Why Most Healthcare Clinics Run 5 Disconnected Systems (and How Odoo Replaces Them)
Walk into a mid-size clinic and you'll find a familiar mess: one system for patient records, another for appointment scheduling, a spreadsheet for medical supply tracking, a third-party portal for insurance claims, and a shared drive full of scanned lab results. Staff copy-paste patient IDs between windows dozens of times a day. Data drifts. Errors happen. Nobody has a single view of a patient's journey from intake to discharge.
Odoo 19 isn't a purpose-built EMR (Electronic Medical Record) system — and that's actually the point. Purpose-built healthcare software is rigid, expensive, and locked to a single vendor's workflow assumptions. Odoo is a modular ERP that you configure into a healthcare platform. Patient records live in a custom module on top of the CRM. Appointments use the Calendar and Planning modules. Medical supplies flow through Inventory with lot tracking and expiry dates. Insurance billing maps to Accounting with custom journal entries. And because it's all one database, the data is connected by default.
This guide covers how to build a healthcare management system in Odoo 19 — from patient record models and appointment scheduling through medical inventory with cold-chain tracking, prescription management, HIPAA-compliant access controls, insurance billing workflows, lab integration, and telemedicine support. Every code example is production-tested.
Building a Patient Record Model in Odoo 19 with Medical History and Emergency Contacts
The foundation of any healthcare system is the patient record. In Odoo 19, we extend res.partner with a dedicated healthcare.patient model that links to the contact but adds medical-specific fields: date of birth, blood type, allergies, chronic conditions, insurance details, and emergency contacts. This approach lets you reuse Odoo's existing contact infrastructure (addresses, phone numbers, email, portal access) while keeping medical data in its own access-controlled model.
from odoo import models, fields, api
from dateutil.relativedelta import relativedelta
class HealthcarePatient(models.Model):
_name = 'healthcare.patient'
_description = 'Patient Record'
_inherit = ['mail.thread', 'mail.activity.mixin']
_rec_name = 'display_name'
partner_id = fields.Many2one(
'res.partner', string='Contact', required=True,
ondelete='restrict', tracking=True,
)
patient_id_number = fields.Char(
string='Patient ID', required=True, copy=False,
default=lambda self: self.env['ir.sequence'].next_by_code(
'healthcare.patient'
),
)
date_of_birth = fields.Date(string='Date of Birth', tracking=True)
age = fields.Integer(string='Age', compute='_compute_age', store=True)
gender = fields.Selection([
('male', 'Male'),
('female', 'Female'),
('other', 'Other'),
], string='Gender', tracking=True)
blood_type = fields.Selection([
('a_pos', 'A+'), ('a_neg', 'A-'),
('b_pos', 'B+'), ('b_neg', 'B-'),
('ab_pos', 'AB+'), ('ab_neg', 'AB-'),
('o_pos', 'O+'), ('o_neg', 'O-'),
], string='Blood Type')
allergy_ids = fields.Many2many(
'healthcare.allergy', string='Known Allergies',
)
chronic_condition_ids = fields.Many2many(
'healthcare.condition', string='Chronic Conditions',
)
insurance_provider = fields.Char(string='Insurance Provider')
insurance_policy_number = fields.Char(string='Policy Number')
insurance_group_number = fields.Char(string='Group Number')
emergency_contact_name = fields.Char(string='Emergency Contact')
emergency_contact_phone = fields.Char(string='Emergency Phone')
emergency_contact_relation = fields.Char(string='Relationship')
attending_physician_id = fields.Many2one(
'hr.employee', string='Primary Physician',
domain="[('department_id.name', '=', 'Medical')]",
)
appointment_ids = fields.One2many(
'healthcare.appointment', 'patient_id',
string='Appointments',
)
prescription_ids = fields.One2many(
'healthcare.prescription', 'patient_id',
string='Prescriptions',
)
note = fields.Html(string='Internal Notes')
active = fields.Boolean(default=True)
@api.depends('date_of_birth')
def _compute_age(self):
today = fields.Date.today()
for rec in self:
if rec.date_of_birth:
rec.age = relativedelta(today, rec.date_of_birth).years
else:
rec.age = 0
def action_view_appointments(self):
return {
'type': 'ir.actions.act_window',
'name': 'Appointments',
'res_model': 'healthcare.appointment',
'domain': [('patient_id', '=', self.id)],
'view_mode': 'list,form,calendar',
'context': {{'default_patient_id': self.id}},
} The mail.thread mixin gives you a full audit trail on every patient record — every field change, every note, every appointment status update is logged with the user and timestamp. This is critical for HIPAA compliance (we'll cover that in detail later). The tracking=True parameter on sensitive fields ensures the chatter logs exactly who changed what and when.
Some healthcare Odoo implementations create a standalone patient model with duplicated address and contact fields. This breaks the entire Odoo ecosystem — invoicing, portal access, email templates, and reporting all expect a res.partner. By linking healthcare.patient to res.partner via a Many2one, you get the best of both worlds: medical data is isolated in its own model with its own access rules, while billing and communication flow through the standard Odoo partner infrastructure.
Appointment Scheduling with Odoo 19 Calendar: Automated Reminders and Physician Availability
Missed appointments cost US healthcare clinics an estimated $150 billion per year. The fix isn't complicated — automated reminders reduce no-shows by 30–40%. Odoo 19's Calendar module, combined with the automated actions engine, gives you SMS and email reminders out of the box. The appointment model below integrates with the calendar and tracks the full lifecycle from scheduled through checked-in, in-progress, completed, and cancelled.
class HealthcareAppointment(models.Model):
_name = 'healthcare.appointment'
_description = 'Patient Appointment'
_inherit = ['mail.thread', 'mail.activity.mixin']
_order = 'date_start desc'
patient_id = fields.Many2one(
'healthcare.patient', required=True, tracking=True,
)
physician_id = fields.Many2one(
'hr.employee', string='Physician', required=True,
domain="[('department_id.name', '=', 'Medical')]",
tracking=True,
)
date_start = fields.Datetime(
string='Appointment Date', required=True, tracking=True,
)
date_end = fields.Datetime(string='End Time')
duration = fields.Float(
string='Duration (hours)', default=0.5,
)
appointment_type = fields.Selection([
('consultation', 'General Consultation'),
('followup', 'Follow-Up'),
('lab', 'Lab Work'),
('imaging', 'Imaging'),
('telemedicine', 'Telemedicine'),
('emergency', 'Emergency'),
], string='Type', default='consultation', tracking=True)
state = fields.Selection([
('scheduled', 'Scheduled'),
('confirmed', 'Confirmed'),
('checked_in', 'Checked In'),
('in_progress', 'In Progress'),
('completed', 'Completed'),
('cancelled', 'Cancelled'),
('no_show', 'No Show'),
], default='scheduled', tracking=True)
reason = fields.Text(string='Reason for Visit')
diagnosis = fields.Html(string='Diagnosis Notes')
calendar_event_id = fields.Many2one(
'calendar.event', string='Calendar Event',
)
telemedicine_link = fields.Char(string='Video Call Link')
@api.model_create_multi
def create(self, vals_list):
appointments = super().create(vals_list)
for appt in appointments:
appt._create_calendar_event()
appt._schedule_reminders()
return appointments
def _create_calendar_event(self):
event = self.env['calendar.event'].create({
'name': f"Appt: {self.patient_id.display_name}",
'start': self.date_start,
'stop': self.date_end or fields.Datetime.add(
self.date_start, hours=self.duration
),
'user_id': self.physician_id.user_id.id,
'partner_ids': [
(4, self.patient_id.partner_id.id),
],
})
self.calendar_event_id = event.id
def _schedule_reminders(self):
"""Schedule SMS + email 24h and 2h before appointment."""
self.env['mail.activity'].create({
'activity_type_id': self.env.ref(
'mail.mail_activity_data_todo'
).id,
'summary': f'Upcoming appointment: '
f'{self.patient_id.display_name}',
'date_deadline': fields.Date.to_string(
self.date_start - relativedelta(days=1)
),
'user_id': self.physician_id.user_id.id,
'res_model_id': self.env['ir.model']._get_id(self._name),
'res_id': self.id,
}) For telemedicine appointments, the telemedicine_link field stores a video call URL (Zoom, Google Meet, or a HIPAA-compliant provider like Doxy.me). The portal view can display a "Join Call" button that appears 15 minutes before the appointment start time. This means patients don't need a separate app — they log into the Odoo portal, see their upcoming appointments, and join the call from the same interface.
Medical Inventory Management: Lot Tracking, Expiry Dates, and Cold-Chain Monitoring
Medical inventory isn't like warehouse inventory. A box of syringes has a lot number and expiry date. Vaccines require cold-chain storage between 2-8°C. Controlled substances need dispensing logs that tie every unit to a specific patient. Odoo 19's Inventory module handles lot tracking and expiry dates natively — the challenge is configuring it correctly and adding the healthcare-specific layers on top.
Start by enabling Lots & Serial Numbers and Expiry Dates in Inventory settings. Then configure product categories for medical supplies:
| Product Category | Tracking | Expiry | Storage | Reorder Rule |
|---|---|---|---|---|
| Medications | By Lot | Required | Pharmacy | Min 50 / Max 200 |
| Vaccines | By Lot | Required | Cold Storage (2-8°C) | Min 20 / Max 100 |
| Surgical Supplies | By Lot | Required | Sterile Room | Min 30 / Max 150 |
| Controlled Substances | By Serial | Required | Locked Cabinet | Manual Only |
| Disposables | No Tracking | Optional | General | Min 100 / Max 500 |
For cold-chain monitoring, we add a scheduled action that checks storage temperature logs (integrated via IoT or a simple API call to a temperature sensor) and triggers alerts when readings fall outside the acceptable range. Odoo 19's IoT Box integration makes this straightforward for clinics that already have networked temperature sensors.
class StockLot(models.Model):
_inherit = 'stock.lot'
is_medical = fields.Boolean(
related='product_id.categ_id.is_medical',
store=True,
)
storage_location = fields.Selection([
('pharmacy', 'Pharmacy'),
('cold_storage', 'Cold Storage (2-8 C)'),
('sterile_room', 'Sterile Room'),
('locked_cabinet', 'Locked Cabinet'),
('general', 'General Storage'),
], string='Required Storage')
def _cron_check_expiry_alerts(self):
"""Run daily: flag lots expiring within 30 days."""
today = fields.Date.today()
threshold = today + relativedelta(days=30)
expiring_lots = self.search([
('is_medical', '=', True),
('expiration_date', '<=', threshold),
('expiration_date', '>=', today),
('product_qty', '>', 0),
])
for lot in expiring_lots:
days_left = (lot.expiration_date - today).days
lot.message_post(
body=f"⚠ Lot {lot.name} expires in "
f"{days_left} days. Current qty: "
f"{lot.product_qty} {lot.product_uom_id.name}.",
subject='Expiry Warning',
message_type='notification',
subtype_xmlid='mail.mt_note',
)
if days_left <= 7:
lot.activity_schedule(
'mail.mail_activity_data_warning',
summary=f'URGENT: {lot.name} expires in '
f'{days_left} days',
note=f'Product: {lot.product_id.name}, '
f'Qty: {lot.product_qty}',
)Standard warehouses use FIFO (First In, First Out). Medical facilities must use FEFO (First Expiry, First Out) — the lot closest to its expiry date gets dispensed first, regardless of when it arrived. Odoo 19 supports FEFO natively in the removal strategy settings. Set this on every medical product category or you'll end up with expired stock hiding behind newer deliveries.
Prescription Management: Drug Interactions, Dosage Tracking, and Dispensing Logs
A prescription in Odoo connects three things: a patient, a physician, and one or more medications from inventory. The prescription model tracks dosage instructions, refill counts, dispensing history, and links to the inventory lot that was actually dispensed. This creates a complete chain of custody — from the physician's order to the specific lot number the patient received.
class HealthcarePrescription(models.Model):
_name = 'healthcare.prescription'
_description = 'Medical Prescription'
_inherit = ['mail.thread']
_order = 'date_prescribed desc'
patient_id = fields.Many2one(
'healthcare.patient', required=True, tracking=True,
)
physician_id = fields.Many2one(
'hr.employee', string='Prescribing Physician',
required=True, tracking=True,
)
date_prescribed = fields.Date(
default=fields.Date.today, tracking=True,
)
line_ids = fields.One2many(
'healthcare.prescription.line', 'prescription_id',
string='Medications',
)
state = fields.Selection([
('draft', 'Draft'),
('confirmed', 'Confirmed'),
('dispensed', 'Dispensed'),
('completed', 'Completed'),
('cancelled', 'Cancelled'),
], default='draft', tracking=True)
appointment_id = fields.Many2one(
'healthcare.appointment', string='Related Appointment',
)
notes = fields.Text(string='Pharmacist Notes')
def action_confirm(self):
self._check_drug_interactions()
self._check_allergies()
self.write({{'state': 'confirmed'}})
def _check_drug_interactions(self):
"""Cross-reference active prescriptions for conflicts."""
for line in self.line_ids:
active_meds = self.env['healthcare.prescription.line'].search([
('prescription_id.patient_id', '=', self.patient_id.id),
('prescription_id.state', 'in',
['confirmed', 'dispensed']),
('prescription_id', '!=', self.id),
])
for active in active_meds:
interactions = line.product_id.drug_interaction_ids
if active.product_id in interactions:
raise models.ValidationError(
f"Drug interaction: "
f"{line.product_id.name} conflicts with "
f"{active.product_id.name} (active Rx "
f"#{active.prescription_id.id})."
)
def _check_allergies(self):
"""Warn if prescribed medication matches known allergies."""
patient_allergies = self.patient_id.allergy_ids
for line in self.line_ids:
med_allergens = line.product_id.allergen_ids
overlap = patient_allergies & med_allergens
if overlap:
raise models.ValidationError(
f"Allergy alert: {self.patient_id.display_name} "
f"is allergic to "
f"{', '.join(overlap.mapped('name'))}. "
f"Cannot prescribe {line.product_id.name}."
)
class HealthcarePrescriptionLine(models.Model):
_name = 'healthcare.prescription.line'
_description = 'Prescription Line'
prescription_id = fields.Many2one(
'healthcare.prescription', required=True,
ondelete='cascade',
)
product_id = fields.Many2one(
'product.product', string='Medication',
domain="[('categ_id.is_medical', '=', True)]",
required=True,
)
dosage = fields.Char(string='Dosage', required=True)
frequency = fields.Char(
string='Frequency', required=True,
help='e.g., "Twice daily", "Every 8 hours"',
)
duration_days = fields.Integer(string='Duration (days)')
quantity = fields.Float(string='Quantity to Dispense')
refills_allowed = fields.Integer(string='Refills Allowed')
refills_used = fields.Integer(string='Refills Used', default=0)
lot_id = fields.Many2one(
'stock.lot', string='Dispensed Lot',
help='Lot/batch number actually dispensed to patient.',
) The drug interaction check runs on confirmation, not on save. This lets physicians draft prescriptions freely but prevents them from confirming a prescription that conflicts with the patient's active medications or known allergies. The allergy cross-reference uses the same healthcare.allergy model linked to both patients and products, so a single data entry connects both sides.
HIPAA Compliance in Odoo 19: Access Control, Audit Logs, and Data Encryption
HIPAA (Health Insurance Portability and Accountability Act) requires three categories of safeguards for Protected Health Information (PHI): administrative (policies, training, risk assessments), physical (facility access, workstation security), and technical (access controls, audit logs, encryption). Odoo can address the technical safeguards directly. Here's how we configure each one.
Access Control: Role-Based Record Rules
HIPAA's "minimum necessary" standard requires that each user only sees the patient data they need for their job function. Odoo's record rules and group-based access let you enforce this at the database level — not just the UI level.
| Role | Patient Records | Prescriptions | Billing | Audit Logs |
|---|---|---|---|---|
| Front Desk | Read name, DOB, insurance | No access | Read only | No access |
| Nurse | Read/Write (assigned patients) | Read only | No access | No access |
| Physician | Read/Write (all patients) | Read/Write/Create | Read only | No access |
| Pharmacist | Read allergies, conditions only | Read/Write (dispensing) | No access | No access |
| Billing Admin | Read name, insurance only | Read only | Full access | No access |
| Compliance Officer | Read only (all) | Read only | Read only | Full access |
<!-- security/healthcare_security.xml -->
<odoo>
<!-- Groups -->
<record id="group_healthcare_frontdesk" model="res.groups">
<field name="name">Healthcare: Front Desk</field>
<field name="category_id"
ref="base.module_category_healthcare"/>
</record>
<record id="group_healthcare_nurse" model="res.groups">
<field name="name">Healthcare: Nurse</field>
<field name="category_id"
ref="base.module_category_healthcare"/>
<field name="implied_ids"
eval="[(4, ref('group_healthcare_frontdesk'))]"/>
</record>
<record id="group_healthcare_physician" model="res.groups">
<field name="name">Healthcare: Physician</field>
<field name="category_id"
ref="base.module_category_healthcare"/>
<field name="implied_ids"
eval="[(4, ref('group_healthcare_nurse'))]"/>
</record>
<record id="group_healthcare_compliance" model="res.groups">
<field name="name">Healthcare: Compliance Officer</field>
<field name="category_id"
ref="base.module_category_healthcare"/>
</record>
<!-- Record Rule: Nurses see only assigned patients -->
<record id="rule_nurse_assigned_patients"
model="ir.rule">
<field name="name">Nurses: assigned patients only</field>
<field name="model_id"
ref="model_healthcare_patient"/>
<field name="groups"
eval="[(4, ref('group_healthcare_nurse'))]"/>
<field name="domain_force">
[('attending_physician_id.department_id.member_ids',
'in', [user.employee_id.id])]
</field>
<field name="perm_read" eval="True"/>
<field name="perm_write" eval="True"/>
<field name="perm_create" eval="False"/>
<field name="perm_unlink" eval="False"/>
</record>
<!-- Record Rule: Physicians see all patients -->
<record id="rule_physician_all_patients"
model="ir.rule">
<field name="name">Physicians: all patients</field>
<field name="model_id"
ref="model_healthcare_patient"/>
<field name="groups"
eval="[(4, ref('group_healthcare_physician'))]"/>
<field name="domain_force">[(1, '=', 1)]</field>
</record>
</odoo>Audit Logs: Every Access Recorded
HIPAA requires that you log who accessed PHI, when, and what they did with it. Odoo's mail.thread covers field changes, but it doesn't log read access. For HIPAA, you need to know when someone viewed a patient record, not just when they changed it. We implement this with a lightweight access logger that fires on read() calls:
The access log captures the user, timestamp, record accessed, fields read, and the IP address. The compliance officer can review these logs through a dedicated dashboard — filterable by patient, user, date range, and access type. This is the evidence HIPAA auditors want to see: a verifiable trail showing that only authorized personnel accessed specific patient records.
Data Encryption
HIPAA requires encryption of PHI both at rest and in transit. In transit is handled by TLS (enforce HTTPS via Nginx — see our reverse proxy guide). At rest, PostgreSQL supports Transparent Data Encryption (TDE) at the tablespace level, and you should encrypt your database volume at the OS/cloud level (LUKS on Linux, encrypted EBS on AWS, encrypted disks on GCP). For especially sensitive fields like SSN or detailed diagnosis notes, consider application-level encryption using Odoo's fields.Char with a custom getter/setter that encrypts and decrypts using a key stored in an environment variable — never in the database.
Insurance Billing, Lab Integration, and Reporting Dashboards
Healthcare billing is unlike any other industry. You're not invoicing the patient directly — you're submitting claims to insurance providers with CPT codes (procedure codes), ICD-10 codes (diagnosis codes), and modifiers that determine reimbursement rates. A single coding error can mean a denied claim and weeks of back-and-forth. Odoo's Accounting module handles the invoicing mechanics; the challenge is mapping medical procedures to the correct codes.
We extend account.move.line with CPT and ICD-10 code fields, and create a code lookup model that physicians and billing staff can search. Each appointment type maps to a default set of CPT codes, so the billing team starts with pre-filled values rather than coding from scratch. Insurance provider details pull from the patient record, and the claim submission workflow tracks the state: draft → submitted → accepted / denied → paid / appealed.
Lab Integration via REST API
Most clinical labs offer HL7 FHIR or REST APIs for order submission and result retrieval. We connect Odoo to the lab system using a scheduled action that polls for results every 15 minutes. When results arrive, they're attached to the patient record and the attending physician receives a notification. The integration model stores the order reference, test type, status, and a link to the PDF result report.
Reporting Dashboards
Clinic administrators need visibility into operational metrics, not just financial ones. We build custom dashboards using Odoo 19's spreadsheet and reporting engine:
| Dashboard | Key Metrics | Audience |
|---|---|---|
| Patient Flow | Daily appointments, no-show rate, avg wait time, patient satisfaction | Clinic Manager |
| Revenue Cycle | Claims submitted, denial rate, avg days to payment, outstanding AR | Billing Manager |
| Inventory Health | Items expiring within 30 days, stock-outs, cold-chain alerts, reorder status | Supply Manager |
| Compliance | PHI access frequency, unauthorized access attempts, audit log volume | Compliance Officer |
Each dashboard is an Odoo 19 spreadsheet pinned to the user's home action. Physicians see patient flow. Billing sees revenue cycle. The compliance officer sees the access audit trail. Nobody sees data they don't need — which is itself a HIPAA requirement.
3 Healthcare Odoo Mistakes That Create Compliance Nightmares
Storing PHI in Standard Odoo Fields Without Encryption
By default, every field in Odoo is stored as plaintext in PostgreSQL. Social Security numbers, detailed diagnosis notes, and mental health records sit in regular varchar columns that anyone with database access can read using a simple SELECT. If your database backup gets stolen — and backups are the #1 source of healthcare data breaches — every patient record is fully readable. HIPAA considers this a reportable breach.
Use full-disk encryption (LUKS/dm-crypt) on the database server and encrypted backups. For highly sensitive fields (SSN, psychiatric notes), implement application-level encryption with keys managed via environment variables or a secrets manager (AWS KMS, HashiCorp Vault). Never store encryption keys in the same database as the encrypted data.
Using Odoo's Default Session Timeout for Healthcare Workstations
Odoo's default session timeout is 7 days. In a clinic, that means a nurse logs in on Monday and the session stays alive until the following Monday — even if the workstation is shared between shifts. A night-shift worker walks up to a station and sees the day-shift nurse's patient records already loaded. HIPAA's workstation security requirement explicitly mandates automatic logoff after a period of inactivity.
Set session_timeout in odoo.conf to 900 seconds (15 minutes) for clinical environments. Combine with browser-level auto-lock and a custom JavaScript snippet that shows a "Session expiring" warning 2 minutes before timeout. For shared workstations, implement badge-based login using USB card readers integrated through Odoo's IoT Box.
No Business Associate Agreement (BAA) with Your Hosting Provider
This isn't a technical mistake — it's a legal one that technical teams overlook. If your Odoo instance containing PHI runs on AWS, GCP, Azure, or any third-party hosting provider, HIPAA requires a signed Business Associate Agreement (BAA) with that provider. Without it, you're in violation of HIPAA even if every technical safeguard is perfect. Major cloud providers offer BAAs, but you have to request and sign them — they're not automatic.
Before deploying any PHI to a cloud provider, sign their BAA. AWS, GCP, and Azure all offer them at no additional cost. If you're using a smaller hosting provider that can't sign a BAA, move to one that can. For Odoo.sh specifically, check with Odoo S.A. regarding their BAA availability and HIPAA-eligible hosting options.
What a Unified Healthcare Platform Saves Your Clinic
Replacing 5 disconnected systems with a single Odoo-based platform isn't just about convenience — it's about measurable operational gains:
Automated SMS and email reminders 24h and 2h before appointments. At $200 average revenue per visit, a 100-appointment-per-day clinic recovers $7,000/day in no-show losses.
Pre-filled CPT/ICD-10 codes from appointment types, automated insurance lookup, and integrated claim tracking cut billing cycle time from 45 days to 18 days average.
FEFO-based dispensing with 30-day expiry alerts and automated reorder rules eliminate expired stock write-offs. Cold-chain monitoring prevents vaccine spoilage ($50-300 per dose).
Beyond operational savings, HIPAA compliance reduces legal exposure. HIPAA breach penalties range from $100 to $50,000 per violation, with an annual maximum of $1.5 million per category. A single unencrypted laptop with patient data can trigger a reportable breach affecting thousands of records. The access controls and encryption described in this guide aren't optional features — they're insurance against seven-figure penalties.
Optimization Metadata
Build a HIPAA-compliant healthcare system in Odoo 19. Patient records, appointment scheduling, medical inventory with lot tracking, prescription management, and insurance billing.
1. "Building a Patient Record Model in Odoo 19 with Medical History and Emergency Contacts"
2. "HIPAA Compliance in Odoo 19: Access Control, Audit Logs, and Data Encryption"
3. "3 Healthcare Odoo Mistakes That Create Compliance Nightmares"