Python in Healthcare

Python is featured among the most popular programming languages in the world. However is Python programming the good idea for the healthcare software development?

Python overtook PHP Python overtook PHP for the first time in five years, according to the Stack Overflow Developer Survey 2017 (36,625 responses primarily from the USA)

Python Safety: is Python a safe language?

Data security (patient privacy) has become especially critical to the healthcare industry with the adoption of electronic health records (EHR). Is Python a safe language for building healthcare apps? Or maybe there are more secure programming languages?

If you are trying to figure out what is the most secure programming language, you are probably on the wrong path. All programming languages are not secure. An application becomes secure when the developer adopting the best practice and best security policies and techniques. 

The more a programming language is popular the more it is safe because the more security vulnerabilities are widely known and the more of them could be fixed by professional Python developers.

According to Enrico Branca, the Cyber Security Researcher, the Leader of the “OWASP Python Security Project”: "Python is a powerful and easy to learn language BUT has to be used with care. There are no limits or controls in the language, this is the responsibility of the coder to know what can be done and what to avoid."

Django was first released in July 2005 (12+ years ago). It is a Python-based framework that is widely used for the creation of web applications, including medical apps. A good Django dev is a good Python dev. Django simplifies the creation of web application by reducing the amount of trivial code that your developer needs to write. Django provides a solid list of built-in modules (packages for the admin interface, user authentication, chat functionality etc.) so you don’t have to create them yourself. Django provides built-in protection against the three main types of web app attacks (SQL injection, XSS, and CSRF). Using Django security best practices, you can be sure in safety of your healthcare app.

Flask is a Python-based microframework primarily for building API but it can be extended to the full-stack framework with the help of existing extensions. Flask has fewer users than Django and requires more time for the configuration. Flask is often used for building prototypes because you can get going much more quickly with it. Which framework is easier to secure? Django. 

Python / Django and HIPAA

As a rule, development of a medical software application is associated with handling medical data that needs to be protected under the HIPAA compliance requirements. Are Python and Django or other Python-based frameworks secure enough to be HIPAA compliant? In fact, the HIPAA is a checklist that does not depend on a programming language or a framework.

  • "You want to provide your clients the assurance that the information being presented is meeting the HIPAA requirements. This is not entirely a Django/Python implementation, but falls in line with the Database back-end support".
  • "HIPAA factors like "how you store your data" and "how often sysadmins review logs" and "what the access control policies at the data center are" will probably play a bigger role than which programming framework you use, so you need to make sure to have good answers to those questions".
  • "There are about 100 individual checkboxes that you'll need to hit to be HIPAA compliant. Approximately 90% of the requirements can be satisfied by having good engineering/risk management practices and documenting them. For example, one requirement is that you need to have a formal policy on use of patient information" (Patrick McKenzie).

Healthcare startups that use Python

  • Roam Analytics is a healthcare startup company with headquarters in San Mateo, Silicon Valley, San Francisco Bay Area. Total Funding Amount: $21,864,162 (Blumberg Capital is the main investor). Roam is a proprietary artificial intelligence platform. According to the official description, "Roam’s machine learning and data platform powers rich analysis of patient journeys to reveal the factors affecting treatment decisions and outcomes. The Roam platform is powered by machine learning and a proprietary data asset called the Health Knowledge Graph. The Health Knowledge Graph converts billions of disparate, often unstructured, data elements into a coherent picture of healthcare. The relationships and information captured in the Graph are continuously enriched using machine learning and natural language processing to extract more information, and by making connections to new data sources. The result is a comprehensive view of the healthcare industry that allows life sciences companies to follow information instead of instincts when seeking to improve patient outcomes". As of November 2017, Roam Analytics  is looking for a Senior Backend/API Engineer with key qualification "experience with Python-based server frameworks is a huge plus (Flask, Django)" and Machine Learning Platform Engineers for "designing, developing, and improving the machine learning platform for the Roam Health Knowledge Graph using application programming with Python". 
  • AiCure is an NIH and VC-funded healthcare New York-based startup. AiCure raised $19.25 Million for its app that automates the process of ensuring that patients are taking their medicine at the appropriate time. AiCure is combining mobile technology with Artificial Intelligence (Computer Vision, Machine Learning, Big Data). For example, their apps use computer vision to identify the patient (using face recognition), verify that patients are taking the right medication (pill recognition), and that they are actually taking their medication (action recognition). As of November 2017,  they are looking for a Backend Software Engineer with "experience developing backend applications using popular open source frameworks, such as ROR, Django, Java Spring" for backend services and dashboard products, a computer vision research engineer with "strong coding experiences in at least two of: C++, Lua, Java, or Python" and a Computer Vision Research Scientist with "solid skills in developing prototypes, software engineering (C++, Python, Java, etc.), and running experiments at-scale" to invent and implement new algorithms and methods to perform the computer vision tasks, a Full Stack Engineer with "strong experiences with at least one application framework (ROR, Django, NodeJS, and etc.)."
  • Drchrono is a healthcare startup company with headquarters in Silicon Valley, California. Drchrono offers a healthcare EHR and practice management platform with features focused on iPads, iPhones, and the web. Drchrono is ranked by INC 500 as one of the fastest growing private companies in America. Total Funding Amount: $18,725,000. Drchrono app uses Python / Django tech stack.
  • Qventus (analyticsMD), a startup with a predictive intelligence software platform, is from Mountain View (California, United States). Total Funding Amount: $15,120,000. Qventus’ machine-learning based forecasting techniques enable hospitals to predict patient volumes and optimally allocate resources – such as staff, beds, and rooms. As of November 2017,  Qventus is looking for a Front End Engineer with "6-8+ years of professional experience working with modern programming languages such as Java, C/C++ or Python", a Full Stack Engineer with experience working with "front end visualization stacks such as Django, backbone.js, Coffeescript/Javascript, HTML5 and CSS3" and a Backend Engineer with "5-10+ years of professional experience working with modern programming languages such as Java, C/C++, Python and SQL".
  • Sempre Health is a healthcare startup company with headquarters in San Francisco, California.  Sempre raised a $2.5M seed round in 2016 from Social Capital, a top-tier Silicon Valley investor in consumer healthcare. Using SMS, Sempre app works with pharmacy benefit managers to inform patients about discounts on their prescriptions (For example, a patient might get a text that says ‘if you pick up your prescription this week you pay just $20, if you wait until next week it’ll go back up to $30.’). Sempre Health Cofounder and CEO Anurati Mathur explained the company’s technology: "We expose this data to our partners via a web dashboard which updates in near real-time as well. Additionally, we’ve built a sophisticated SMS management product, which can tag, parse and learn about how best to communicate with each patient, including best times to text, language to use, etc". Sempre program's technology includes GUI-based tool for engaging patients, handling inbound communications, and triggering events (Python + React); Internal, web-based patient management tool (Node + React); Customer-facing, web-based dashboard (Node + React); Backend services to integrate with pharmacy switches and calculate the optimal price for each patient (Python); Services to send / receive messages via Twilio and Mandrill (Python + Node). As of November 2017,  they are looking for a Software Engineer, who "can build using Python, React, or Node (if you know one, you can quickly ramp up on others)".
  • Fathom Health is a healthcare startup company with headquarters in San Francisco, California. Fathom is a deep learning NLP (Natural language processing) system created to read, structure, and understand electronic health records. The startup is backed by Google Ventures, 8VC, and Stanford, as well as founders and early employees from companies like Google, Dropbox, Airbnb, and athenahealth. As of November 2017, Fathom Health is looking for a Full-Stack Engineer "who bring familiarity with API programming, such as Flask" and Data Engineers "who have experience with Python’s NLTK".
Never miss a post! Share it!

Written by
Deputy Business Development Director at Belitsoft
I am a customer’s advocate and a manager of several key accounts.
4 reviews

Rate this article


Truck Load Tracking Web Application
Truck Load Tracking Web Application
Our client is a software product company from the USA. They came to us with an idea of a truck load tracking web application (a custom trucking tracking). The target audiences of the application are customers from transportation freight industry, which need tracking trucks with their goods in real time from any smart device.
Custom Magento Extensions Development
Custom Magento Extensions Development
The series of Magento product catalog management extensions made by our Magento developers for facilitating sales and customers’ satisfaction growth.

Our Clients' Feedback

Let's Talk Business
Do you have a software development project to implement? We have people to work on it. We will be glad to answer all your questions as well as estimate any project of yours. Use the form below to describe the project and we will get in touch with you within 1 business day.
Contact form
We will process your personal data as described in the privacy notice
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply
Call us

USA +1 (917) 410-57-57

UK +44 (20) 3318-18-53

Email us

[email protected]


13-103 Elektoralnaya st,
00-137 Warsaw, Poland

to top