FNP | Wellstone Providers EMR Shell

WELLSTONE PARTNERS | FNP VIRTUAL WELLNESS CENTER

Home

Provider and patient-facing dashboard shell.

Production note: This static Amplify shell stores no PHI. Live EMR, portal, billing, OAuth2, audit, telehealth, and AWS services require secure backend integrations.
Queued TasksConnect core engine
Virtual VisitsConnect scheduling API
Records RequestsConnect ROI queue
Security EventsConnect audit feed

Core Processing Queue

No live processing queue loaded.

Module Launcher

Core Processing Engine

Central orchestration for patient tasks, provider queues, records, billing, medication safety, referrals, exports, audit events, and PHI-safe routing.

Input Router

Classifies portal, visit, records, billing, and referral events.

Validation Kernel

Checks consent, authorization, payer readiness, and role scope.

Queue Orchestrator

Assigns work to Provider, Records, Billing, Referrals, Compliance, or Export Center.

Audit + Trace

Creates timestamps, event logs, release gates, and disclosure checkpoints.


Processing Pipeline



Processing Console

Risk / Exception Score

18%

Core processor initialized\nNo PHI stored in client shell\nProduction APIs required for live processing

Provider Clinical Board

Standby Clinical note review

Standby Visit readiness

Standby Referral sign-off

Standby Medication safety review

Clinical Controls

Patient Portal Dashboard

Patient-facing tasks, triggers, intake, uploads, billing, messages, visit tracking, and after-visit summary.

Virtual Visit Room

Waiting
PT
Provider
Screen Share

Visit Readiness







Medical Records Hub

Secure upload zone for authorized forms and records packets.

ROI Checklist







Billing + Coding Automation

Invoice Validation

Validated Balance

$0.00


Advanced Intelligence Core Logic

Workflow scoring, PHI-safe validation, billing checks, task routing, export gating, and audit-triggered automation.

PHI Guard

Production engine required.

Workflow Router

Production engine required.

Billing Validator

Production engine required.

Visit Intelligence

Production engine required.


Core Logic Console

INTELLIGENCE CORE READY\nNo PHI stored in browser\nLive decisions require backend validation

AWS Secure Backend Integration

Backend blueprint for OAuth2/OIDC, APIs, encrypted data storage, audit logging, file handling, event processing, notifications, and HIPAA-aligned governance.

Important: This Amplify static site is a front-end shell only. Never place AWS keys, database passwords, Cognito secrets, or PHI inside static files. Production access must go through IAM, Cognito/OIDC, encrypted APIs, and signed server-side requests.
Amazon Cognito / OIDC

Provider and patient authentication, MFA, token issuance, group-based roles.

API Gateway + Lambda

Secure REST endpoints for portal, EMR workflow, billing, referrals, records, and audit events.

S3 + KMS

Encrypted file storage for authorized uploads, records packets, and export packets.

CloudTrail / CloudWatch

Access logs, API events, error monitoring, alerting, and operational evidence.


Backend Request Flow

1
User signs in

Cognito/OIDC validates credentials and MFA, then returns scoped tokens.

Required
2
Front end calls API

API Gateway verifies token and forwards authorized request to Lambda.

Required
3
Lambda processes workflow

Rules engine routes tasks, validates required fields, and applies minimum necessary logic.

Required
4
Data stored encrypted

DynamoDB/RDS and S3 use KMS encryption, least-privilege IAM, and audit logs.

Required
5
Audit event written

CloudTrail/CloudWatch/EventBridge capture access, disclosure, export, and exception events.

Required

AWS Integration Console

AWS BACKEND BLUEPRINT READY\n- No credentials embedded\n- No PHI stored in static site\n- API tokens must be validated server-side\n- BAA-backed services required before production use

Security Controls







Data Services

DynamoDB / RDS Structured records

S3 File uploads

Secrets Manager Secret storage

SQS / EventBridge Task queue

Operational Guardrails

No static keys

No PHI in browser storage

Audit every access

Encrypted transport only

Office Settings