INTRODUCTION TO SANRO HEALTH

Sanro Health is a clinician-led healthcare technology provider, focused on scaling solutions that yield the most significant, real-time impact at the point of care.

The company specializes in making healthcare data actionable through advanced technology solutions that enhance patient outcomes and optimize healthcare operations. Sanro Health’s core offering is a software platform combining AI image analysis with seamless integration of medical record data and imaging data to accelerate clinical trial recruitment. 

STARTING THE SOC 2 JOURNEY

Sanro Health decided to pursue SOC 2 certification to build trust with customers, stakeholders and investors and demonstrate their commitment to data security, privacy and operational excellence. 

After going through a comprehensive request for proposal (RFP) process with external consultants, Sanro Health was presented with various manual solutions. Chief of Staff, Lucy McCarthy expressed concerns about the traditional approach and her team’s capacity, prompting her to explore alternative solutions. “I was worried about the competing priorities, and the team’s bandwidth to be able to support a remote process of documentation, as well as continue to support our enterprise clients and product development,” she said.   

GETTING STARTED WITH VANTA

Further research into SOC 2 led the team at Sanro Health to discover the compliance automation platform Vanta. After initial discussions, the benefits quickly became apparent. With Vanta, Sanro Health immediately saw the benefits. “The ease of those first conversations, their responsiveness, competitive pricing, comprehensive visibility, the Trust Center and especially the continuous monitoring, all ticked the boxes for Sanro Health,” said Karthigeyan Gunaseelan, Head of Engineering.      

ENTER ASSURANCELAB 

After onboarding with Vanta, Sanro Health was introduced to several audit partners. However, these firms did not fully align with Sanro Health's delivery timeframe, time zone compatibility, or budget. After some discussions, they were connected with AssuranceLab, which had recently announced its partnership with Vanta.  

THE POWER OF ASSURANCELAB AND VANTA

By leveraging Vanta’s continuous monitoring, Sanro Health gained clear visibility into where their attention was needed during the audit. Vanta’s support and the ticket-raising feature ensured that any platform-related queries were swiftly resolved, keeping Sanro Health on track.

Aware of Sanro Health’s client deadline, the AssuranceLab team promptly initiated the audit, providing a Vanta Velocity knowledge base guide. This step-by-step guide offered all the necessary resources for the audit. “It’s very intuitive, easy to access and understandable—even for someone without a technical background like myself,” said Lucy.

AssuranceLab’s real-time, responsive feedback made the entire process— from uploading evidence to addressing queries and finalizing the audit—seamless. Behind the scenes, AssuranceLab’s AI-audit model powered the process, allowing both teams to focus their efforts where they were most needed.

“Partnering with a company that understood our bandwidth and resourcing needs, and approached everything with a pragmatic perspective, made all the difference for us. I think we would have struggled if we had taken the traditional audit route,” said Lucy.

“Partnering with a company that understood our bandwidth and resourcing needs, and approached everything with a pragmatic perspective, made all the difference for us. I think we would have struggled if we had taken the traditional audit route,” said Lucy.

RESULTS

What initially seemed like a daunting task for Sanro Health turned into a success as they achieved their SOC 2 Type 1 Attestation ahead of schedule, meeting client expectations. By leveraging Vanta’s compliance platform alongside AssuranceLab’s expertise, transparent support and real-time guidance, Sanro Health reported that they “could not have anticipated a better experience.”

Buoyed by this success, Sanro Health is now setting its sights on achieving Type 2 attestation and HIPAA compliance.

RECOMMENDATIONS FOR OTHER COMPANIES

 

For companies embarking on the SOC 2 journey, Lucy offered valuable insights: “SOC 2 not only instills trust but also provides a responsible business framework and governance, especially for startups unsure where to begin. It helps you build within the compliance boundaries you’ve committed to. We would 100% recommend AssuranceLab and Vanta to other companies. We are equally glad to have found both Vanta and AssuranceLab; Vanta’s platform streamlined the process, while AssuranceLab’s expert support provided invaluable guidance and reassurance throughout.”

If you would like to experience the AssuranceLab difference yourself, contact our team: info@assurancelab.com.au