First, geolocation data is not collected, i.e. the information retrieved will not be able to identify where the user had been e.g. Sengkang or Sentosa.
Second, the Bluetooth data collected is stored only on the user’s App/Token in an encrypted form, and data for longer than 25 days is automatically deleted from your device. The Ministry of Health will approach you to upload your data if it’s needed for contact tracing.
Third, user personal information, including their unique identification number and mobile number, is not revealed to other TraceTogether users. They are substituted by a random permanent ID. This information is stored in a secured server. As an added layer of protection, TraceTogether also creates temporary IDs that change regularly. Only these temporary IDs are exchanged between phones. These measures protect users from malicious actors who may seek to eavesdrop and track interactions over time.
Lastly, once contact tracing ceases, all personal contact tracing data that was collected will be deleted as soon as practicable.
Your privacy is important to us. You can see our Privacy Statement at www.tracetogether.gov.sg/common/privacystatement for more details on how we protect your privacy.