What We've Built | PivotalPoint.io

How These Platforms Help Clients

Battle-tested patterns for multi-tenant architectures, RBAC, and compliance across Firebase, Cloud Run, and Terraform-managed GCP.
Operational maturity baked in: CI/CD, automated bootstrap scripts, observability, and admin tooling ship with every engagement.
Specialized domains (healthcare billing, onboarding guides) layered on top of the same hardened core so we can deliver faster without sacrificing quality.

SaaS Scaffold · Next.js + Express + Terraform

Loma — Production-Ready Foundation

Loma is our base platform for shipping multi-tenant SaaS. It includes a Next.js (App Router) frontend, Node/Express API, Firestore with tenant-aware security rules, Firebase Auth with custom claims, and Terraform-managed infrastructure spanning dual dev/prod environments.

One-command bootstrap script provisions GCP projects, Firebase apps, GitHub environments, and seeds superadmin access.
Full RBAC with owner/admin/member/viewer roles plus a hardened superadmin console.
Automated CI/CD via GitHub Actions (tests, security scans, deployments) with 300+ API tests covering routes, middleware, and services.
Optional edge hardening (Cloud Armor, HTTPS load balancer) and theming for tenant-specific UI.

Multi-tenant CI/CD Terraform + GCP

Healthcare Billing · Encryption by Design

Pomo — Practitioner Revenue OS

Pomo extends Loma for EU/Swiss independent psychiatrists and therapists who need privacy-first session tracking, billing, and reporting. Every patient record is encrypted with Cloud KMS (AES-GCM) and stored under CMEK-protected Firestore/GCS resources.

Patient, session, rate plan, rollup, and export models optimized for monthly salary/invoice workflows.
Strict role separation: admins manage tenants, finance teams finalize rollups, practitioners see only their own data.
Automated monthly rollups feed PDF/CSV/Excel exports backed by Google Cloud Storage and tracked via audit logs.
GDPR/FADP-compliant architecture with auditability and zero tolerance for PHI leaking into LLM-powered tooling.

GDPR / FADP Cloud KMS Financial Ops

Visit pomo.solutions

Product Tours · Chrome Recorder + 10 KB SDK

Stepsy — In-App Guide Platform

Stepsy (stepsy.cc) lets SaaS teams record a guide in their browser and ship it straight into their product. A Chrome recorder captures flows, a 10 KB CDN-delivered SDK plays them back, and an API Gateway fronts the multi-tenant backend.

Recorder + player loop: capture steps once, replay contextually with guardrails so users see “what to click next.”
Google Cloud API Gateway with signed requests, rate limiting, and observability piped into centralized logging.
SDK CDN with environment-aware bundles and runtime configuration for app IDs, public keys, and analytics destinations.
Guide analytics streamed to Mixpanel/PostHog plus in-app admin to activate/deactivate guides without redeployments.

Chrome Extension API Gateway CDN SDK

Visit stepsy.cc

Commercial Insurance Ops · Approval-First Workflows

Deskhub — Agentic Back-Office for Commercial Agencies

Deskhub is the agentic back-office service for commercial insurance agencies, delivering carrier-ready submission packs and on-time renewals with approval-first controls and outcome-based pricing.

End-to-end submission and renewal workflows that assemble carrier-ready packs, not just extraction.
Approval-before-send controls for every external email, keeping brokers in charge of client and carrier interactions.
Insurance-specific data extraction plus missing-data chase logic with a full audit trail.
Throughput gains without headcount growth: 50%+ admin time saved and 30%+ faster quote turnaround.
Outcome-based pricing tied to completed submission packs and renewals managed.

Agentic Service Approval-First Outcome Pricing

Visit deskhub.ai

Bank Statement Verification · Deterministic Reconciliation

FinVerify — Convert Bank Statement PDFs to Excel, Fully Reconciled

FinVerify turns messy bank statement PDFs into clean, verified Excel or CSV files. Every transaction is mathematically reconciled against the statement balance—or the file fails explicitly. No AI hallucinations. No silent errors.

Deterministic Reconciliation: If Opening Balance + Credits - Debits ≠ Closing Balance, the file is flagged immediately. No guessing.
Geometric Reconstruction: Uses coordinate clustering to identify columns by position, making it language-agnostic and resistant to OCR errors.
Continuous Chain Integrity: Verifies balance continuity across the entire statement. Missing or inconsistent pages are flagged.
Privacy-First: Your financial data is verified, not used for training. Auto-purged every 24 hours.
Professional-Grade Output: Clean exports ready for QuickBooks, Xero, or forensic audit trails.

Mathematical Proof Geometric Engine API Available

Visit finverify.tools

Financial Record-Keeping · Tamper-Evident Ledger

ClearRecord — A Neutral Record for Shared Child Expenses

A neutral record for shared child expenses—even when you don't agree. The financial system that replaces informal negotiation with a tamper-evident history. No chat. No silent edits. No ambiguity.

No Messaging: If it isn't a financial entry, it doesn't belong here.
No Erasers: Once logged, it's permanent. Corrections are allowed, but history is never hidden.
No Discretion: Rules are set once. The system determines the split—not the parents.
Unilateral Value: A timestamped log created at the time of expense is more credible than a spreadsheet reconstructed months later. Works even if the other parent never logs in.
Audit-Ready Exports: Every entry shows who created it and when. Cryptographic seal proves no post-export tampering. Built for mediators and judges.

Immutable Ledger Audit Trail Rules Engine

Visit clearrecord.app

Need This Level of Execution?

We use these platforms as launchpads for new AI and SaaS engagements. If you need to ship something similarly complex — fast — let's talk.

Start a Project