Sensara is a Dutch healthcare technology company that develops smart, sensor-based alarm systems for both residential care facilities and independent elderly living. Their wireless sensors monitor behavioural patterns and alert caregivers automatically to potentially concerning situations. Operating across the Netherlands, Sensara handles sensitive patient data daily, making information security not just a regulatory obligation but a core part of their operations.
To demonstrate their commitment to data security and healthcare compliance, Sensara pursued both ISO 27001, the international standard for information security management, and NEN 7510, its Dutch healthcare-specific extension. When the time came to move away from outdated, file-based processes, they turned to PDCA4YOU.
Quick Insights
Organisation: Sensara
Sector: Healthcare Technology (elderly care, intramural & extramural)
Certifications: ISO 27001 & NEN 7510
Key result: More output with less effort and full team engagement
A growing compliance challenge
Like many other organizations, Sensara managed their information security documentation the way most companies start out: with Word documents, Excel sheets, and a shared folder on Google Drive. They had created a dedicated Quality Assurance drive with a folder structure that roughly mirrored the structure of the ISO 27001 standard. A reasonable approach at first, but one that quickly became challenging to sustain.
Version control was a constant challenge. With no formal system in place, it was easy to save over the wrong file, open an outdated version, or find documents with incorrect dates on them. Keeping everything consistent required significant manual effort. And even then, errors slipped through.
"It had worked for us a few times to get through the certification, but it was extremely time-consuming. It was very difficult to truly have a grip on our business processes. The system was highly error prone."
In addition to version management, responsibility was concentrated in the hands of just a few people, whereby the aim was to connect the broader team towards compliance.
Why PDCA4YOU? The AI trigger that made the difference
Sensara had been actively looking for a dedicated compliance management system when they came across PDCA4YOU. They had evaluated other tools, but none felt right. Either too complex, too rigid, or simply not well-suited to how they worked.
What caught their attention immediately was the AI-powered policy generation feature. Rather than writing security policies from scratch, PDCA4YOU could generate tailored policy documents based on their specific context, reducing the time needed to get started..
"The AI feature that generates policies was a huge positive trigger for us. It made the transition so much easier."
Timing also played a role. Sensara had to migrate from ISO 27001:2017 to the updated ISO 27001:2022 standard, a process that required a significant part of the management system to be restructured to meet new control criteria. With PDCA4YOU, the migration went smoothly.
"We really struggled on how to make that transition. With PDCA4YOU, it went smoothly and that was incredibly important for us."
Day-to-day impact: structure, clarity, and shared ownership
The most immediate change after the switch to PDCA4YOU was a sense of order. Everything is now in one place. The structured sidebar navigation, which reflects the paragraph structure of the standard, ensures that finding a document, policy, or task takes seconds instead of minutes searching through folders.
But perhaps the most meaningful change is how compliance work is distributed across the organisation. Before PDCA4YOU, only a small number of colleagues were involved in information security. Now tasks can be directly assigned to different team members, and compliance has become a shared responsibility throughout the organisation.
"In the past, there were only one or two people involved. Now almost all our employees participate at some level. That makes a real difference, both in terms of workload and in creating real awareness throughout the company."
The task dashboard gives a real-time overview of how work is distributed across the team, making it easy to spot when someone is overloaded with tasks and creates the ability to plan ahead. Periodic tasks can be spread across the year with clear deadlines, removing the pressure of last-minute scrambles before an audit.
"The worst feeling is receiving a task and thinking: I need to tackle this now. That usually leads to people not doing it at all. But if you can see that you only need to pick something up in two months, and then again in September, it becomes manageable. It is reassuring to know that it is in the system."
A calmer and more confident audit process
For most organisations, the period leading up to an external audit is stressful. With PDCA4YOU, that stress for Sensara has been significantly reduced. Outstanding tasks are immediately visible, so it is always clear what still needs to be completed.
Equally important is what happens after an audit. Auditors typically provide a list of areas for improvement, findings that need to be addressed before the next audit. In the past, keeping track of these was risky and time-consuming. Now, each finding is immediately converted into a task in PDCA4YOU, assigned to the appropriate person, and tracked until completion.
"We can show the auditor exactly which areas for improvement were raised last year, what we have done about them, and what is still in progress. The auditor can see that we are actively working on it, and that counts. Our external auditor has also confirmed this."
Sensara now creates a separate login for their auditor in PDCA4YOU before each audit, so that they have direct access to all relevant documentation. The result is a review process that feels less like an interrogation and more like a transparent, professional demonstration of ongoing commitment.
"It also shows the auditor that this is not just a last-minute effort. We are demonstrably active all year round."
The bottom line
When asked about the most significant tangible result of working with PDCA4YOU, the answer was clear and direct:
"We do much more, with much less effort. More output, less input. That is the best way to describe it."
For a healthcare technology company where data security is not a box-ticking exercise but a fundamental part of the organization, that kind of efficiency matters. PDCA4YOU has enabled Sensara to maintain both certifications, ISO 27001 and NEN 7510, while significantly reducing the burden on their team.
"I would absolutely recommend PDCA4YOU"
Irek Karkowski, CTO at Sensara