Privacy-Sensitive API Checker
Detect references to privacy-sensitive APIs — device IDs, location, IMEI-style calls — inside an APK's code.
Drop your file here
or click to choose from your device
About Privacy-Sensitive API Checker
Detect references to privacy-sensitive APIs — device IDs, location, IMEI-style calls — inside an APK's code.
Privacy-Sensitive API Checker is part of APKLint’s security & malware toolkit — Find risky behavior, trackers, and suspicious patterns. It’s free to use and needs no account.
Your privacy is the default: files you upload are processed on our servers over an encrypted connection and permanently deleted by a scheduled hourly cleanup after analysis finishes, and never shared.
What Privacy-Sensitive API Checker checks
- References to device identifiers (IMEI, device ID, serial)
- Location API references
- Other privacy-sensitive call sites in the code
- Where to disclose them on the Data Safety form
Good to know: It detects code references to these APIs, not verified runtime calls — a reference may be in an unused library path.
When to use Privacy-Sensitive API Checker
- Best for
- Detecting references to privacy-sensitive APIs, device IDs, location, IMEI-style calls, inside an uploaded APK.
- Not the right tool for
- Not a data-flow or consent audit; it flags references, not how data is used.
- What you get back
- Privacy-sensitive API references found in the app, grouped by category.
- How it differs from related APKLint tools
- It looks for sensitive API usage in the binary; the Data Safety Helper maps manifest permissions to Play's form instead.
- Limitations
- Heuristic detection of references; presence is not proof of misuse.
How to use Privacy-Sensitive API Checker
- Choose your APK file — Drop an .apk file onto the page, or click to select it from your device.
- Send securely — The file is uploaded over an encrypted connection to our analysis servers.
- Read your report — APKLint unpacks and inspects the package and lays out the results on screen.
- Your file is removed — It's deleted by an hourly cleanup job after analysis finishes.
Why use APKLint
Every tool is free with no login and no paywall. Reasonable file and input limits keep the free service stable.
A clean, focused interface with no third-party ad banners cluttering your results.
Files you upload are deleted by a scheduled hourly cleanup after analysis finishes, and never shared.
Uses androguard DEX, class, and string inspection to detect SDK and API references.
Start immediately — no account, login, or email required.
Runs in any modern browser, on desktop or mobile.
Frequently asked questions
What does Privacy-Sensitive API Checker do?
Detect references to privacy-sensitive APIs — device IDs, location, IMEI-style calls — inside an APK's code.
Does a match mean my app actually uses it?
Not necessarily. It means the API is referenced in the code — possibly by a bundled SDK. Review whether it's actually invoked and disclose accordingly.
Is it free to use?
Yes. Every tool on APKLint is completely free, with no sign-up and no account.
How is my data handled?
Your uploaded file and its result are processed on our servers over an encrypted connection, then removed by the next hourly cleanup after analysis finishes. We never share them.
What files can I send?
An Android APK — a .apk file — up to 1 GB.