Skeleton Health is an open-source, community-built platform that puts patients in charge of their medical records. Encrypted end-to-end. Stored on blockchain. Controlled by you.
Your most personal information is locked in silos you can't access, controlled by companies you didn't choose, and breached at alarming rates.
Over 725 million healthcare records have been exposed in data breaches since 2010. Centralized databases are honey pots for attackers.
Over 50 EMR vendors each hoard patient data in proprietary systems. Your records can't move with you between providers.
Redundant tests, administrative overhead, and delayed care caused by inaccessible or incomplete patient records cost the US healthcare system $35 billion per year.
No middlemen. No third-party custodians. Your keys, your records, your rules.
Connect MetaMask to create your identity. Your private key stays in your wallet's secure enclave — it never leaves your browser.
Upload medical records. Each file is encrypted with AES-256-GCM on your device before anything touches the network.
Encrypted data goes to decentralized storage (KV with content-addressed hashing). Only the hash and metadata are recorded on Polygon — never plaintext.
Share records with any provider for a limited time. Revoke access instantly. Full audit trail, forever.
Every architectural decision prioritizes patient sovereignty, security, and transparency.
All encryption and decryption happens in your browser using AES-256-GCM. Your plaintext data never touches any server, ever.
Every access, grant, and revocation is recorded on Polygon blockchain. Tamper-proof, timestamped, and fully transparent.
Grant providers access for specific durations (7 days, 30 days). Access auto-expires. No permanent data sharing.
Any healthcare provider can query the skeleton with your permission. No vendor lock-in. Your data, your choice of provider.
Records are stored in decentralized key-value storage with content-addressed hashing. Encrypted before leaving your browser.
Designed to exceed HIPAA requirements with immutable audit logs. Patient-controlled keys simplify BAA and GDPR compliance.
We can't see your data. We don't want to. The architecture ensures the platform operator has zero access to patient records.
Switch doctors, change insurance, move countries — your records go with you. No export requests, no waiting, no fees.
Built on Polygon L2 for near-zero gas fees. Healthcare data sovereignty shouldn't cost a fortune.
We separate the data layer (skeleton) from the application layer (skins). Patients own the skeleton. Any provider can build a skin.
Skeleton Health is open source because healthcare data sovereignty shouldn't be owned by investors. We're building this together — funded by the people who need it.
All repositories public. Smart contracts, backend, frontend, and docs — fully auditable, forkable, and MIT licensed.
Explore on GitHub →110+ pages of technical architecture, threat models, regulatory compliance, and a detailed 36-month implementation roadmap.
Read the Docs →Developers, healthcare professionals, security researchers, and policy advocates — there's a place for you. PRs welcome.
Contributing Guide →Phase 3 transitions to community-governed DAO. Token holders vote on protocol upgrades, funding allocation, and partnerships.
Roadmap Details →No VC gatekeepers. Funded through community contributions, Gitcoin grants, and public goods funding. Every dollar goes to development.
Funding Breakdown →Healthcare data sovereignty is a public good. Our model ensures sustainability through ecosystem services, not data exploitation.
Executive Summary →The app is live. Working demo with real blockchain transactions, real encryption, real encrypted decentralized storage.
Try the live demo, read the code, or start contributing. The future of healthcare data is open — and it starts with you.