Embedded Files
This HIPAA compliant, production-ready, full-stack application is engineered to solve critical bottlenecks in patient data management.
This HIPAA compliant, production-ready, full-stack application is engineered to solve critical bottlenecks in patient data management.
I paired a dynamic React frontend with a secure, high-performance ASP.NET Core API to deliver a solution that is technically robust and directly impactful to a clinic's bottom line
I paired a dynamic React frontend with a secure, high-performance ASP.NET Core API to deliver a solution that is technically robust and directly impactful to a clinic's bottom line
Technical Architecture & Engineering Highlights
Technical Architecture & Engineering Highlights
This system is built on a foundation of modern software design principles to ensure security, scalability, and maintainability. It is built to be extended into complex systems such as Telehealth Platform's and EHRs.
- Decoupled, Service-Oriented Backend:
The ASP.NET Core API is architected with a clean separation of concerns, using dependency injection to manage services for FHIR interaction, database context, auditing, and encryption. This modular design makes the system highly maintainable and scalable.
- Robust Security & Compliance Framework:
The API is secured using a fully configured JWT Bearer authentication system that validates every request by issuer, audience, lifetime, and signing key. All critical operations are logged via a dedicated audit service to support HIPAA compliance requirements.
Case Study: Proactive FHIR Data Normalisation
Case Study: Proactive FHIR Data Normalisation
A core function of this application is interacting with external FHIR servers, such as the public HAPI FHIR R4 server. During development, a critical integration challenge emerged that would cause catastrophic failures in a less resilient system.
- The Problem:
The HAPI FHIR server returned birthDate fields in a full xsd:dateTime format (e.g., 2017-09-05T22:00:00.000Z). However, the official FHIR R4 specification, strictly enforced by the .NET
Hl7.Fhir.R4 library used for deserialization, mandates that birthDate must be in the xsd:date format (YYYY-MM-DD). This mismatch caused the deserialization process to fail, triggering an unhandled exception and crashing the API endpoint with a 500 Internal Server Error.
- The Solution:
Instead of treating this as a simple bug, a defensive, proactive solution was engineered within the FhirService.SearchPatientsAsync method. Before the raw JSON response from the FHIR server is passed to the Hl7.Fhir.R4 parser, a custom pre-processing step manually and reliably truncates the time component from any birthDate field in the raw string data. This cleansed, now-compliant JSON is then passed to the deserialiser, completely preventing the exception. This demonstrates an ability to anticipate and neutralise integration failures with external systems before they impact the application.
Business Value & Return on Investment (ROI)
Business Value & Return on Investment (ROI)
This level of technical engineering directly translates into measurable business outcomes.
- Guaranteed Interoperability & Uptime:
A proactive data handling approach ensures the application works reliably even with third-party systems that are not perfectly spec-compliant. This prevents costly application downtime and ensures patient data is always accessible, available for billing etc directly protecting the revenue cycle.
- Reduced Operational Risk:
The integrated JWT security and HIPAA-ready audit logging provide a verifiable trail of data access, creating a powerful defence against compliance penalties and also builds stronger trust with your patients, knowing their sensitive information is genuinely protected.
- Increased Staff Efficiency:
The intelligent layout, fast, responsive UI built on React and Tailwind CSS reduces time wasted on data retrieval.
Technologies Used: React.js | ASP.NET Core 8 | EF Core | SQL Server | FHIR (Hl7.Fhir.R4) | JWT | Serilog | Tailwind CSS | Postman
Google Sites
Report abuse