,3 @@
+# BT
+type vendor_bt_data_file, file_type, data_file_type;
+
diff --git a/sepolicy/cheetah/file_contexts b/sepolicy/cheetah/file_contexts
new file mode 100644
index 0000000..65e3bb6
--- /dev/null
+++ b/sepolicy/cheetah/file_contexts
@@ -0,0 +1,6 @@
+# Bluetooth
+/dev/ttySAC18                       u:object_r:hci_attach_dev:s0
+/dev/logbuffer_btlpm                u:object_r:logbuffer_device:s0
+/dev/logbuffer_tty18                u:object_r:logbuffer_device:s0
+
+/data/vendor/bluetooth(/.*)?        u:object_r:vendor_bt_data_file:s0
diff --git a/sepolicy/cheetah/grilservice_app.te b/sepolicy/cheetah/grilservice_app.te
new file mode 100644
index 0000000..ad0a779
--- /dev/null
+++ b/sepolicy/cheetah/grilservice_app.te
@@ -0,0 +1 @@
+allow grilservice_app hal_bluetooth_coexistence_service:service_manager find;
diff --git a/sepolicy/cheetah/hal_bluetooth_btlinux.te b/sepolicy/cheetah/hal_bluetooth_btlinux.te
new file mode 100644
index 0000000..851dc89
--- /dev/null
+++ b/sepolicy/cheetah/hal_bluetooth_btlinux.te
@@ -0,0 +1,3 @@
+allow hal_bluetooth_btlinux vendor_bt_data_file:dir rw_dir_perms;
+allow hal_bluetooth_btlinux vendor_bt_data_file:file create_file_perms;
+
diff --git a/sepolicy/cloudripper-sepolicy.mk b/sepolicy/cloudripper-sepolicy.mk
new file mode 100644
index 0000000..98a403c
--- /dev/null
+++ b/sepolicy/cloudripper-sepolicy.mk
@@ -0,0 +1,3 @@
+# sepolicy that are shared among devices using whitechapel
+BOARD_SEPOLICY_DIRS += device/google/pantah-sepolicy/cloudripper
+
diff --git a/sepolicy/cloudripper/README.txt b/sepolicy/cloudripper/README.txt
new file mode 100644
index 0000000..67a320f
--- /dev/null
+++ b/sepolicy/cloudripper/README.txt
@@ -0,0 +1,2 @@
+This folder holds sepolicy exclusively for one device. For example, genfs_contexts
+paths that are affected by device tree.
diff --git a/sepolicy/cloudripper/file_contexts b/sepolicy/cloudripper/file_contexts
new file mode 100644
index 0000000..cae0049
--- /dev/null
+++ b/sepolicy/cloudripper/file_contexts
@@ -0,0 +1,4 @@
+# Bluetooth
+/dev/ttySAC18                       u:object_r:hci_attach_dev:s0
+/dev/logbuffer_btlpm                u:object_r:logbuffer_device:s0
+/dev/logbuffer_tty18                u:object_r:logbuffer_device:s0
diff --git a/sepolicy/cloudripper/genfs_contexts b/sepolicy/cloudripper/genfs_contexts
new file mode 100644
index 0000000..c9722ce
--- /dev/null
+++ b/sepolicy/cloudripper/genfs_contexts
@@ -0,0 +1,2 @@
+# Haptics
+genfscon sysfs /devices/platform/10970000.hsi2c/i2c-8/8-0042                    u:object_r:sysfs_vibrator:s0
diff --git a/sepolicy/panther-sepolicy.mk b/sepolicy/panther-sepolicy.mk
new file mode 100644
index 0000000..bdfe7db
--- /dev/null
+++ b/sepolicy/panther-sepolicy.mk
@@ -0,0 +1,2 @@
+# sepolicy that are shared among devices using whitechapel
+BOARD_SEPOLICY_DIRS += device/google/pantah-sepolicy/panther
diff --git a/sepolicy/panther/README.txt b/sepolicy/panther/README.txt
new file mode 100644
index 0000000..67a320f
--- /dev/null
+++ b/sepolicy/panther/README.txt
@@ -0,0 +1,2 @@
+This folder holds sepolicy exclusively for one device. For example, genfs_contexts
+paths that are affected by device tree.
diff --git a/sepolicy/panther/file.te b/sepolicy/panther/file.te
new file mode 100644
index 0000000..6e3395b
--- /dev/null
+++ b/sepolicy/panther/file.te
@@ -0,0 +1,3 @@
+# BT
+type vendor_bt_data_file, file_type, data_file_type;
+
diff --git a/sepolicy/panther/file_contexts b/sepolicy/panther/file_contexts
new file mode 100644
index 0000000..a671f68
--- /dev/null
+++ b/sepolicy/panther/file_contexts
@@ -0,0 +1,6 @@
+# Bluetooth
+/dev/ttySAC18                       u:object_r:hci_attach_dev:s0
+/dev/logbuffer_btlpm                u:object_r:logbuffer_device:s0
+/dev/logbuffer_tty18                u:object_r:logbuffer_device:s0
+
+/data/vendor/bluetooth(/.*)?        u:object_r:vendor_bt_data_file:s0
\ No newline at end of file
diff --git a/sepolicy/panther/grilservice_app.te b/sepolicy/panther/grilservice_app.te
new file mode 100644
index 0000000..ad0a779
--- /dev/null
+++ b/sepolicy/panther/grilservice_app.te
@@ -0,0 +1 @@
+allow grilservice_app hal_bluetooth_coexistence_service:service_manager find;
diff --git a/sepolicy/panther/hal_bluetooth_btlinux.te b/sepolicy/panther/hal_bluetooth_btlinux.te
new file mode 100644
index 0000000..851dc89
--- /dev/null
+++ b/sepolicy/panther/hal_bluetooth_btlinux.te
@@ -0,0 +1,3 @@
+allow hal_bluetooth_btlinux vendor_bt_data_file:dir rw_dir_perms;
+allow hal_bluetooth_btlinux vendor_bt_data_file:file create_file_perms;
+
diff --git a/sepolicy/ravenclaw-sepolicy.mk b/sepolicy/ravenclaw-sepolicy.mk
new file mode 100644
index 0000000..d41bbae
--- /dev/null
+++ b/sepolicy/ravenclaw-sepolicy.mk
@@ -0,0 +1,2 @@
+# sepolicy that are shared among devices using whitechapel
+BOARD_SEPOLICY_DIRS += device/google/pantah-sepolicy/ravenclaw
diff --git a/sepolicy/ravenclaw/README.txt b/sepolicy/ravenclaw/README.txt
new file mode 100644
index 0000000..67a320f
--- /dev/null
+++ b/sepolicy/ravenclaw/README.txt
@@ -0,0 +1,2 @@
+This folder holds sepolicy exclusively for one device. For example, genfs_contexts
+paths that are affected by device tree.
diff --git a/sepolicy/ravenclaw/file_contexts b/sepolicy/ravenclaw/file_contexts
new file mode 100644
index 0000000..cae0049
--- /dev/null
+++ b/sepolicy/ravenclaw/file_contexts
@@ -0,0 +1,4 @@
+# Bluetooth
+/dev/ttySAC18                       u:object_r:hci_attach_dev:s0
+/dev/logbuffer_btlpm                u:object_r:logbuffer_device:s0
+/dev/logbuffer_tty18                u:object_r:logbuffer_device:s0