Case Study

Secure Document Sharing Platform

A one-click secure document sharing system for a healthcare enterprise — replacing a manual, error-prone process with encrypted, time-limited, auditable access links powered by serverless architecture and AI validation.

C# / .NET Dynamics 365 Azure Functions Azure Blob Storage Azure OpenAI AES-256 Encryption JavaScript HTML / CSS

Problem CRM Form Pipeline Email Access AI Check Impact

Before The Manual Process

Case managers needed to share sensitive medical and legal documents with patients — but the existing process was insecure, manual, and unauditable.

🔓

No Encryption

Email attachments sent with zero protection — sensitive medical data exposed in transit and at rest.

♾️

No Expiry

Once emailed, documents lived in inboxes forever with no way to revoke access.

❓

No Audit Trail

No visibility into whether documents were accessed, by whom, or when.

🔧

Manual Workflow

Download, zip, password-protect, email separately, communicate password via another channel. Every single time.

Result: Compliance risk, wasted staff time, inconsistent security practices, and no accountability.

Step 1 Select & Share from the CRM

Staff select documents from the case record and click one button. That's all they do.

Summary

Case Documents

Notes

Document	Type	Date	Status
Medical Report - Dr. Wilson.pdf	Medical	15/01/2026	Active
Specialist Referral.pdf	Referral	22/01/2026	Active
Insurance Claim Form.pdf	Insurance	28/01/2026	Active

Step 2 The Automation Pipeline

Behind the scenes: a plugin calls an Azure Function that securely stores documents, generates an encrypted time-limited link, and queues a professional email — all in under 5 seconds.

CRM Form

Button Clicked

Custom API invoked

Server-Side

D365 Plugin

Validates & routes request

Serverless

Azure Function

Downloads files, uploads to Blob, generates encrypted link

↓ results flow back ↓

Storage

Azure Blob

Documents stored securely with session isolation

Security

Token Service

AES-256 encrypted token with DOB + expiry

Delivery

Email Activity

HTML email queued via server-side sync

Step 3 Patient Receives the Email

A professional HTML email with a secure link and clear instructions. The link expires in 24 hours.

Secure Documents Shared With You

From the healthcare provider's secure document system

Dear Patient,

Secure documents have been shared with you. Click the link below to access them.

You will be prompted for a password. Use your date of birth in DDMMYYYY format.

Access Your Documents

⚠ This link expires on Friday, 27 February 2026 at 14:00 UTC. After this time, the documents will no longer be accessible.

Step 4 Patient Verifies & Downloads

The patient verifies their identity with their date of birth. On success, they receive time-limited download links (1-hour SAS tokens). Wrong DOB? Access denied.

Identity Verification

Enter your date of birth to access your documents.

Day

Month

Year

Your Documents

Click a link below to download. Links are valid for 1 hour.

📄 Medical Report - Dr. Wilson.pdf 1.2 MB

📄 Insurance Claim Form.pdf 856 KB

If you did not request these documents, please contact the provider.

Bonus AI Document Validation

AI-powered validation using Azure OpenAI automatically checks uploaded documents against patient records — catching misfiled documents before they're shared.

Document Upload: Medical Report - Dr. Wilson.pdf

Uploaded to Case CAS-00284

⚙

AI is validating the document...

✅

AI Validation: MATCH

Document content matches the patient on file. Provider: Dr. Wilson. Report type: Medical Assessment. Confidence: 97%.

❌

AI Validation: MISMATCH

Document appears to belong to a different patient. Sharing blocked until manual review is completed.

Results Architecture & Impact

Enterprise-grade secure document sharing built on serverless Azure architecture with AI-powered safety checks.

D365 Plugin (C#)

Custom API with server-side validation and routing

Azure Functions

Serverless backend for file processing and link generation

Blob Storage

Session-isolated secure file storage with auto-cleanup

AES-256 Encryption

Token-based access with DOB verification and time expiry

Azure OpenAI

AI document validation against patient records

Server-Side Sync

HTML email delivery via CRM email queue

1-Click

Replaces a 6-step manual process

AES-256

Encrypted, DOB-protected access

24hr

Auto-expiring links + 1hr download windows

Misfiled document detection before sharing

Secure Share Complete

2 documents shared securely. Encrypted link sent to the patient via email.

One-Click Secure Sharing from the CRM

AES-256 encrypted, time-limited, DOB-verified access — with AI-powered document validation built in.