The privacy examination in the paper is structured around three "toy" pro-
tocols for the design of an app which can maximise the utility of contact tracing
information while minimising the more general risk to privacy. On this basis,
the paper proceeds to introduce eight questions against which they should be
assessed. The questions raised and the protocols proposed effectively amount to
the creation of a game with different categories of players able to make different
moves. It is therefore possible to analyse the model in terms of optimal game
design