Records from every clinic, lab and specialist land in one vault the patient holds, on their phone, not on anyone's servers. The whole vault leaves with them as a standard Bundle, and their own entries are first-class records alongside it.
Fully patient-owned health data
The patient-owned layer that makes a fragmented Australian health system behave like a single, reasoned, shareable record.
Platypus pulls AU Core FHIR data from every server a patient can reach, including the Sparked reference endpoints, into an encrypted vault on their device. It reconciles what it finds, resolves the codes, and shares on the patient's terms. Data held by companies becomes data owned by the patient.
Built in pairs
Every capability has a wire half and a human half. The FHIR verb is the means; the patient verb is the point.
Request, Dispense and Statement collapse into one medication list with repeats derived, not guessed. Cross-source conflicts surface as field-level diffs. Codes become plain words, and the history reads as a timeline of episodes, not a flat list.
A summary the patient composes leaves as an encrypted link, a Bundle, or a readable PDF. It can be shown at the desk, sent ahead, or written back as a clearly labelled patient note with honest delivery status. Self-entered records travel opt-in, attributed via Provenance.
The other half of interoperability
Australia's FHIR effort today, across vendors, GP systems, clinics and the Sparked program, is building the server side well: conformant endpoints and reliable exchange between systems. That is half the battle.
The other half is the patient experience and the outcomes it drives. When people can view, understand and update their own health data, care gets better: an accurate medication list at every appointment, safer prescribing conversations, questions asked earlier. Platypus is that half. And because it uses AU Core the way patients actually will, it returns concrete findings like these.
Same prescription, two equally legal shapes. Pre-matched vendor pairs never hit this; a patient app reading both servers did, and the finding went back to the IG.
Shipping today
Conformance, checked against the real thing
Not "we follow the standards", and not a verdict invented on the phone. Platypus asks a real AU Core server whether a record conforms, so you know it will be accepted before it moves.
Owned, not hosted
Most health software holds data about you, on someone else's servers. Platypus inverts that. The record lives with the patient, in a secure, private, transferable form, and the patient is the only party holding all of it.
- Offline by design. No data harvesting, no collection. The vault works with zero server connections.
- One cross-platform React Native app, built so the record is never tied to a single platform. iOS is the current focus; Android is planned.
- The entire vault exports as a standard, encrypted FHIR Bundle. Nothing locked in, nothing tied to one device.
- The data travels with the patient, between providers and between platforms, never locked down to either.
The road ahead
Today Platypus connects to AU Core FHIR servers, including the Sparked reference endpoints. The aggregation, reasoning and plain-language layer it builds is exactly what would make My Health Record usable for patients. That is where it is heading, once integration is possible.
See it before release
Platypus is pre-release. If you want early access, a walkthrough, or to point it at your AU Core server, get in touch.
Register early-access interestor write to kyle.pettigrew@csiro.au