An enterprise-grade analytics dashboard for a regional Integrated Provider Arrangement — designed to replace manual reporting with real-time, AI-assisted financial intelligence. HIPAA-ready from the ground up.
This document outlines JAB's approach to designing and building an enterprise-grade analytics dashboard for a regional IPA/MSO. The platform will replace fragmented, manual reporting workflows with a unified system capable of ingesting data from SQL queries, Excel spreadsheets, and CSV files — then automatically generating interactive, HIPAA-compliant dashboards focused on financial KPIs.
Phase 1 delivers a fully functional shell: responsive layout, auto-report generation framework, financial KPI dashboard structure, API integration layer, and complete documentation for IT review. Every technology decision is auditable, every dependency is sourced, and the architecture is built for healthcare compliance from day one.
The client — a regional IPA/MSO managing capitated contracts across multiple health plans — faces a familiar but critical problem: financial visibility is too slow, too manual, and too fragmented to support strategic decision-making.
Capitation revenue, claims data, provider performance metrics, and risk scores live in disconnected systems: legacy SQL databases, Excel workbooks passed between departments, and CSV exports from clearinghouses. Finance teams spend 40+ hours per month manually assembling reports. By the time leadership reviews the numbers, they're already weeks stale.
The consequences are real: MLR deviations go undetected, provider cost outliers persist, and capitation rate negotiations happen without current data. The organization needs a single platform that consolidates data from any source and delivers real-time, role-based analytics — built to healthcare compliance standards from the start.
Leadership can't make timely financial decisions because their data is scattered across disconnected systems, manually assembled, and weeks old by the time it reaches a dashboard.
We're building this in layers — starting with a robust, compliance-ready foundation and progressively adding intelligence. Phase 1 delivers the architecture, layout, data ingestion framework, and KPI structure. Subsequent phases layer in AI-assisted analysis, predictive modeling, and expanded data source integrations.
Compliance-first architecture. HIPAA readiness isn't a future enhancement — it's baked into every decision from data handling to access control to audit logging. No PII touches the frontend. No shortcuts on encryption.
Auditable dependencies. Every module in the project is traceable to its source, vetted for vulnerabilities, and documented with rationale. IT can review the full dependency chain before a single line of code ships to production.
Healthcare-native KPIs. This isn't a generic dashboard tool with healthcare data bolted on. The financial metrics — capitation PMPM, MLR, claims incurred, risk score trends — are first-class citizens in the data model and the UI.
Progressive intelligence. The shell is built to support AI-assisted analysis from day one. Schema detection, chart type recommendation, and anomaly alerting are all architected into the data flow — even before the ML models are trained.
Every technology choice is validated against our module sourcing standards: open source, actively maintained, healthcare-proven, and zero high-severity vulnerabilities. The complete stack:
| Module | Purpose | Source |
|---|---|---|
| React 18.x+ | UI framework — industry standard, healthcare-adopted | npmjs.com/package/react |
| Vite | Build tool — faster than CRA, production-ready | npmjs.com/package/vite |
| TypeScript (strict) | Static typing — healthcare data integrity | typescriptlang.org |
| TailwindCSS | Utility-first styling — no custom CSS debt | npmjs.com/package/tailwindcss |
| Module | Purpose | Source |
|---|---|---|
| shadcn/ui | Headless, accessible component library | ui.shadcn.com |
| Radix UI | Accessibility-first primitives (shadcn dep) | radix-ui.com |
| Lucide React | Healthcare-appropriate iconography | npmjs.com/package/lucide-react |
| Recharts | React-native charts, WCAG accessible | npmjs.com/package/recharts |
| Module | Purpose | Source |
|---|---|---|
| TanStack Query | Server state management — industry standard | npmjs.com/package/@tanstack/react-query |
| Zustand | Lightweight client state | npmjs.com/package/zustand |
| React Router v6 | Declarative, type-safe routing | npmjs.com/package/react-router-dom |
| PapaParse | CSV parsing, zero dependencies | npmjs.com/package/papaparse |
| SheetJS (xlsx) | Enterprise Excel support | npmjs.com/package/xlsx |
| decimal.js | Financial calculations — critical for billing | npmjs.com/package/decimal.js |
Every dependency must be: open source, updated within 90 days, published on npmjs.com, used in 3+ healthcare/fintech applications, MIT/Apache/BSD licensed, zero high/critical CVEs, and 10k+ weekly downloads. A complete MODULE_MANIFEST.md is delivered with the codebase.
The core differentiator of this platform: upload data, get a dashboard. No manual configuration, no drag-and-drop widget placement, no BI tool training. The system detects what you have and recommends how to see it.
Users paste a raw SQL query into the platform. The backend executes it with full sanitization, returns the result set, and the frontend analyzes the schema: identifying measures vs. dimensions, detecting aggregation levels, and recommending grouping strategies. The system distinguishes between detail-level data (suited for tables and drill-downs) and summary data (suited for KPI cards and trend charts).
Users upload a file. The parsing layer auto-detects headers (row 1 vs. named ranges), infers column data types (date, currency, percentage, text), suggests pivot structures, and handles files up to 100k+ rows with memory-efficient streaming. No server round-trip required for initial parsing — it happens in the browser.
Based on data cardinality, type distribution, and detected patterns, the engine recommends visualization types: time-series data gets line charts, categorical breakdowns get bar charts, single-value KPIs get summary cards. Users can accept, modify, or override every recommendation. All dashboard configurations are saved as reusable JSON templates.
The dashboard is purpose-built for IPA/MSO financial management. These aren't generic metrics — they're the specific numbers that drive capitated healthcare economics.
KPI summary cards anchor the top of the view — revenue, claims, MLR, and profitability at a glance. Below: trend charts showing monthly and quarterly comparisons. Provider drill-down tables allow ranking and filtering. Automated alerts surface when MLR deviates beyond the 5% threshold, flagging potential issues before they become problems.
Healthcare data demands the highest standard of protection. This architecture is designed for HIPAA compliance — not as a future enhancement, but as a foundational constraint that shapes every technical decision.
The platform must be fast enough that users don't wait — and scalable enough that it doesn't degrade as data volumes grow. These are our contracted performance benchmarks:
| Metric | Target |
|---|---|
| Query timeout | 30 seconds maximum |
| Concurrent users | 100+ simultaneous |
| Data refresh | Real-time or 15-minute cache |
| Lighthouse score | 90+ across all categories |
Phase 1 is the foundation. Everything that follows — AI analysis, predictive modeling, expanded integrations — builds on what we deliver here.
This project is designed to pass IT review on the first submission. Every item below is addressed in the Phase 1 deliverable:
Upon approval of this approach, JAB will begin Phase 1 development immediately. We deliver working software — not slide decks. The first functional prototype ships within 2 weeks of kickoff, with weekly demos thereafter.