Compliance Platform

GatePass

A document management and compliance consulting platform we designed and built end to end - from the microservice backend to an AI-powered regulation assistant and the client and admin portals.

  • SectorPropTech / RegTech / Compliance Consulting
  • TypeFull-stack platform with AI
  • Our roleArchitecture, design and development
GatePass

A document management and compliance consulting platform we designed and built end to end, from the microservice backend to the AI-powered regulation assistant to the client and admin portals.

The Brief

Our client needed a single place to run a document-heavy compliance consulting business: collecting documents from clients, managing review and consulting workflows, billing for the service, and answering complex regulatory questions accurately. The challenge was that this work is paperwork-intensive, knowledge-intensive, and trust-sensitive. Our job was to turn that into a fast, secure, and scalable online platform.

What We Built

We delivered GatePass as a microservice platform with dedicated portals for clients and administrators, backed by a shared document and payments engine and an AI assistant grounded in real regulation.

  • Client portal - where clients upload documents, track their submissions, manage their account, and access their reports.
  • Admin panel - where the team manages clients, reviews documents, handles consulting workflows, and oversees operations.
  • Document engine - secure upload, storage, packaging, and automated PDF generation and reporting.
  • Payments - integrated Stripe billing for the consulting service.
  • AI regulation assistant - a retrieval-augmented (RAG) service that answers regulatory questions grounded in a curated library of regulation sources, so answers are accurate and traceable rather than guesswork.

The Architecture

We built GatePass as a microservice architecture, splitting the system into independent services that each own their responsibility: a user backend, an admin backend, a client frontend, an admin frontend, and the public website. This keeps the platform maintainable and lets each part scale on its own.

Heavy work like document packaging, PDF generation, and notifications runs asynchronously through background job queues, so the user experience stays fast while the system handles the load behind the scenes, with a dedicated dashboard to monitor those jobs.

The AI assistant runs as its own service: a Python RAG pipeline backed by a vector database, indexing a curated set of regulation sources so the assistant retrieves and cites the right material when answering.

The whole system is fully containerized with Docker and runs through Docker Compose across development, staging, and production environments.

The Stack

  • Backend: Node.js, Express, MySQL. Hardened with Helmet, rate limiting, and request validation.
  • Frontend: React, Chakra UI, React Query, Chart.js, with client-side PDF handling.
  • AI: Python RAG service with a Qdrant vector database over a curated regulation library.
  • Documents: AWS S3 storage, Multer uploads, PDFKit and Puppeteer for PDF and report generation, plus archive packaging.
  • Background jobs: Bull queues with a Bull Board monitoring dashboard.
  • Payments: Stripe.
  • Security: JWT authentication, TOTP multi-factor authentication, QR-code enrolment, bcrypt password hashing, email via Nodemailer.
  • Infrastructure: Docker and Docker Compose, with separate development, staging, and production environments served behind Nginx.

The Outcome

We delivered a production-ready platform that turns a paperwork- and knowledge-heavy consulting business into a streamlined digital service: clients submit and track documents with ease, the team manages everything from one place, billing is automated, and an AI assistant grounded in real regulation makes expert answers fast and reliable.

A platform built on security, accuracy, and trust, engineered to scale.

All projects