Personora — Institutional HR, Personnel Registry & Workforce Management

Context

Institutional HR systems concentrate sensitive personal data, contracts, and employment history inside legacy workflows that are hard to maintain and harder to audit. The original system also carried structural domain flaws, such as duplicated person records and overwritten employment history.

Problem

Institutional HR systems mix personnel records, recruitment, contracts, leave, documents, and sensitive personal data inside hard-to-maintain legacy workflows. The original system duplicated person records on applicant-to-employee conversion, overwrote employment history instead of preserving it, and carried the configuration and security weaknesses typical of older ASP.NET applications.

What was built / modernized

We rebuilt the system as a portfolio-grade reference platform with the domain corrected by design: one Person entity with Applicant and Employee role records replaces the old duplicate-person pattern, employment history is append-only, and leave accrual, carry-over, medical allocations, confirmed-leave deductions, and revision chains are implemented and tested explicitly. Institution-specific concepts were isolated as future extensions instead of being mixed into the HR core, and security and configuration weaknesses were remediated through environment-only configuration, role- and resource-based authorization, and audited access to sensitive records. The platform runs as an ASP.NET Core Web API on the latest LTS .NET with EF Core, PostgreSQL, a Next.js frontend, Swagger/OpenAPI, and a Dockerized demo stack, with automated tests covering employee lifecycle, employment history, recruitment, leave balance, timesheets, appraisals, documents, reports, and security workflows.

Workflow highlights

• One Person entity with Applicant and Employee role records, replacing the legacy duplicate-person pattern
• Append-only employment history with explicit revision chains
• Leave accrual, carry-over, medical allocations, and confirmed-leave deductions implemented as tested rules
• Recruitment, contracts, timesheets, appraisals, and document workflows in one platform

Security, auditability & governance

• Role- and resource-based authorization across HR workflows
• Audited access to sensitive personnel records
• Environment-only configuration remediating legacy security weaknesses
• Automated tests across employee lifecycle, leave balance, and security workflows

AI-ready extension points

• AI-assisted drafting of HR documents and report summaries
• Policy-aware answers to leave and contract questions, constrained by permissions
• Workflow routing suggestions with human confirmation

Value delivered

• Institutional HR domain knowledge preserved while legacy architecture and workflow-design issues were corrected
• Append-only employment history and audited sensitive access support accountability requirements
• Security weaknesses remediated by design — configuration, authorization, and access auditing

Technologies

Relevant roles