One Platform, Many Products: Building an AI-First Healthcare Venture Studio

4 minute read

High-level overview only. This post covers the business rationale, the KPIs we hold ourselves to, and the architecture in principle — not implementation, vendor, or infrastructure specifics.

The business problem

Digital health is full of point solutions. A telemedicine app, an AI intake tool, an e-prescribing add-on, a nursing-home workflow — each is usually built as its own product, with its own auth, its own patient records, its own compliance story, and its own team. The result is predictable: every new idea is a from-scratch build, months of undifferentiated plumbing (identity, tenancy, audit, PHI handling) get rebuilt each time, and the actual differentiator — the clinical workflow — is the smallest part of the effort.

We took the opposite bet. Instead of building one app, we’re building a venture studio: a shared, AI-first, HIPAA-aware core that powers many healthcare products. The design rule is simple and strict:

A new vertical should be a configuration plus a thin frontend — never a fork of the core.

Telemedicine is the first product on the platform; AI intake/triage, physician review & sign-off, e-prescribing, care coordination, clinical documentation, and nursing-home workflows are configurations that reuse the same identity, clinical-data, AI, workflow, and audit building blocks.

Why this is the right shape

  • Speed to a new line of business. The expensive, regulated foundations are built once. Launching a new vertical becomes weeks of configuration and UX, not a multi-month platform rebuild.
  • Compliance by construction. Multi-tenancy, PHI isolation, audit, and access control live in the core, so every product inherits them instead of re-implementing (and re-auditing) them.
  • Consistent AI governance. All AI runs behind one gateway with redaction, evaluation, and a human-in-the-loop gate — so safety and quality controls are uniform across every product, not reinvented per app.

Architecture overview

The platform is a modular monolith that is microservices-ready: a small set of independently-bounded services with hard boundaries — a service never reaches into another’s data or internals; everything crosses through APIs. That keeps early velocity high while leaving a clean seam to extract services later without a rewrite.

   patient apps ─┐
   provider ─────┤        ┌──────────────────────┐
   console       ├──────▶ │     API gateway      │  only public entry:
   admin ────────┤        │  authn · tenant ·    │  authenticate, resolve
   nursing ──────┘        │  routing · limits    │  tenant, route, rate-limit
                          └──────────┬───────────┘
        ┌──────────┬──────────┬──────┴──────┬──────────────┬───────────┐
        ▼          ▼          ▼             ▼              ▼           ▼
   ┌─────────┐┌──────────┐┌───────────┐┌────────────┐┌──────────┐┌────────┐
   │identity ││ clinical ││ AI gateway││ workflow   ││ rx /     ││ audit  │
   │users/org││ data     ││ provider- ││ engine     ││ payments ││ append-│
   │RBAC ·   ││ patients ││ agnostic  ││ verticals  ││ notify   ││ only · │
   │consent  ││ encounters││LLM + PHI  ││ = declara- ││ (behind  ││immut-  │
   │         ││ meds/orders││redaction ││ tive config││  adapters)││able   │
   │         ││ (FHIR-    ││+ human-in-││            ││          ││       │
   │         ││  aligned) ││the-loop   ││            ││          ││       │
   └─────────┘└──────────┘└───────────┘└────────────┘└──────────┘└────────┘

The building blocks, one line each:

  • Identity — users, organizations/tenants, roles and permissions, patient consent.
  • Clinical data — the system of record for patients, encounters, documents, meds, and orders, FHIR-aligned so it interoperates with the rest of healthcare.
  • AI gateway — the only path to a language model. Provider-agnostic, with PHI redaction, a prompt registry, evaluations, and a human-in-the-loop gate so a clinician approves anything that touches care.
  • Workflow engine — workflows are data, not code. A new vertical (telemedicine, triage, discharge follow-up) is expressed as a declarative configuration.
  • Rx / payments / notifications — external integrations (e-prescribing, billing, messaging) kept behind clean interfaces so vendors can change without touching the core.
  • Audit — an append-only, immutable record of every access to and change of PHI.

Principles the whole thing is built on: multi-tenant from the very first row (every record is tenant-scoped and isolation is enforced, not assumed) · HIPAA-aware by construction · all AI behind a gateway · workflows are configuration · identical infrastructure across environments · human sign-off wherever AI meets clinical decisions.

KPIs we hold ourselves to

Because the whole thesis is leverage, the metrics are split between the platform (is the core actually paying off?) and each product (is the vertical working for patients and providers?).

Platform KPIs

KPI Why it matters
Time-to-launch a new vertical The core thesis in one number — is a new product a config or a rebuild? Target: weeks, not quarters.
Core reuse % (shared vs. vertical-specific code) High reuse means the leverage is real; falling reuse is an early warning of forking.
Cross-tenant isolation defects Must be zero — the non-negotiable safety metric for a multi-tenant PHI platform.
PHI audit coverage Every PHI access/mutation is logged; target 100%.
AI human-review pass rate & correction rate Tracks AI output quality and how often a clinician has to intervene.

Product KPIs (telemedicine first)

KPI Why it matters
Time-to-provider / wait time The patient’s core experience of access.
Visit completion rate Did the encounter actually deliver care?
Provider utilization & minutes saved per encounter Efficiency and unit economics for the practice.
Prescription / follow-up turnaround Speed of the “last mile” of a visit.
Patient satisfaction (NPS/CSAT) Retention and word-of-mouth.
Uptime / SLA adherence Care can’t wait for a maintenance window.

Takeaways

  1. In regulated software, the moat is the foundation. Identity, tenancy, audit, and PHI handling are exactly the parts worth building once and reusing everywhere.
  2. “A new vertical is a config, not a fork” is a design constraint you can actually measure — reuse % and time-to-launch keep you honest.
  3. Put all AI behind one governed gateway. It’s the only sustainable way to keep redaction, evaluation, and human oversight consistent as the number of products grows.
  4. Pick KPIs that test the thesis, not just vanity usage — for a venture studio, platform leverage metrics matter as much as any single product’s numbers.