Client: RMS Digital Services (in-house)
Visit website — geotax.bizHow we designed a cloud platform with limits, billing, and NBG integration.
GeoTax is a full-fledged SaaS platform for individual entrepreneurs and small businesses in Georgia, automating the entire financial accounting cycle: from registration and invoicing to generating tax reports and interacting with technical support. The system is designed with a focus on financial data security and compliance with the requirements of the Revenue Service of Georgia (RS.ge).
A microservice platform with clear separation of responsibilities has been developed. The architecture follows Clean Architecture principles, ensuring business logic independence from infrastructure and simplifying scaling of individual components.
Modern SPA based on Next.js with TypeScript and Tailwind CSS. The interface is built on the Shadcn UI component library with Framer Motion animations for a premium user experience. Dark and light themes are supported, with full localization in three languages (EN/RU/KA) via next-intl. State management and API synchronization are implemented using React Query, form validation via Zod.
High-performance REST API in Go with the Gin framework. The structure follows Clean Architecture with separation into layers: presentation (HTTP handlers), application (use cases), domain (business entities), infrastructure (external integrations). Authentication via JWT, support for two-factor authentication.
A separate service for executing resource-intensive asynchronous tasks:
Layer | Technologies |
|---|---|
Frontend | Next.js, TypeScript, Tailwind CSS, Shadcn UI, React Query, Zod |
Backend | Go, Gin, Clean Architecture |
Database | PostgreSQL, Redis |
Infrastructure | Docker, Docker Compose, Nginx |
Security | HashiCorp Vault, JWT, AES-256, 2FA |
Communication | Chatwoot API, SMTP, Telegram Bot API |
Payments | PayPal SDK |
Background Jobs | Redis Queues, Worker Pattern |
Security is the architectural foundation of the project, not an add-on.
All sensitive data (personal information, financial details) is encrypted using envelope encryption. Encryption keys are stored in a specialized secret store; the application works only with encrypted data.
All critical actions in the system are recorded in an audit log with cryptographic protection. Each record is protected by a hash using a secret key, making it impossible to unnoticeably modify or delete logs.
Strict access control at the API level ensures that each user has access only to their own data — from financial records to support chat conversations.
Automated system for creating database snapshots with secure transfer to cloud storage. Support for local caching and automatic file rotation.
Built-in services monitor data integrity and automatically clear old logs and temporary files according to storage policies.
Interface for monitoring and managing background tasks in real-time, tracking execution, managing retries, and analyzing performance.
A production-ready SaaS platform has been created that:
GeoTax is an example of a comprehensive SaaS project where security and compliance are architectural principles, not features. The project demonstrates deep expertise in:
Full-stack development — from high-performance Go API to modern Next.js frontend
Microservice architecture — separation of responsibilities, asynchronous processing, task queues
Financial data security — encryption, isolation, cryptographic audit, secret management
Integrations — payment systems, messengers, email, cloud storage
DevOps practices — containerization, backup automation, monitoring
This is not just a CRUD application — it is a production-ready platform designed to work with sensitive financial data in a regulated jurisdiction.