APRICOT Privacy Policy

What information we collect/store and when

• When a user signs up on our system, we store ONLY the phone number of the user, and assign 1000 pseudo-IDs to the user. The pseudo-IDs are known only to the APRICOT server.


• When the user is logged-in and has turned on Bluetooth, the APRICOT app announces itself to nearby APRICOT users using a pseudo-ID. The pseudo-ID changes every 5 minutes


• When the user is logged-in and has turned on Bluetooth, the APRICOT app stores the pseudo-ID information of nearby users, along with the timestamp. This information, called the contact trace, is stored in the app, until explicit upload to the APRICOT server (see below).


• When an APRICOT user uploads (voluntarily) the contact trace from his/her app to the server, the APRICOT server comes to know the contact trace of that user.


• The user can voluntarily delete his/her contact trace by uninstalling the app at any time.

How we use the above information

• The contact trace uploaded (voluntarily) by a user is to be viewed at the APRICOT server, ONLY by authorized medical professionals or public health officials


• The contact trace information is to be used ONLY for the purpose of containing disease spread, in the case of a pandemic


• The contact trace information is to be deleted at the APRICOT server after the period of disease containment.

Changes to this Privacy Policy

Any changes to this privacy policy will be posted at this same location, and instructors/students will be notified about the same in a transparent manner.