Get in touch

Get in touch

  • This field is for validation purposes and should be left unchanged.

Privacy Notice

X

When you submit an enquiry via our website, we use the personal data you supply to respond to your query, including providing you with any requested information about our products and services. We may also email you several times after your enquiry in order to follow up on your interest and ensure that we have answered your it to your satisfaction. We will do this based on our legitimate interest in providing accurate information prior to a sale. Your enquiry is stored and processed as an email which is hosted by Microsoft within the European Economic Area (EEA). We keep enquiry emails for two years, after which they are securely archived and kept for seven years, when we delete them.

Reveal Menu

Case Study: Saphetor SA

Saphetor SA, based in Lausanne, Switzerland, apply innovative AI-driven approaches to develop sophisticated analysis tools for professional genomics researchers and clinicians.

Amélie Martinez, Regulatory Affairs and Quality Assurance Director, shares how they benefited from an ISO27001 Document Toolkit and a Pre-certification Internal Audit from CertiKit to mature their Information Security Management System, and ensure they met their annual certification requirements.

Complying to the ISO 27001 standard

As Saphetor SA manufacture high end medical device software that assists with the processing of health data, they chose to gain certification to the ISO 27001 standard to prove to potential and existing customers that they are compliant with all necessary compliance and security standards.

Choosing CertiKit

Having already purchased a CertiKit ISO 27001 toolkit to successfully help them with their implementation project, Saphetor SA were familiar with the quality of products that CertiKit had to offer and decided to use CertiKit’s services too.

After researching different companies that could carry out their pre-certification audit, Saphetor SA decided that the best price and service being offered was from CertiKit.

A Successful Internal Audit

The ISO27001 Pre-certification Audit covered the main management system clauses against the ISO27001:2022 standard and the Annex A controls.

Amélie was impressed with how comprehensive the audit was. “CertiKit provide excellent services, even more than expected!”

She adds, “The auditor provided us with a lot of advice and helped us improve our system as he was auditing us. He gave us templates, and explanations on how to get compliant.”

The audit report was also well received. “I liked the detail of each requirement, and the table summarizing the nonconformities per control.”

Successful Certification Audit and Continual Improvement

Continuing their ISO27001 certification and maturing their ISMS is a main priority for Saphetor SA and this has been helped by the CertiKit internal audit service.  Amélie commented “I really enjoyed working with CertiKit for the preparation of the ISO27001:2022 certification audit, as the auditor provided us not only with the audit assessment, but also many templates and explanations on how to solve the non-conformities we had. We didn’t use other support to prepare for the audit, and this internal audit was exactly what we needed to move to the next level, and mature our current ISMS.”

Saphetor SA successfully passed their recent certification audit with only two observations. Congratulations.

 

(Case study written: 2nd May 2024)


 

more case studies

We’ve helped more than 7000 businesses with their compliance

Testimonials

I found the toolkit templates easily map back to the standard. The introductory information for each document was helpful in preparing for our external audit.

V-Tech Solutions, Inc.
USA

View all Testimonials