Almost all APIs are TLS-encrypted these days, leaking only the hostname to which the client is connecting (via SNI which is as yet unencrypted).
This is not to say you're not being surveilled (as to which apps you use, etc) but there is relatively little unencrypted traffic coming out of most devices in 2022.
This is not to say you're not being surveilled (as to which apps you use, etc) but there is relatively little unencrypted traffic coming out of most devices in 2022.