Veeam, a company that spent two decades building a dominant presence in the data backup and recovery market, is now making a bold move into an entirely new category: data and AI trust infrastructure. The company is charting its new course with the $1.725 billion acquisition of Securiti Inc., completed in December 2025, and the announcement of the Veeam DataAI Command Platform at VeeamON 2026. According to CEO Anand Eswaran, Veeam’s future lies in filling the critical missing layer of the AI stack.
The Missing Layer of the AI Stack
In an interview, Anand Eswaran outlined the structure of the modern AI stack, where each component has its established players. “You have your GPUs — Nvidias of the world. You have your data layer, the companies like Databricks and Snowflake. You have the AI models which operate on it, Anthropic, OpenAI. You have your agent orchestration layers,” Eswaran explained. But what’s missing from this picture?
Do you have a question about AI security? You can reach us here:
At the heart of Veeam’s thesis is a quote from Sam Altman, which Eswaran highlighted:
“The problem in the bottleneck is never going to be compute or intelligence, because that is going to become a utility. It is going to be, ‘Can you trust the data feeding it?’ That is at the heart of our thesis, which is that right above the data layer and below the model layer, you need to have a data and AI trust layer.”
This realization has driven Veeam to move beyond traditional data backup and create a platform that ensures the security, compliance, and reliability of the data feeding AI models.
The Veeam DataAI Command Platform: A Unified Approach
Veeam’s answer to this challenge is the Veeam DataAI Command Platform, described as the industry’s first unified data and AI trust infrastructure for the agentic era. At its core sits the DataAI Command Graph, built on technology from the Securiti acquisition.
According to Eswaran, today’s market is fragmented with individual products that address slices of data security, AI security, governance, privacy, compliance, or resilience. Veeam’s goal is to unify these on a single platform. “The only way this AI trust layer works is if you are able to unify all of these domains on one platform and one data fabric,” the CEO emphasized.
Based on the facts, the platform’s capabilities are impressive: it features more than 300 connectors to cloud, SaaS, and on-premises environments. It can visualize data at a discrete, granular element level—not just at the database or S3 bucket level, but down to the finest detail. This depth and breadth enable the concept of “precision resilience.” As Eswaran puts it, the question is no longer how to restore 24 hours of work, but rather: “How can I recover with precision only those five seconds which went wrong, only that one agent action which went wrong?”
AIQ Analysis: Implications for the EU Market
From an AIQ standpoint, Veeam’s move is far more than a simple product announcement; it reflects a fundamental enterprise need that is becoming increasingly urgent with the proliferation of AI-driven solutions, especially within the strict regulatory environment of the European Union.
GDPR and EU AI Act Compliance
In a corporate context, such a unified platform could be invaluable for complying with the requirements of GDPR and the soon-to-be-enforced EU AI Act. The DataAI Command Graph’s ability to map data at a granular level—tracking its origin, usage, and associated access rights—directly supports the GDPR principle of “privacy by design.” Fulfilling the transparency and documentation requirements of the EU AI Act is nearly impossible without a central system that provides a clear view of which data feeds high-risk AI systems.
Addressing OWASP LLM Top 10 Risks
The platform’s functionality is relevant to several of the most critical vulnerabilities in the OWASP LLM Top 10:
- LLM05: Sensitive Information Disclosure: The platform’s data security, privacy, and governance features help prevent models from leaking sensitive personal (PII) or business data. Granular control allows for the enforcement of policies before data even reaches the model.
- LLM08: Excessive Agency: The excessive permissions and uncontrolled actions of autonomous agents represent one of the biggest new risks. The “precision resilience” mentioned by Veeam—the ability to undo a single faulty agent action—is a critical security control that can mitigate the damage from such incidents.
Audit and Red Teaming Perspectives
From a corporate security audit perspective, a unified trust layer significantly simplifies processes. Instead of examining dozens of disparate systems, auditors and red teamers can draw information from a central “knowledge graph” about data assets, data flows, and AI interactions. This allows for much more efficient identification of weak points and improper access, providing a real-time, comprehensive view of the organization’s AI security posture.
In conclusion, Veeam’s strategic direction aims to fill a market gap that more and more companies are beginning to recognize. AI models themselves are worthless without trusted, secure, and compliant data. A platform designed to guarantee that trust could well become a cornerstone of the AI era.