Soulbound Tokens (SBTs) are non-transferable, non-financialized digital tokens that represent credentials, affiliations, or memberships. In healthcare, they provide a foundational mechanism for creating a self-sovereign patient identity. Unlike traditional medical records locked in siloed databases, an SBT-based identity is patient-controlled, portable, and can be used to manage data access across different healthcare providers, research institutions, and insurance entities. This model shifts control from institutions to the individual, enabling a patient-centric data economy.
LABS
Guides
How to Implement a Non-Transferable Token (SBT) System for Patient IDs
A step-by-step technical tutorial for developers to create a foundational, patient-owned identity anchor using ERC-721-based Soulbound Tokens and Decentralized Identifiers (DIDs).
Chainscore © 2026
introduction
GUIDE
Introduction to SBTs for Patient Identity
A technical guide to implementing a non-transferable token system for managing patient identity and health data access on-chain.
Implementing a patient identity SBT requires a smart contract that enforces non-transferability. The core logic involves overriding the standard ERC-721 transferFrom and safeTransferFrom functions to revert all transfer attempts, effectively making the token soulbound. Here's a basic Solidity implementation skeleton:
soliditycontract PatientIdentitySBT is ERC721 { constructor() ERC721("PatientID", "PID") {} function mint(address to, uint256 tokenId) external onlyAuthorizedMinter { _safeMint(to, tokenId); } // Disable all transfer functionality function _beforeTokenTransfer(address from, address to, uint256 tokenId) internal virtual override { require(from == address(0) || to == address(0), "SBT: non-transferable"); super._beforeTokenTransfer(from, to, tokenId); } }
This contract allows minting (issuance) and burning (revocation) but prevents transfers between wallets, ensuring the token is permanently bound to the patient's wallet address.
The SBT serves as a verifiable credential anchor. Its on-chain metadata or an associated Verifiable Credential (VC) issued off-chain can contain attested claims like a patient's unique identifier, vaccination status, or specialist certifications. A clinic can mint an SBT to a patient after KYC, which then acts as a key. The patient can use zero-knowledge proofs (ZKPs) via protocols like Semaphore or Sismo to prove they hold a valid SBT from "Hospital A" without revealing their wallet address, enabling privacy-preserving access to services or participation in anonymous health studies.
A practical architecture involves multiple SBTs representing different facets of identity. A patient might hold a base identity SBT from a national health service, a vaccination SBT from a pharmacy, and a trial-participation SBT from a research lab. Composability allows these tokens to be used together. A smart contract for a clinical trial could require a user to present proof of holding both a valid identity SBT and a specific diagnostic SBT to enroll. This creates a system of programmable permissions where access rights are dynamically gated by on-chain credential checks.
Key challenges include ensuring privacy and managing key loss. Storing personal health data directly on-chain is not advisable. Instead, use the SBT token ID or a derived identifier to point to encrypted data stored off-chain in solutions like IPFS or Ceramic, with access keys managed by the patient. For key loss, a social recovery or guardian model, as seen in smart account wallets like Safe, is essential. A patient could designate trusted entities (e.g., a family member's wallet, a hospital's admin key) as recoverers to re-issue the identity SBT to a new wallet, preventing permanent lockout.
The future of patient identity SBTs lies in interoperable ecosystems. Standards like the IETF's Decentralized Identifiers (DIDs) and W3C Verifiable Credentials can be anchored to SBTs. Projects like the VitaDAO community use similar models for researcher credentials. By building on open standards, patient identity SBTs can become the foundational layer for a global, patient-permissioned health data network, enabling seamless care coordination and accelerating medical research while returning data sovereignty to individuals.
prerequisites
IMPLEMENTATION GUIDE
Prerequisites and System Architecture
This guide outlines the technical foundation and system design required to build a secure, privacy-preserving Soulbound Token (SBT) system for patient identity management on-chain.
Before writing any code, you must establish the core technical prerequisites. First, choose a blockchain platform. Ethereum is the standard for SBT experimentation, but Layer 2 solutions like Polygon or Base offer significantly lower transaction fees, which is critical for a system that may mint tokens for thousands of patients. You will need a development environment with Node.js (v18+), a package manager like npm or yarn, and a code editor. Essential libraries include a Web3 client such as ethers.js v6 or viem, and the Hardhat or Foundry framework for smart contract development, testing, and deployment.
The system architecture revolves around a smart contract that enforces non-transferability. Unlike standard ERC-721 tokens, an SBT contract must override or restrict the transferFrom and safeTransferFrom functions. A common pattern is to implement the ERC-5192 minimal interface, which introduces a locked flag. When locked is true (which it always is for SBTs), the transfer functions must revert. This standard ensures wallets and marketplaces correctly identify the token as soulbound. The contract will also need minting functions with access control, typically restricted to a trusted administrator or a verified medical institution wallet.
Beyond the base contract, you must design the data architecture. Storing Protected Health Information (PHI) directly on-chain is a severe privacy violation. Instead, the SBT should act as a verifiable credential pointer. The on-chain token contains a minimal identifier (e.g., a UUID) and a cryptographic hash (like a SHA-256 or keccak256 hash) of the patient's core identity data. The corresponding plaintext data is stored securely off-chain in a HIPAA-compliant database, with access granted only when the patient proves ownership of the SBT wallet. This hash-based linkage ensures data integrity without exposing sensitive details.
Access control is a multi-layered concern. The smart contract uses OpenZeppelin's Ownable or AccessControl contracts to restrict minting and administrative functions. Off-chain, your application backend must implement robust authentication (e.g., OAuth 2.0) for healthcare providers and use signature verification (like EIP-712 signed messages) to allow patients to prove wallet ownership without exposing private keys. Consider integrating a decentralized identifier (DID) method, such as did:ethr, to create a persistent, cryptographic identity for each patient that is separate from any single wallet address, enhancing recovery options.
Finally, plan the integration pathway. Your architecture will consist of: 1) The SBT smart contract deployed on your chosen network, 2) A secure backend API that manages off-chain data and business logic, 3) A frontend dApp for patient and provider interaction, and 4) Blockchain indexers (like The Graph) for efficient querying of on-chain events. Testing this system thoroughly on a testnet (e.g., Sepolia) is non-negotiable. You must audit minting, revocation, and the critical non-transferability logic to prevent any accidental or malicious transfer of patient identities.
contract-implementation
SOLIDITY DEVELOPMENT
Step 1: Writing the Non-Transferable Token Contract
This guide details the implementation of a Soulbound Token (SBT) smart contract for immutable patient identification on the Ethereum blockchain.
A Non-Transferable Token (NTT) or Soulbound Token (SBT) is an ERC-721 token with a critical modification: its transfer function is permanently disabled. For a patient ID system, this ensures a medical record is immutably linked to a single wallet address, preventing identity fraud and creating a verifiable, on-chain credential. We will extend the widely-audited OpenZeppelin ERC-721 implementation, overriding key functions to enforce non-transferability while retaining standard functionality for querying ownership and metadata.
The core of the contract involves overriding the _update function (or _beforeTokenTransfer in older versions) inherited from OpenZeppelin. This function is called during any mint, burn, or transfer. By adding a custom check, we can allow minting (initial assignment to a patient) and burning (revocation by an authority) while blocking all transfers between users. The logic is simple: if the from address is not zero (minting) and the to address is not zero (burning), then the operation is a transfer and must be reverted.
Here is the essential Solidity code snippet for the transfer lock:
solidityimport "@openzeppelin/contracts/token/ERC721/ERC721.sol"; contract PatientID is ERC721 { address public admin; constructor() ERC721("PatientID", "PID") { admin = msg.sender; } // Override to restrict transfers function _update( address to, uint256 tokenId, address auth ) internal virtual override returns (address) { address from = _ownerOf(tokenId); // Allow minting (from == address(0)) and burning (to == address(0)) // Revert any other transfer attempt if (from != address(0) && to != address(0)) { revert("Token is non-transferable"); } return super._update(to, tokenId, auth); } // Admin function to mint a new Patient ID function mintPatientID(address patient, uint256 tokenId) external { require(msg.sender == admin, "Only admin"); _safeMint(patient, tokenId); } }
This implementation uses the secure _update hook introduced in OpenZeppelin Contracts v5.0. For v4.x, you would override _beforeTokenTransfer with similar logic.
Beyond the transfer lock, consider adding crucial features for a production system. Implement role-based access control (using OpenZeppelin's AccessControl) to manage who can mint or burn tokens, rather than a single admin. Each token's metadata should include a decentralized identifier (DID) or a hash of the patient's core demographic data, stored on-chain or referenced via IPFS. Emitting specific events like PatientIDMinted and PatientIDRevoked is essential for off-chain systems to track the ledger's state.
Before deployment, rigorous testing is non-negotiable. Write comprehensive tests using Foundry or Hardhat that verify: minting works for authorized issuers, transfers between users are blocked, burns work for authorized revokers, and the correct events are emitted. This contract forms the foundational, immutable layer of trust. Subsequent steps will build upon this to link medical records, manage consent, and enable verifiable data sharing.
did-binding
ESTABLISHING IDENTITY ANCHORS
Step 2: Binding the SBT to a Decentralized Identifier (DID)
This step creates a secure, self-sovereign identity layer for the patient by linking their SBT to a DID, enabling verifiable credentials and selective disclosure of health data.
A Decentralized Identifier (DID) is a globally unique, cryptographically verifiable identifier that is owned and controlled by the patient, not a central registry. In our system, each patient's Soulbound Token (SBT) will be bound to a DID, creating a foundational identity anchor on-chain. This binding is crucial because the SBT itself is a non-transferable asset, while the DID provides the framework for managing verifiable credentials, authentication, and data permissions. Popular DID methods for Ethereum-based systems include did:ethr (used by the Ethereum Attestation Service) and did:pkh (public key hash).
The binding process involves creating a DID document that references the SBT's on-chain address. For example, using the did:ethr method, a DID might be did:ethr:0x5:0xabc123..., where 0x5 is the Goerli testnet chain ID and 0xabc123... is the patient's wallet address holding the SBT. The corresponding DID document, stored on-chain or on a decentralized storage network like IPFS, will include a verification method that proves control of that address. This creates an immutable link: the DID is controlled by the key that holds the SBT, and the SBT's metadata can point back to the DID URI.
Implementing this requires a DID resolver in your application. When a patient logs in via their wallet (e.g., MetaMask), your backend can resolve their DID from their address. Using a library like ethr-did-resolver or did-resolver, you can fetch the DID document and verify signatures. Here's a conceptual code snippet for resolving a did:ethr:
javascriptimport { Resolver } from 'did-resolver'; import { getResolver } from 'ethr-did-resolver'; // Configure resolver for Ethereum const providerConfig = { networks: [{ name: 'goerli', rpcUrl: process.env.RPC_URL }] }; const ethrResolver = getResolver(providerConfig); const resolver = new Resolver(ethrResolver); // Resolve the DID document const didDocument = await resolver.resolve('did:ethr:goerli:0xPatientAddress...');
With the DID established, you can issue Verifiable Credentials (VCs) for patient data. A VC is a tamper-evident credential, signed by the issuer (e.g., a hospital), that contains claims (like a vaccination record) and is linked to the patient's DID. The SBT acts as a persistent, non-transferable proof of enrollment in the health system, while VCs attached to the DID can be selectively disclosed for specific services. This separation allows patients to share a lab result (a VC) without revealing their entire medical history or their core patient ID (the SBT).
This architecture directly addresses key healthcare requirements: patient sovereignty (they control their DID keys), data minimization (selective disclosure of VCs), and non-repudiation (cryptographic proofs). The binding is secure because the private key controlling the wallet address authorizes both SBT transfers (which are blocked by the contract) and DID operations. Next, we will define the SBT's smart contract logic to enforce non-transferability and link to the DID document.
access-control-logic
TECHNICAL IMPLEMENTATION
Step 3: Implementing Access Control for Health Records
This guide details how to build a non-transferable token (SBT) system for patient IDs using Solidity, establishing a foundation for secure, patient-centric health data access control.
A Soulbound Token (SBT) is a non-transferable, non-fungible token permanently bound to a single wallet address. For healthcare, this makes SBTs ideal for representing a unique, verifiable patient identity. Unlike standard NFTs, SBTs cannot be sold or transferred, ensuring the digital identity remains linked to the actual patient. This creates a cryptographic anchor for managing permissions, where the SBT acts as a key to unlock access to specific health records stored off-chain or in a decentralized data vault.
The core of the system is a smart contract that mints an SBT to a patient's wallet upon registration. The contract must override the critical _beforeTokenTransfer function from the ERC-721 standard to block all transfers after the initial mint. A common implementation uses the OpenZeppelin library for security and gas efficiency. The contract can also include metadata for the patient ID and link to an access control list (ACL) managed by the patient, which dictates which healthcare providers (represented by their wallet addresses) can request specific data.
Here is a simplified contract example using Solidity and OpenZeppelin:
solidity// SPDX-License-Identifier: MIT pragma solidity ^0.8.20; import "@openzeppelin/contracts/token/ERC721/ERC721.sol"; contract PatientSBT is ERC721 { constructor() ERC721("PatientID", "PID") {} function mint(address to, uint256 tokenId) external { _safeMint(to, tokenId); } // Override to make token non-transferable function _beforeTokenTransfer( address from, address to, uint256 firstTokenId, uint256 batchSize ) internal virtual override { require(from == address(0), "Token is non-transferable (Soulbound)"); super._beforeTokenTransfer(from, to, firstTokenId, batchSize); } }
This code ensures tokens can only be minted (from == address(0)) and any subsequent transfer attempts will revert.
With the SBT minted, access control logic is implemented. A separate AccessManager contract can hold a mapping that links a patient's SBT token ID to a set of authorized provider addresses and the specific data types they can access (e.g., lab_results, prescriptions). The patient, as the SBT holder, would sign transactions to update this mapping, granting or revoking permissions. When a provider's application needs data, it presents a verifiable credential or signed message; a verifier contract checks the AccessManager to confirm the request is authorized before allowing data retrieval from an off-chain storage solution like IPFS or Ceramic.
Key considerations for a production system include integrating a decentralized identifier (DID) standard like did:ethr to make the patient identity portable across applications, and using zero-knowledge proofs (ZKPs) to allow providers to verify a patient's eligibility or specific health attributes without exposing the underlying data. Furthermore, the system should include an emergency access mechanism, potentially managed by a decentralized autonomous organization (DAO) or a multi-signature wallet of trusted medical boards, to override permissions in critical life-threatening situations while maintaining an immutable audit log.
Deploying this system requires careful planning. Start with a testnet deployment (e.g., Sepolia) to refine the user experience for minting and managing permissions. Use tools like Hardhat or Foundry for development and testing. The final on-chain component is lightweight, managing only permissions and proofs, while the sensitive health data itself should be encrypted and stored off-chain, with access grants recorded immutably on the blockchain. This architecture balances patient sovereignty, regulatory compliance (like HIPAA), and practical usability for healthcare providers.
ARCHITECTURE
Implementation Options and Trade-offs
Comparison of primary technical approaches for implementing a patient ID SBT system, focusing on custody, compliance, and interoperability.
| Feature / Metric | On-Chain Registry (e.g., ERC-721) | Semi-Custodial Proxy | Off-Chain Verifiable Credentials |
|---|---|---|---|
Data Privacy | |||
Patient Data On-Chain | Pseudonymous ID only | Zero-knowledge proof hash | None (off-chain only) |
Revocation Mechanism | Centralized admin function | Off-chain attestation list | Revocation registry (on-chain) |
Gas Cost per Issuance | $5-15 (L1) | $1-3 (L2) | $0.10-0.50 (registry update) |
Interoperability with DeFi/Apps | |||
Compliance (HIPAA/GDPR) | High risk | Managed risk | Designed for compliance |
Patient Portability / Self-Custody | |||
Required Infrastructure | Smart contract, RPC node | Smart contract, issuer server, RPC node | Issuer server, verifiable data registry |
testing-deployment
IMPLEMENTATION
Testing and Deploying the System
This final step covers writing comprehensive tests, deploying the SBT contract to a live network, and verifying its functionality for a production-ready patient ID system.
Before deployment, you must write and execute a comprehensive test suite. This validates the core logic of your SBT contract, including minting tokens to patients, ensuring they are non-transferable, and checking access control for the onlyIssuer modifier. Use a testing framework like Hardhat or Foundry to simulate on-chain interactions. A robust test should verify that a transfer function call (e.g., transferFrom) on a patient's SBT correctly reverts, while functions like mintTo and burn work as intended for authorized issuers. This step is critical for catching logic errors and preventing costly mistakes on mainnet.
With tests passing, you can proceed to deployment. First, configure your deployment script to target a specific network, such as a testnet (e.g., Sepolia or Mumbai) for initial validation. The script will compile the contract and deploy it using a wallet funded with test ETH or MATIC. Upon successful deployment, the script will output the contract's verified address and the transaction hash. It is essential to save this address and the contract's Application Binary Interface (ABI), as your frontend and backend systems will need them to interact with the live contract.
After deployment, the next critical phase is contract verification. Platforms like Etherscan or Polygonscan allow you to upload your source code to match the deployed bytecode. Verification provides transparency, enabling anyone to read the contract's logic directly on the block explorer. This builds trust with users and is often required for integration with wallets and other dApps. Once verified, you can use the explorer's "Write Contract" interface to perform initial tests, such as minting a test SBT to confirm the live system operates as expected before integrating it with your application's user interface.
SOULBOUND TOKENS
Common Implementation Mistakes and Security Considerations
Implementing a non-transferable token (SBT) system for patient IDs presents unique challenges that differ from standard ERC-20 or ERC-721 tokens. This guide addresses frequent developer pitfalls, security vulnerabilities, and best practices for building a robust, compliant system.
This is the core behavior of a non-transferable token. The standard transfer and transferFrom functions must be overridden to always revert. A common mistake is using an ERC-721 base contract without modifying these functions.
Correct Implementation:
solidityfunction transferFrom(address, address, uint256) public pure override { revert("SBT: Non-transferable"); } function safeTransferFrom(address, address, uint256, bytes memory) public pure override { revert("SBT: Non-transferable"); }
Ensure you also override the _beforeTokenTransfer hook in OpenZeppelin's ERC-721 to block all transfers except for minting and burning. Failing to do this can leave loopholes.
resource-links
DEVELOPER GUIDE
Essential Resources and Tools
Tools, standards, and architectural building blocks required to implement a non-transferable token (SBT) system for patient identifiers while preserving privacy, auditability, and regulatory compliance.
05
Off-Chain Metadata and Compliance Architecture
Patient SBTs should never store personal or medical data directly on-chain. Instead, use an off-chain metadata and access control layer.
Recommended design:
- On-chain token stores only a pointer (hash or URI)
- Encrypted records stored in HIPAA/GDPR-compliant databases
- Access gated by wallet ownership plus ZK or signature-based authorization
Operational considerations:
- Full audit logs for access events
- Revocation via credential invalidation, not token burning
- Separation of identity, authorization, and data storage
This architecture preserves blockchain verifiability while meeting healthcare privacy and data minimization requirements.
DEVELOPER IMPLEMENTATION
Frequently Asked Questions (FAQ)
Common technical questions and solutions for building a Non-Transferable Token (SBT) system for patient identity on EVM-compatible blockchains.
The primary difference is the immutable transfer function. A standard ERC-721 uses transferFrom or safeTransferFrom. For a true SBT, you must override these functions to revert all transfer attempts, making the token permanently bound to the minting address.
Key Implementation:
solidityfunction transferFrom(address, address, uint256) public pure override { revert("SoulboundToken: Non-transferable"); } function safeTransferFrom(address, address, uint256, bytes memory) public pure override { revert("SoulboundToken: Non-transferable"); }
Additionally, SBTs often omit approval functions (approve, setApprovalForAll) or make them revert. This prevents listing on NFT marketplaces. The metadata should also encode patient-specific, verifiable data, moving beyond simple art URIs.
conclusion
IMPLEMENTATION SUMMARY
Conclusion and Next Steps
This guide has outlined the technical and conceptual steps for building a patient identity system using Non-Transferable Tokens (SBTs). The next phase involves operationalizing the system and exploring advanced integrations.
You have now built a foundational Soulbound Token (SBT) system for patient IDs. The core components are in place: a smart contract that mints non-transferable tokens, a frontend for patient onboarding, and a mechanism for authorized issuers like hospitals to attest to credentials. The key security feature is the onlyIssuer modifier, which ensures only verified institutions can mint or update patient records, preventing self-attestation and maintaining data integrity. This creates a patient-centric, portable identity layer that is owned by the individual but verified by trusted entities.
For production deployment, several critical next steps are required. First, conduct a thorough security audit of your smart contracts, focusing on access control logic and upgradeability patterns. Consider using established standards like ERC-5192 for minimal non-transferable tokens or ERC-721 with a locked transfer function for broader compatibility. Second, implement a robust key management solution for patients, such as social recovery wallets (e.g., Safe{Wallet}) or embedded MPC wallets, to prevent permanent loss of access. Third, design an off-chain data strategy using a decentralized storage protocol like IPFS or Ceramic Network to store detailed medical records, with the on-chain SBT holding only a content hash pointer.
The long-term vision involves integrating this SBT system with the broader digital health ecosystem. Future development paths include: - Interoperability: Making SBTs verifiable across different hospital chains and health networks using frameworks like Verifiable Credentials (VCs). - Selective Disclosure: Implementing zero-knowledge proofs (ZKPs) via protocols like Sismo or zkPass to allow patients to prove specific health attributes (e.g., age > 18, vaccination status) without revealing their full medical history. - Automated Compliance: Encoding consent management and regulatory rules (like HIPAA or GDPR) directly into smart contract logic to create an audit trail for data access. By progressing through these steps, your SBT system can evolve from a proof-of-concept into a foundational component of a secure, patient-owned health data economy.