Is Refill Relay HIPAA-compliant?

Yes. Refill Relay uses OTP-based authentication, CSRF token protection, Express-rate-limit to prevent abuse, Helmet.js security headers, bcrypt password hashing, and one-time expiring pharmacy links. Patient data is stored in PostgreSQL with session management via connect-pg-simple. Error monitoring runs through Sentry. The system is designed from the ground up for HIPAA-compliant healthcare workflows.

What SMS provider does Refill Relay use?

Refill Relay uses Twilio for all SMS communication. This includes inbound refill request detection, OTP delivery, and appointment reminder messages. The system uses BullMQ with Redis to queue and reliably deliver outbound messages at scale.

What happens with controlled substances?

The system automatically flags controlled substance requests with a distinct warning badge on the nurse dashboard. These requests receive additional review prompts and cannot be fast-tracked, ensuring compliance with controlled substance prescribing regulations.

How are appointment reminders sent?

Refill Relay uses node-cron to schedule automated appointment reminders. Messages are sent via Twilio SMS at configurable intervals before appointments. The cron jobs run server-side on Node.js ≥18, with BullMQ and Redis ensuring reliable delivery even under load.

Does Refill Relay send email notifications?

Yes. Refill Relay uses Paubox for transactional email notifications — including approval confirmations, denial notices, and system alerts for clinic staff.

What database does Refill Relay use?

Refill Relay uses PostgreSQL as its primary database, managed via the pg Node.js driver. Sessions are stored with connect-pg-simple. The system also uses SQLite (better-sqlite3) for lightweight local operations and Redis (ioredis) for job queuing and caching.

HIPAA-Compliant · Twilio · PostgreSQL · Node.js

Prescription Refills
via SMS.
No Phone Tag.

Patient texts REFILL → OTP verified in 90 seconds → nurse approves in one click → pharmacy gets a one-time secure link. The entire workflow, automated.

OTP Verified

Expiring Pharmacy Links

PostgreSQL Backed

Twilio Powered

RefillRelay — Nurse Dashboard

Today's Refill Queue

Live · 3 pending

Pending

94%

Response

Flagged

Sarah Mitchell Lisinopril 10mg · 90-day supply

Pending

James Okafor Adderall XR 20mg · ⚠ Controlled

Controlled

Maria Gonzalez Metformin 500mg · approved

Approved

The Problem

Your Staff Spends
Hours on Refills.

Phone tag, voicemails, manual faxing, no-shows — the average clinic spends 3–4 hours daily on medication refill administration. Refill Relay eliminates all of it.

Before: Patient calls, leaves voicemail Staff calls back, plays phone tag, manually enters refill into EHR, faxes pharmacy. Average: 12 minutes per refill.

After: Patient texts REFILL OTP verification, digital form, nurse approval, auto-sent pharmacy link. Average: 90 seconds per refill, zero staff phone calls.

Endless phone tag with patients Staff call, patient misses, patient calls back, staff misses — loop repeats for days.

No-shows from missed reminders Without proactive SMS outreach, 20–35% of refill appointments go unfilled.

Manual faxing to pharmacies Paper-based pharmacy communication is slow, error-prone, and untrackable.

Zero side-effect screening Refills approved without collecting patient-reported symptom updates create clinical risk.

How It Works

Five Steps.
Zero Phone Calls.

Every step of the refill workflow is automated, verified, and HIPAA-compliant — from the patient's first text to the pharmacy's secure link.

Patient Texts REFILL

Patient sends "REFILL" to your clinic's Twilio number or taps a link in an appointment reminder SMS.

Twilio Webhook

OTP Verification

System sends a one-time password via Twilio. Patient enters it to verify identity before any PHI is accessed.

HIPAA · bcrypt

Digital Refill Form

Patient selects medication, confirms dosage, reports any side effects, flags controlled-substance status, and selects pharmacy.

CSRF Protected

Nurse Approves

Request lands in the nurse dashboard with full patient context. One click to approve, deny, flag, or request a visit.

PostgreSQL · EJS

Pharmacy Gets Secure Link

Pharmacy receives a one-time, expiring link with prescription details. Expires on open. No persistent PHI exposure.

UUID · Rate Limited

Features

Built on a Real Production Stack

Refill Relay isn't a mockup. It's a production Node.js application with queued job processing, monitoring, and every security layer healthcare demands.

SMS-Driven Workflows

Inbound webhook from Twilio triggers the entire refill pipeline. Outbound OTPs, approval notifications, and appointment reminders all delivered via Twilio SMS. BullMQ + Redis queues handle retry logic at scale.

Twilio BullMQ Redis

HIPAA-Grade Security

OTP authentication, bcrypt password hashing, CSRF tokens on every form, Helmet.js security headers, express-rate-limit, XSS sanitization, and one-time expiring links for pharmacy access.

CSRF Helmet bcrypt

Nurse & Doctor Dashboard

A full-featured approval interface showing all refill requests by status (Pending, Approved, Denied, Needs Visit, Flagged). Each card surfaces patient name, phone, medication, dosage, current med list, medical history, side-effect flags, and pharmacy preference — everything needed to approve in one view.

Express + EJS Session Auth PostgreSQL

Controlled Substance Flagging

The system automatically detects controlled substance requests and applies a distinct warning badge. These requests require additional review and cannot be auto-approved — keeping you compliant with DEA prescribing rules and your state's controlled substance regulations.

Auto-Flagged Audit Trail

Email Notifications via Paubox

Clinic staff receive email confirmations for every approval, denial, and flagged request. Transactional emails powered by Paubox for reliable delivery.

Paubox

Cron-Scheduled Reminders

node-cron schedules appointment and refill reminders automatically. Configure intervals, messages, and targeting rules — all running server-side on your Node.js ≥18 instance.

node-cron Twilio

Sentry Monitoring

Full error tracking and performance monitoring with Sentry + @sentry/tracing. Every exception in the refill pipeline is captured, contextualized, and alerted in real time.

Sentry Winston Logs

The Dashboard

Everything Your
Nurse Needs, At a Glance

The dashboard is the command center. Built with Express and server-rendered EJS templates backed by PostgreSQL, it loads fast and gives your clinical team full context on every request.

Tabbed Request QueuePending, Approved, Denied, Needs Visit, Flagged — each with a live count badge.

Full Patient ContextCurrent meds, medical history, pharmacy preference, and reported side effects — on one card.

One-Click ActionsApprove, Deny, Flag, or Request Visit — each action triggers the appropriate SMS and email notifications.

Session-Secured Accessconnect-pg-simple session store, timeout warnings, and secure logout keep PHI protected.

RefillRelay — Nurse Dashboard

Session active · Last sync 12s ago

Pending 3

Approved

Flagged 1

Needs Visit

Sarah Mitchell · +1 (555) 234-7891 2 min ago

Lisinopril 10mg — 90-day supply · CVS Pharmacy #4421

Controlled Substance — Review Required

James Okafor · +1 (555) 891-3322 5 min ago

Adderall XR 20mg — 30-day supply · Walgreens #7712

Elena Petrov · +1 (555) 102-9988 11 min ago

Metoprolol 50mg — 30-day supply · Rite Aid #2290

FAQ

Questions Clinics
Actually Ask

Every answer here reflects how the system actually works — built on Node.js, Twilio, PostgreSQL, and Redis.

How does Refill Relay work technically?

Patients send "REFILL" to your clinic's Twilio number. The system catches the inbound webhook, sends an OTP back via Twilio, and presents a CSRF-protected web form where patients select their medication, confirm dosage, report side effects, and choose their pharmacy. The completed request is stored in PostgreSQL and surfaces on the nurse dashboard (Node.js + Express + EJS). On approval, a one-time UUID-based pharmacy link is generated and sent — it expires after a single open.

Is Refill Relay actually HIPAA-compliant?

Yes. The codebase implements OTP authentication, bcrypt password hashing, CSRF token protection on every form (csurf middleware), Helmet.js security headers, express-rate-limit on all endpoints, XSS sanitization (xss library), and one-time expiring pharmacy links using UUID v4. Sessions are stored in PostgreSQL via connect-pg-simple with configurable TTLs. Sentry monitors for runtime errors. Winston captures structured logs. Patient records are never exposed in URLs or public endpoints.

What happens when a patient requests a controlled substance refill?

The system automatically detects controlled substances during the medication selection step and applies a "Controlled Substance — Review Required" flag. On the nurse dashboard, these requests display a distinct red warning badge and cannot be fast-tracked. The nurse must explicitly review all patient context before any approval action becomes available.

What database and infrastructure does Refill Relay use?

Primary data store: PostgreSQL (via the pg driver). Session management: connect-pg-simple. Job queuing and caching: Redis with ioredis + BullMQ for reliable background job processing. Lightweight local storage: better-sqlite3. The server runs on Node.js ≥18 with Express. Deployable with PM2 (pm2-start.js included). Production-check and preflight scripts are built in.

How are appointment reminders and refill nudges sent?

node-cron runs scheduled jobs server-side. Reminder SMS messages are dispatched through Twilio at configurable intervals. For high-volume delivery, BullMQ queues outbound messages in Redis so retries and failures are handled gracefully. Transactional email confirmations use Paubox.

How does the one-time pharmacy link work?

When a nurse approves a refill, the system generates a UUID v4 token and creates a time-limited record in PostgreSQL linking that token to the prescription. The pharmacy receives this token as a URL. When the pharmacy opens the link, the token is immediately invalidated. Any subsequent attempt to load the same link returns an expired/invalid response. This ensures prescription details are never persistently accessible via a URL.

What does the nurse dashboard show for each refill request?

Each request card displays: patient full name and phone number, requested medication and dosage, current medication list, medical history summary, self-reported side effects, pharmacy name and location, and any controlled substance or urgency flags. Tabs organize requests by status: Pending, Approved, Denied, Needs Visit, and Flagged — each with a live count badge. Actions available are: Approve, Deny, Flag, and Request Visit.

What does the Starter plan include?

The Starter plan at $199/month includes up to 500 active patients, SMS and email reminders, the nurse dashboard with full approval workflow, basic analytics, email support, and one user account. It's designed for small practices wanting to eliminate phone tag without a large upfront commitment.

Pricing

Transparent Pricing.
No Surprises.

Includes the full refill automation stack — SMS, OTP, nurse dashboard, secure pharmacy links, and monitoring.

Starter

Perfect for small practices

$199 /month

Up to 500 patients
SMS + Email reminders
Full nurse dashboard
OTP verification
Pharmacy link generation
Email support
1 user account

Professional

For growing practices

$499 /month

Up to 2,500 patients
SMS, Email + Voice
Advanced analytics
Priority support
5 user accounts
Controlled substance flags
Cron reminder schedules
Sentry monitoring

Enterprise

For large organizations

Custom

Unlimited patients
All communication channels
Custom reporting
Dedicated success manager
Unlimited users
Custom integrations
SLA guarantee

Ready to Kill Phone Tag
at Your Clinic?

Join clinics already running HIPAA-compliant refill automation on Refill Relay.

Prescription Refills via SMS. No Phone Tag.

Your Staff SpendsHours on Refills.

Five Steps.Zero Phone Calls.

Patient Texts REFILL

OTP Verification

Digital Refill Form

Nurse Approves

Pharmacy Gets Secure Link

Built on a Real Production Stack

SMS-Driven Workflows

HIPAA-Grade Security

Nurse & Doctor Dashboard

Controlled Substance Flagging

Email Notifications via Paubox

Cron-Scheduled Reminders

Sentry Monitoring

Everything YourNurse Needs, At a Glance

RefillRelay — Nurse Dashboard

Questions ClinicsActually Ask

Transparent Pricing.No Surprises.

Starter

Professional

Enterprise

Ready to Kill Phone Tagat Your Clinic?

Prescription Refills
via SMS.
No Phone Tag.

Your Staff Spends
Hours on Refills.

Five Steps.
Zero Phone Calls.

Everything Your
Nurse Needs, At a Glance

Questions Clinics
Actually Ask

Transparent Pricing.
No Surprises.

Ready to Kill Phone Tag
at Your Clinic?