Skip to content
Asmar.
§ CS-02 — Ghasi eHealth

Ghasi eHealth

In development · pre-launch

  • · AI-first by design
  • · Offline-first by design

Enterprise eHealth platform — clinical, diagnostics, pharmacy, imaging, RCM, patient engagement. FHIR R4-first, multi-tenant, event-backed. Designed for national-scale rollout.

Period
2025 — present
Domain
Healthcare / Public Sector
Stack
  • API Gateway · IAM
  • Per-surface BFFs
  • Event Bus
  • AI Gateway
  • FHIR R4
  • HL7v2 · DICOM
  • DDD · Outbox
The brief

Most eHealth deployments are stitched together from unrelated point products — a separate EHR, pharmacy, lab, radiology, billing, and patient portal, each with its own identity, audit, and tenancy story.

Ghasi eHealth replaces that pattern with one platform, one governance model, and FHIR R4 as the canonical clinical semantic layer. External formats (HL7 v2, DICOM, X12) integrate through adapters at the edge.

Offline-first and AI-first are not features tacked onto the platform — they are architectural posture baked in from the domain layer up. Clinicians capture vitals, record notes, and manage cases in facilities with intermittent or no connectivity; the client holds a local outbox and reconciles when the network returns. AI-assisted clinical decision support, documentation, and diagnostic coding run through a single AI Gateway with provenance metadata attached to every generated artifact, with full HIPAA-mode PHI routing enforcement.

Architecture at a glance

The layers, ports, and integration patterns are real — drawn from the live architecture baseline. Service names, identity providers, and external vendors are anonymized or labelled by role so the diagram reads as the posture, not as a deployment manifest. Hover any layer label on the left for context; right-edge annotations call out the load-bearing decisions.

Decisions & tradeoffs

  1. 01

    FHIR R4 as the canonical clinical model, not "FHIR-as-export."

    CostBigger upfront semantic work.

    WinOne source of truth across EHR, lab, pharmacy, imaging, and external integrations.

  2. 02

    Database-per-service with strict no-cross-DB-reads.

    CostData joins must traverse APIs or events.

    WinEach bounded context is independently deployable and ownable; no shared schema politics.

  3. 03

    Centralized authorization in `access-policy`, never UI-only.

    CostEvery service makes a policy call.

    WinPolicy is auditable and testable in isolation.

  4. 04

    Single API gateway as the only public HTTP entry.

    CostAn extra hop and a deployment surface to operate.

    WinRouting, auth, rate limiting, and contracts are enforced at one boundary.

  5. 05

    Offline-first client architecture with local outbox and per-aggregate conflict resolution.

    CostConflict policies must be declared per aggregate; sync is non-trivial.

    WinThe platform works in rural clinics, field settings, and facilities where connectivity is absent or unreliable.

  6. 06

    Single AI Gateway as the sole egress point to LLM and AI providers.

    CostEvery AI call routes through one service.

    WinModel selection, cost ceilings, PHI redaction, HIPAA-mode routing, and provenance logging are enforced at one boundary — not scattered across services.

Outcome & scope
  • 25+ bounded contexts mapped; platform + clinical + interop + engagement domains.
  • Six client surfaces wired: clinician desktop, patient mobile, staff mobile, admin web, pharmacy, and a read-only patient portal fallback.
  • Local infra parity: full stack runs on a developer laptop.
  • Designed for staged rollout in donor-funded and public-sector programs; first deployment cohort under preparation.
My role

Founder, lead architect, primary contributor. Authored the architecture baseline, the BC context map, the FHIR-first decision, and most of the service catalog.

What I'd do differently

The patient-chart aggregator service is fan-out heavy and would benefit from a CQRS read model materialized off domain events instead of synchronous calls. Planned for the next architecture pass.

← All case studies

Designing something similar?

Start a conversation →

Explore other work

CS-01

Ghasi AI Intake OS

Domain-agnostic, multi-tenant, AI-first intake operating system for government and regulated industries. One engine, two surfaces, many domain packs.

GovTech / Regulated B2B + B2C

CS-03

Ghasi edTech

Multi-tenant, multilingual (LTR + RTL), AI-first, offline-first learning platform: marketplace + LMS + authoring suite + compliance engine. 18 bounded contexts. SCORM/xAPI. WebGPU local inference.

EdTech / Compliance

CS-04

Ghasi Melmastoon

Multi-tenant property management system for hospitality. 21 services planned, sharing a common pattern with the rest of the Ghasi suite — same DDD posture, same outbox discipline, different domain.

Hospitality / PMS

CS-05

Ghasi SMS Gateway

Lightweight SMS messaging gateway. Bounded-context companion to the Ghasi suite — one job, done well, integrable from anywhere in the platform.

Communications Infrastructure

CS-07

Microservices → BFF Decomposition

Decomposing a 15-service distributed estate plus three databases on on-prem infrastructure into a Backend-for-Frontend architecture — one BFF per experience, talking to a shared data platform and shared services behind a single identity provider.

FinTech / Wealth Management

CS-08

User Manuals & Training Portal

A secured, searchable, filterable user manual and training portal — leveraging GCP Cloud Storage for content, Articulate Rise 360 for training modules, SharePoint lists for metadata, a .NET API in front, and a React frontend over a protected sub-domain.

FinTech / Wealth Management