This repository hosts the source code for both the PolicyLint and PoliCheck tool. PolicyLint identifies internal contradictions within privacy policies and PoliCheck analyzes data flow to privacy policy consistency. Full details on the design of PolicyLint and PoliCheck can be found in publications listed below.
Place the plaintext privacy policies in ./ext/plaintext_policies. Note that if you need to process HTML privacy policies, I recommend running a preprocessing step before to convert the policies to plaintext (e.g.,
Insert a CSV representing the data flows into /ext/data/flows.csv. An example file is included from the data used within paper (./ext/data/flows.csv).
Download the pretrained NLP model from and place it in ./ext/NlpFinalModel
Modify ./ext/run_config to either specify "policylint" or "policheck" to set which ontologies the tool will leverage.
Build the docker image: $ ./
Run the docker image: $ ./
See output CSV files in /ext/output directory
PolicyLint/PoliCheck is licensed under the BSD-3-Clause License (See LICENSE.txt).