Skip to Content
Solution PlaysPlay 46: Play 46 β€” Healthcare Clinical AI

Play 46 β€” Healthcare Clinical AI

HIPAA-compliant clinical AI β€” PHI de-identification with Presidio, ICD-10/CPT medical coding, drug interaction checking grounded in FDA data, patient risk scoring via FHIR, clinical NLP decision support with mandatory disclaimers, and immutable audit trails.

Architecture

ComponentAzure ServicePurpose
Clinical NLPAzure OpenAI (GPT-4o, HIPAA-eligible)Clinical decision support, coding, Q&A
De-IdentificationPresidio (local)Strip PHI before any AI processing
Patient DataAzure Health Data Services (FHIR R4)Patient records, conditions, medications
Drug DatabaseFDA drug interaction DB (grounding)Evidence-based interaction checking
HostingAzure Container Apps (private endpoints)Clinical AI API
SecretsAzure Key Vault (CMK encryption)API keys, FHIR credentials
Audit TrailImmutable Blob StorageHIPAA-compliant access logging

πŸ“ Full architecture details

AspectPlay 35 (Compliance Engine)Play 46 (Healthcare Clinical AI)Play 01 (Enterprise RAG)
DomainGeneral complianceHealthcare / clinical medicineEnterprise knowledge
RegulationGDPR, SOC 2, EU AI ActHIPAA, BAA, PHI protectionGeneral data privacy
DataPolicy documentsPatient records (FHIR R4)Corporate documents
AI TaskGap detectionClinical coding, drug interactionsQ&A with citations
SafetyCompliance scoringClinical safety (0% harmful advice)Groundedness
De-identificationPII detectionPHI de-identification (18 HIPAA types)PII redaction

DevKit Structure

46-healthcare-clinical-ai/ β”œβ”€β”€ agent.md # Root orchestrator with handoffs β”œβ”€β”€ .github/ β”‚ β”œβ”€β”€ copilot-instructions.md # Domain knowledge (<150 lines) β”‚ β”œβ”€β”€ agents/ β”‚ β”‚ β”œβ”€β”€ builder.agent.md # Clinical NLP + de-id + FHIR β”‚ β”‚ β”œβ”€β”€ reviewer.agent.md # HIPAA audit + PHI + safety β”‚ β”‚ └── tuner.agent.md # De-id recall + coding + cost β”‚ β”œβ”€β”€ prompts/ β”‚ β”‚ β”œβ”€β”€ deploy.prompt.md # Deploy HIPAA-compliant pipeline β”‚ β”‚ β”œβ”€β”€ test.prompt.md # Test with synthetic data β”‚ β”‚ β”œβ”€β”€ review.prompt.md # HIPAA compliance audit β”‚ β”‚ └── evaluate.prompt.md # Measure clinical accuracy β”‚ β”œβ”€β”€ skills/ β”‚ β”‚ β”œβ”€β”€ deploy-healthcare-clinical-ai/ # BAA + FHIR + Presidio + private endpoints β”‚ β”‚ β”œβ”€β”€ evaluate-healthcare-clinical-ai/# De-id recall, ICD-10, drugs, safety, HIPAA β”‚ β”‚ └── tune-healthcare-clinical-ai/ # Entity config, prompts, grounding, audit β”‚ └── instructions/ β”‚ └── healthcare-clinical-ai-patterns.instructions.md β”œβ”€β”€ config/ # TuneKit β”‚ β”œβ”€β”€ openai.json # Clinical model (temp=0, deterministic) β”‚ β”œβ”€β”€ guardrails.json # PHI entities, audit rules, safety β”‚ └── agents.json # FHIR config, consent, context β”œβ”€β”€ infra/ # Bicep IaC β”‚ β”œβ”€β”€ main.bicep β”‚ └── parameters.json └── spec/ # SpecKit └── fai-manifest.json

Quick Start

# 1. Deploy HIPAA-compliant infrastructure (verify BAA first!) /deploy # 2. Test with synthetic patient data /test # 3. Run HIPAA compliance audit /review # 4. Measure clinical accuracy /evaluate

Key Metrics

MetricTargetDescription
PHI Recall> 98%PHI entities correctly detected (HIPAA critical)
ICD-10 Category Accuracy> 90%Correct code category assignment
Drug Interaction Detection> 95%Known interactions correctly flagged
Hallucination Rate< 1%Made-up clinical information
Harmful Advice Rate0%Clinically dangerous recommendations (non-negotiable)
HIPAA Audit Coverage100%All queries logged (de-identified)

Estimated Cost

ServiceDev/moProd/moEnterprise/mo
Azure OpenAI$50$400$1,500
Azure Health Data Services (FHIR)$30$150$500
Azure AI Search$0$250$800
Azure AI Content Safety$0$60$200
Azure App Service$15$80$250
Cosmos DB$5$75$400
Key Vault$1$10$25
Application Insights$0$30$100
Total$101$1,055$3,775

Estimates based on Azure retail pricing. Actual costs vary by region, usage, and enterprise agreements.

πŸ’° Full cost breakdown

WAF Alignment

PillarImplementation
SecurityHIPAA BAA, private endpoints, CMK encryption, PHI de-identification
Responsible AIClinical disclaimers, evidence grounding, 0% harmful advice
ReliabilityDeterministic (temp=0), seed=42, reproducible clinical responses
Cost Optimizationgpt-4o-mini for grounded lookups, local Presidio, FHIR caching
Operational ExcellenceImmutable audit trail, FHIR AuditEvent export, 7-year retention
Performance EfficiencyPatient context caching, batch FHIR queries

FAI Manifest

FieldValue
Play46-healthcare-clinical-ai
Version1.0.0
KnowledgeR2-RAG-Architecture, T2-Responsible-AI, O2-Agent-Coding, T3-Production-Patterns, R3-Deterministic-AI
WAF Pillarssecurity, responsible-ai, reliability, operational-excellence, cost-optimization
Groundednessβ‰₯ 85%
Safety0 violations max
Last updated on