I need a lightweight, secure web application that lets a small clinic handle the essentials: add, update, and review patient profiles, store medical records, and schedule appointments on a calendar that staff can view at a glance. The system has to recognise three user roles—Admin, Doctor, and Assistant—and block anyone else with solid login and authentication. Day-to-day use will be from desktops in the reception area and tablets in consultation rooms, so the interface must resize smoothly across both. For each patient I want to capture personal information and medical history now, leaving insurance and other extras for a later phase. Consultation notes should accommodate both classic in-person visits and telemedicine sessions so we have a single record no matter how care is delivered. On the tech side I’m open, but please tell me which framework, database, and security approach you recommend, along with why you think it suits a scalable, modular build. A clean UI (Bootstrap, Tailwind, or something comparable), an API-friendly architecture, and a structure that lets me bolt on billing, pharmacy, and reporting modules later are all priorities. When you reply, include: • Your proposed tech stack and rationale • A high-level timeline with milestones • Any links or screenshots of similar health-related systems you have built If we nail this first phase, there will be follow-on work. Looking forward to your ideas.