Public Roadmap
Shipping out loud.
What's live, what's in progress, what's planned, and what we've explicitly deferred. Updated continuously. We'd rather miss a soft date than ship vapor.
How we use this page
- Done = in production, customer-visible
- In progress = actively being built, expected this quarter
- Planned = on the roadmap, scoped, not yet started
- Deferred = explicitly not on the near-term roadmap (with reasoning)
The roadmap
Q2 2026 — Now
Commercial launch foundation In progress
- Branded domain — live at carebridge.cloud Done
- Public pricing + trust pages — live Done
- Comparison pages — vs WellSky, vs AWARDS, vs CaseWorthy Done
- Customer-facing BAA template — published, ready for legal review Done
- Self-service signup + 14-day trial — agency creation flow, no admin handholding
- Stripe billing — Starter, Pro, Team, Enterprise tiers with annual discount
- Design partner program — first 5 agencies, 60-day free pilot, 50% off Year 1
Q3 2026 — Next
HIPAA hardening + SOC 2 Type I Planned
- Migrate to AWS HIPAA-eligible compute — RDS Postgres, ElastiCache Redis, S3 with Object Lock, KMS-managed encryption keys
- AES-256-GCM column encryption for SSN and DOB via KMS envelope
- Server-side session store — Redis-backed, properly revocable
- Postgres Row-Level Security — multi-tenant isolation enforced at DB level
- Encrypted backup pipeline — nightly pg_dump → S3 Object Lock with 7-year retention
- SOC 2 Type I attestation — Vanta + auditor engagement, report by end of Q3
- Annual third-party penetration test — first cycle
Q4 2026
FHIR interoperability + AI maturity Planned
- Foothold AWARDS FHIR integration — bulk import + bidirectional sync (Enterprise tier)
- Public consumer API — OpenAPI 3 spec, partner webhook support
- AI cost router — automatic model selection per task type, transparent per-org cost telemetry
- Per-tenant AI lessons — agency-specific knowledge that improves the AI for your team
- Marketing director B2B content lane — automated blog + LinkedIn cadence
Q1 2027
Enterprise readiness Planned
- SOC 2 Type II report — operating-effectiveness window completes
- SSO (SAML / OIDC) — enterprise identity provider integration
- Custom retention policies per agency / contract
- White-labeling for partner deployments
- Additional EHR integrations — Netsmart myUnity, ClientTrack, MatrixCare via FHIR or SFTP
2027+
Long-horizon Planned
- HITRUST CSF certification — when enterprise customer demand justifies
- Customer-managed encryption keys (BYOK) — bring your own KMS keys
- Self-hosted deployment option — for agencies with on-prem requirements
- Multi-language support — Spanish first, then expand
- Mobile-native iOS / Android apps — beyond the current Telegram Mini App
Explicitly deferred
These come up in customer conversations. We've considered them and chosen NOT to build them on the near-term roadmap. We'd rather be honest than promise vapor.
- Native mobile apps (iOS / Android, no Telegram) — defer until 2027. Telegram + TMA is meeting the field-worker need. Adding native apps doubles platform maintenance for marginal benefit until volume justifies it.
- OASIS-E and Medicare hospice billing — defer indefinitely. Out of scope. We integrate with WellSky / Netsmart for that. Why →
- Heavy form builder / outcome reporting — defer to 2027. CaseWorthy and Apricot do this well already; we integrate rather than compete.
- Telephony / SMS workflows — defer. Telegram covers the chat surface; SMS adds carrier compliance complexity (10DLC, opt-in audits) for limited near-term value.
- European / EU deployment — defer. GDPR + EU Cloud Act + local data residency adds 3+ months of compliance work; defer until first paying EU customer asks.
Want something on the roadmap?
Customer feedback drives priority. If you're an active customer or design partner, your feature requests land in our weekly review and we publish decisions back to this page. Reach out →