An Informed Consent Token (ICT) is an ERC20 token issued to a patient’s wallet upon signing an informed consent agreement. The token functions as a lightweight proof that the patient has granted consent for specific uses of their data. Its disease-neutral design ensures that wallets are not directly associated with Protected Health Information (PHI), reducing privacy risks.
- Proof of Consent: ICTs act as a simple signal that a wallet owner has agreed to the terms of consent.
- Disease Neutrality: Tokens do not contain disease-specific metadata, reducing the risk of associating a wallet with sensitive health data.
- Low Overhead: ICTs are easy to mint, distribute, and validate on-chain, minimizing transaction and administrative costs.
- Flexibility: Patients can easily re-sign consent and receive a new token if needed.
ICTs are intended to gate data submission and access while preserving privacy and control. Here’s how they integrate into the system:
- Data Submission: A patient’s wallet must hold an ICT to submit health-related data (e.g., a blood spot dossier). If the token is absent, the system denies the submission.
- Dynamic Reward Boxes: Once data is submitted, patients can receive Dynamic Reward Boxes (NFTs) containing rewards, updates, or actionable items related to their data.
- Gated Data Access: Third parties, such as researchers or pharmaceutical companies, access patient data through NFTs representing the data dossier. These NFTs are governed by smart contracts that enforce terms of access.
The question of whether ICTs should be transferable remains open. Below are considerations for and against transferability:
- Simplified Reissuance: If a patient loses access to their wallet, a new token can be issued without invalidating the previous one.
- Estate Handling: Transferable tokens enable heirs or executors to manage the deceased patient’s data and consent, ensuring continued utility and potential benefits from the data.
- No PHI Linkage: Since ICTs are disease-neutral, transferring them does not inherently link a wallet to sensitive health data.
- Tighter Consent Control: Nontransferable tokens ensure that consent is tied to the original patient and cannot be transferred to unauthorized parties.
- Regulatory Clarity: A nontransferable token aligns more closely with the principle that consent is personal and cannot be delegated.
- Avoiding Abuse: Transferability might open the door to misuse or trading, even if unintended.
Making ICTs disease-neutral is a deliberate choice to enhance privacy. By decoupling the token from any specific health condition:
- Wallets are not inherently linked to PHI, reducing the risk of unauthorized association.
- Tokens can be reused across multiple contexts (e.g., for consent to general research participation or data sharing initiatives).
Dynamic Reward Boxes, inspired by the concept of NFT loot boxes, are used to deliver rewards, notifications, and actionable opportunities. They provide a gamified, transparent way to manage patient engagement while maintaining trust and privacy.
- Consent Confirmation: Patients can receive a Dynamic Reward Box containing a summary of their signed consent and its terms.
- Data Access Notifications: When a third party accesses a patient’s data dossier, the patient receives a notification via a reward box.
- Conditional Reidentification: Reward boxes notify patients of events requiring conditional reidentification (e.g., eligibility for a clinical trial or life-saving treatment).
- Participant Rewards: Patients can receive tokens, marketplace credits, or exclusive insights as rewards for contributing data.
In scenarios where data or consent tokens hold long-term value (e.g., enabling access to innovative treatments or monetized data sharing), estate planning becomes important. Approaches to address this include:
- Heir Registration: Patients designate an heir for their wallet or consent token upon signing the informed consent agreement.
- Smart Contract Automation: Smart contracts could transfer consent tokens or data dossiers to heirs upon verification of the patient’s death (via an oracle or executor).
- Clear Consent Terms: Consent agreements should specify whether heirs can inherit data access rights or benefits derived from the patient’s data.
- ICTs and data dossiers must comply with privacy regulations such as GDPR and HIPAA.
- Data storage and access must use encryption and decentralized systems (e.g., IPFS) to ensure security.
- Consent agreements must clearly outline the scope of data use, reidentification events, and patient rights.
- Participants must have the ability to revoke consent at any time.
- Patients should be fairly rewarded for their data contributions, whether through tokens, monetary incentives, or early access to treatments.
Using ERC20-based Informed Consent Tokens alongside Dynamic Reward Boxes offers a scalable, privacy-preserving framework for managing informed consent and engaging participants in healthcare data systems. The disease-neutral design ensures minimal privacy risks, while the inclusion of reward mechanisms fosters trust and sustained participation.
- Update Page.tsx to reflect Informed Consent Language in /InformedConsent.md
- Update utilty ERC20 token prototype (Current distribution package uses DSCI demo on Base.)
- Update vendor contract
- Deploy on Solana Test Net
The transferability of ICTs remains an open question, with potential benefits for estate handling and usability but concerns about consent integrity and abuse. For now, assuming ICTs are transferable introduces flexibility without significant drawbacks, given their disease-neutral design.
By combining these mechanisms with robust smart contracts and ethical frameworks, the system can empower patients, accelerate innovation, and uphold the highest standards of privacy and consent in decentralized healthcare research.