How do appointment reminders work?

When an appointment is booked or coming up, an event triggers a reminder — a text or email — sent automatically. With a FHIR API, the appointment is a standard Appointment record, and real-time events let you fire the reminder the moment it's scheduled or as the date approaches.

Is secure messaging different from regular messaging?

Yes. Secure messaging keeps patient information protected — encrypted, access-controlled, and logged — because messages can contain health details. It must run on HIPAA-compliant infrastructure with a Business Associate Agreement, unlike a normal chat tool.

Does patient engagement need to be HIPAA-compliant?

Yes. Portals, reminders, and messages all involve protected health information, so they need encryption, access control, audit logging, and a signed BAA. Building on HIPAA-compliant infrastructure covers the hard parts.

Why build engagement features on FHIR?

Because the portal, reminders, and messaging all rely on the same patient data — appointments, results, contact info. Building them on FHIR means they share one clean, consistent source of truth instead of separate, drifting copies, and they stay compatible with the rest of your system.

All articles

Engineering

Patient Engagement API: Powering Portals, Reminders & Secure Messaging on FHIR

Q: What is a patient engagement API?

A patient engagement API powers the features that connect patients to their care between visits — a portal where they see their records and appointments, automatic reminders, and secure messaging with their care team. It reads and writes the same FHIR patient data your clinical side uses, so everything stays in sync.

Q: How do I build a patient portal?

A portal is a patient-facing view of their own FHIR data — appointments, results, messages, and documents. You authenticate the patient, read their FHIR records, and display them. Pre-built components and a FHIR data API mean you assemble the portal instead of building every screen and query from scratch.

A plain-English guide to building patient engagement features in 2026 — portals, appointment reminders, and secure messaging — on a FHIR API, without building the plumbing yourself.

ClinikAPI TeamMay 20, 20268 min read

Care doesn't only happen during a visit. The reminder that brings a patient back. The portal where they check a result at midnight. The secure message that answers a quick question without a phone call. These patient engagement features are what keep people connected to their care — and they're easier to build than they look, because they all run on the same patient data. Build them on a FHIR API and your portal, reminders, and messaging share one clean source of truth. This guide shows you how, in plain language.

The foundation we recommend is ClinikAPI — a FHIR-native platform that powers engagement features from one source of truth. Here is why we suggest it up front:

Free to start: Get your API keys in seconds — no credit card needed.
One source of truth: Portal, reminders, and messaging share the same FHIR data.
Real-time events: Fire reminders automatically when appointments are booked.
Ready-made screens: Components for patient-facing views.
Compliant: HIPAA-compliant, SOC 2-audited, with a signed BAA.

Quick Answer

Patient engagement is really three features — a portal, reminders, and secure messaging — all powered by the same patient data. A portal is a patient-facing view of their own FHIR records (appointments, results, messages). Reminders are automatic messages triggered by events, like an appointment being booked or coming up. Secure messaging is HIPAA-safe communication between patients and their care team. Because all three rely on the same data — appointments, results, contact info — building them on a FHIR API means they share one consistent source of truth instead of separate, drifting copies. Build on HIPAA-compliant infrastructure, use real-time events for reminders, and reuse components for the screens, and you can ship engagement features quickly.

Power engagement from one source of truth

ClinikAPI runs your portal, reminders, and secure messaging on the same FHIR data — HIPAA-compliant, with real-time events and ready-made screens. Get keys in seconds.

Get API Keys →

The three features of engagement

Strip patient engagement down and you find three features sharing one data source:

Feature	What it does	Powered by
Portal	Patients view their records & appointments	FHIR patient data
Reminders	Automatic nudges for visits & tasks	FHIR `Appointment` + events
Secure messaging	Safe patient–team communication	FHIR + HIPAA infrastructure

The key insight: they all read the same patient data. Build that once, and all three benefit.

The patient portal

A portal is simply a patient-facing window into their own FHIR data. You log the patient in, read their records, and show them:

import { Clinik } from '@clinikapi/sdk'

const clinik = new Clinik('clk_live_...')

// A patient's upcoming appointments and recent results — their own data
const appointments = await clinik.appointments.search({ patient: 'Patient/abc-123' })
const results = await clinik.observations.search({ subject: 'Patient/abc-123' })

Drop those into ready-made components and you have a portal without building every screen and query yourself. (See pre-built UI components.)

Appointment reminders

Reminders are where real-time events shine. When an appointment is booked, an event fires and your app sends a reminder automatically — no cron jobs, no polling:

await clinik.events.subscribe({
  resource: 'Appointment',
  on: 'created',
  webhook: 'https://yourapp.com/hooks/send-reminder',
})
// Your handler sends a text or email when the appointment is booked

Because the appointment is a standard FHIR Appointment record, the reminder always has the right details.

Note

Reminders are the highest-return engagement feature you can build. A simple automatic text before a visit measurably reduces no-shows — and it's just an event plus a message.

Secure messaging

Messaging in healthcare isn't like a normal chat app, because messages can contain health information. Secure messaging must be encrypted, access-controlled, and logged — running on HIPAA-compliant infrastructure with a signed BAA. The difference isn't the chat bubble; it's everything underneath that keeps the conversation protected. (See Building HIPAA-Compliant Apps.)

Product Insight: Why ClinikAPI Ties It Together

Engagement features get messy when each one has its own copy of patient data that drifts out of sync. ClinikAPI keeps them on one FHIR source of truth.

What you get:

One source of truth: Portal, reminders, and messaging all read the same FHIR data.
Real-time events: Fire reminders the moment an appointment is booked.
Ready-made screens: Patient-facing components you drop in.
Secure by default: HIPAA-compliant, SOC 2-audited, with a signed BAA.

Build the portal, reminders, and messaging once on shared data, and they stay consistent. Explore the UI library and the platform.

Frequently Asked Questions

1. What is a patient engagement API?

It powers the features connecting patients to their care between visits — portal, reminders, and secure messaging — using the same FHIR patient data your clinical side uses.

2. How do I build a patient portal?

Authenticate the patient, read their FHIR records, and display them with pre-built components — assembling the portal instead of building every screen.

3. How do reminders work?

An event fires when an appointment is booked or approaching, and your app sends a text or email automatically.

4. Is secure messaging different?

Yes — it's encrypted, access-controlled, and logged because messages can contain health info, and it needs a BAA.

5. Why build engagement on FHIR?

So the portal, reminders, and messaging share one clean source of truth instead of separate, drifting copies.

Conclusion

Patient engagement looks like three separate products — a portal, reminders, messaging — but it's really one: the same patient data, shown and shared in three ways. Build them on a FHIR API and they stay consistent, compliant, and fast to ship. Use real-time events for reminders, ready-made components for the portal, and HIPAA-compliant infrastructure throughout, and you can connect patients to their care without rebuilding the plumbing.

Key takeaways:

Engagement is three features — portal, reminders, messaging — on one data source.
A portal is a patient-facing view of their own FHIR data.
Reminders are events plus a message — the highest-return feature to build.
Secure messaging needs HIPAA-compliant infrastructure and a BAA.
Building on FHIR keeps all three consistent and in sync.

Ready to build? Get your free ClinikAPI keys or explore the UI library.

#Patient Engagement #Patient Portal #Reminders #Secure Messaging #FHIR