Patient data infrastructure

The gold standard
in patient data.

A premium layer over your existing clinic systems—unifying the patient record without replacing what works. Built for clinics and private practices that consider precision a baseline and discretion a virtue.

Apply for access See how it fits →
How it fits

A layer, not a replacement.

Aurem does not ask you to migrate, abandon, or reconfigure the systems your clinic already runs on. It sits one layer above them, drawing data through structured workflows and presenting a single, coherent patient record to the people who need it.

The intent is unhurried. New systems can be added when the moment is right—imaging, laboratory feeds, intake forms, whatever your practice already touches—without disrupting what works today.

Layer 03
Patient · Clinician
The people who use the work.
Aurem
Unified record · Decisions · Plans
Editorial dashboards. Doctor-signed AI. Patient-owned data.
Layer 01
Your existing systems
EMR · PMS · LIS · Imaging · Forms · Spreadsheets.
Capabilities

Built quietly,
for the institutions
that demand more.

01

A unified patient record.

Visits, results, plans, and notes—drawn from the systems you already use—presented as one composed record. No more screens between the clinician and the patient.

02

AI-assisted, doctor-signed.

Lab interpretation, treatment plans, and recommendations are drafted by AI and finalised by clinicians. Nothing reaches a patient without an attributable signature. The platform makes that line easy to keep.

03

Encrypted by clinic.

Each clinic's data is encrypted at the field level with keys derived for that clinic alone. An exfiltrated database is unreadable without the platform's master key. Privacy is structural, not promised.

04

Your brand. Your domain.

Patients and staff see your clinic, never us. Custom domain, custom palette, custom typography—rendered in real time. Aurem is the infrastructure beneath; you remain the brand.

05

Patient-owned data.

Patients access their own record, request export, and request deletion—rights that the platform implements rather than gestures at. Compliance is built in: PDPA-ready, consented at every step, audit-logged from end to end.

06

Clarity, by design.

Editorial dashboards. Numerals in serif, labels in sans. Charts that prefer legibility to ornament. Built for clinicians who want their tools to disappear into the work.

In practice

What the platform
actually does.

Aurem is built around three audiences—clinicians, patients, and the clinic itself. Each gets a surface that earns the standard implied by the name. None ask for more attention than the work requires.

For your clinicians

A composed clinical record.

The unit of work is a Visit—a flexible container that adapts to its purpose. Full onboarding, follow-up review, annual review, consultation-only, prescription-only, letter-only, fitness review, nutrition review, custom. Each visit type pre-populates the right child entities so paperwork mirrors the clinical reality of the appointment.

AI assists where the work is repetitive—drafting lab interpretations, treatment plans, nutritional plans, fitness plans. The clinician reviews, edits, and signs. Nothing reaches the patient unsigned, and the sign-off matrix is enforced by the platform: doctors for prescriptions and treatment plans, nutritionists or doctors for nutritional plans, any clinician for fitness review.

  • Visit lifecycle DRAFT → IN_PROGRESS → UNDER_REVIEW → PUBLISHED → AMENDED
  • Doctor's letters and prescriptions on letterhead
  • Step-up authentication for destructive actions
  • Patient activity log visible to doctor and nurse
For your patients

One record. Theirs.

A single, continuous record across every visit—labs, plans, notes, prescriptions, history. Patients sign in at your domain, see your brand, and read content written by your clinicians.

Self-service registration with a structured intake questionnaire captures the right information once, then re-administers it on review. Rights under the Personal Data Protection Act—access, rectification, portability, erasure with grace—are implemented as real flows, not policy gestures. Original lab PDFs are preserved unmodified alongside the structured data.

  • Public self-signup with PDPA + Informed Consent capture
  • Email + magic-link login; trusted devices for thirty days
  • In-app notifications alongside email for important events
  • One-click data export and deletion request
For the clinic itself

A platform that disappears.

Each clinic runs on its own database, isolated from every other tenant. Sensitive fields—names, identifiers, biomarker values, plan content, notes—are encrypted at the field level with keys derived for that clinic alone. An exfiltrated database is unreadable without the platform's master key. Privacy is structural, not promised.

A clinic offerings catalog (services and products you provide) is used by AI when proposing treatment plans, so recommendations stay within what you actually offer. Audit history records every change with field-level before-and-after for one-click rollback. The platform is visible only in the absence of friction.

  • Custom domain, palette, typography—rendered at request time
  • Per-clinic D1 database, field-level AES-256-GCM encryption
  • Append-only audit log with separate clinical activity feed
  • Tenant timezone and operating hours drive notification timing

Aurem connects every system that touches your patient.
Quietly, precisely, without compromise.

Security & posture

A quiet platform
takes responsibility seriously.

The expectations of a top-tier clinic are simple to state and difficult to meet: the platform must be precise, discreet, and durable. We have made specific choices in service of those expectations.

Architecture
One database per tenant. Your clinic's data lives in its own dedicated store, isolated from every other tenant on the platform. There is no shared table, no shared row, no shared key.
Encryption
AES-256-GCM at the field level, with per-tenant keys derived via HKDF from a master key held only as a runtime secret. Names, identifiers, clinical content, and notes are encrypted before they ever reach storage.
Authentication
Tiered multi-factor authentication. Patients see a friction-aware flow; clinicians see step-up prompts on destructive actions; platform administrators see two-factor on every sign-in. Designed for safety without becoming an obstacle.
AI oversight
Nothing AI-touched reaches a patient unsigned. Each AI-assisted artefact is gated by an attributable clinician signature appropriate to its content. Drafts are a tool; decisions remain a profession.
Compliance
PDPA from the first line of code. Consent capture, rectification, portability, erasure with grace—all implemented as real flows. Region-specific regimes follow as the platform expands.
Audit
Every change is traceable. Field-level before-and-after histories, a separate clinical activity log for each patient, and a tenant-wide trail visible to clinic administrators. Discretion is verifiable.
Begin a conversation

The gold standard,
by invitation.

Aurem is currently in design-partner phase. We are working closely with a small number of clinics to shape the platform alongside their day-to-day workflows. New tenants are onboarded individually, on a calendar that lets us do the work well.

If your practice values clarity, control, and excellence over noise, we would like to hear from you.

Apply for access
Apply for a demo

Tell us about your clinic.

A short form. We review every application personally—there is no automated triage. A member of our team will be in touch within a few working days.

Helps us understand what we would be sitting alongside.
By submitting you agree to our Privacy Policy.