StratosMedical — HIPAA-Compliant Medical Courier Website

The Problem

Stratos Medical Holdings needed a professional web presence to establish credibility in the South Florida medical courier market (Miami-Dade, Broward, Palm Beach). Medical courier services operate in a regulated environment — HIPAA, OSHA, DOT HazMat — and the website needed to reflect that level of seriousness and compliance.

The Approach

We chose the simplest stack that could do the job: PHP with Tailwind CSS, no framework, no database, no build step. A medical courier website is fundamentally a brochure site with a contact form — using Laravel or React here would be like bringing a semi-truck to deliver a pizza.

The key decision was investing heavily in automated testing. For a site representing a medical business, we needed to prove accessibility compliance, verify form security, and ensure responsive behavior — not just assume it works.

The Tech

Five PHP pages sharing a common header and footer via server-side includes. Tailwind CSS via CDN for styling. Vanilla JavaScript for the mobile nav toggle, form validation, and scroll animations. The contact form handler includes server-side validation with protection against injection attacks.

The test suite is the standout: 33 Playwright tests across 5 test suites:

• Form handler tests (9 tests): PHP form security, injection prevention, required field validation
• Form validation tests (8 tests): Client-side JavaScript validation behavior
• Mobile nav tests (3 tests): Hamburger menu toggle, responsive breakpoints
• Accessibility tests (13 tests): axe-core automated audits plus manual landmark checks
• SEO tests (4 tests): Meta tags, Open Graph, JSON-LD structured data, sitemap

The Outcome

The site launched with verified accessibility compliance, hardened form security, and comprehensive SEO. The automated test suite means future changes can be validated instantly — no manual clicking through every page to check if something broke.