CAS SOFTWARE AG

Their core work

CAS Software AG is a German SME specializing in cloud computing platforms, data privacy solutions, and security-by-design architectures. They build middleware and platform services that help businesses manage data securely across multiple cloud environments, with particular strength in access control policies and encryption for distributed systems. More recently, they have expanded into GDPR compliance tooling, helping organizations re-engineer their business processes to meet European data protection regulations.

What they specialise in

How they've shifted over time

CAS Software started their H2020 participation (2015-2017) focused on cloud security fundamentals — data encryption, distributed storage, and policy-based access control (PaaSword). By 2016-2018, they broadened into multi-cloud infrastructure, participating in projects on cloud brokerage and large-scale data-intensive computing (BASMATI, MELODIC, UNICORN). Their latest project (BPR4GDPR, 2018-2021) signals a clear pivot toward regulatory compliance, applying their security expertise to the practical challenge of GDPR implementation in business processes.

CAS is moving from building cloud security infrastructure toward applied regulatory compliance — expect them to pursue projects at the intersection of data governance, privacy regulation, and cloud-native architectures.

How they like to work

CAS coordinates more projects than they join as partner (3 out of 5), indicating they prefer to lead and shape project direction rather than fill a specialist role. With 36 unique partners across 16 countries, they build broad European consortia rather than relying on a small circle of repeat collaborators. This makes them a strong consortium leader for ICT-security proposals — they know how to assemble and manage diverse international teams.

CAS has built a broad network of 36 partners spanning 16 countries across their 5 projects, giving them wide reach across European ICT and security research communities. Their Karlsruhe base places them in one of Germany's strongest IT clusters.

What sets them apart

CAS brings a rare combination: they are a commercial software company (not a research institute) that can both lead EU research consortia and build production-grade cloud security products. Their trajectory from low-level encryption and access control up to GDPR business process tooling means they understand the full stack — from cryptographic primitives to regulatory workflows. For consortium builders, CAS offers a credible industry partner that can demonstrate real market exploitation of project results.

Highlights from their portfolio

• PaaSword
  Their flagship coordinated project with the largest single budget (EUR 641,875), defining their core identity in cloud data privacy with distributed encryption and policy enforcement.
• BPR4GDPR
  Most recent coordinated project marking their strategic pivot from pure cloud security into GDPR regulatory compliance — a commercially high-demand area.
• MELODIC
  Largest total EC contribution among their participant roles (EUR 621,875), focused on optimized multi-cloud computing at scale.