Platform Overview

The HDX Architecture

Enterprise-grade infrastructure built for healthcare compliance. A federated exchange that brokers connections without centralizing data.

HOW IT'S BUILT

Designed for zero-PHI brokerage

The HDX platform acts as a brokerage layer: resolving patient identities, discovering available records, settling transactions, and issuing cryptographically verifiable access grants. Protected health information never passes through the exchange.

Identity Resolution

PersonaLink maps fragmented patient identities using cryptographic tokens inside a Vault security boundary

Settlement

USDC on Solana with sub-second finality. Immutable access grants recorded via Anchor smart contracts

Direct Access

Buyers connect directly to provider FHIR R4 endpoints. HDX never touches the medical record

IDENTITY RESOLUTION

PersonaLink — Privacy-Preserving Patient Matching

A single patient may have dozens of different identifiers across different healthcare systems — different MRN numbers, name spellings, addresses. PersonaLink maps these fragmented identities to a single real person without ever storing or exposing PHI.

HMAC-based cryptographic tokens inside a HashiCorp Vault security boundary
Bloom filter comparison for fuzzy matching (typos, name variations, address changes)
Confidence scoring with configurable thresholds for high-quality matches
Raw demographics never accessible outside Vault — only cryptographic tokens

Key Properties

Zero-knowledge architecture

PHI never stored or exposed

Vault plugin boundary

All cryptographic operations inside Vault

HMAC-SHA256 with key rotation

Cryptographic token lifecycle management

Patent pending

MARKETPLACE

HDXT Exchange — Blockchain-Settled Transactions

The exchange is the core brokerage service. It orchestrates discovery, settlement, and access grant issuance through documented APIs.

Discovery

Buyers submit patient demographics. The exchange calls PersonaLink to resolve identity, then queries registered providers for matching records. Results include data category, date range, and pricing — but never PHI.

Settlement

Payments settle in USDC on Solana via institutional-grade custody. Sub-second finality. Transaction fees under $0.01. The platform distributes payment to the data provider automatically.

Access Grants

After settlement, an immutable AccessGrant is recorded on Solana via an Anchor smart contract. The grant includes a SHA-256 hash of the agreed terms, access mode, and expiration. Providers verify grants by reading Solana state directly.

INTEROPERABILITY

FHIR R4 from the ground up

The platform speaks FHIR R4 natively. Records are delivered as validated FHIR resources, ensuring compatibility with any standards-compliant healthcare system.

Provider authentication: OAuth2, API key, and FHIR SMART strategies supported. Provider credentials are encrypted at rest using Vault transit encryption.

Supported Resource Types

DiagnosticReportObservationImagingStudyClaimExplanationOfBenefitDocumentReferencePatientConditionProcedureMedicationRequestAllergyIntoleranceImmunization

EHR INTEGRATION

Embedded in the clinical workflow

We've built a working SMART on FHIR integration with Oracle Health (formerly Cerner) that allows clinicians in PowerChart to search for external patient records, discover what's available across the exchange, and access records — all without leaving their EHR.

Oracle Health serves over 27,000 healthcare facilities worldwide with approximately 25% of the U.S. hospital market. Our integration demonstrates the ability to embed HDX directly into this installed base.

INFRASTRUCTURE

Enterprise-grade. Healthcare-compliant.

Go Backend

High-performance exchange and identity services

Oracle Cloud Infrastructure

Autonomous Database, OKE Kubernetes, KMS encryption

HashiCorp Vault

Zero-trust secrets management, cryptographic operations, dynamic credentials

Solana / USDC

Sub-second settlement via Coinbase Developer Platform

FHIR R4

Native healthcare interoperability standard

Next.js / React

Modern frontends with Auth0 authentication

Design Principles

Vault-first security — no secrets in environment variables or code

Kubernetes-native — no local state, graceful shutdown, health endpoints

OpenAPI specifications for all service boundaries

Role-based access control across six roles

What HDX Is Not

Not an EHR Replacement

We integrate with existing systems like Oracle Health, not replace them.

Not a Consumer App

HDX is infrastructure for institutions and enterprises.

Not a Data Broker

We never own, store, or resell patient data. We broker connections and settle transactions.

See the platform in action

Request a demo to see PersonaLink identity resolution, blockchain settlement, and FHIR R4 record retrieval working together.

Request a Demo Trust & Security