Business Automation Solution
Our client is a global company that provides the healthcare sector with multiple technology-powered software solutions. These solutions are designed to help medical organizations by responding to arising market challenges and improving their processes, such as optimizing costs, reducing risks, and supporting compliance standards.
One of these challenges emerged with the appearance of ‘CMS Interoperability & Patient Access Rules’ requiring the processing of patient information—including its sharing with third parties—only with the patient’s consent. Striving to help medical companies meet new data processing standards, our client decided to create a special API-based SaaS solution.
Despite having their own in-house resources, they felt the need for additional professional assistance and therefore turned to our NIX team as proven experts in medical software development.
NIX’s task was to create a special API service, available to healthcare companies on a subscription basis, so that they could use it to integrate a custom solution into their digital ecosystems and thus ensure protected and regulated patient data exchange and management.
The solution had to comply with HIPAA standards, which meant increased security requirements, including storing protected health information (PHI).
We discussed our roadmap with the client and formed a development plan. Within this plan, the NIX team created a Rest API service powered by blockchain, which allowed storing information in an unchanged and undeletable form.
Medical institutions can integrate this service with their IT systems to manage and track user consent requests and securely share data with third parties under the latest privacy regulations.
We built a blockchain network using a managed IBM blockchain platform based on Hyperledger Fabric: a framework for distributed ledger solutions that has a modular architecture and provides a high level of privacy, resilience, and flexibility. Our team also used Kafka, a distributed software message broker chosen for its high performance and good scalability.
The selected tech stack allowed us to deliver an easy-to-integrate and efficient-to-use solution.
After subscribing, the user—a medical company—gets access to the Rest API service with all the explanatory documentation and can add functionality for processing patient data to their website or application.
How does it work?
A hospital employee enters information about the patient’s consent to data processing into the system and thereby sends a corresponding HTTPS request to the REST API. This consent request is recorded and stored in the blockchain in an immutable form for as long as the network exists.
Also, the user can find out the consent status of a particular patient by sending the appropriate request, as well as view the consent history if needed. Thus, Patient Access Rules are fully respected.
The medical company receives its private blockchain network accessible exclusively to its employees. This network is highly protected and considers data valid only if it matches each other for most blockchain nodes, which makes attempts to manipulate some of them useless for potential cyber-attacks.
We use two databases to enhance information security:
The ability to dynamically create and manage consent & data sharing requests
An immutable audit trail of consent & data access history for managers
Single source of truth for consent & data sharing statuses within the organization
Full solution compliance with complex regulatory requirements and HIPAA standards
Support for IBM Cloud to ensure the service is always available and secure
Multitenancy support with the ability to share one common cloud solution for several medical organizations
Our cooperation resulted in creating a HIPAA-compliant, blockchain-powered REST API service for managing user data in the healthcare area. The client provides it to medical companies as a SaaS solution, along with initial integration to simplify the onboarding process.
Thus, in addition to expanding the list of software solutions provided, the client covers the healthcare market’s need for secure and regulatory-compliant patient data processing.
8 experts (Tech Lead, 3 JS Developers, Go Developer, QA, DevOps, PM/BA)
Web and mobile HIPAA-compliant app for improving patient retention and measuring patient health remotely.
The solution provides collected, filtered and processed data for receiving useful insights for hospitals to analyze their performance.
Robust data engineering and analytics solution that enables real-time reports for efficient pharmacy management.
AR-based mobile application for managing diabetes that empowers diabetic patients with healthy food recommendations with 3D food models in an interactive way.
Sophisticated data system with Airflow pipelines to handle the curated content upload and provide insights.
Thomson Reuters product, Cortellis, is an enterprise intelligence and collaboration platform for tracking the pharmaceutical product development lifecycle.
Microservice-based web platform for all-in-one pharmacy management to increase efficiency and improve patient care.
Using the ServiceNow platform to optimize workflows, increase employee efficiency, and grow customer satisfaction.
Interactive NLP chatbot empowered with conversational AI for web, mobile, and desktop that accelerates internal operations.
See more success stories
Our representative gets in touch with you within 24 hours.
We delve into your business needs and our expert team drafts the optimal solution for your project.
You receive a proposal with estimated effort, project timeline and recommended team structure.