I understand this as Bluetooth tracking compared with GPS tracking. Converting a Bluetooth UUID to an actual person's ID or phone number requires access to private information and your contact list, and who trusts these cheezy app developers to not harvest it all and sell it to third parties ala zuckerburg style and claim it was a hack.
But Corona tracking apps don't work that way. The Bluetooth ID gets hashed (which means converted to a unique fingerprint which cannot be traced back to the original; see SHA256 for example). On your phone you'll have a list with those fingerprints for a couple of weeks. A central server receives messages from phones of which the user says he/she is infected and you get a message saying a fingerprint is infected.
In short: there is no absolute location tracking involved and no personal c.q. traceable information is shared. Also many Corona tracking apps are open source so anyone can see how it works. As bd139 wrote: you should really do some investigation into how Corona tracking apps actually work instead of writing utter nonsense.
How does the hashed Bluetooth ID or beacon get resolved back to the original person for notification?
I'm holding my pitchfork because Canada has does not have the EU GPDR regulation wrt data privacy, so we constantly get Silicon Valley/USA datamining in apps.
"...Once {app} enabled, users’ devices will regularly send out a beacon via Bluetooth that includes a privacy-preserving identifier — basically, a string of random numbers that aren’t tied to a user's identity and change every 10-20 minutes for additional protection. Other phones will be listening for these beacons and broadcasting theirs as well. When each phone receives another beacon, it will record and securely store that beacon on the device."
"At least once per day, the system will download a list of beacons that have been verified as belonging to people confirmed as positive for COVID-19 from the relevant public health
authority. Each device will check the list of beacons it has recorded against the list downloaded from the server. If there is a match between the beacons stored on the device and the positive diagnosis list, the user may be notified and advised on steps to take next."
"In the second phase, available in the coming months, this capability will be introduced at the operating system level to help ensure broad adoption, which is vital to the success of contact tracing."
Let's look at it backwards then, the privacy policy on these lovely nice sweet coronavirus apps:
UK COVID Symptom Tracker Privacy Notice
Third party processors for both kinds of information
We use third parties to process some of your personal data on our behalf. When we allow them access to your data, we do not permit them to use it for their own purposes. We have in place with each processor, a contract that requires them only to process the data on our instructions and to take proper care in using it. They are not permitted to keep the data after our relationship with them has ended.
These processors include:
Amazon Web Services
Google Cloud Platform
SurveyMonkey
Segment
Google Analytics
Mixpanel
Google G-Suite
MailChimp
Mailgun
Intercom
Sentry
Google Firebase
SwiftyBeaver
It's this third-party shit where they get to use your private data for their internal purposes - why I would not participate.