Platform Organigram — PhytoMedic V1 Scope

Actor Model + RBAC roles  |  Green = V1 (Fabbi)  |  Gray dashed = V1.5→V5 Roadmap
PhytoMedic Platform
Fastify · PostgreSQL · AWS ECS Frankfurt
Layer 0 — Shared Services (V1)
Multi-tenant Auth
Passkeys/WebAuthn + Biometric + JWT RS256
RBAC with org-scoping
DOCTOR | SITE_ADMIN | COMPLIANCE_ADMIN | SUPER_ADMIN | SERVICE_ACCOUNT
Audit Log
Hash-chained, 10-year retention, tamper-evident (BtMG §13)
Notifications
Push (iOS + Android) + Web Push + Email
Encrypted Storage
AES-256, field-level PII encryption
Layer 1 — Clinical & Operational Core (V1)
Doctor KYC + QES D-Trust
Document upload → admin review → eIDAS Level-qualified signing
Presence Check
Geofence GPS + rotating QR + liveness selfie
Patient Management
Search, create, consent, contraindications
Prescription Lifecycle
DRAFT→SIGNED→ROUTED→CONFIRMED→FULFILLED + BtMG
Pharmacy Routing
Cannaleo + HiGreen APIs, circuit breaker, fallback
Cannametrics Foundation
6 tables, catalog sync every 15 min, price history, 10+ weeks
Layer 2 — Stakeholder Portals
Doctor Portal V1
iOS + Android (React Native) + Web (React + TS)
Admin / Compliance Portal V1
User mgmt, compliance dashboard, audit viewer
Patient Portal V1.5
Read + prescriptions on existing V1 APIs
Pharmacy Portal V2
Pharmacy org type + inventory APIs
Cannametrics Dashboards V3
Analytics on V1 foundation tables
Manufacturer Portal V4
Manufacturer org type on same model
V1 RBAC Roles (from system-design-v6.md §4)
DOCTOR SITE_ADMIN COMPLIANCE_ADMIN SUPER_ADMIN SERVICE_ACCOUNT