BARMER & VISARIGHT: Digitizing Health Insurance

Executive Summary

The German statutory health insurance landscape (Gesetzliche Krankenversicherung or GKV) stands at a critical juncture where historical administrative rigidity meets the urgent demand for digital agility. This case study presents the strategic partnership between BARMER, one of Germany's premier health insurance providers, and VISARIGHT, a specialized solution provider in the legal-tech and automated bureaucracy space.

The success of this project stems not from a simple "paper-to-screen" conversion, but from a fundamental re-engineering of the underlying technical architecture. VISARIGHT positioned itself not merely as a vendor, but as a structural partner, deploying a sophisticated microservices architecture, a robust Business Process Model and Notation (BPMN) engine via Camunda, and a security framework rigorously certified under ISO 27017, ISO 27701, and ISO 27018.

Strategic Context: The Digitalization Challenge

The Bureaucratic Challenge in the GKV Sector

The German health insurance system is renowned for its comprehensive coverage but equally for its administrative complexity. For decades, the onboarding of new members—particularly those from outside the European Union—relied on manual workflows involving physical forms, wet-ink signatures, and asynchronous communication via post or email.

This analog legacy presented several structural weaknesses:

• High Latency: Physical transit of documents and manual data entry introduced significant delays
• Error Rates: Manual transcription increased the probability of errors, leading to rework
• Accessibility Barriers: For international students and expats, navigating German-language paper bureaucracy was a significant deterrent

The VISARIGHT Value Proposition

VISARIGHT entered this ecosystem with specific competency in automating complex bureaucratic procedures. Unlike generalist software houses, VISARIGHT's architecture was already optimized for handling "sovereign" tasks involving identity verification, document parsing, and state-dependent workflows.

The strategic objective was to leverage VISARIGHT's existing technical assets—specifically its microservices infrastructure and process automation engines—to build a bespoke layer on top of BARMER's insurance logic. VISARIGHT acted as the agile innovation layer, absorbing the complexity of modern digital interaction and feeding clean, validated data into BARMER's downstream systems.

Architectural Philosophy and System Design

The platform is designed as a distributed constellation of specialized services, aligning with modern best practices for enterprise software.

The Microservices Paradigm

VISARIGHT utilizes a microservices architecture, primarily built using TypeScript and deployed via Docker containers:

• Isolation of Concern: Each function (PDF generation, VAT checking, email sending) is handled by a discrete service that can be scaled independently
• Resilience: A failure in a peripheral service does not crash the core application flow
• Agility: New features can be deployed to specific services without full system redeployment

The infrastructure is provisioned using Terraform, implementing an "Infrastructure as Code" (IaC) strategy ensuring reproducible, version-controlled environments.

Core Backend Services

The Camunda Process Engine

Perhaps the most critical architectural decision was the integration of the Camunda platform engine. In the insurance domain, a "case" is not a static database entry but a dynamic entity that moves through various states over time.

Specialized Utility Services

PDF-Service: Handles all PDF manipulations—programmatic filling of official BARMER templates, merging signed pages with terms and conditions, and format conversions.

Document-MRZ-Service: Integrates with ABBYY Cloud OCR API to extract data from Machine Readable Zones on passports and ID cards, automatically populating fields like First Name, Last Name, Date of Birth, and Document Number.

Image-Service: Manages image manipulation for uploaded documents—cropping, rotation, and optimization to ensure files are legible and file-size efficient.

Infrastructure, Data Security, and Compliance

Given the handling of sensitive health and personal data (Sozialdaten), the security architecture meets the highest GDPR and German social code standards.

Data Residency and Cloud Infrastructure

The entire platform is hosted on AWS within the Frankfurt (eu-central-1) region, ensuring strict data residency within Germany:

• VPC Isolation: Resources deployed within Virtual Private Clouds
• Redundancy: Main databases replicated across two availability zones for disaster recovery

ISO Certifications

Technical and Organizational Measures (TOMs)

• Encryption at Rest: All primary databases (AWS RDS PostgreSQL) and caches (AWS ElastiCache) encrypted using industry-standard protocols
• Encryption in Transit: All data transmission secured via SSL/TLS v1.2+
• Access Control: Production data access strictly limited to specific maintenance developers
• Incident Monitoring: Real-time infrastructure monitoring with Slack alerts for anomalies

The "Digitaler Abschluss" Solution

The technical architecture powers a sophisticated multi-role platform serving four distinct user roles.

User Role Permissions & Capabilities

The Digital Workflow Lifecycle

1. Initiation: An Advertiser initiates a case and sends an invitation to the applicant 2. Data Capture & Verification: The applicant fills out the form (assisted by OCR), uploads evidence, and executes the digital signature 3. PDF Generation: The pdf-service generates the flattened, signed contract 4. Review: A BARMER Branch Member receives notification and reviews the dossier 5. Decision: Approval (with insurance number), Change Request (with field-level flags), or Rejection

Operational Challenges and Technical Solutions

Challenge: Visibility and the "Black Box"

The Problem: Advertisers felt blind once an invitation was sent. They could not determine if an applicant had opened the email or started the form.

• Draft state visibility exposed to Advertisers
• Granular status tracking (Invitation Sent → Form Opened → Submitted)
• Actionable intelligence dashboards for follow-up with stalled applicants

Challenge: Invitation Delivery Friction

The Problem: Email-only invitations proved fragile—typos and spam filters caused lost invitations.

• Direct URL invitation links for sharing via WhatsApp or other channels
• Self-service correction allowing Advertisers to fix email addresses and resend

Challenge: Identity Verification and Search

The Problem: High case volumes made locating specific applicants difficult due to name spelling variations.

• V-ID (VISARIGHT ID) and GP-Number (Business Partner Number) prioritized in search
• 100% accurate case file retrieval regardless of name ambiguity

Challenge: Branding and Sovereign Identity

The Problem: Strategic debate regarding BARMER vs. VISARIGHT branding.

• Rapid switching between branding schemas (logos, color palettes, email templates)
• Technical flexibility allowing project progression without blocking on marketing decisions

Quality Assurance and Support Protocols

Centralized Bug Reporting

• Dedicated Channel: Central support email routing directly to development ticketing system
• QA Gatekeeper: Dedicated Quality Assurance Engineer for triage and testing
• Transparency: Shared "Bugs and Improvements" spreadsheet for real-time visibility

Continuous Delivery and Maintenance

Analytics and Business Intelligence

The platform transforms the insurance application process from a black hole of paper into a source of business intelligence.

Hierarchical Analytics

• Head Office: Macro-level data including total cases, processing speeds, and breakdowns by applicant type
• Ambassadors: Conversion metrics and pipeline status for improving acquisition processes

Data Portability

The platform supports data export in multiple standard formats (XLS, XLSX, ODS, CSV, TSV), ensuring BARMER can ingest data into internal BI tools for deeper analysis.

Conclusion

The collaboration between BARMER and VISARIGHT represents a benchmark for digital transformation of public sector processes in Germany.

The technical success rests on several pillars:

• Architectural Resilience: Decoupled microservices allowing scalability and fault isolation
• Process Automation: Camunda engine ensuring deterministic precision in state-dependent workflows
• Security by Design: Strict ISO standards with robust encryption and access controls
• User-Centric Engineering: Friction reduction through OCR, digital signatures, and hybrid entry models

VISARIGHT has demonstrated that it is more than a software vendor—it is a strategic technology partner capable of navigating the intersection of strict regulation and modern digital innovation.

Report prepared based on internal documentation regarding Project BARMER, Technical Architecture Overviews, and Operational SOPs.