In medical and healthcare applications, it is an important issue to increase privacy of medical information and promote the utilization of value-added medical information by strengthening current deidentification techniques for providing the flexibility of hiding keywords. At present, there is no united security standard and infrastructure for accessing IoT-based secure medical information and lacking of a secure execution environment. How to ensure confidentiality, integrity and authentication of medical and health information during wireless transmission is a crucial problem of the future. In this paper, we consider the advantages of certificateless cryptosystems, i.e., no key-escrow problems and without the burden of public key certificate management, to propose a certificateless sanitizable signature scheme. Our mechanism supports batch verification allowing a recipient to verify all individual signatures within a logical step. Additionally, a verifier is capable of detecting altered message blocks. In the security analyses, we formally proved that the proposed signature scheme is existentially unforgeable against Type-II and Type-III adversaries under adaptive chosen-message attacks. The comparison results also revealed that our work has better computational efficiency.