Viewing Patient Data
Access patient check-ins, symptoms, and health trends through the dashboard or API.
Viewing Patient Data
Once a patient has accepted your grant invitation and shared specific data types, you can view their health data through the dashboard or directly via the API.
All access is audit-logged and can be reviewed by the patient. Every time you view patient data — whether through the dashboard or the API — a timestamped record is created that the patient can inspect.
What You Can Access
Access is scoped by permission type. A patient can grant you access to each category independently.
Requires: check_ins grant permission
When granted, you can see:
| Field | Description |
|---|---|
| Mood | Daily mood score, 1–5 |
| Energy | Daily energy score, 1–5 |
| Focus | Daily focus score, 1–5 |
| Sleep hours | Hours slept the previous night |
| Step count | Steps logged for the day |
| Journal note | Patient's optional free-text note |
| Check-in timestamp | When the check-in was completed |
Wearable biometric data (heart rate, HRV, SpO2, sleep stages) is also included when the patient has a wearable connected.
Requires: symptoms grant permission
When granted, you can see:
| Field | Description |
|---|---|
| Symptom name | What the patient named the symptom |
| Severity | mild, moderate, severe, or critical |
| Onset date | When the symptom started |
| Resolution date | When it resolved (if resolved) |
| Status | Active or resolved |
| Notes | Patient's freeform notes on the symptom |
Requires: medications grant permission
When granted, you can see:
| Field | Description |
|---|---|
| Medication name | As entered by the patient (includes dosage if they included it) |
| Dosage | Per-administration dose |
| Frequency | How often it's scheduled |
| Start date | When the patient began this medication |
| End date | If it's a finite course |
| Adherence logs | Per-day dose logs: taken, skipped, or missed |
| Adherence % | 7-day, 30-day, and all-time rates |
Data Freshness
Patient data in the dashboard is real-time. When a patient submits a check-in, it appears in your view immediately. There is no batch processing delay.
API responses reflect the database state at request time — also real-time.
Date Range Filtering
All patient data endpoints accept a days query parameter to control the lookback window.
GET /api/v1/grants/patient/{id}/check-ins?days=90- Default: 30 days
- Maximum: 365 days
- Minimum: 1 day
For the dashboard, use the date range picker in the top-right of any patient detail view.
Audit Trail
Every data access is logged automatically. The audit record includes:
- Which doctor accessed the data
- Which patient's data was accessed
- What data type (check-ins, symptoms, medications)
- The timestamp of the access
- The requesting IP address
Patients can review this log from Profile → My Doctors → [Doctor Name] → Access History. This transparency is intentional — it builds trust and ensures accountability.
Do not use the API to bulk-fetch patient data for purposes not directly related to that patient's care. Patients review audit logs, and unexpected access patterns may prompt them to revoke your grant.
When a Grant Is Revoked
If a patient revokes your grant (or it expires), all data access for that patient stops immediately. API calls return 403 Forbidden. The patient disappears from your dashboard patient list.
Previously accessed data is not deleted from your own systems if you retrieved it via the API — only future access is blocked.