When you submit an enquiry via our website, we use the personal data you supply to respond to your query, including providing you with any requested information about our products and services. We may also email you several times after your enquiry in order to follow up on your interest and ensure that we have answered your it to your satisfaction. We will do this based on our legitimate interest in providing accurate information prior to a sale. Your enquiry is stored and processed as an email which is hosted by Microsoft within the European Economic Area (EEA). We keep enquiry emails for two years, after which they are securely archived and kept for seven years, when we delete them.
Saphetor SA, based in Lausanne, Switzerland, apply innovative AI-driven approaches to develop sophisticated analysis tools for professional genomics researchers and clinicians.
Amélie Martinez, Regulatory Affairs and Quality Assurance Director, shares how they benefited from an ISO27001 Document Toolkit and a Pre-certification Internal Audit from CertiKit to mature their Information Security Management System, and ensure they met their annual certification requirements.
As Saphetor SA manufacture high end medical device software that assists with the processing of health data, they chose to gain certification to the ISO 27001 standard to prove to potential and existing customers that they are compliant with all necessary compliance and security standards.
Having already purchased a CertiKit ISO 27001 toolkit to successfully help them with their implementation project, Saphetor SA were familiar with the quality of products that CertiKit had to offer and decided to use CertiKit’s services too.
After researching different companies that could carry out their pre-certification audit, Saphetor SA decided that the best price and service being offered was from CertiKit.
The ISO27001 Pre-certification Audit covered the main management system clauses against the ISO27001:2022 standard and the Annex A controls.
Amélie was impressed with how comprehensive the audit was. “CertiKit provide excellent services, even more than expected!”
She adds, “The auditor provided us with a lot of advice and helped us improve our system as he was auditing us. He gave us templates, and explanations on how to get compliant.”
The audit report was also well received. “I liked the detail of each requirement, and the table summarizing the nonconformities per control.”
Continuing their ISO27001 certification and maturing their ISMS is a main priority for Saphetor SA and this has been helped by the CertiKit internal audit service. Amélie commented “I really enjoyed working with CertiKit for the preparation of the ISO27001:2022 certification audit, as the auditor provided us not only with the audit assessment, but also many templates and explanations on how to solve the non-conformities we had. We didn’t use other support to prepare for the audit, and this internal audit was exactly what we needed to move to the next level, and mature our current ISMS.”
Saphetor SA successfully passed their recent certification audit with only two observations. Congratulations.
(Case study written: 2nd May 2024)