HomeCompliance › VAIT

VAIT compliance software for German insurers.

All eight VAIT chapters pre-loaded, integrated with Solvency II ORSA risk-bearing-capacity and aligned with DORA from 2025. Outsourcing register, ISB board pack, claims-system authorisation matrices, BCM exercise tracker - one workspace instead of three spreadsheets.

Open the portal See pricing

What is VAIT?

The Versicherungsaufsichtliche Anforderungen an die IT are BaFin's supervisory requirements for IT at German insurers. Eight chapters - from IT-Strategie to Notfallmanagement - sit alongside Solvency II Pillar 2 governance and DORA. They are the German insurance equivalent of BAIT.

Who needs to comply

  • German Versicherungsunternehmen supervised by BaFin under VAG
  • Pensionsfonds and Pensionskassen
  • Sterbekassen and other special insurance forms
  • Group IT-service providers serving BaFin-supervised insurers

Key VAIT capabilities in Dazr

IT-StrategieVorstand-approved IT strategy with annual sign-off tracker.
Informationsrisiken / ORSARisk register feeding ORSA / Solvency II Pillar 2.
Schaden-BerechtigungenClaims-agent authorisation matrices with quarterly recertification.
Schwachstellen-ManagementContinuous scanning + severity-based remediation SLAs.
AuslagerungsregisterAligned with MaGo / DORA. Exit plan per critical provider.
BCM SchadenBCM per critical claims-handling process. Annual exercise.

What auditors look for

A BaFin or external auditor walks the eight VAIT chapters with focus on the outsourcing register, the claims-process authorisations, the ISB function, and the BCM. Dazr keeps each chapter audit-ready with contemporaneous evidence.

How Dazr helps with VAIT

  • Pre-loaded controls per VAIT chapter
  • Outsourcing register aligned with MaGo and DORA
  • Run VAIT alongside DORA, ISO 27001 and BSI C5 in one workspace
  • Quarterly ISB board pack template
  • Hand the auditor a read-only view or a single-PDF audit trail

Back to the full Dazr Compliance overview › | Sign up free ›

VAIT questions, answered.

What is VAIT?

BaFin's supervisory requirements for IT at German insurers. Eight chapters covering IT strategy, governance, information-risk, authorisations, projects, operations, outsourcing and BCM.

Who has to comply?

German insurers supervised by BaFin under VAG, plus Pensionsfonds, Pensionskassen and Sterbekassen.

How does VAIT relate to DORA?

DORA applies to in-scope insurers from January 2025 and supersedes large parts of VAIT - particularly outsourcing and ICT-incident reporting.

Where is data hosted?

European Union only. AES-256-GCM at rest. EU jurisdiction.

Ready to start your VAIT programme?

Free for one user. Pro €29/mo and Enterprise €299/mo are self-serve via Mollie. Custom (from €800/mo) is the only tier on a contract.

Open the portal All frameworks