Healthcare

The technology landscape in healthcare is defined by interoperability challenges. Hospitals and health systems run on Electronic Health Record (EHR) systems -- Epic, Cerner (now Oracle Health), MEDITECH, Allscripts, athenahealth -- each with their own integration patterns. HL7v2 messages (pipe-delimited, positional text formats designed in the 1980s) still carry the majority of clinical data between systems. FHIR (Fast Healthcare Interoperability Resources) is the modern standard and is gaining adoption, but "FHIR-compatible" doesn't mean "easy to integrate with." Real-world FHIR implementations vary wildly between EHR vendors, with different supported resources, custom extensions, and authentication flows.

What most development teams get wrong is treating healthcare software like a consumer app with extra security. Healthcare users -- clinicians, nurses, administrative staff -- work under extreme time pressure in environments where a 30-second delay can literally matter. They're using the software on shared workstations, in between patient encounters, often with gloves on. The UX requirements aren't about delight -- they're about efficiency, clarity, and not creating cognitive load that leads to medical errors. A medication dosing calculator with a confusing interface isn't a bad user experience; it's a patient safety risk.

PHI has legal gravity that no other data type matches.

A leaked credit card number costs the company money; a leaked HIV diagnosis can destroy a patient's life. Your security model isn't about protecting the business -- it's about protecting people from irreversible harm.

Clinical workflows don't follow linear paths.

A patient encounter involves orders, results, notes, referrals, and prescriptions that can happen in any sequence, be modified retroactively, and involve multiple providers simultaneously. Rigid step-by-step workflows frustrate clinicians and get abandoned.

EHR integration is not an API call -- it's a political negotiation.

Getting access to a hospital's Epic instance requires a legal agreement, a security review, sometimes a site visit, and typically 3-6 months of back-and-forth before you send your first test message. Your roadmap needs to account for this.

Healthcare has a "two-user" problem.

The person using the software (clinician) and the person affected by it (patient) have completely different needs, and optimizing for one often disadvantages the other. Documentation requirements that protect patients create administrative burden for clinicians.

Downtime tolerance is zero in clinical settings.

If your patient-facing scheduling app goes down, appointments get missed. If your medication administration system goes down, patients don't receive critical drugs on time. Your SLA isn't a business commitment -- it's a clinical safety requirement.

Data semantics matter at a level most developers never encounter.

The difference between "patient reported" and "clinically confirmed" for a diagnosis code isn't a UI label -- it's a clinical and legal distinction that affects treatment decisions, insurance reimbursement, and malpractice liability.

FHIR defines resource types and a REST API pattern, but every EHR vendor implements it differently.

Epic's FHIR API supports different resources than Cerner's, uses different OAuth flows, and returns different data completeness levels. Building "FHIR integration" as a single abstraction layer is a mistake. You need adapter patterns per EHR vendor, with comprehensive field mapping and fallback strategies for when expected data elements aren't populated.

Clinicians make hundreds of decisions per shift.

If your software pre-selects the wrong default value on a medication order, forces unnecessary clicks to reach common actions, or buries critical information below the fold, clinicians will route around your software entirely. Clinical UX is about reducing cognitive load and decision fatigue, not about aesthetics. Every unnecessary interaction is a potential point of error.

HIPAA requires tracking every access to PHI -- who accessed what, when, and why.

But in practice, audit logs serve a much bigger purpose: they're how compliance officers investigate potential breaches, how hospitals respond to patient complaints about privacy, and how legal teams prepare for litigation. Your audit logging system needs to be queryable, exportable, tamper-evident, and retained for a minimum of six years. This is not "logging" -- it's a dedicated subsystem.

When people say "EHR integration," they imagine a REST API with JSON responses.

The reality often involves HL7v2 messages over TCP (MLLP), batch file transfers over SFTP, or CCDA documents exchanged via Direct messaging. Response times for querying patient data can be measured in seconds, not milliseconds. Your architecture needs to account for asynchronous data retrieval, local caching strategies that don't violate minimum necessary access principles, and graceful degradation when the EHR is unavailable.

There is no universal patient identifier in US healthcare.

Matching a patient across multiple systems relies on probabilistic matching of names, dates of birth, addresses, and other demographics -- all of which can be misspelled, outdated, or intentionally falsified. Getting this wrong means either merging records for different patients (dangerous) or creating duplicate records for the same patient (wasteful and confusing). Enterprise Master Patient Index (EMPI) solutions exist, but they all require ongoing tuning and human review of uncertain matches.

If your PHI lands on any service that hasn't signed a Business Associate Agreement, you have a HIPAA violation before you've written a single feature. This includes your database, your file storage, your email service, your error tracking tool, and your log aggregator.

Patient portals and engagement tools that add work for clinical staff don't get adopted, regardless of how much patients like them. If the nurse has to do extra data entry to support your patient-facing feature, that feature is dead on arrival.

FHIR APIs at most health systems expose a subset of the clinical data, often with significant latency. Critical data elements may only be available through HL7v2 feeds, proprietary APIs, or manual export. Design your data model to handle incomplete and asynchronous data gracefully.

Every clinical action has a billing implication. An office visit note must include specific documentation elements to support the billed CPT code. A referral must include the right diagnosis codes for insurance authorization. Software that treats clinical and billing workflows as separate concerns creates double work and revenue leakage.

Clinicians working in hospitals often use shared workstations with tap-to-unlock badge authentication. Forcing complex password entry, lengthy MFA flows, or session timeouts every 5 minutes in a clinical environment doesn't improve security -- it encourages workarounds like shared credentials and propped-open sessions that are far worse.