From a Paper Nightmare to Compliant Digital Patient Records

The Institut Dr Josif Pančić is the leading medicinal-plants institute in the region. At its main pharmacy, patients come for advisory consultations where experts prescribe herbal therapies, teas, tinctures and other preparations, alongside the conventional medicines a patient is already taking.

All of this was recorded on paper. Pulling up a patient's history meant digging through physical files, which is slow when someone is sitting in front of you waiting. And keeping sensitive medical data on paper was, in the Institute's own words, a nightmare: hard to secure, hard to search, and hard to keep consistent. For consultations that have to consider what a patient is already taking before prescribing anything new, having that history locked in a filing cabinet was a real constraint on the quality and speed of care.

We built a Laravel and React application that manages the whole consultation flow, with privacy and data safety designed in from the start rather than bolted on at the end.

Patients bring their medical reports and records of the conventional medicines they have been prescribed. The Institute's experts review them and prescribe additional herbal therapies, and all of it is captured in one structured record. Because the conventional medicines and the herbal prescriptions live together, the expert sees the full picture during the consultation, not a partial one. The system was built around the rules for handling this kind of medical data and was registered with the Ministry of Health, confirming it meets the requirements for the data it holds.

Patient history that used to mean searching through paper files is now available instantly. Processing a patient takes about half the time it used to, because the history is one search away rather than one filing cabinet away.

The paper records are gone. In their place is one secure, compliant system that the experts trust with sensitive health data. For a consultation that depends on seeing a patient's full picture before prescribing, having conventional medicines and herbal therapies in a single record is not just faster, it is safer.

With health data, privacy is not a feature you add at the end. It is a constraint you design the whole system around from the first decision.

Choosing to model the data, the access, and the workflow around data safety from the outset is what made the Ministry of Health registration a confirmation rather than a scramble. Retrofitting compliance onto a system that was not built for it is expensive and fragile. The broader lesson holds for any regulated domain: understand the rules before you design the schema, because the rules shape the schema, and getting that order wrong is the costliest mistake you can make.