A medical platform for purchasing kits and storing test results
Our client, a manager at a UK GP Clinic, decided to go in a new business direction. He had an idea for a platform where users could purchase medical test kits and have them delivered right to their door with everything needed for the test. Once a sample is taken, a user will have an enclosed prepaid envelope delivered to an accredited lab for processing. Test results would then be available on a personalized dashboard.
With this in mind, our client built an in-house logistics team behind kit availability, test collection, in-lab processing, and result retrieval. What they lacked was a development team to build a highly secure software where users would choose among test categories, buy kits, view results with doctor’s comments, and monitor their progress against previous tests via a personalized health dashboard. To fulfill the technical side of the idea, they came to Globaldev.
We created an ecommerce healthcare website for Atruchecks from scratch. We also developed independent doctor, lab, and patient portals. During development, we followed privacy and security standards.
The Atruchecks platform allows patients to learn all necessary information about medical testing kits, buy those kits, store and view test results, and have doctors review these results.
Dedicated engineering team
User roles
Implemented features
One of the most important requirements for the project was to secure personal data. App data is stored on different servers, and each server has its own RDS-encrypted database. Data is exchanged between servers and the database inside a private network. Servers can only be accessed externally through a bastion host and a VPN.
Media data (such as images) is stored separately on Amazon S3 and is available to users through the CloudFront CDN service.
Two-factor authentication (2FA)
To protect the platform against many security threats like credential exploitation, brute-force attacks, and phishing, we used two-factor authentication (email and phone number).
Users can change their phone number only through the platform administrator after confirming their identity.
HL7 format
We followed Health Level 7 (HL7) standards to transfer clinical data. The laboratory uploads a patient’s results to the Atruchecks platform using the HL7 format. Then a doctor receives an anonymous result and comments on it. We decode this data and send the doctor’s notes to the patient. All data is stored on Amazon Web Services (AWS), which are GDPR-compliant. All user data is stored separately and additionally encrypted in AWS RDS.
Integrations
We integrated several services into Atruchecks. For payments, we implemented the Barclays payment gateway and Stripe payment gateway. We also needed to agree on the data exchange protocol with an offline laboratory, which executes tests of provided samples.
We used Google Maps to help patients find the nearest partner clinic.
We used MailChimp for sending technical and promotional email messages, and for the SMS service we used Twilio.
For frontend development, we used React and Redux. We also used TypeScript for interfaces aimed at doctors and labs and Next.js and MobX for the patient portal.
We used only stable and trusted development approaches since the project deals with sensitive medical data.
Since customers will primarily use mobile devices for communication and information, we used adaptive design to make Atruchecks mobile-friendly.
All design elements including icons and graphics are custom. For the logo, we used the company’s first letter, A, and a blood drop to show the essence of the product. As for the color scheme, we used a mix of blue and white. We didn’t overload the website with design elements and left plenty of space so the information is easy to read.
