Skip to content
PRSINDIA

ABDM · ABHA · DPDP · FHIR

Healthcare Software Development

Healthcare software where the identity layer is national, consent is statutory and no-shows decide whether the clinic is profitable. We build ABDM-ready systems with consent as a first-class entity, not a checkbox.

  • ABDM / ABHA linkage
  • DPDP consent, versioned and auditable
  • No-shows cut 27% to 11%
  • HL7 v2 and FHIR R4
The real problem

The patient record is not yours any more.

That is the sentence most hospital software has not absorbed. Under ABDM, a patient's health identity is portable and belongs to them. They can grant a different hospital access to your records, for a defined purpose, for a defined window, and revoke it afterwards. Under the DPDP Act, you must be able to demonstrate — with evidence, not assertion — exactly what they agreed to and when. Software built on the assumption that the hospital owns the data cannot be retrofitted to this cleanly. We build the consent artefact as a first-class entity in the first sprint, and every read of clinical data is checked against a live consent grant rather than against a role. Everything else in a hospital system is downstream of getting that right.

Talk about your facility
0%
No-show rate

Down from 27% at one client. WhatsApp confirm, auto-waitlist, risk scoring. None of it clever — just measured, then acted on.

0%
Consent auditable

Versioned notice text stored with every grant, so you can show what the patient actually read, not what the form says today.

0
Protocols terminated

HL7 v2, FHIR R4 and whatever the lab analyser speaks — mapped to one canonical internal model.

0min
OPD registration

Median time from walk-in to consultation-ready, with ABHA scan-and-share replacing the form.

What healthcare software in India actually has to get right

Healthcare software in India is a different discipline from healthcare software anywhere else, and the difference is not the medicine. It is that the identity layer is national, the consent layer is now statutory, and the economics of a clinic are decided by a number most software does not even measure.

ABDM and ABHA: identity you do not own

The Ayushman Bharat Digital Mission gives a patient an ABHA number — a portable health identity that is theirs, not your hospital's. Linking your records to it means your facility must register in the ABDM ecosystem, implement the Health Information Provider flows, and — this is the part teams underestimate — honour a consent request from a Health Information User you have never heard of, correctly, on demand.

The mental shift is real. Your patient record is no longer a row in your database that you control. It is a record the patient can grant a different hospital access to, for a defined purpose, for a defined window, and revoke afterwards. Software written on the assumption that the hospital owns the data cannot be retrofitted to this cleanly. We build the consent artefact as a first-class entity from the first sprint, and every read of clinical data is checked against a live consent grant, not against a role.

The DPDP Act made consent a legal artefact, not a checkbox

Under the Digital Personal Data Protection Act, health data is sensitive, consent must be specific, informed and revocable, and you must be able to demonstrate — not assert — what a patient agreed to and when. A checkbox in a form, with no record of what the notice said at the moment it was ticked, does not do that.

So we version the consent notice itself, store the exact text the patient was shown alongside the grant, timestamp it, record the purpose, honour revocation by actually cutting access rather than setting a flag, and log every access to sensitive data in an append-only audit trail that an engineer cannot quietly edit. Purpose limitation is enforced in the data layer. This is more work. It is also the difference between a compliance story and a compliance claim.

No-shows are the number that decides whether a clinic is profitable

A specialist consultation slot that goes unfilled is revenue that cannot be recovered — the hour is gone. Indian outpatient no-show rates commonly sit between 20 and 30 percent, and most hospital software does not measure it at all, let alone act on it.

What actually works, in the order it works: a WhatsApp reminder 24 hours out with a one-tap confirm or reschedule, because SMS is ignored and calls do not scale. A second nudge on the morning of. A waitlist that automatically offers a released slot to the next patient the moment a cancellation lands. Deposit-backed booking for the appointment types where no-shows concentrate. And a risk score per patient built from their own history, so the front desk knows which slots to overbook. We have taken no-shows from 27 percent to 11 percent doing exactly this, and nothing on that list is clever — it is just measured, and then acted on.

HL7 v2 and FHIR, in the real world

Your radiology system speaks HL7 v2 with pipes and carets, because it was installed in 2016 and nobody is replacing it. ABDM speaks FHIR R4. The lab machine speaks something the vendor invented. We build an integration layer that terminates all three, maps to a canonical internal model, and does not let the ugliest of the three dictate the shape of your entire domain. Every inbound message is stored raw before it is parsed, because the day a mapping is wrong you will want the original.

Modules

What we build into a healthcare platform.

Patient registration + ABHA

Scan-and-share ABHA registration, demographic matching against existing records, and deduplication that does not silently merge two people.

Appointments and no-show engine

WhatsApp confirm and reschedule, morning-of nudges, an auto-waitlist on cancellation, deposit booking and a per-patient risk score.

Consent management

Versioned notice text stored with the grant, purpose limitation enforced in the data layer, revocation that actually cuts access.

Clinical records and OPD notes

Structured notes, prescriptions, vitals, allergy and interaction checks, with clinical templates per specialty rather than one blank box.

HL7 / FHIR integration layer

Terminates HL7 v2, FHIR R4 and vendor protocols. Raw message stored before parsing, because one day the mapping will be wrong.

Lab and radiology (LIS/RIS)

Order to sample to result, DICOM study linkage, critical value alerting that pages a human rather than filling a queue.

Billing, TPA and insurance

Package pricing, TPA claim workflow, pre-authorisation, and the reconciliation that tells you what the insurer actually paid.

Patient app

Appointments, reports, prescriptions, consent grants the patient can review and revoke, and teleconsultation where it makes sense.

Audit trail and access control

Append-only logging of every access to sensitive data, role and consent-scoped reads, and a trail an engineer cannot quietly edit.

India, specifically

The compliance surface you are actually building against.

  • ABDM ecosystem

    Health Facility Registry, Healthcare Professionals Registry, Health Information Provider flows, and consent requests honoured from users you have never heard of.

  • DPDP Act

    Specific, informed, revocable consent with the notice text versioned and stored. Demonstrable, not assertable. Revocation cuts access for real.

  • HL7 v2 and FHIR R4

    Both, simultaneously, forever. The 2016 radiology system is not being replaced, and ABDM is not going to start speaking pipes and carets.

  • Data residency

    Indian region deployment, in-country backups, and real care about which third-party SDK is quietly shipping identifiable payloads offshore.

  • NABH documentation

    If accreditation is on your roadmap, the audit trails, incident logging and clinical protocol records need to exist from day one, not be reconstructed later.

  • TPA and insurance reality

    Pre-authorisation, claim submission, partial settlement and the reconciliation that reveals what the insurer actually paid against what you billed.

The metrics that matter

What a hospital administrator actually asks about.

Not uptime. Not page load. These four numbers are the ones that come up in every board meeting we have ever sat in with a hospital group, and most hospital software cannot produce any of them without somebody exporting to Excel first.

Talk to us
0%
OPD no-show rate

The single largest recoverable revenue leak in an outpatient business — and the one least often measured.

0days
Average length of stay

Where bed turnover, and therefore inpatient capacity, is actually decided.

0days
TPA claim cycle

From discharge to money received. Every day of it is working capital sitting with an insurer.

0%
Bed occupancy

Measured in real time, by ward, not reconstructed at month end from a register.

Can you show what a patient consented to, and when?

Not the checkbox — the exact notice text they were shown at that moment. If the answer is no, that is now a legal exposure rather than a technical debt. Let us talk about what it takes to fix it.

The stack

Built on tools that will still be here in five years.

  • Laravel
  • React Native
  • PostgreSQL
  • Redis
  • ABDM Gateway
  • ABHA
  • HL7 v2
  • FHIR R4
  • DICOM
  • WhatsApp Business API
  • Razorpay
  • AWS (India region)

FAQ

The questions you were going to ask on the call.

Registering your facility in the Health Facility Registry, registering practitioners in the Healthcare Professionals Registry, linking patient records to their ABHA number, and implementing the Health Information Provider flows so that when a patient consents, another hospital can pull the records they have permitted. The part teams underestimate is the consent flow: you must honour a request from a Health Information User you have never heard of, correctly, on demand. That is an architectural requirement, not a certification you buy at the end.

Consent stops being a checkbox and becomes evidence. It must be specific, informed and revocable, and you must be able to demonstrate what the patient agreed to and when — which means versioning the notice text itself and storing the exact wording shown at the moment of the grant. Revocation must actually cut access, not set a flag. Purpose limitation gets enforced in the data layer. Every access to sensitive data lands in an append-only audit trail. It is more work, and it is the difference between a compliance story and a compliance claim.

Yes, and it is the highest-return work in most hospital projects because an unfilled specialist slot is revenue that cannot be recovered. Indian OPD no-show rates commonly run 20 to 30 percent. WhatsApp reminders with one-tap confirm or reschedule, a morning-of nudge, an automatic waitlist that offers a released slot the moment a cancellation lands, deposit-backed booking on the high-risk appointment types, and a per-patient risk score so the front desk knows what to overbook. We have taken a client from 27 percent to 11 percent with exactly that list.

Both, because you will have both. Your radiology system speaks HL7 v2 with pipes and carets and is not being replaced. ABDM speaks FHIR R4. The lab analyser speaks whatever its vendor invented. We terminate all of them in an integration layer that maps to a canonical internal model, so the ugliest protocol in the building does not get to dictate the shape of your domain. Every inbound message is stored raw before parsing — the day a mapping is wrong, you will want the original.

In India, in practice. We deploy to an Indian AWS or Azure region, keep backups in-country, and are careful about which third-party services ever see identifiable data — an analytics SDK or a support tool that ships payloads offshore is a quiet compliance failure that nobody notices until an audit. Encryption at rest and in transit is a given; the harder discipline is minimisation, which means not collecting what you do not need and not retaining it once the purpose is served.

A working system — patient registration with ABHA, appointments with the no-show machinery, OPD notes, billing and a first ABDM linkage — is typically 18 to 26 weeks from around ₹24,00,000. We deliberately ship appointments and the no-show tooling early, because that is the module with a measurable return, and it funds the argument for the rest of the programme inside your own organisation.

Proof

Shipped, measured, still running.

All case studies

NM Company

A portfolio and enquiry site for events firm NM Company

A visual portfolio and enquiry website for an event management and supplies firm — presenting a full...

Read it

Swasthya Sarathi

A healthcare-companion platform for Swasthya Sarathi

A multi-service healthcare platform that helps people find hospitals, doctors, labs, medical stores,...

Read it

MV Tech Education

A course and admissions platform for MV Tech Education

A course-catalogue and admissions website for a Bihar vocational institute — leading with industrial...

Read it

Let's talk healthcare software development

Bring us the hard version of the problem.

A senior engineer reads every enquiry. You'll get a real answer — scope, risk and a number — within one business day.