Home/Technology/API & Data
04 / The Platform

ASP-RCM API & Data. You keep full ownership of your data.

Some RCM vendors lock you into their dashboard. We don’t. The ASP-RCM platform exposes a documented REST API, signed webhooks, an OAuth-secured FHIR endpoint, and standard X12 EDI feeds. Pull any number into your own warehouse, anytime.

Book a Platform Walkthrough Talk to Sales
At a glance
OpenAPI 3.1
fully documented
Swagger UI, Postman collection, sandbox keys on day one.
What’s in the API

Surface area, fully documented.

Every dashboard widget has an API behind it. Every API is published.

01

REST API

JSON over HTTPS. OAuth 2.0 client-credentials flow. Rate-limited per client. Versioned (v1, v2) with 12-month deprecation windows.

02

Webhooks

Signed event delivery for claim-status changes, denials, payments, eligibility responses. HMAC-SHA256 signatures. Configurable retry policy.

03

FHIR R4 endpoint

Read-only access to Coverage, Claim, ExplanationOfBenefit, Patient, Encounter resources. SMART-on-FHIR app launch supported.

04

X12 EDI

270/271 (eligibility), 276/277 (claim status), 837 (claim submission), 835 (remit). 5010 standards, optional 8020 testing.

05

Bulk export

Daily/hourly Parquet or CSV drops to your S3 bucket. Full claim, payment, denial, AR aging tables. Schemas documented.

06

Direct DB share

For high-volume clients: Snowflake or Redshift data share. Read-only. Refresh latency < 15 minutes.

Developer experience

Built for engineers, not just CFOs.

OpenAPI 3.1
spec published
Swagger UI + Postman
sandbox
on day one
no contract required to test
12 months
deprecation window
never break a client overnight
HMAC-SHA256
signed webhooks
every event verifiable
A typical integration

How a client engineering team actually uses the API.

Real patterns we see, not theoretical examples.

01
Get keys

Sandbox keys provisioned same day. Production keys on contract sign.

02
Read OpenAPI

Swagger UI shows every endpoint, every payload. Generate a typed client in any language.

03
Subscribe webhooks

Subscribe to claim.denied, payment.posted, eligibility.completed. Verify HMAC signatures.

04
Pull bulk

Nightly Parquet drop to your S3 bucket. Load into Snowflake / BigQuery / Redshift.

05
Audit access

Every API call logged. Pull your own access logs via /audit endpoint.

Related platform topics

Pairs well with.

Each piece of the platform reinforces the next. Worth reading together.

01
Architecture
How the platform is built. Microservices, queues, observability.
Read more
03
Integrations
Epic, Cerner, athena, Availity, Waystar, payer portals.
Read more
02
Security & HIPAA
SOC 2 Type 2, ISO 27001, HIPAA, BAAs, encryption end-to-end.
Read more
See the full technology overview →
From the field

Read more on RCM strategy.

How autonomous coding, leakage controls, and operational shifts together drive integration and API decisions.

View all articles →
Coding · AI

The rise of autonomous medical coding: is manual coding obsolete?

OHSU cut radiology coder workload 28% and denials 70%. What the technology actually does, where it breaks, and how to deploy it.

May 1, 2026 · 9 min read RCM Strategy

Three operational shifts that consistently move RCM performance.

Why most RCM "transformation" projects fail, and the operational changes that produce double-digit improvements in collections.

Apr 21, 2023 · 10 min read Revenue Leakage

Hidden revenue leaks in healthcare: 12 places to look.

Industry research shows 3-5% of net patient revenue leaks across coding, claims, eligibility, and underpayments. Here's where it hides.

Mar 12, 2026 · 5 min read

Ready to put API & Data in front of your CIO?

We’ll walk your team through the platform live, answer the hard questions, and leave you with documentation your security and engineering teams can actually evaluate.

Book a Platform Walkthrough Request Documentation