diff --git a/app.te b/app.te
index 83bb78c4a34323cb432607f3118498cef9349ed9..261ec329747a904a4adec529e8320965b903eee7 100644
--- a/app.te
+++ b/app.te
@@ -52,6 +52,10 @@ allow appdomain app_data_file:notdevfile_class_set create_file_perms;
 allow appdomain system_data_file:dir r_dir_perms;
 allow appdomain system_data_file:file { execute execute_no_trans open };
 
+# Access to OEM provided data and apps
+allow appdomain oemfs:dir r_dir_perms;
+allow appdomain oemfs:file rx_file_perms;
+
 # Execute the shell or other system executables.
 allow appdomain shell_exec:file rx_file_perms;
 allow appdomain system_file:file rx_file_perms;
diff --git a/file.te b/file.te
index af2f9583e6649c8e381259207d4c1e72284a6d94..f42585a111c9dd614e69e79506e625c2622001f1 100644
--- a/file.te
+++ b/file.te
@@ -33,6 +33,7 @@ type sdcard_external, sdcard_type, fs_type, mlstrustedobject;
 type debugfs, fs_type, mlstrustedobject;
 type pstorefs, fs_type;
 type functionfs, fs_type;
+type oemfs, fs_type;
 
 # File types
 type unlabeled, file_type;