[Proposal setup] Proposal title

Please provide your proposal title

CAR-dano v2: Tokenize Car Inspections → RWA Market Catalyst

[Proposal Summary] Budget Information

Enter the amount of funding you are requesting in ADA

350000

[Proposal Summary] Time

Please specify how many months you expect your project to last

12

[Proposal Summary] Translation Information

Please indicate if your proposal has been auto-translated

No

Original Language

en

[Proposal Summary] Problem Statement

What is the problem you want to solve?

Indonesia’s used car market is plagued by hidden defects, fraud, and unsafe payments. It lacks trusted digital verification. Ownership and condition records are fragmented and unverifiable.

[Proposal Summary] Supporting Documentation

Supporting links

• https://github.com/orgs/CAR-dano
,
• https://sumbu.xyz
,
• https://cari.inspeksimobil.id
,
• https://gamma.app/docs/CAR-dano-C2Ci-Driving-Trust-in-Automotive-Marketplaces-e1cl2u234djhqys
,
• https://bit.ly/m/InspeksiMobilJogja

[Proposal Summary] Project Dependencies

Does your project have any dependencies on other organizations, technical or otherwise?

No

Describe any dependencies or write 'No dependencies'

No dependencies

[Proposal Summary] Project Open Source

Will your project's outputs be fully open source?

Yes

License and Additional Information

We do have to note that the plan for the project is partially open source (with strategic release).

1. The Cardano smart-contract escrow module and NFT inspection record engine will be released under the MIT License on GitHub.
2. Includes full developer documentation, API references, and integration guides for reuse by other Cardano builders.
3. Marketplace frontend/backend code remains proprietary to protect commercial strategy, but architecture diagrams will be shared for transparency.

[Theme Selection] Theme

Please choose the most relevant theme and tag related to the outcomes of your proposal

RWA

[Campaign Category] Category Questions

Describe your established collaborations.

1. PT Inspeksi Mobil Jogja (internal partner): certified inspectors, QA, pilot rollout; MoU on file: https://drive.google.com/drive/folders/1BeULOMAIKiRyqEAduv_Ly42e1UoDjczm.
2. Universitas Gadjah Mada (DTETI): Assoc. Prof. Noor Akhmad Setiawan & Assoc. Prof. Guntur Dharma Putra as technical advisors; research validation & planning reviews. Night Login Cyber Security Community is also a part of Universitas Gadjah Mada, providing objective and sound security consulting.

Describe funding commitments.

• Sumbu Labs (100% privately held by core team): in-kind engineering/ops covering overruns beyond Catalyst scope: ₳30,000.
• PT Inspeksi Mobil Jogja (100% privately held by co-founders): in-kind inspection operations for the pilot (inspectors, travel, facilities): ₳10,000.

No external investors or grants are committed outside this Catalyst request. We have no plans to dilute our equity so that we can stay true to the project's value and objectives.

Describe your key performance metrics.

KPIs focus on auditable on-chain use and real adoption:

1. RWA mints (inspection NFTs) per month (trusted supply);
2. Escrow contracts & state changes—lock/release/refund (secure settlement);
3. Completed trades & eKTP-verified users (adoption). eKTP required for legal KYC;
4. Dispute rate ≤5% with ≥90% resolved ≤5 business days (trust);
5. Repeat-seller rate and share of TTL-expired reports (data freshness).

All KPIs are verifiable via CardanoScan and a public metrics dashboard. Subject to change due to regulations.

[Your Project and Solution] Solution

Please describe your proposed solution and how it addresses the problem

How We Perceive the Problem

Indonesia’s used car market suffers from low trust due to hidden defects, falsified records, and unsafe payment methods. Vehicle condition and ownership data are fragmented across paper records, dealer notes, and verbal claims — making them prone to manipulation and fraud. Buyers risk significant financial loss, while sellers with genuine cars struggle to prove quality.

Our Approach and Reasons

We are addressing this by tokenizing car inspection reports and key ownership documents (STNK and BPKB, subject to regulatory approval) as Real World Asset NFTs on the Cardano blockchain. These NFTs store verifiable metadata, are tamper-proof, and can be instantly validated by anyone.

This foundation enables a trust-first ecosystem: once asset data is on-chain, it can be used in a secure Cardano-powered marketplace with smart-contract escrow, anti-sniping auctions, and eKTP-based KYC. We chose Cardano for its peer-reviewed & research-based improvement system, strong metadata standards (CIP), and growing reputation as an RWA-friendly blockchain.

Design Goals (why this approach)

• Verifiable truth: Each inspection becomes a Real-World Asset (RWA) NFT anchored to a hashed PDF with structured metadata.
• Safe settlement: IDR smart-contract escrow mediates lock → handover → release/refund.
• Privacy by design: PII stays off-chain; public vs. gated PDFs with short-lived signed URLs.
• Freshness & integrity: TTL (time/odometer) invalidates stale reports; supersession chain shows the latest report.
• Reusability: Open-source escrow + RWA modules so other teams can adopt quickly.

System Architecture (layers)

• Identity & Trust
  • eKTP KYC with selfie liveness; only proofs/off-chain references stored (never raw PII on-chain).
  • Role-based access (buyer, seller, inspector, admin) with least privilege.
  • Optional review with ABSI (Asosiasi Blockchain Syariah Indonesia) for fee model & fairness: https://www.absi.or.id/
• RWA Tokenization
  • PDF → SHA-256 hash → IPFS CID.
  • Mint a Cardano NFT with CIP-aligned metadata: hash, cid, issued_at, ttl, inspector_id, provider_id, odometer, vin_hash/partial, supersedes.
  • Public PDF: non-sensitive facts (make/model/year, high-level findings).
  • Gated PDF: full grades, still no sensitive government documents (no raw STNK/BPKB scans).
• Marketplace & Auctions
  • Listings (fixed price / auction) require a valid (non-expired) inspection NFT.
  • Anti-sniping: +5 minutes if a bid arrives in the final minutes.
  • Bid increments: Rp500k or ≥1% of current price (whichever is higher).
  • Deposits: refundable bidder deposits; default → partial forfeit.
  • Reserve price supported; optional Buy-Now.
  • TTL gating: expired/superseded reports block new listings.
• Escrow & Settlement
  • FSM: Created → Funded → HandoverPending → Released | Refunded | Disputed.
  • Funding in IDR via a licensed provider; on-chain events mirror state transitions.
  • Disputes: evidence handled off-chain; 2-of-3 multisig admin resolves → release/refund.
  • Immutable on-chain audit trail of escrow state changes.
• Observability & Compliance
  • Metrics for mint success, escrow states, dispute SLAs, uptime/latency.
  • Immutable admin/action logs.
  • UU PDP alignment: Jakarta data residency; consent, access, deletion flows.
  • ISO-style controls: access recertification, backups/DR, key rotation.

End-to-End Flows (how it works)

A) Inspection → RWA NFT

• Inspector completes checklist; system generates PDF.
• PDF hashed (SHA-256); stored; IPFS CID pinned.
• Mint NFT with metadata { hash, cid, ttl, … }; store policy ID & TX id.
• Public page shows public PDF + metadata; gated PDF requires auth.

B) List & Auction

• Seller lists car; platform verifies valid NFT (not expired/superseded).
• Auction settings: duration, reserve, min increment; deposit required for bidders.
• Anti-sniping auto-extends; fraud/abuse detection monitors anomalies.

C) Escrow & Handover

• Winner funds escrow (IDR) → on-chain “Funded” event.
• Handover appointment (optional re-check); buyer confirms acceptance.
• Release: funds to seller; ownership transfer off-chain per law.
• Refund: if handover fails.
• Dispute: multisig admin decision recorded on-chain.

D) TTL & Supersession

• Report expires after 90 days or 3,000 km, whichever first.
• Re-inspection mints a new NFT with supersedes: ; UI surfaces “latest”.

E) Document Anchoring

• STNK/BPKB anchoring as metadata pointers (never raw docs), subject to regulator/legal approval.

Who We Will Engage

• Buyers & Sellers in the Indonesian used car market seeking safe, transparent transactions
• Licensed Inspectors via PT Inspeksi Mobil Jogja to verify and mint RWA NFTs.
• Licensed Escrow & Payment Providers to enable compliant IDR settlements.
• Cardano Community through open-sourced NFT inspection and escrow modules for adoption by other RWA projects.
• ABSI - Asosiasi Blockchain Syariah Indonesia (Indonesia Sharia Blockchain Association)
  • More about ABSI: https://www.absi.or.id/

How we will demonstrate or prove impact

We will track:

1. On-chain metrics: NFTs minted, escrow contracts deployed, ADA transaction counts.
2. Market activity: Number of verified sellers, completed transactions, and dispute resolutions.
3. User trust metrics: Buyer satisfaction surveys and repeat transactions.

Sharia-Aligned Model (ABSI engagement)

• Fee model: fixed service fees (avoid interest-like constructs); transparent dispute policy.
• Speculation dampeners: TTL, mandatory inspection, deposits reduce excessive uncertainty.
• ABSI: engage for review & public note of alignment.

Why This is Important to Cardano

This project positions Cardano as a leading RWA blockchain in Southeast Asia, starting from Indonesia (specifically, Java Island), bridging blockchain with legally relevant, high-value asset transactions. It delivers tangible mainstream adoption, thousands of users interacting with Cardano not just for crypto, but for real-world ownership and commerce.

Blockchain in Indonesia has always been associated with gambling, defi, scams, and other negative sentiments. We aim to bring real-world use case to the ecosystem and make it massive.

Another reason is because the proposing team are alumni of Universitas Gadjah Mada, one of the top public universities in Indonesia. This would strengthen Cardano's position as one of the blockchain that is closely related to academic institutions.

[Your Project and Solution] Impact

Please define the positive impact your project will have on the wider Cardano community

Impact on the Cardano Community

What value we create

1. Real-world usage on Cardano: Every inspection becomes a RWA NFT, and every sale uses smart-contract escrow, producing auditable on-chain activity and showing Cardano as a practical backbone for high-value consumer trades in Indonesia.
2. Reusable building blocks: We will open-source (MIT) the escrow contract and RWA inspection NFT module with docs, examples, and a verification tool—lowering time-to-market for other Cardano builders (autos, rentals, real estate, supply chain).
3. Trust signals for mainstream users: Partnership with PT Inspeksi Mobil Jogja and academic oversight from UGM help cultivate a credible, compliant Cardano case study that community advocates can point to.
4. Knowledge for RWA teams: We’ll publish a practical RWA playbook (metadata patterns, KYC/TTL patterns, PDP/ISO checklists, dispute workflows) other projects can adapt.

How we Measure Impact (Quantitative & Qualitative)

On-chain metrics:

1. Number of RWA NFTs minted (inspection records)
2. Number of escrow transactions and state changes (lock/release/refund)
3. Unique wallets interacting with our policies/contracts
4. Time-to-finality and failure rates for mint/escrow flows

Adoption metrics:

1. Verified users (eKTP), completed trades, repeat-seller/buyer rate
2. Dispute rate ≤5% and resolution within 5 business days ≥90%
3. TTL freshness: % listings with up-to-date inspections

Ecosystem reuse:

1. Open-source stars/forks/PRs,
2. Number of third-party integrations,
3. Issues resolved
4. Attendance at workshops/webinars; follow-up integrations initiated

User trust/experience:

1. NPS and post-trade satisfaction surveys
2. Qualitative feedback from dealers/inspectors and community AMAs

How and with whom we share outputs

1. Public metrics page: Live dashboard of on-chain counts (policy IDs, contract interactions), adoption, and dispute/uptime SLOs.
2. Monthly Catalyst updates: Short reports linking to TXs, release notes, incidents/lessons learned, and spend snapshots.
3. Open repositories: GitHub repos (escrow, RWA module, examples) with clear READMEs, API refs, and a CLI/mini-app for verification.
4. Community enablement:
   1. Workshops/webinars with Cardano Indonesia, Cardano Forum posts, and recorded demos.
   2. Office hours for teams trying to reuse our modules.
   3. Docs in Indonesian and English to support local and global builders.
5. RWA playbook: A living guide (architecture, policy design, legal templates, PDP/ISO controls) published for the community.

Why this matters

1. Tangible, consumer-grade RWA activity in a large Indonesian market creates sustained Cardano visibility and utility.
2. Open, well-documented modules and transparent reporting help other builders ship faster and safer, compounding ecosystem value beyond this single project.

[Your Project and Solution] Capabilities & Feasibility

What is your capability to deliver your project with high levels of trust and accountability? How do you intend to validate if your approach is feasible?

Why This Team Can Deliver (Trust & Accountability)

1. Mainnet track record. CAR-dano Phase 1 (Fund13) delivered the core pipeline (PDF → hash → IPFS → Cardano NFT). This proposal is Phase 2 (v2): scaling into an RWA-first marketplace with escrow, auctions, and mobile apps, with the purpose of increasing utility, Cardano adoption, and business growth.
2. Operational partner embedded. PT Inspeksi Mobil Jogja (PTIMJ) is part of the team (not external), bringing certified inspection workflows and nationwide rollout experience (for now, Java Island).
3. Clear ownership & accountability. Sumbu Labs leads product/engineering; PTIMJ leads inspection ops; UGM advisors provide independent technical oversight; legal counsel covers IDR escrow/RWA compliance.

Governance, Controls, and Proper Fund Management

1. Milestone-based disbursement. Funds released only when acceptance criteria and evidence of completion (repos, testnet/mainnet TXs, demos) are posted to the Catalyst update portal.
2. Segregated accounts. Vendor/SaaS and infra paid from a separate ops wallet with monthly caps; compensation drawn monthly per payroll schedule.

Delivery Process (Feasibility & Quality)

1. SDLC. Requirements → threat modeling → design review → implementation → mandatory code review → CI (lint, unit, integration, e2e) → staging canary → production.
2. Security by design.
   1. On-chain: minimal, auditable smart-contract surface; policy keys secured in HSM-backed vault.
   2. Off-chain: least-privilege RBAC, MFA, IP allowlists for admin consoles, secrets in AWS/GCP (until we can find a more private & trusted secret manager)
   3. Data: TLS 1.2+, AES-256 at rest, privacy-tiered PDFs (public vs. gated), no PII on-chain.
3. Compliance alignment. ISO 27001/27017/27018-aligned ISMS practices; Indonesian UU PDP (data residency in Jakarta; user consent flows; deletion rights). We plan to host the data on our own servers in Yogyakarta, but discussion for this is still ongoing.
4. Independent audit. Smart-contract escrow audited by Night Login Cyber Security Team before mainnet; high/critical findings must be remediated and re-verified.
5. Observability & SLOs. Metrics, logs, and alerting with SLOs:
   1. API p95 latency: ≤300ms (steady state)
   2. Minting queue success rate: ≥99.5%
   3. Incident response: acknowledge ≤15 min, mitigate ≤4h
   4. Dispute resolution SLA: ≤5 business days

Validation Plan (How We Prove It Works)

1. M1 – Escrow & legal readiness (testnet). Show end-to-end lock/release/refund on testnet + legal memo for IDR escrow structure; publish test plan & passing results. Consultation with OJK (Financial Services Authority) for compliance.
2. M2 – Auction load test. Simulate ≥1,000 bids with anti-sniping extensions; publish performance report and abuse-prevention checks (deposits/KYC gates).
3. M3 – Mobile App and Web App Limited Public Release (Early Access). Play Store/TestFlight releases; telemetry showing full flows (browse → bid → escrow confirm).
4. M4 – TTL & open-source drop. Public GitHub (MIT) for escrow + RWA NFT modules with docs and examples; demo verification tool (hash check + IPFS retrieval).
5. M5 – Pilot with PTIMJ. Target: 200 RWA mints, 100 escrow flows, ≤5% disputes; publish on-chain TXs and dashboard screenshots.
6. M6 – Public launch & reporting. Monthly Catalyst updates with on-chain counts, adoption metrics, incident log summaries, and roadmap burndown.

Risk Register (with Mitigations)

1. Payment partner timing. Mitigate via parallel vendor shortlist and fallback “custodian-as-a-service”.
2. Regulatory interpretation. Ongoing counsel by Virzana Mutiara Hanifa; freeze gates to prevent non-compliant features from shipping.
3. Data privacy. Strict separation of public vs. gated PDFs; periodic privacy reviews; remove PII from any public artifact.
4. Ops bottlenecks. Regional inspector capacity planning with PTIMJ; surge queues; SLA dashboard alerts.
5. Key compromise. HSM/KMS, rotation policy, incident drills.

[Milestones] Project Milestones

Milestone Title

Escrow Smart Contract (Testnet) & Legal Kickoff

Milestone Outputs

1. Formal escrow FSM/spec, state diagrams, and threat model covering lock, release, and refund.
2. Escrow smart contract implemented on Cardano testnet with unit/integration tests.
3. Backend (NestJS) escrow adapter and CI/CD pipelines set up with secrets management.
4. Jakarta-region infra baseline provisioned (prod + staging) with monitoring hooks.
5. Legal memo for IDR settlement structure (roles, liabilities, dispute policy draft).

Acceptance Criteria

1. Testnet flows for lock → release/refund pass, with ≥80% code coverage for SC core.
2. Fee estimates documented; p95 API latency ≤300 ms at target load; no PII on-chain.
3. Access controls (RBAC/MFA) enforced for ops/admin; audit logging enabled.
4. Legal memo delivered and reviewed; dispute policy baseline approved.

Evidence of Completion

1. GitHub repo links (SC + backend), CI green builds, test reports.
2. Cardano testnet TX IDs for lock/release/refund demo.
3. Infra diagram + screenshots of monitoring alerts and logs.
4. PDF of legal memo and dispute policy draft.

Delivery Month

3

Cost

90000

Progress

20 %

Milestone Title

Auction Engine & KYC

Milestone Outputs

1. Auction engine with anti-sniping (+5 min extension), reserve price, and min increments.
2. Bidder deposit + refundable mechanism integrated; default/forfeit rules codified.
3. eKTP KYC integration (liveness + fraud checks) with clear fail/appeal flow.
4. Abuse detection (rate limits, IP/device heuristics) and alerting playbooks.
5. Staging environment with synthetic listings for load and fairness testing.
6. Updated user terms for auctions, deposits, and KYC requirements.

Acceptance Criteria

1. ≥1,000 simulated bids complete without integrity errors; anti-sniping verified.
2. Deposits lock/unlock correctly; refunds processed within target window.
3. KYC pass/fail and liveness outcomes stored off-chain; zero PII on-chain.
4. p95 latency ≤300 ms at target RPS; error rate ≤0.5% under load.
5. Policy docs (auction, deposits, KYC) approved; abuse alerts verified.

Evidence of Completion

1. Load-test report (methodology, graphs, limits) and staging logs.
2. Demo recording of full auction lifecycle (create → bid → close → settle).
3. Config snippets (limits, increments), policy PDFs, and KYC test harness results.
4. Issues list and resolved defects from test cycles.

Delivery Month

4

Cost

60000

Progress

30 %

Milestone Title

Mobile Apps and Web App Limited Public Launch (Android & iOS)

Milestone Outputs

1. Android/iOS apps supporting browse, list, bid, escrow confirm/cancel, and push notifications.
2. Deep links to listing/escrow states; secure storage of session tokens; telemetry events.
3. Build/signing pipelines, store assets, and release notes prepared.
4. UX polish for small screens (auction timers, deposit status, KYC prompts).
5. In-app incident/report channel wired to support queue and knowledge base.
6. Web app features work efficiently with minimum reports. The webapp is a desktop version ofhe mobile.

Acceptance Criteria

1. Installable APK/IPA; TestFlight/Closed Testing approved.
2. End-to-end flows (browse → bid → escrow confirm) pass on staging and testnet.
3. Crash-free sessions ≥99% over 7-day test; push delivery ≥95% for enrolled devices.
4. Telemetry covers key events; PII never logged; rate limits enforced.

Evidence of Completion

1. Store/TestFlight links, APK/IPA artifacts, and release notes.
2. Video demo of E2E customer journey; QA sign-off checklist.
3. Telemetry dashboards (retention, crash-free, latency); support queue snapshot.

Delivery Month

6

Cost

70000

Progress

60 %

Milestone Title

TTL, Privacy & Open-Source Release

Milestone Outputs

1. TTL enforcement (expiry by 90 days or 3,000 km) and supersession chain UI/logic.
2. Public vs gated PDF access with signed URLs; no sensitive docs in public PDFs.
3. Open-source release (MIT) of escrow SC and RWA inspection NFT modules.
4. Developer docs, API refs, examples, and a CLI/mini-app for verification (hash + CIP).
5. Privacy DPIA and data maps (storage locations, retention, deletion flows).

Acceptance Criteria

1. Expired reports blocked from listing; superseded links resolve to latest version.
2. ACLs enforced for gated PDFs; attempts to access PII are denied and logged.
3. Repos public with license headers; docs pass completeness checklist; example builds run.
4. DPIA approved; no PII in logs; backup/retention settings verified.

Evidence of Completion

1. Public GitHub links, tags/releases, and README/docs site.
2. Demo video showing TTL expiry and report supersession behavior.
3. DPIA PDF and data-flow diagrams; access-log excerpts for gated assets.
4. Verification tool output (hash/CID checks) and sample NFT metadata.

Delivery Month

7

Cost

40000

Progress

70 %

Milestone Title

Pilot Launch (RWA → Trade) with PT Inspeksi Mobil Jogja

Milestone Outputs

1. Pilot in initial regions with trained inspectors, run-books, and SLO dashboards.
2. Support workflows (dispute triage, refunds) and incident response drills.
3. Marketing soft-launch assets and onboarding incentives for sellers/buyers.
4. Public metrics page (on-chain counts, disputes, uptime) published.

Acceptance Criteria

1. ≥200 RWA mints and ≥100 escrow flows completed during pilot.
2. Dispute rate ≤5% with ≥90% resolved within 5 business days.
3. Marketplace uptime ≥99.5% with alerting; no P1 security incidents.
4. Seller/buyer NPS ≥60; pilot retro with action items logged.

Evidence of Completion

1. Cardano TX lists (mints, lock/release/refund) and metrics dashboard screenshots.
2. Support ticket stats, incident postmortems, and refund timelines.
3. Training attendance sheets and signed run-book acknowledgments.
4. Soft-launch content links and campaign performance summary.

Delivery Month

10

Cost

45000

Progress

90 %

Milestone Title

Public Launch & Co-Marketing

Milestone Outputs

1. Nationwide rollout, co-marketing with PTIMJ and Cardano community channels.
2. PR kit, explainers, webinar, and influencer outreach in auto communities.
3. Metrics page updated weekly; roadmap vNext published with community feedback.
4. Handover: ops SLOs, on-call rotation, and budget report for Catalyst.

Acceptance Criteria

1. ≥1,000 verified users and ≥300 completed trades post-launch.
2. Public metrics page live and current; monthly Catalyst updates posted.
3. SLA met for the month (uptime, latency, dispute resolution); no critical incidents.
4. Co-marketing deliverables published (press release, ≥3 explainers, ≥1 webinar).

Evidence of Completion

1. Live site/app links and analytics snapshots; metrics page URL.
2. Press coverage, social posts, video links, and webinar/seminar recording.
3. Final milestone report: on-chain KPIs, budget summary, lessons learned.
4. Ops artifacts: on-call schedule, escalation matrix, and SLO dashboard.

Delivery Month

12

Cost

45000

Progress

100 %

[Final Pitch] Budget & Costs

Please provide a cost breakdown of the proposed work and resources

Total requested: ₳350,000

A) Summary Cost Breakdown

• Engineering, Product & Operations (merged): ₳229,500
  • Full-time delivery across backend (NestJS), smart contracts (escrow), mobile (Android/iOS), web (Next.js), DevOps, QA, support, project management, documentation, internal reporting. Includes allocations for third-party smart-contract audit, legal & compliance, and accounting.
• PT Inspeksi Mobil Jogja (internal partner ops): ₳10,000
  • Inspector workflow integration, QA and training, pilot rollout per milestone, regional scaling support.
• Technical & Academic Advisors (Universitas Gadjah Mada DTETI): ₳12,000
  • Security and RWA design reviews, feasibility checks, milestone gate reviews.
• Infrastructure (ISO-aligned, Jakarta residency): ₳28,100
  • High availability compute, managed PostgreSQL with PITR, IPFS plus pinning redundancy, CDN/WAF/DDoS, monitoring and logging, backups and disaster recovery.
• Essential subscriptions: ₳18,000
  • ClickUp (project management), Figma (design), Sentry (monitoring), OpenAI Team/Pro (coding assist). Seats and tiers trimmed to minimum viable.
• Marketing, community and public reporting: ₳27,900
  • Launch campaigns, dealer and auction outreach, PR, explainers and video, monthly community AMAs and public metrics dashboard, co-marketing with PTIMJ, partner universities and Cardano orgs.
• Contingency: ₳24,500
  • 7% buffer for currency swings, emergency hotfixes, audit rework, and unexpected compliance tasks. Release controlled via 2-of-3 multi-sig contingency wallet after milestone acceptance.
• Grand total: ₳350,000

A1) Engineering, Product & Operations: ₳229,500 (further breakdown)

• Product and Project Management: ₳51,000
  • Roadmap, milestone delivery, partner coordination, Catalyst reporting. This includes work PC and Self-Hosted Server for privacy.
• Backend, Blockchain and DevOps: ₳45,000
  • Escrow smart contract design and implementation, NestJS APIs, CI/CD, secrets management, infra automation, performance and security hardening.
• Mobile Engineering: ₳37,000
  • Android and iOS apps (browse, list, bid, escrow confirmation), push notifications, telemetry and performance.
• Frontend Engineering: ₳35,000
  • Next.js marketplace, auction UX, KYC integration, web performance.
• UI and UX Design: ₳25,000
  • Design system, user journeys, accessibility, design QA and handoff.
• Quality Assurance and Testing: ₳9,000
  • Test plans, end-to-end and staging cycles, auction load tests, release sign-offs. Budget is lesser because some of the workload is given to each teams.
• Customer Support and Moderation: ₳6,000
  • Onboarding support, dispute triage playbooks, knowledge base.
• Documentation and PMO: ₳4,500
  • Developer docs, runbooks, ops SOPs, public tech notes.
• Smart-contract and dApp Security Audit (third-party): ₳10,000
  • External review of escrow smart contract, unit and integration tests, exploit scenarios, re-verification.
• Legal and Accounting: ₳7,000
  • IDR escrow terms, dispute policy, PDP compliance, quarterly accounting reviews.

Notes: Audit and legal/accounting are described again in section C for clarity, but their costs live here to avoid double counting.

B) Plan and timeline mapping

• M1 (Months 1–3): Escrow smart contract and legal kickoff: ₳90,000
  • Testnet lock, release, refund; legal memo; base infra; CI/CD hardening, consultation with regulators.
• M2 (Month 4): Auction engine and KYC: ₳60,000
  • Anti-sniping, reserve price, bid increments, KYC plus deposit, abuse detection.
• M3 (Months 5–6): Mobile apps limited public launch (Early access): ₳70,000
  • Android/iOS, push, telemetry, store releases.
• M4 (Month 7): TTL, privacy and open-source drop: ₳40,000
  • TTL and supersession, public and gated PDFs, MIT release of escrow and RWA NFT modules with docs and examples.
• M5 (Months 8–10): Pilot launch (RWA to trade): ₳45,000
  • PTIMJ pilot operations, run-books, SLO dashboards, on-chain proofs.
• M6 (Months 11–12): Public launch and co-marketing: ₳45,000
  • Nationwide rollout, campaigns, events, monthly public reports and metrics page.

(Milestone totals sum to ₳350,000 and are funded within section A lines, with the Contingency used only if needed.)

C) Third-Party Products and Services

• Security audit (escrow smart contract): ₳10,000
  • Vendor: Night Login Cyber Security Community (https://nightlogin.id).
  • Scope: contract review, tests, fee patterns, exploit scenarios.
  • Costed under Engineering, Product and Operations.
• Legal and compliance (IDR escrow, RWA and PDP): ₳7,000
  • Counsel: Virzana Mutiara Hanifa
  • Deliverables: escrow ToS, dispute policy, PDP impact assessment.
  • Costed under Engineering, Product and Operations.
• Cloud and infrastructure providers: ₳28,100
  • Jakarta cloud region, Cloudflare CDN/WAF, managed PostgreSQL with PITR, IPFS plus pinning, monitoring and logging, backups and DR.
  • Security: TLS 1.2+, AES-256 at rest, RBAC/MFA, immutable audit logs for escrow state transitions. Costed under Infrastructure.
• Essential subscriptions: ₳18,000
  • ClickUp, Figma, Sentry, OpenAI Team/Pro. Seats and tiers minimized; temporary bursts only in sprint months.
• Marketing and community: ₳27,900
  • Digital campaigns, dealer and auction roadshows, PR, content and explainers, monthly AMAs and updates, social metrics dashboard, co-marketing.

D) If Costs Exceed the Request: Shortfall and Co-funding

• Sumbu Labs absorbs engineering and ops overruns through unbudgeted developer hours.
• PT Inspeksi Mobil Jogja covers inspection operations during pilot: wages, travel, facility use.
• Payment and escrow partner bears its own integration costs, recouped via transaction fees.
• Non-critical spend such as ads and events is throttled first to protect core delivery.

E) Fund Management, Documentation and Reporting

• Milestone-gated disbursement: internal release of funds only after acceptance criteria are met and evidence is posted: repos, demos, testnet or mainnet TXs, audit letters.
• Monthly public updates: progress, on-chain metrics, budget snapshot, incidents and resolutions. Mainly going to be via Instagram and X.
• Eligibility: spend limited to delivery, infra, audit and legal, marketing and community, project management, documentation and reporting per Fund Rules.

[Final Pitch] Value for Money

How does the cost of the project represent value for the Cardano ecosystem?

Why This is a Strong Value for Cardano (and Indonesia)

Despite the increased price (from 18USD to 22USD) due to use of blockchain in our inspection, the number of clients sustained and even increased. This is the real data from our 6 months of implementation from the Fund13 project. We assume this is because of the increased trust of the customers from using blockchain.

• Huge addressable market: Indonesia has 17.2M+ passenger cars on the road and sells ~1.0M new vehicles/year—a large supply funnel for used-car transactions. Recent research values Indonesia’s used-automobile market at ~US$57B with ~6% CAGR, underscoring scale for on-chain activity.
  • Source 1: https://www.marklines.com/en/statistics/flash_sales/automotive-sales-in-indonesia-by-month-2023
  • Source 2: https://www.bps.go.id/en/statistics-table/2/NTcjMg%3D%3D/number-of-motor-vehicle-by-type--unit-.html
  • Source 3: https://www.nexdigm.com/market-research/report-store/indonesia-used-automobiles-market-research-report/
• Trusted collaboration: Backed by Universitas Gadjah Mada (UGM), a top Indonesian university (QS #224 globally). This academic oversight strengthens security reviews, compliance, and public trust.
  • Source: https://www.topuniversities.com/universities/gadjah-mada-university
• Direct on-chain outputs per ADA: Budget lines map to deliverables that generate verifiable Cardano transactions (RWA NFT mints for inspections; escrow lock/release/refund). We’ll publish monthly TX links and a public metrics page.
• Right-sized, local-market costs: Engineering is Indonesia-based (not US/EU rates); infra is Jakarta-region for low latency and PDP compliance; tooling is minimal (ClickUp, Figma, Sentry, OpenAI Team/Pro). This keeps burn low while meeting reliability and auditability needs.
• Ecosystem spillover: We open-source the escrow + RWA-minting modules (MIT) so other builders can reuse audited components, multiplying impact.
• Reputation upside for Cardano: A transparent, customer-first RWA marketplace co-delivered with a top university can shape positive sentiment for Cardano in Indonesia’s Web3 community and beyond (co-marketing with partners and academic channels).

Bottom line: The spend is concentrated on shipping auditable, production features that convert Indonesia’s large used-car activity into measurable Cardano usage, with strong trust signals (UGM) and reusable open-source outputs. Arguably, high value per ADA.

[Required Acknowledgements] Consent & Confirmation

Terms and Conditions:

Yes