C5 Type 2 attestation for eVai cloud services in Germany

News

enGenome earns C5 Type 2 attestation for eVai cloud services in Germany

Strengthening data security and cloud compliance for clinical genomics

4 March 2026

Pavia, Italy – enGenome today announced that eVai, its AI-driven variant interpretation platform, has obtained a C5 Type 2 attestation for its cloud services, further reinforcing the company’s commitment to data security, transparency, and regulatory compliance.

The Cloud Computing Compliance Criteria Catalogue (C5) is a German government-backed security framework developed by the Federal Office for Information Security (BSI) to establish minimum security requirements and operational transparency for cloud service providers. It provides a structured, auditable set of cloud security controls that draw from internationally recognized standards such as ISO/IEC 27001 and demonstrate compliance with the rigorous baseline expected in Germany and beyond.

Achieving C5 attestation confirms that eVai operates on a cloud infrastructure that meets these high standards for data protection, information security, and operational reliability. Importantly, the Type 2 audit not only verifies that the required security and compliance controls are appropriately designed, it also confirms that they operate effectively over an extended period of time, providing demonstrable evidence of sustained security performance.

As genomic analysis increasingly relies on cloud-based platforms to manage large-scale sequencing data, laboratories and healthcare institutions must ensure that security and compliance are not compromised. The C5 attestation, in particular the Type 2 level, provides additional assurance that eVai is designed to support sensitive clinical data within a controlled and compliant framework.

“Trust in genomic interpretation depends not only on scientific accuracy, but also on how securely data is handled,” said Susanna Zucca, CSO and co-founder of enGenome. “Achieving C5 Type 2 attestation positions our platform as trustable cloud-based software for variant interpretation, demonstrating verified operational security at this level, making our solution uniquely well-prepared within the German market. C5 certification reflects our ongoing commitment to protecting patient data and providing a secure environment for clinical and research workflows. Security and compliance are not add-ons for us, they are part of how we build.”

eVai supports variant classification and prioritization through explainable, AI-driven workflows, helping laboratories manage increasing data volumes while maintaining high standards of security and traceability.

With C5 certification, enGenome continues to strengthen its position as a reliable partner for clinical laboratories and research institutions that require both robust genomic interpretation and secure cloud infrastructure.

About enGenome

enGenome offers innovative solutions for interpreting sequencing data. eVai, the flagship product, is a cloud-based solution fueled by artificial intelligence, that excels in prioritizing genetic variants and has been awarded by the NIH-funded CAGI6 challenge as best performing predictor, elevating diagnostic yield by 12.5%.

The latest release is VarChat, an open-access platform integrating Generative AI that searches and delivers informative text from current scientific literature on genetic variants.

Media Contact: Giovana Herold - marketing@engenome.com