Europe's Strictest Cloud Security Framework
The BSI C5 framework encompasses 121 security controls across 17 domains and is based on internationally recognized standards. The assessment of Kiteworks was conducted from 1st August to 31st October 2025 and included both the design and operational effectiveness of the security controls. It was certified by an independent audit opinion from HKKG GmbH on 19th December 2025. It confirms the security of Kiteworks in areas such as Identity & Access Management, Cryptography and Key Management, Security Incident Management, Business Continuity, and others—addressing the entire spectrum of cloud security requirements.
BSI C5 Type-2 Advantages
In a market increasingly characterized by NIS2, DORA, and stricter data sovereignty demands, the attestation has significant importance as an independent security certification. The certification of a provider particularly offers a crucial auditing basis for safe cloud usage in regulated industries. As the C5 Type-2 attestation confirms not just the design but the actual operational effectiveness of the controls, organizations in the DACH region can significantly shorten their audit processes and security checks. For specialized departments, working with C5-attested partners means a higher level of resilience and a legally secure implementation of European compliance requirements when handling sensitive data.
The BSI C5 Type-2 attestation expands Kiteworks' comprehensive compliance portfolio and complements existing certifications such as SOC 2 Type II, ISO 27001, 27017, and 27018, as well as FedRAMP Moderate Authorization, FedRAMP High Ready status, and the IRAP certification. Thus, customers can rely on a central platform that supports regulatory requirements in Europe, North America, and the Asia-Pacific region.
Press Contact:
Katharina Scheurer
+49 (89) 443 112 74
kiteworks@digitalk-pr.de