Midnight and Atala Prism Enabled Medical DID

[Proposal setup] Proposal title

Please provide your proposal title

Midnight and Atala Prism Enabled Medical DID

[Proposal Summary] Budget Information

Enter the amount of funding you are requesting in ADA

100000

[Proposal Summary] Time

Please specify how many months you expect your project to last

10

[Proposal Summary] Translation Information

Please indicate if your proposal has been auto-translated

No

Original Language

en

[Proposal Summary] Problem Statement

What is the problem you want to solve?

Patients lack control over their medical data, and current systems offer inadequate privacy and security for safely sharing sensitive health information while ensuring regulatory compliance

[Proposal Summary] Supporting Documentation

Supporting links

• https://github.com/ExuraLabs/hecate

[Proposal Summary] Project Dependencies

Does your project have any dependencies on other organizations, technical or otherwise?

No

Describe any dependencies or write 'No dependencies'

'No dependencies'

[Proposal Summary] Project Open Source

Will your project's outputs be fully open source?

Yes

License and Additional Information

The project will be fully open source under the MIT License, with all code, documentation, and resources hosted on a public GitHub for community review. Open components include Midnight-based smart contracts, IPFS storage with privacy-preserving handling, OCR digitization of records, and Atala PRISM identity integration, ensuring transparency, security, and compliance while fostering collaboration and innovation in healthcare data management.

[Theme Selection] Theme

Please choose the most relevant theme and tag related to the outcomes of your proposal.

Healthcare

[Campaign Category] Category Questions

Describe what makes your idea innovative compared to what has been previously funded (whether by you or others).

This open-source, MIT-licensed platform delivers a privacy-first, patient-controlled medical data system using Midnight for privacy-preserving computation and Atala PRISM for identity. It covers the full data lifecycle—OCR digitization, encryption, decentralized storage, consent-based sharing, and HL7/FHIR interoperability—while embedding HIPAA, GDPR, and other healthcare compliance into its core for real-world deployment.

Describe what your prototype or MVP will demonstrate, and where it can be accessed.

The prototype will demonstrate OCR-based digitization of medical records, Atala PRISM identity integration, secure data encryption, and patient-controlled access permissions, with simulated HL7/FHIR exchange. Users will access it via a secure web app on a test domain, with open-source code and documentation published on a public GitHub repository for review, testing, and community feedback.

Describe realistic measures of success, ideally with on-chain metrics.

We will launch as a SaaS with one hospital, serving 50–60 patients, 2–3 doctors, 1–2 labs, and 2–3 pharmacies. This pilot will generate regular on-chain activity including patient identity creation, consent updates, encrypted record sharing, lab result submissions, and prescription transactions. Smart contracts will coordinate these workflows, ensuring privacy, interoperability, and measurable adoption, with the framework designed for seamless scaling to additional hospitals and healthcare providers.

[Your Project and Solution] Solution

Please describe your proposed solution and how it addresses the problem

A Comprehensive Solution for Secure Medical Data Management:

We aim to address the issue of insecure and fragmented medical data management by developing a secure, patient-controlled platform that digitizes, stores, and manages medical records in a decentralized and privacy-focused manner. By integrating Atala PRISM for digital identity, IPFS for decentralized storage, and Midnight for privacy-preserving data sharing, the platform revolutionizes how sensitive health information is managed and shared, ensuring privacy, efficiency, and patient autonomy.

Key Features of the Solution

Digitizing Paper Medical Records with OCR

The platform uses Optical Character Recognition (OCR) to digitize physical medical records, ensuring accurate capture and storage. Once digitized, these records are encrypted and stored securely using IPFS to provide decentralized, immutable storage, protecting medical data from loss or tampering.

See images:

https://drive.google.com/file/d/18w7T_4cLlsUlYQ1s92gFQ0j6goaSa3qn/view?usp=sharing

https://drive.google.com/file/d/17hEmZx8G7Ql3AsCTqIonACNTJiAEXkDx/view?usp=sharing

Document digitization captures the image of physical records, which are then processed using Optical Character Recognition (OCR) technology and encrypted before being stored. There are two repositories: the first one stores documents in a decentralized manner using IPFS, while the other serves as the information registry. Finally, an additional module is required to view the documents over the internet.

Atala PRISM for Decentralized Identity

Patients manage their own decentralized digital identity using Atala PRISM, allowing them to control who can access their medical records. This gives patients full control over their personal data and identity verification, ensuring secure access to the platform and its features.

Midnight for Private Data Sharing

Midnight ensures secure and private sharing of sensitive medical data, giving patients the ability to control who accesses their information. Healthcare providers, pharmacies, and insurers can securely receive the necessary data with patient consent, ensuring that only authorized parties have access.

See image

https://drive.google.com/file/d/14mHASsNCmAyaCCSrxAhDGLK0Nol5DyzI/view?usp=sharing

Comprehensive Medical Records Management

The platform provides an all-in-one solution for managing various types of medical data:

Patient Information Management: Includes demographic details, medical history, family medical history, and vaccinations.

Clinical Data Management: Manages lab results, diagnoses, vitals, and treatment plans.

Medication Management: Tracks prescriptions, allergies, interactions, and integrates with pharmacies for automated refills.

Appointment and Scheduling: Handles booking, history, and telemedicine consultations.

Billing and Insurance: Stores insurance details, claims history, and billing records, helping patients track payments and balances.

Documentation and Reports: Supports clinical notes, medical certificates, and digital signatures for legal compliance.

Patient Portal for Full Access and Control

Patients can access their medical records through an intuitive patient portal, enabling them to:

View their medical history, test results, and medications.

Communicate securely with healthcare providers.

Book and manage appointments or telemedicine consultations.

Data Privacy and Security:

The platform ensures HIPAA compliance (or equivalent local regulations), utilizing advanced encryption and Role-Based Access Control (RBAC) to protect data. Patients retain full control of their data and share it only with authorized healthcare providers.

Interoperability and Integration:

Adhering to healthcare standards such as HL7/FHIR, the platform allows seamless data sharing between hospitals, labs, and pharmacies, ensuring interoperability with existing systems. It also supports data import/export for smooth patient referrals and care coordination.

Analytics and Reporting:

The platform includes analytics tools for tracking clinical outcomes, operational efficiency, and population health data. AI-driven predictive analytics will provide personalized care recommendations and insights to promote preventive healthcare.

Onboarding Process for Patients:

Registration and Identity Verification: Patients register on the platform and verify their identity using Atala PRISM, ensuring secure, decentralized access.

Medical Record Upload and Digitization: Patients can upload physical documents, which are processed via OCR to digitize the records. These records are encrypted and stored on IPFS for decentralized storage.

Medical Data Management: Patients can view and manage their medical information, including lab results, personal details, prescriptions, and appointments, through an intuitive interface.

Secure Data Sharing: Using Midnight, patients can securely share their medical records with healthcare providers, pharmacies, or insurers.

Support and Education: The platform provides educational resources, helping patients navigate the system and manage their healthcare more effectively.

Unique Aspects of the Solution

Comprehensive Medical Records Platform

The platform offers a complete medical data management solution—from patient demographics to billing and insurance—delivering a unified experience for patients and healthcare providers.

Patient-Controlled Data

Patients have full control over their data, deciding when and with whom to share it. This puts the power back in the hands of the patients, empowering them to manage their health securely.

Decentralized and Private

The use of IPFS for storage and Midnight for private data sharing ensures the platform adheres to the highest standards of security, privacy, and healthcare compliance.

Impact and Benefits

This solution directly addresses the increasing demand for secure and private healthcare data management as demonstrated by the links provided above. By leveraging Cardano's capabilities through Atala PRISM, IPFS, and Midnight, the platform offers a revolutionary approach to managing and sharing sensitive health information. It improves healthcare efficiency, provides patient autonomy, and enhances data privacy and security, paving the way for future innovations in healthcare data management.

The platform showcases Cardano’s ability to solve real-world problems, particularly in the healthcare sector, by delivering privacy, decentralization, and interoperability. Its integration of medical records, insurance claims, and telemedicine services positions it as a solution with wide applicability and a profound impact on the industry. By empowering patients to take control of their medical data, the platform fosters autonomy and accountability in healthcare, improving patient outcomes and facilitating secure, efficient healthcare services on a global scale.

[Your Project and Solution] Impact

Please define the positive impact your project will have on the wider Cardano community

This project will bring substantial value to the Cardano community by demonstrating the real-world use of blockchain technology for secure, decentralized healthcare data management. Leveraging Atala Prism, IPFS, and Midnight, it will showcase Cardano’s capabilities in handling sensitive, high-stakes applications like medical records, ensuring patient privacy, data sovereignty, and interoperability. The success of the project will open up new opportunities for other industries to adopt decentralized solutions on Cardano.

Key Areas of Impact:

Showcase of Cardano’s Healthcare Potential:

By integrating Cardano’s technologies into a critical sector like healthcare, this project will demonstrate how blockchain can solve real-world problems, particularly in enhancing data privacy, security, and patient autonomy. It will highlight how Cardano can meet stringent regulatory requirements (e.g., HIPAA) while offering a scalable solution for healthcare providers.

Decentralization of Healthcare Data:

The use of IPFS for decentralized data storage and Midnight for private data sharing will emphasize the importance of decentralization in protecting sensitive health data. This will position Cardano as a viable platform for building privacy-preserving applications in multiple industries, not just healthcare.

Adoption of Atala Prism:

With Atala Prism as a central component for decentralized digital identities, this project will drive adoption and further development of Atala Prism in healthcare and beyond, fostering a broader understanding of how self-sovereign identities can be applied to various sectors.

Expanding the Use Cases of Midnight:

The project will also highlight the utility of Midnight in privacy-focused applications. As more use cases for Midnight emerge through this platform, it will strengthen the Cardano ecosystem by demonstrating how sensitive data can be managed securely.

Patient Empowerment and Healthcare Innovation:

Patients will gain full control over their medical data, empowering them to manage their health information securely and privately. This approach to data management encourages healthcare innovation and drives better outcomes, showcasing Cardano’s ability to improve the healthcare experience.

Measuring Impact:

We will use both quantitative and qualitative metrics to measure the success of the project:

Quantitative Metrics:

Number of Patients Onboarded: Track the number of patients who successfully register, verify their identity through Atala Prism, and upload their medical records. Each registration and digital identity token issuance will be recorded on the blockchain.

Volume of Medical Records Digitized: Use blockchain-based storage to track the number of medical records that are digitized, encrypted, and stored on IPFS.

Frequency of Data Sharing: Measure the number of transactions involving secure data sharing between patients, healthcare providers, pharmacies, and insurance companies using Midnight.

Platform Adoption: Track the number of active users (patients, healthcare providers, and insurers) engaging with the platform, as well as the number of appointments scheduled, lab results accessed, and prescriptions refilled.

Transaction Volume: Monitor the total number of transactions processed on the platform, indicating the platform’s activity level and success.

Qualitative Metrics:

User Feedback: Gather direct feedback from users through surveys and integrated feedback forms. This will allow us to assess user satisfaction, ease of use, and areas for improvement.

Healthcare Provider Collaboration: Measure the quality of engagement and collaboration between patients and healthcare providers. We will evaluate how effectively the platform facilitates care coordination and improves health outcomes.

Data Security and Compliance: Track compliance with data privacy regulations like HIPAA through audits and security reports to ensure the platform maintains robust privacy and security measures.

Sharing Outputs and Opportunities:

Open-Source Code and Documentation:

All core components, including smart contracts, identity protocols, and data storage mechanisms, will be open source and publicly accessible through a GitHub repository. This will allow the Cardano community to review, audit, and contribute to the project, fostering collaboration and innovation.

Reports and Case Studies:

We will publish detailed reports and case studies highlighting the project’s success, challenges, and lessons learned. These reports will be shared with the wider Cardano community through Catalyst forums, blogs, and presentations at Cardano events.

Workshops and Presentations:

We plan to host online workshops and presentations demonstrating the platform's capabilities, educating the Cardano community and healthcare professionals on how blockchain can be applied to healthcare.

Partnerships and Collaborations:

By demonstrating a working healthcare data solution, we will seek partnerships with healthcare providers, insurers, and governments, further expanding the Cardano ecosystem into critical sectors.

User Engagement and Marketing:

We will engage users via social media campaigns, community discussions, and collaborations with healthcare-focused entities to promote the platform’s use and educate the public on blockchain's role in healthcare.

This comprehensive strategy ensures that the project will have a meaningful and lasting impact on the Cardano ecosystem, healthcare industry, and the global push towards decentralized, privacy-focused healthcare solutions.

[Your Project and Solution] Capabilities & Feasibility

What is your capability to deliver your project with high levels of trust and accountability? How do you intend to validate if your approach is feasible?

Our team brings a wealth of experience in blockchain, healthcare, and data management, ensuring that we can successfully deliver this medical records platform. Here’s an overview of the key members and their roles:

Jose Velazquez (Project Lead & Strategic Management): Jose has a proven track record in the Cardano ecosystem, having been a Fund 7, Fund 8, and Fund 12 proposer. With a background in biological sciences and experience managing Lab Information Management Systems (LIMS), he’s equipped to lead this project. He will focus on user onboarding—patients, doctors, and pharmacies—and ensure strategic leadership throughout.

Fernando Yánez (Lead Developer – React, Flutter, OCR): Fernando is a full-stack developer who will collaborate with David on building the platform's interfaces and ensuring smooth integration between the front-end and back-end systems. His industry-spanning expertise will add versatility to the development.

Validation of Feasibility

We have a robust plan to validate both the technical and regulatory feasibility of the platform:

Proof of Concept (PoC) Stage

Build user interfaces with React and Flutter.

Implement OCR to digitize medical records and store them securely using Iagon.

Develop Midnight smart contracts to ensure compliant data sharing and storage.

Technical Feasibility

The platform will be developed by a skilled team, with Atala PRISM providing secure identity verification. Third-party audits of smart contracts will ensure transparency and reliability. Quarterly progress reports will be shared with stakeholders.

Stakeholder Engagement

Jose will lead the onboarding of patients, doctors, and pharmacies, ensuring the platform is intuitive and meets the practical needs of the healthcare sector. His background in healthcare data management will ensure smooth adoption.

Regulatory Compliance

The platform will adhere to strict privacy regulations like HIPAA. Midnight smart contracts will safeguard data, while Atala PRISM will handle identity verification. Regular audits will be conducted to ensure full legal compliance.

Managing Funds with Accountability

We are committed to responsible and transparent fund management:

Outcome/Milestone-Based Fund Release

Funds will only be released upon meeting specific milestones, such as developing smart contracts or completing user interface integration.

Third-Party Audits

Regular audits will be conducted to ensure that the platform meets the highest privacy and security standards.

Transparent Reporting

Quarterly financial and progress reports will be shared with the Cardano community and stakeholders to ensure full transparency.

Scalable Expansion and Long-Term Impact

Once the PoC is successful, we will scale the platform to include features such as telemedicine and AI-powered healthcare analytics. This scalable approach will help the platform grow while maintaining a focus on security and compliance. The project’s success will serve as a blueprint for future blockchain-based healthcare solutions, driving broader adoption of decentralized medical data management.

By leveraging our team's expertise in blockchain, healthcare data, and smart contracts, we are well-prepared to deliver a secure, efficient, and compliant medical records platform. Through transparent governance, independent audits, and outcome-based fund management, we aim to provide valuable healthcare solutions for the Cardano ecosystem.

[Milestones] Project Milestones

Milestone Title

Milestone 1: Platform Architecture & Legal Compliance Setup

Milestone Outputs

Complete system architecture design, defining the data flow between Atala Prism, IPFS, and Midnight.

Set up the legal compliance ensuring compliance with healthcare regulations such as HIPAA or equivalent.

Start initial development of the platform's backend infrastructure and smart contract design.

Acceptance Criteria

Legal Documentation: Legal compliance finalized and aligned with healthcare data regulations.

System Architecture: Architecture documentation completed and reviewed, including detailed system components.

Initial Development: First iteration of smart contracts for data access and identity verification.

Evidence of Completion

Signed legal documents ensuring compliance with privacy regulations.

Completed system architecture and design documentation uploaded for review.

Initial codebase for smart contracts and backend infrastructure available on GitHub

Delivery Month

3

Cost

25000

Progress

20 %

Milestone Title

Milestone 2: Document Digitization & Security Infrastructure

Milestone Outputs

Build and integrate the OCR module for digitizing physical medical records.

Implement data encryption and IPFS for decentralized storage of digitized medical records.

Set up role-based access control (RBAC) to ensure privacy and restrict access to authorized personnel only.

Acceptance Criteria

OCR Module: Document digitization process functional and integrated.

IPFS Storage: Secure storage system operational with encrypted medical records.

Security Protocols: Data encryption and access control mechanisms established.

Evidence of Completion

Demonstration of the digitization and encryption process.

Screenshots or sample records stored securely in IPFS.

Access control policies and security protocol documentation.

Delivery Month

6

Cost

30000

Progress

50 %

Milestone Title

Milestone 3: Integration of Atala Prism, Patient Portal & Backend

Milestone Outputs

Complete integration of Atala Prism for decentralized identity verification.

Build and launch the patient portal allowing patients to manage their medical data, view lab results, and share data with healthcare providers.

Finalize the backend infrastructure for secure handling of medical records and data sharing using Midnight.

Acceptance Criteria

Atala Prism Integration: Patients can register and verify their identity using Atala Prism.

Patient Portal: Fully functional patient portal for accessing, managing, and sharing medical records.

Backend Infrastructure: Backend systems operational, capable of securely handling data requests and sharing via Midnight.

Evidence of Completion

Functional identity verification through Atala Prism with test users.

Screenshots or demo of the live patient portal showing key features (record viewing, lab results, etc.).

Backend systems tested and documented, including security protocols for data sharing.

Delivery Month

9

Cost

30000

Progress

90 %

Milestone Title

Final Milestone: Testing, Security Audits & Platform Launch

Milestone Outputs

Complete end-to-end testing of all platform features: smart contracts, secure storage, patient identity management, and provider interfaces.

Perform independent security audits for compliance with privacy and data protection standards.

Launch platform publicly with all core services active and operational.

Produce and publish a project close-out report and close-out video summarizing results, challenges, and impact.

Acceptance Criteria

All functionality passes internal QA testing, including encryption, consent management, and interoperability.

Security audit completed by an independent firm with satisfactory results.

Public launch accessible to users, with initial hospital, doctors, pharmacies, and labs onboarded.

Close-out report and video published and accessible to the public.

Evidence of Completion

Testing documentation verifying successful operation of all key platform components.

Security audit report confirming compliance and security standards met.

Live public platform URL demonstrating operational status.

Published close-out report (PDF) and close-out video link documenting project outcomes.

Delivery Month

10

Cost

15000

Progress

100 %

[Final Pitch] Budget & Costs

Please provide a cost breakdown of the proposed work and resources

1. Development & Integration – 80,000 ADA (80%)

Front-End Development (React & Flutter) – 20,000 ADA

Covers UI/UX design, patient portal, doctor/pharmacy/lab interfaces. Industry standard for healthcare SaaS is to allocate 20–25% of dev budget to front-end for usability and accessibility compliance.

Back-End Development & API Integration – 22,000 ADA

Includes secure server-side logic, patient record management, and integration with IPFS, Atala PRISM, and Midnight for privacy-preserving data sharing. Weighted higher due to healthcare’s strict security requirements.

Smart Contract Development (Aiken) – 15,000 ADA

Enables on-chain consent management, audit logs, and secure patient-doctor data access. Healthcare compliance requires more extensive testing and auditing than other sectors.

Data Security & Compliance Implementation – 10,000 ADA

HIPAA/GDPR-compliant encryption, role-based access control, and multi-factor authentication. Industry benchmarks suggest 10–15% of dev costs should go to security in medical SaaS.

Database & Storage Architecture – 5,000 ADA

Combination of decentralized storage (IPFS) for medical records and cloud hosting for non-sensitive data. Optimized for cost-efficiency while meeting compliance.

System Testing & Quality Assurance – 8,000 ADA

Unit, integration, penetration, and compliance testing to meet healthcare regulatory standards. QA is critical in medical applications and must be weighted heavily in cost justification.

1. Infrastructure & Hosting – 10,000 ADA (10%)

Cloud Hosting & Storage – 5,000 ADA

High-availability hosting with auto-scaling to ensure uninterrupted service for hospitals, clinics, and pharmacies.

Blockchain Infrastructure Costs – 3,000 ADA

Fees for transactions, smart contract deployment, and IPFS pinning services for long-term data persistence.

Monitoring & Maintenance Tools – 2,000 ADA

Server monitoring, error tracking, and performance analytics to maintain SLA compliance.

1. Licensing, Tools & Documentation – 5,000 ADA (5%)

Development Tools & Framework Licenses – 2,500 ADA

Paid APIs, premium security modules, and healthcare-compliant integration services.

Technical Documentation & User Manuals – 2,500 ADA

Detailed guides for hospitals, doctors, pharmacies, and labs to adopt the system efficiently.

1. Contingency & Risk Mitigation – 5,000 ADA (5%)

Reserved for unforeseen compliance updates, security vulnerabilities, or blockchain network fee spikes.

[Final Pitch] Value for Money

How does the cost of the project represent value for the Cardano ecosystem?

This 100k ADA investment offers exceptional value for money by delivering a fully functional, industry-grade medical data digitization platform capable of scaling to handle an entire nation’s healthcare system. With 80% of the budget allocated directly to development, every ADA is strategically directed toward core technical delivery—covering secure architecture, advanced OCR integration, Atala PRISM identity management, Midnight privacy modules, blockchain transaction logic, and interoperability APIs.

The platform’s scalable design means the initial deployment not only digitizes and secures patient records but can seamlessly expand to integrate national hospitals, clinics, pharmacies, and laboratories. Once operational, the system generates ongoing blockchain transactions for record updates, patient-doctor interactions, prescription issuance, and insurance claims—driving consistent on-chain activity and long-term Cardano ecosystem utility.

Beyond immediate implementation, this solution lays the foundation for a national e-health infrastructure that meets global privacy standards, reduces inefficiencies, and provides verifiable medical data access in seconds. The return on investment compounds over time as adoption grows—positioning the platform as a cornerstone of healthcare modernization and a continuous generator of blockchain transaction volume, fees, and real-world utility.

[Required Acknowledgements] Consent & Confirmation

Terms and Conditions:

Yes