The compliance milestone adds to the company’s existing ISO certifications as enterprise deployments accelerate across pharmaceutical and diagnostic laboratory customers.
Proscia has completed its SOC 2 Type II audit, adding another layer of verified security controls to support enterprise adoption of its digital pathology platform.
The certification, established by the American Institute of Certified Public Accountants, evaluates an organization’s controls for security, availability, and confidentiality over time. For Proscia, the milestone reinforces its position serving large-scale customers.
“Security is non-negotiable for Proscia and our customers,” says Coleman Stavish, chief technology officer at Proscia, in a release. “Leading life sciences organizations and diagnostic laboratories rely on our platform for patient-centered, mission-critical work. Our SOC 2 Type II certification validates the security-first culture and operational rigor that guide us.”
The Philadelphia-based pathology AI company already maintains ISO 27001 certification for information security management and ISO 13485 compliance for medical device quality management.
Enterprise Deployment Momentum
The certification comes as Proscia reports completing what it calls an industry record number of enterprise go-lives in 2025. The company’s Concentriq AI platform supports pathology workflows from drug discovery through diagnostics.
Proscia’s customer base spans pharmaceutical companies using the platform for drug development and diagnostic laboratories implementing digital pathology for routine clinical work. The company says it has accelerated deployment momentum over the past year, enabling large-scale transitions across hundreds of sites.
Compliance Framework Details
SOC 2 Type II audits examine whether security controls operate effectively over an extended period, typically six months or more. The framework focuses on five trust service criteria: security, availability, processing integrity, confidentiality, and privacy.
For laboratory and pharmaceutical customers, the certification provides third-party validation of data protection measures essential for handling sensitive patient information and proprietary research data. The audit process involves independent verification of security policies, procedures, and technical safeguards.
ID 26286370 © Filmfoto | Dreamstime.com
