For an on-device solution in exposure notification, an infected phone and healthy phones would exchange Bluetooth keys. Only the infected phone uploads the Bluetooth keys to the server, and then all the other healthy phones download this global key file locally to their phone and see if there's an overlap between the keys that they have and the keys downloaded from the server. As you can see, because it's an on-device calculation and download only, the server does not know anything about John or his contacts. At the same time, if somebody did receive an exposure alert, the server does not know who exactly got the exposure alert.

We have an official exposure notification app deployed in 7 places, details can be found in the link below.

References

• Apps Gone Rogue: Maintaining Personal Privacy in an Epidemic

• Comparing manual contact tracing and digital contact advice

• Proximity Sensing: Modeling and Understanding Noisy RSSI-BLE Signals and Other Mobile Sensor Data for Digital Contact Tracing

• Proximity Interference with Wifi-Colocation during the COVID-19 Pandemic

• Spatial K-anonymity: A Privacy-preserving Method for COVID-19 Related Geo-spatial Technologies

• COVID-19 Contact-Tracing Mobile Apps: Evaluation and Assessment for Decision Makers

• Contact Tracing: Holistic Solution beyond Bluetooth

• Contact Tracing to Manage COVID19 Spread – Balancing Personal Privacy and Public Health

• The Architecture of Trust in Contact Tracing

• Adding Location and Global Context to the Google/Apple Exposure Notification Bluetooth API