Patient Portal & Telemedicine

The Problem

A regional medical group operating 12 clinics across Texas came to us with a problem that was costing them real money every single day. With 15,000 active patients on their books, their entire scheduling workflow still ran on paper-based systems and phone calls. Patients had to call during business hours to book, reschedule, or cancel appointments — and front-desk staff were buried in phone queues instead of supporting in-clinic care.

The no-show rate had climbed to 28%. Every missed appointment represented lost clinical revenue, a wasted physician slot, and a patient whose care was being delayed. At scale across 12 clinics, that translated to hundreds of thousands of dollars in annual revenue leakage. There was no automated reminder system, no digital confirmation, and no way for a patient to cancel with a single tap at 11 pm when they realized they couldn’t make the next morning’s appointment.

Beyond scheduling, patients had zero online access to their own health records. Lab results arrived by mail — sometimes days after the physician had already reviewed them. Prescription refill requests required a phone call and a callback. Doctors were burning clinical time on administrative phone tags rather than patient care. The practice was operating like it was 2005, and both staff and patients were feeling the friction.

The Solution

We designed and built a fully HIPAA-compliant patient portal and integrated telemedicine platform from scratch — architected specifically for a multi-clinic healthcare environment where data privacy is non-negotiable and system uptime is critical.

Patients can now self-schedule appointments 24/7, receive automated SMS and email reminders at 48 hours and 2 hours before their visit, and join HD video consultations directly from their browser or mobile device — no app download required. For routine follow-ups, prescription reviews, and mental health check-ins, patients never need to leave home.

On the clinical side, every physician and front-desk staff member has a live dashboard showing the full appointment queue, patient history at a glance, and the ability to send secure messages directly to patients. The system integrates with the group’s existing Electronic Health Record (EHR) via HL7 FHIR APIs, so there is no double-entry and no data silos. Everything flows in one direction: toward better care.

Technical Architecture

The platform is built on AWS infrastructure covered by a HIPAA Business Associate Agreement, with every layer designed around the principle of defense in depth — no single point of failure, no unencrypted data path, no ambiguity about where Protected Health Information lives.

The React frontend is served globally via CloudFront with strict Content Security Policy headers. The Node.js API layer runs in stateless ECS Fargate containers, auto-scaling with demand, with no persistent credentials stored in the runtime environment. PostgreSQL on RDS uses AES-256 encryption at rest and TLS 1.2+ in transit. Redis handles session state with automatic expiry, ensuring that no authenticated session persists longer than allowed by policy.

HIPAA Compliance

Healthcare software is not just a technical challenge — it is a legal and ethical one. Every architectural decision we made was reviewed against HIPAA’s Technical Safeguards requirements. Key compliance measures built into the platform:

• End-to-end encryption: All data is encrypted at rest (AES-256) and in transit (TLS 1.2+). Video sessions run over encrypted WebRTC channels with no plaintext fallback.
• Business Associate Agreements: Signed BAAs with every third-party vendor that touches PHI — AWS, Twilio, and all sub-processors. No vendor integration without a BAA on file.
• Comprehensive audit logging: Every data access event — who viewed which record, when, from what IP — is logged to an immutable audit trail in AWS CloudWatch Logs with a 7-year retention policy.
• Role-based access control: Physicians see their own patient panels only. Front-desk staff can view scheduling data but not clinical notes. Administrators have operational access without clinical record access. Roles are defined at the API layer and enforced server-side.
• Automatic session timeout: Authenticated sessions expire after 15 minutes of inactivity, with a 2-minute warning prompt. No exceptions for any role level.
• Zero PHI in logs or URLs: Patient identifiers, record IDs, and health data never appear in server logs, application logs, or URL query parameters. All sensitive lookups use opaque tokens resolved server-side.

Key Features Delivered

Self-Scheduling with Real-Time Calendar

Patients see live availability across all 12 clinic locations and book, reschedule, or cancel appointments without a single phone call. The scheduling engine respects provider calendars, location capacity, and appointment type durations in real time. Front-desk staff no longer touch routine appointment management — they focus on in-clinic patient experience.

Automated Appointment Reminders

Every confirmed appointment triggers an automated reminder sequence: an SMS and email 48 hours before, and another pair 2 hours before. Each reminder includes a one-tap confirmation or cancellation link. Cancellations automatically free the slot for other patients and notify the clinic’s scheduling queue. This single feature was responsible for the majority of the no-show reduction.

HD Video Telemedicine — WebRTC + Twilio

The video consultation module uses Twilio’s Programmable Video SDK built on top of WebRTC. Patients join from any modern browser on desktop or mobile — no app install, no plugin, no friction. Video quality adapts dynamically to network conditions. Sessions are time-bounded, never recorded, and the room token expires the moment the session ends. For clinics with high telehealth volume, this effectively expanded their capacity without adding physical exam rooms.

Secure Patient-Provider Messaging

Patients can send questions directly to their care team through the portal’s secure messaging thread — prescription questions, follow-up queries, symptom updates. Messages are encrypted at rest and providers are notified by internal alert (never by forwarding PHI to a personal email). Response times dropped from days to hours for non-urgent queries.

Lab Results & Prescriptions Online

When a lab result is released by the physician, it immediately appears in the patient’s secure portal with plain-language annotations. Prescription history and active medications are viewable at any time. Refill requests can be submitted through the portal and routed directly to the prescribing provider’s task queue.

Staff Dashboard

Every clinic’s front-desk team and clinical staff have a role-specific dashboard showing the day’s patient queue, upcoming appointments with check-in status, patient contact history, appointment notes, and the ability to initiate a secure message or flag a record for provider review. The dashboard updates in real time via WebSocket connections — no page refresh needed to see new check-ins or cancellations.

The Outcome

Measured across all 12 clinic locations in the 90 days following full go-live:

The platform reached 99.9% uptime in its first year of operation. The medical group has since expanded telemedicine to two additional specialty departments — dermatology and behavioral health — using the same architecture. The EHR integration has been extended to support a second EHR vendor as the group grew through acquisition, validating the decision to build on HL7 FHIR standards from day one.