Skip to main content
PracticeIQ
Changelog

What's new.

Every ship, every week. Security changes flagged separately so your compliance team can track.

Apr 18, 2026Product

30-feature sprint · Founder 10 pilot infrastructure + Riley intelligence moat

  • **Founder 10 pilot landing live at /start** — interactive ROI calculator, $4K first month + $1,500/mo locked forever, 30-day parallel pilot with no auto-renewal. Per-prospect personalized URLs (/start/[slug]) show each prospect their name + specialty-tuned copy + pre-seeded numbers.
  • **Try Riley live at /try-riley-voice** — per-specialty phone-demo numbers (endo / ortho / cosmetic / implant / perio / pedo). Prospects dial in and talk to Riley as if they're patients.
  • **This-week hero card on /overview** — calls captured, revenue recovered, staff hours saved, fumbles. Sparklines + WoW deltas + baseline-comparison row showing pre-Riley lift.
  • **Weekly Friday 5pm ET digest email** — auto-sends each pilot owner their week's numbers + top 3 recovered-revenue wins. Zero work for them, zero work for us.
  • **Cross-practice anonymized benchmarks** — new Peer Benchmarks card on /overview. k-anonymity ≥5 practices per specialty before percentiles surface.
  • **Riley evolution stack**: weekly A/B prompt auto-winner cron (two-proportion z-test, p<0.05), sentiment-routed escalation endpoint, offer-time-window optimizer, pre-warm Vapi cron, cross-tenant LLM cache bug fix.
  • **Onboarding friction killed**: practice-website scraper (paste URL → Riley's knowledge base populated), PDF-upload ingest via Gemini, specialty-template clone (22 pre-baked facts across 6 specialties), Vapi number + assistant auto-provisioning endpoint.
  • **Sales funnel hardening**: post-booking SMS one-tap confirm (reply C/R/X), auto-record + 15-min delayed demo-recording email, pilot scoreboard share URLs.
  • **Security**: Vapi webhook HMAC + idempotency event log + ±5min replay window, Anthropic fallback in LLM gateway with prompt-caching directive, Web Push service worker + VAPID registry.
  • 9 new Supabase tables, 15+ new API routes, 10+ new libraries, all RLS service-role-only. Vercel crons expanded to 13 (hobby-daily-compatible).
Apr 16, 2026Product

Run-Your-Office launch + multi-tenant isolation + customer signin flow

  • **New tier launched today — Run-Your-Office.** PracticeIQ now handles the repetitive work across your entire front office at a flat monthly fee (priced per practice). Reception + insurance + billing + collections + case coordination under one contract. Typical practice reallocates ~$100K/yr of staff time into growth work. Live at /services/full-service with a real-time calculator. 30-day parallel pilot with walk-away clause.
  • Revenue Cycle Management dashboard (/rcm) — eligibility, claims, payments, financing aggregated into one view.
  • Provider Productivity Scorecard (/scorecard) — per-associate case acceptance %, $/chair-hour, utilization, no-show rate. Red flags surface automatically with coaching advice. Nobody else in dental has this.
  • Financing origination (/financing) — Cherry, Sunbit, CareCredit, Proceed integrations wired. 2% of every originated dollar flows back to the practice as recurring passive revenue.
  • Multi-tenant data isolation shipped: all PHI API routes now filter by clinic_id from HMAC-signed cookie. Fail-closed: no scope → demo data only. No possibility of cross-customer data leak.
  • Customer signin flow: /api/admin/mint-session generates signed signin URLs · customers click → automatic session creation → scoped to their own clinic's data. Founder admin at /tools/customers to mint sessions and manage customers.
  • CSV patient import now actually saves to the database: /api/onboarding/import batch-inserts up to 5,000 patient rows scoped to the signed-in clinic, audit-logged.
  • Supabase migrations applied in production: eligibility_checks + provider_metrics tables with RLS, service-role-only policies, anon denied.
  • Public pages updated: /product now shows Run-Your-Office + RCM + Scorecard as top three features. /faq gained 4 new Q&A covering BPO handoff logic, parallel-pilot mechanics, existing-RCM-contract transition, and customer staff access.
  • Sitemap expanded to 40 URLs (was 32) including /services/full-service + all 8 vs/* competitor comparison pages for better Google coverage.
Apr 16, 2026Platform

DSO infrastructure + SOC 2 dashboard + referring-GP closeout + real encryption

  • Multi-location DSO model live: organizations → clinics → locations → pms_connections. Routes inbound by phone number or widget ID.
  • 5 direct PMS adapters now production-shaped: Dolphin, DSN, Open Dental, NexHealth, CareStack. Each with ping(), createAppointment(), findPatient(), idempotency keys, and 10s timeouts.
  • Riley speaks 7 languages with pattern-based detection: English, Spanish, Portuguese, Chinese, Vietnamese, Korean, Arabic. Deep conversation playbooks for es + pt (severity triage, scheduling, insurance, caregiver, handoff).
  • SOC 2 Type 1 control matrix — 35 controls catalogued across CC/A/PI/C/P. Internal dashboard at /tools/soc2 shows current readiness (~70%). Daily auto-evidence collection writes to soc2_evidence table.
  • AES-256-GCM envelope encryption for PMS credentials: per-secret DEK wrapped by KEK, tamper-detecting auth tags, version byte for rotation.
  • Referring-provider closeout flow: tracks GP referrers + auto-sends HIPAA-safe closeout emails at 5 stages (booked → consulted → started_treatment → completed → passed). Drives 2x referrals over 12 months.
  • New customer dashboards: /locations (DSO rollup), /reviews (gated review flow), /referrals (GP CRM).
  • New public pages: /for/dsos landing page, deep /trust page with 15-item security posture.
Apr 16, 2026Sales

Demo mode picker — solo practice vs multi-location DSO

  • Signin now routes to /demo-select where sales + prospects pick which view of the product to see.
  • Solo mode: Dr. Martinez single-practice mock data (Overview, Appointments, Riley chat).
  • DSO mode: Orchid Dental Partners 4-location network with realistic per-location stats rolled up on /locations.
  • Switch demo mode anytime via sidebar — supports mid-pitch toggling between both.
  • Back-to-public-site link on every gated dashboard page (sidebar + top bar).
Apr 16, 2026Product

Customer outreach + reviews + automation

  • Campaign builder at /outreach — 6 built-in templates (recall, reactivation, birthday, referral_thankyou, new_service, winback).
  • Audience segmentation by last-visit window, insurance, consent flags. Every send respects consent + unsubscribe list.
  • Review gate at /reviews — patients rate 1-5; 4-5 stars route to Google, 1-3 stars come to clinic first.
  • Unsubscribe flow at /unsubscribe — TCPA + CAN-SPAM compliant.
  • 3 daily cron jobs: rating requests, campaign batches, weekly auto-recall. Plus SOC 2 evidence + referral closeouts.
Apr 15, 2026Product

Payment live + major site updates

  • Checkout flow live end-to-end: /checkout plan picker, /checkout/[plan] forms, Stripe Checkout sessions, Stripe webhook with signature verification + idempotency + audit logging.
  • New pages: /roi calculator, /trust, /status, /for/orthodontists, /for/implant-surgeons, /for/cosmetic-dentists, /vs/weave, /vs/smith-ai, /vs/peerlogic, /blog with 3 initial posts.
  • Lead capture API at /api/leads replacing the mailto form on pricing. Supabase-backed with Slack webhook support.
  • Voice demo embed on the home page (waveform scrub + play button). Falls back to the live number when the sample isn't available.
  • Post-payment onboarding wizard at /onboarding/welcome — 4 steps, progress bar.
Apr 15, 2026Product

Rule 218, 219, 220 applied

  • Every public page now exports unique metadata (title/description/canonical/OG) via sibling layout.tsx.
  • Appointments page shows multi-provider schedule with a Demo data badge. Top-bar avatar replaced the ambiguous 'DM' with a clear Demo viewer indicator.
  • Announcement bar no longer says 'PracticeIQ 2.0' — honest versioning only.
Apr 15, 2026Platform

Supabase schema foundations

  • Created clinics table (30 cols) with RLS locked to service role.
  • Created webhook_events table with unique (provider, event_id) constraint for idempotency. Used by Stripe, Vapi, Twilio handlers.
  • Added stripe_session_id, stripe_customer_id, and plan columns to clinics.
Apr 14, 2026Security

HIPAA-aligned audit log + demo gate

  • audit_log table live with RLS + 6-year retention.
  • Every PHI-touching API route writes to audit_log through a shared helper.
  • Demo gate middleware: /overview, /dashboard, /appointments, /intake, /outreach, /widget, /voice, /onboarding, /tools are all gated.
  • Compliance visibility: /security, /legal/subprocessors, /privacy, /legal/terms all published.
Apr 14, 2026Sales

Core site + brand

  • Home, pricing, product, integrations, FAQ, about pages.
  • Pricing locked to ICP-tier structure: Solo specialty, 60-day DSO pilot, Specialty DSO.
  • JSON-LD Organization + Product + FAQ schemas.