< Back to case studies

Customer stories
Saphetor SA

Saphetor SA, based in Lausanne, Switzerland, apply innovative AI-driven approaches to develop sophisticated analysis tools for professional genomics researchers and clinicians.

Amélie Martinez, Regulatory Affairs and Quality Assurance Director, shares how they benefited from an ISO27001 Document Toolkit and a Pre-certification Internal Audit from CertiKit to mature their Information Security Management System, and ensure they met their annual certification requirements.

Complying to the ISO 27001 standard

As Saphetor SA manufacture high end medical device software that assists with the processing of health data, they chose to gain certification to the ISO 27001 standard to prove to potential and existing customers that they are compliant with all necessary compliance and security standards.

Choosing CertiKit

Having already purchased a CertiKit ISO 27001 toolkit to successfully help them with their implementation project, Saphetor SA were familiar with the quality of products that CertiKit had to offer and decided to use CertiKit’s services too.

After researching different companies that could carry out their pre-certification audit, Saphetor SA decided that the best price and service being offered was from CertiKit.

A Successful Internal Audit

The ISO27001 Pre-certification Audit covered the main management system clauses against the ISO27001:2022 standard and the Annex A controls.

Amélie was impressed with how comprehensive the audit was. “CertiKit provide excellent services, even more than expected!”

She adds, “The auditor provided us with a lot of advice and helped us improve our system as he was auditing us. He gave us templates, and explanations on how to get compliant.”

The audit report was also well received. “I liked the detail of each requirement, and the table summarizing the nonconformities per control.”

Successful Certification Audit and Continual Improvement

Continuing their ISO27001 certification and maturing their ISMS is a main priority for Saphetor SA and this has been helped by the CertiKit internal audit service. Amélie commented “I really enjoyed working with CertiKit for the preparation of the ISO27001:2022 certification audit, as the auditor provided us not only with the audit assessment, but also many templates and explanations on how to solve the non-conformities we had. We didn’t use other support to prepare for the audit, and this internal audit was exactly what we needed to move to the next level, and mature our current ISMS.”

Saphetor SA successfully passed their recent certification audit with only two observations. Congratulations.

“I really enjoyed working with CertiKit for the preparation of the audit, as the auditor provided us not only with the audit assessment, but also many templates and explanations on how to solve the non-conformities we had. We didn’t use other support to prepare for the audit, and this internal audit was exactly what we needed to move to the next level, and mature our current ISMS.”

Saphetor SA, Switzerland

Reviewing ISO 27001 Toolkit

The Results

Congratulations Saphetor SA

Saphetor SA successfully passed their recent certification audit with only two observations

resources

Browse more customer stories

MindCraft shares how the CertiKit ISO 27001 Toolkit helped them successfully implement the ISO 27001 standard.

Blue Phoenix Systems, an IT and cyber security services organisation based in Australia, use CertiKit toolkits with clients to help implement the ISO27001 standard.

DotSec, a professional cyber security organisation based in Brisbane, Australia, use CertiKit’s toolkits to help their clients certify to the ISO/IEC 27001 standard.

MindCraft shares how the CertiKit ISO 27001 Toolkit helped them successfully implement the ISO 27001 standard.

Read more
Blue Phoenix Systems, an IT and cyber security services organisation based in Australia, use CertiKit toolkits with clients to help implement the ISO27001 standard.

Read more
DotSec, a professional cyber security organisation based in Brisbane, Australia, use CertiKit’s toolkits to help their clients certify to the ISO/IEC 27001 standard.

Read more

“The consistent formatting and style of the documents makes consolidation of various ISMS and Annex A documents very easy to achieve, reducing the overall size and complexity of the ISMS.”

Blue Phoenix Systems, Australia
“It makes a big difference, for the better, when the implementer does not need to second guess and double check every template and guidance document.”

DotSec, Australia
“The CertiKit toolkit was chosen because of the clear, informative writing style, ease-of-use customisable templates and unlimited email support.”

Epiphany Healthcare, USA
“Using the toolkit we were able to systematically pick through and deliver all of the documentation and process areas we needed, picking up the toolkit updates as we continued through the year. We have no doubt that using the toolkit decreased the time we spent during this initial phase and still supports part of the compliance work we do every year.”

Fishawack Health, Worldwide
“Our auditor said our documentation was very thorough and the CertiKit toolkit was key to passing our certification audit. Thank you for your support whenever we had questions. It was greatly appreciated as we tried to figure out this process.”

Focused Fitness, USA

Customer stories Saphetor SA