Assessor View uses Jicer, a static slicer for Android apps.

• First, it decompiles the APK and statically constructs its dependence graph.
• It extends Jicer to segregate all method invocations in the dependence graph into personal data sources (risks 1 and 2) and other privacy-related data sources (risks 3 and 4). Check out the risk categories of data sources here.
• It then slices forward from all these sources and labels privacy-relevant methods in the resultant program slices.
• Finally, Assessor View renders the program slices using D3.JS. The analysis renders three views:

1. Static Analysis View: The most detailed view in Jimple for static analysis experts.
2. Developer View: Source code insights in Java for Android app developers.
3. DPV View: The most concise view in DPV for DPOs, legal experts, and other stakeholders.