How it Works

These are the steps for the
Department of Health

Step 1: Compile List of Infected Patients

The health department assembles a list  of those patients testing positive for COVID-19.

Step 2: Encrypt the Data for our Use

The list of patient addresses is then encrypted using HIPAA-approved AES256 hash avoiding the use of personally identifiable information or personal health information.  

Step 3: File Upload

The AES256 encrypted file is then uploaded to the system via API or secure file transfer.

These are the steps for

Step 1: Associate Mobile ID's to Mobile Devices

Using the encrypted hash sent to us, we identify mobile devices associated with the specific hash.


Step 2: Determine where the Devices have been

The process then determines all of the locations where the  infected patient’s devices have been over the previous 14 days.

Step 3: Summarize the Hot-Spots

The system will identify and summarize the locations where the exposed patient(s) have been and specify the number of instances, and precise hot spots.  Details are sent to DOH about the hot spots (no PII detail on patients or at-risk persons is sent).

Step 4: Send Notifications

A customized exposure notification is sent to the mobile phone or home PC of the at-risk person.  The notification is much like a PSA and appears as a banner notice.  It can say something like “COVID-19 has been reported in your immediate area.  Please visit for important details”.

Live Updates COVID-19 CASES