TINTON FALLS, N.J. – March 5, 2026 – Commvault (NASDAQ: CVLT), a leader in unified resilience at enterprise scale, today announced an integration with CloudSEK, a leader in Predictive Threat Intelligence and AI-driven external risk monitoring, to help enterprises proactively defend against identity-based cyberattacks fueled by stolen and exposed credentials.
As identity becomes the new attack surface, nearly 80% of breaches involve compromised credentials.1 Today, more than 24 billion stolen credentials are scattered across dark web marketplaces, stealer logs, and underground forums.2 With the rise of AI-driven attack automation and agentic adversaries, the time between credential exposure and exploitation has collapsed from months to hours, so identifying and remediating risks early is of paramount importance.
This integration brings CloudSEK’s real-time Dark Web Credential Intelligence directly into Commvault’s Active Directory Vulnerability Assessments and Active Directory Advanced Audit and Anomaly Detection solutions. By correlating external credential exposure signals with internal identity telemetry, customers can identify exposed accounts early and take decisive action, including: disabling, locking, or resetting compromised credentials and rolling back malicious changes to Active Directory before attackers can escalate privileges, deploy ransomware, or exfiltrate sensitive data.
Additionally, via this integration, vulnerabilities and risks across internal, public, and dark web sources are automatically scored, prioritized, and delivered with clear remediation guidance, eliminating guesswork and enabling security teams to focus on the most critical issues first.
“By integrating CloudSEK’s external exposure threat intelligence with Commvault’s Active Directory protection capabilities, we’re expanding customers’ ability to uncover hidden identity risks earlier and neutralize identity-based threats before they escalate – critical as attacks become more AI-driven and agentic,” said Pranay Ahlawat, Chief Technology and AI Officer at Commvault.
“In today’s AI-driven threat landscape, partnerships are critical to closing the gap between external intelligence and internal action,” said Nivya Ravi, AVP – Partnerships at CloudSEK. “By embedding CloudSEK’s predictive threat intelligence into enterprise security workflows, we enable organizations to act on exposed credentials and identity risks before attackers can operationalize them. This is about shifting from reactive detection to proactive disruption.”
Availability
The CloudSEK integration will be available this summer at no charge for customers using Commvault Active Directory Vulnerability Assessments and Active Directory Advanced Audit and Anomaly Detection solutions. Customers will also have the opportunity to upgrade to the full suite of CloudSEK solutions.
Join Commvault at RSAC 2026
Commvault’s latest identity resilience offerings take center stage at this year’s RSAC Conference (Booth #S-0634) from March 23-26 in San Francisco. Show attendees can grab a ringside seat for the ResOps Rumble where resilience and operations join forces to deliver unified cyber recovery, identity resilience, and data security. Register today for ransomware recovery demos and sessions, expert insights on identity resilience and clean recovery, and the ultimate prize – unified resilience for your organization.
About Commvault
Commvault (NASDAQ: CVLT) is a leader in unified resilience at enterprise scale. In a constantly evolving threat landscape, Commvault keeps customers ready by unifying data security, identity resilience, and cyber recovery, on one cloud-native, AI-enabled platform. Customers trust Commvault to conduct the fastest, most complete recoveries – not just their data, but their entire business. Purpose-built for the agentic enterprise, Commvault also enables organizations to safely embrace AI while protecting against AI-driven threats.
About CloudSEK
CloudSEK is the leading Predictive Cyber Threat Intelligence platform that forecasts and disrupts attack paths before AI-driven adversaries can weaponize them.
CISOs and security teams rely on CloudSEK to uncover how weak signals combine into real breach scenarios and to neutralize those paths before damage occurs.
TINTON FALLS, N.J. – March 5, 2026 – Commvault (NASDAQ: CVLT), a leader in unified resilience at enterprise scale, today announced the expansion of its Identity Resilience portfolio to include support for Okta. Building on proven protection for identity systems, the new capability enables organizations to rapidly recover their Okta environments from misconfigurations, operational disruptions, and identity-driven cyberattacks.
Identity exposure and credential theft are accelerating at an unprecedented rate as non-human, agentic, and API-based identities propagate and multiply. In 2024 alone, 107 billion identity records were exposed globally1 and last year, 57% of cyberattacks began with a compromised identity.2 As organizations adopt hybrid cloud architectures, SaaS applications, and AI-driven automation, identity systems have become the enterprise control plane, making their resilience mission-critical.
While Okta’s platform is designed to be resilient and help mitigate potential identity-based attacks, when an identity provider is disrupted – whether through human error or malicious activity – users are locked out, applications fail to authenticate, and operations can stall. Revenue impact, productivity loss, and customer-facing downtime can follow within minutes. Many organizations still rely on manual scripts and ad hoc processes to restore identity environments, increasing downtime and operational risk.
Commvault’s Identity Resilience capabilities close this gap with automated protection and granular, point-in-time recovery of critical Okta objects and configurations. By combining secure, immutable storage with precise restoration capabilities, organizations can reduce disruption and regain access quickly.
“Identity is the new cyber battleground, with most modern attacks targeting identity systems,” said Pranay Ahlawat, Chief Technology and AI Officer at Commvault. “By extending our Identity Resilience capabilities to Okta, we’re helping customers protect one of their most critical control planes so they can rapidly recover access and maintain business continuity even in the face of disruption.”
“As identity-driven attacks continue to escalate, integrating Commvault’s Identity Resilience capabilities with Okta will give us even greater confidence that if our identity platform is compromised or misconfigured, we can recover quickly and precisely without rebuilding our entire environment,” said Phil Winder, Chief of Information Technology at Delaware Department of Correction.
Key capabilities include:
Accelerated recovery from identity disruptions: Automated, policy-driven protection of critical Okta objects – including users, groups, applications, and policies – helps organizations quickly restore access following outages, operational mistakes, or cyber incidents.
Granular, point-in-time recovery: Enables precise restoration of only the deleted, misconfigured, or compromised objects and settings, reducing downtime and eliminating the need for risky, full-environment rebuilds.
Ransomware-resistant protection: Backup data is stored in Commvault-managed immutable, air-gapped storage isolated from production environments, helping safeguard identity data from ransomware and unauthorized changes.
Streamlined recovery: Restore data and configurations across complex, interconnected, and interdependent identity systems through one integrated workflow – saving time and resources.
Unified identity resilience platform: Extends Commvault’s single-platform approach to protect Okta and other identity systems – simplifying operations across hybrid identity environments and maintaining consistent policy enforcement, governance, and recovery across providers.
“Identity resilience is fundamental to achieving higher levels of operating resilience,” said Dave Gruber, Principal Analyst at Omdia. “While identity management and security have always been critical to security programs, the AI-era, and more specifically, the use of agent-based AI solutions, is elevating the importance of both identity and data resilience. Solutions that combine protection, immutability, and granular recovery across multiple identity providers can help reduce operational risk and recovery time.”
Availability
Commvault’s identity resilience support for Okta is expected to be available through public Early Access in spring 2026, with general availability planned for summer 2026. The solution will be offered globally as part of the Commvault Cloud Identity Resilience suite and priced on a per-user basis. To learn more, click here, read today’s blog, and attend the upcoming webinar –Identity Under Attack: Take Back Control with Commvault Identity Resilience, Now Supporting Okta.
Join Commvault at RSAC 2026
Commvault’s latest identity resilience offerings take center stage at this year’s RSAC Conference (Booth #S-0634) from March 23-26 in San Francisco. Show attendees can grab a ringside seat for the ResOps Rumble where resilience and operations join forces to deliver unified cyber recovery, identity resilience, and data security. Register today for ransomware recovery demos and sessions, expert insights on identity resilience and clean recovery, and the ultimate prize – unified resilience for your organization.
About Commvault Commvault (NASDAQ: CVLT) is a leader in unified resilience at enterprise scale. In a constantly evolving threat landscape, Commvault keeps customers ready by unifying data security, identity resilience, and cyber recovery, on one cloud-native, AI-enabled platform. Customers trust Commvault to conduct the fastest, most complete recoveries – not just their data, but their entire business. Purpose-built for the agentic enterprise, Commvault also enables organizations to safely embrace AI while protecting against AI-driven threats.
FRANKFURT, GERMANY – February 26, 2026 – Commvault (NASDAQ: CVLT), a leader in unified resilience at enterprise scale, today announced a partnership with STACKIT that is designed to support European customers’ sovereign cloud requirements while delivering exceptional cyber resilience to enterprise organizations.
This partnership allows Commvault customers to leverage STACKIT’s sovereign cloud, located in and under the jurisdiction of the European Union, as the storage location for Commvault’s immutable, air-gapped data protection solutions. Customers retain control over data location, environment operation and security, and encryption key management. Additionally, customers can rely on Commvault’s offerings to help withstand and rapidly recover from modern cyber threats and attacks.
“Our partnership with STACKIT addresses multiple customer pain points,” said Darren Thomson, Vice President and Field CTO, EMEA, Commvault. “This joint solution helps customers maintain control over how and where their data is stored, mitigate the risk of ransomware, and execute rapid cyber recoveries – essential to helping European organizations support their sovereign cloud requirements while elevating resilience.”
“Organizations across Europe are looking for solutions that enable them to build greater cyber resilience capabilities into their business while also maintaining geographic control over their data in the face of new regulations and threats,” said Robin Hermann, Managing Director, STACKIT Product. “Thanks to our European cloud stack and Commvault’s proven leadership in cyber resilience, this partnership delivers a suitable solution.”
A Unified Approach to Sovereign Cyber Resilience
This announcement builds on the recent launch of Commvault Geo Shield™, a solution approach designed to address different sovereignty degrees with a unified framework. STACKIT is one of the first sovereign cloud providers for Commvault. Additional regional sovereign cloud support is planned.
Availability
The availability of this joint solution with STACKIT is targeted for the spring of 2026. Pricing will be finalized prior to general availability.
About Commvault Commvault (NASDAQ: CVLT) is a leader in unified resilience at enterprise scale. In a constantly evolving threat landscape, Commvault keeps customers ready by unifying data security, identity resilience, and cyber recovery, on one cloud-native, AI-enabled platform. Customers trust Commvault to conduct the fastest, most complete recoveries – not just their data, but their entire business. Purpose-built for the agentic enterprise, Commvault also enables organizations to safely embrace AI while protecting against AI-driven threats.
More related posts
Commvault Encourages Organizations to Adopt a Four-Step Approach to Resilience in the Age of Frontier AI
TINTON FALLS, N.J. – February 25, 2026 – Commvault (NASDAQ: CVLT), a leader in unified resilience at enterprise scale, today announced an expanded integration with CrowdStrike that delivers bi-directional visibility between Commvault Cloud and CrowdStrike Falcon® Next-Gen SIEM. This latest advancement helps security and IT teams quickly verify backup integrity so recovery decisions are faster, safer, and better informed.
With modern actors able to move rapidly across environments, organizations must not only detect threats faster – they must also ensure recovery data is clean, trusted, and ready when it matters most. Commvault has previously worked with CrowdStrike to help customers identify compromised backup data through an integration with the CrowdStrike Falcon® platform, automatically flagging at-risk backup sets to support faster, safer recoveries.
Now, with this new integration, Commvault delivers its own security capabilities, including AI-powered anomaly alerts, directly into Falcon Next-Gen SIEM. This shared intelligence enables security and IT teams to make faster, more coordinated decisions and respond to potential data compromises with greater precision.
Key Customer Benefits:
Reduce reinfection risk and enable safe recovery workflows: By combining signals from Falcon Next-Gen SIEM with Commvault’s deep threat scanning, data integrity analytics, and Synthetic Recovery™, organizations can confidently restore from known-clean backups.
Fast detection and investigation through unified telemetry: Shared signals give IT and SecOps teams visibility into the integrity of backup data from within Falcon Next-Gen SIEM. This can streamline triage, help provide clear blast-radius assessments, and expedite identification of safe data to recover.
Strong security and IT alignment during incidents: With a shared operational view, SecOps and IT teams can coordinate investigation, containment, and recovery workflows without delays created by siloed tools.
“Driving clean and trusted recoveries is now a business imperative,” said Pranay Ahlawat, Chief Technology and AI Officer at Commvault. “By bringing together CrowdStrike’s security insights with Commvault’s deep AI-powered data intelligence, we’re making it easier for security and IT teams to collaborate, identify threats earlier, and make informed trusted recovery decisions that can keep organizations moving.”
“In today’s threat environment, speed and confidence are everything,” said Daniel Bernard, Chief Business Officer at CrowdStrike. “By bringing Commvault’s recovery intelligence into CrowdStrike Falcon Next-Gen SIEM, we’re giving organizations a unified operational view that connects security signals with data trust. This context helps leaders understand the true business impact of an attack, prioritize response, and move faster from detection to recovery – with Falcon Next-Gen SIEM as the AI-native platform where those decisions come together.”
Availability
The Commvault and CrowdStrike Falcon Next-Gen SIEM integration is available today through the CrowdStrike Marketplace at no additional charge. Customers can activate the integration directly within their existing environments.
For more information about the Commvault and CrowdStrike partnership, visit the partner page.
About Commvault Commvault (NASDAQ: CVLT) is a leader in unified resilience at enterprise scale. In a constantly evolving threat landscape, Commvault keeps customers ready by unifying data security, identity resilience, and cyber recovery, on one cloud-native, AI-enabled platform. Customers trust Commvault to conduct the fastest, most complete recoveries – not just their data, but their entire business. Purpose-built for the agentic enterprise, Commvault also enables organizations to safely embrace AI while protecting against AI-driven threats.
More related posts
Commvault Encourages Organizations to Adopt a Four-Step Approach to Resilience in the Age of Frontier AI
TINTON FALLS, NJ – February 2, 2026 –Commvault (NASDAQ: CVLT), a leader in unified resilience at enterprise scale, today announced that CRN®—a brand of The Channel Company—has selected Michelle Graff, Senior Vice President, Global Partners & Channel Sales for inclusion on the prestigious 2026 CRN® Channel Chiefs list. This annual recognition celebrates IT vendor and distribution executives who are shaping channel strategy and driving innovation and partnership across the industry.
Since joining the company, Graff has advanced Commvault’s “Connected Partner Strategy,” unifying the company’s diverse routes to market into a cohesive ecosystem focused on accelerating customer success and adoption. With 25+ years of experience in building high-performance partner ecosystems, Graff’s advancements to Commvault’s partner strategy include shifting to outcome-based partner solutions — critical as Commvault works hand-in-hand with partners to deliver industry-leading cyber resilience to its joint customers, across hybrid and multi-cloud environments.
“We are thrilled to see Michelle recognized as a CRN Channel Chief, celebrating the exceptional work she does every day to empower our partners and help joint customers achieve unified resilience at enterprise scale,” said Gary Merrill, Chief Commercial Officer, Commvault. “She exemplifies what it means to build true partnerships – where innovation, collaboration, and shared outcomes drive mutual growth.”
“Being recognized as a CRN Channel Chief is an incredible honor that I share with our entire partner community and the talented team at Commvault,” said Graff. “Our partners are at the heart of everything we do – and when we help our partners deliver value that helps our joint customers thrive, we all win.”
The annual CRN Channel Chiefs list spotlights the most influential leaders across the IT channel, celebrating those who champion collaboration, drive innovation and empower their partners and customers to achieve shared success.
“Leaders recognized as CRN Channel Chiefs this year have demonstrated unwavering commitment to their partners and the broader IT channel. Their vision, passion and drive for innovation continue to shape the future of our industry. We are proud to celebrate their achievements and the positive impact they make every day,” said Jennifer Follett, Vice President, U.S. Content, Executive Editor, CRN.
CRN’s 2026 Channel Chiefs list will be featured on CRN.com beginning Feb. 2 at www.CRN.com/ChannelChiefs
Michelle Graff
About Commvault Commvault (NASDAQ: CVLT) is a leader in unified resilience at enterprise scale. In a constantly evolving threat landscape, Commvault keeps customers ready by unifying data security, identity resilience, and cyber recovery, on one cloud-native, AI-enabled platform. Customers trust Commvault to conduct the fastest, most complete recoveries – not just their data, but their entire business. Purpose-built for the agentic enterprise, Commvault also enables organizations to safely embrace AI while protecting against AI-driven threats.
More related posts
Commvault Encourages Organizations to Adopt a Four-Step Approach to Resilience in the Age of Frontier AI
TINTON FALLS, NJ – February 2, 2026 – Commvault (NASDAQ: CVLT), a leader in unified resilience at enterprise scale, today announced Commvault Geo Shield™, a solution approach designed to help organizations protect and recover critical data while retaining control over data location, how environments are operated, and who holds the encryption keys.
As customers’ sovereign needs evolve and cloud adoption accelerates, Commvault continues to meet its customers where they are. Commvault Geo Shield extends the company’s long-standing support for regulated and compliance-driven environments.
“Commvault Geo Shield is designed to help customers strengthen resilience, support data compliance efforts, and maintain control over how and where their data is managed,” said Rajiv Kottomtharayil, Chief Product Officer, Commvault.
A Unified Approach to Sovereign Cyber Resilience
Commvault’s adaptive fabric architecture that separates the control and data planes is the foundation of its Geo Shield – providing customers control over where data is stored, how it is protected, and who controls access within customer or partner-operated environments. With this announcement, Commvault is focused on providing customers cloud sovereignty options that meet their individual requirements:
Commvault Cloud SaaS in local hyperscaler regions, where available, to support data residency requirements.
Commvault Cloud SaaS in sovereign hyperscaler regions, including initial support for environments such as AWS European Sovereign Cloud, with additional regional sovereign cloud support planned.
Partner-operated sovereign offerings, enabling qualified local service providers to deliver national or regional sovereign cloud services using Commvault software and air-gapped protection.
Private sovereign cloud deployments, operated by customers or designated partners within dedicated environments.
Key Capabilities
Commvault Geo Shield helps organizations:
Enable cyber resilience without sacrificing sovereignty by supporting deployment patterns that validate recoverability and operational resilience while maintaining in-region control of data, operations, and encryption keys.
Maintain customer-controlled encryption keys, for example, supporting Bring Your Own Key (BYOK) and Hold Your Own Key (HYOK) models, and integrating with customer- or partner-managed hardware security modules (HSMs).
Operate within boundaries, including “no call home” requirements with operations run by screened local partners.
Bridging Regulatory and Sovereign Requirements with a Unified Platform
Commvault already supports a broad spectrum of federal, industry, and global regulatory requirements, including: FedRAMP High, FIPS 140-3, and GovRAMP, industry-specific mandates like SEC Rule 17a, HIPAA, and PCI DSS v4.0, as well as frameworks such as DORA and NIS2. Additionally, Commvault supports a host of global frameworks including IRAP PROTECTED status for the Australian Federal Government and certified Cloud Service Provider (CSP) status with the Dubai Electronic Security Center (DESC).
Availability
Availability of additional Commvault Geo Shield specific deployment models will be announced separately based on implementation timelines with partners in relevant regions. For more information about Commvault Geo Shield, visit here.
About Commvault Commvault (NASDAQ: CVLT) is a leader in unified resilience at enterprise scale. In a constantly evolving threat landscape, Commvault keeps customers ready by unifying data security, identity resilience, and cyber recovery, on one cloud-native, AI-enabled platform. Customers trust Commvault to conduct the fastest, most complete recoveries – not just their data, but their entire business. Purpose-built for the agentic enterprise, Commvault also enables organizations to safely embrace AI while protecting against AI-driven threats.
Total Revenue climbs +19% year over year to a record $314 million Annualized recurring revenue (ARR)1 reaches $1,085 million, up +22% year over year Sets high for new customers added in fiscal 2026
Tinton Falls, N.J. – January 27, 2026 – Commvault (Nasdaq: CVLT) today announced its financial results for the fiscal third quarter ended December 31, 2025.
“Commvault delivered another quarter of healthy growth and profitability driven by record customer engagement and adoption,” said Sanjay Mirchandani, President and CEO, Commvault. “Customers and partners are turning to Commvault because they require an AI-enabled platform that addresses rapidly evolving identity and emerging threats, supports compliance, and brings resilience to hybrid and multi-cloud environments.”
Notes are contained at the end of this press release
Third Quarter Fiscal 2026 Highlights –
Total revenues were $314 million, up 19% year over year
Total ARR1 grew to $1,085 million, up 22% year over year, or 17% on a constant currency basis using March 31, 2025 spot rates
Subscription revenue was $206 million, up 30% year over year, inclusive of term-based license revenue of $119 million, up 22% year over year, and SaaS revenue of $87 million, up 44% year over year
Subscription ARR1 grew to $941 million, up 28% year over year, or 24% on a constant currency basis using March 31, 2025 spot rates
Income from operations (EBIT) was $20 million, an operating margin of 6.3%
Non-GAAP EBIT2 was $61 million, an operating margin of 19.6%
Operating cash flow was $4 million, with free cash flow2 of $2 million, impacted by the timing of certain working capital items
Recent Business Highlights –
Commvault released the Commvault Cloud Unity Platform, unifying data security, cyber recovery and identity resilience across cloud, hybrid and on-premise environments.
Commvault and Delinea announced a new partnership that expands Commvault’s unified data security, identity resilience, and cyber recovery offerings within the Commvault Cloud platform, enabling customers to manage credentials and limit privilege misuse.
Commvault received a 2025 Geography and Global AWS Partner Award, being named the Global Storage Partner of the Year.
Commvault announced a partnership with Pinecone, enabling customers to protect and recover vector database workloads that support enterprise AI applications.
Financial Outlook for Fourth Quarter and Full Year Fiscal 20263–
We are providing the following guidance for the fourth quarter of fiscal year 2026, based on current macroeconomic conditions:
Total revenues are expected to be between $305 million and $308 million
Subscription revenue is expected to be between $203 million and $207 million
Non-GAAP gross margin2 is expected to be approximately 81%
Non-GAAP EBIT margin2 is expected to be approximately 19%
We are providing the following updated guidance for the full fiscal year 2026, based on current macroeconomic conditions:
Total revenues are expected to be between $1,177 million and $1,180 million
Total ARR1 is expected to grow approximately 18% year over year
Subscription revenue is expected to be between $764 million and $768 million
Subscription ARR1 is expected to grow approximately 24% year over year
Non-GAAP gross margin2 is expected to be between 81% and 81.5%
Non-GAAP EBIT margin2 is expected to be between 19% and 20%
Free cash flow2 is expected to be between $215 million and $220 million, reflecting one-time payments associated with the cost optimization program (restructuring plan) initiated in the third quarter
The above statements are based on the incorporation of actual third quarter results and current targets. These statements are forward-looking and made pursuant to the safe harbor provisions discussed in detail below. We do not undertake any obligation to update these forward-looking statements. Actual results may differ materially from anticipated results.
Conference Call Information
Commvault will host a conference call today, January 27, 2026 at 8:30 a.m. Eastern Time (5:30 a.m. Pacific Time) to discuss quarterly results. The live webcast and call dial-in numbers can be accessed by registering under the “News & Events” section of Commvault’s website at ir.commvault.com under the “Investor Events” heading. An archived webcast of this conference call will also be available following the call.
About Commvault
Commvault (Nasdaq: CVLT) is a leader in unified resilience at enterprise scale. In a constantly evolving threat landscape, Commvault keeps customers ready by unifying data security, identity resilience, and cyber recovery, on one cloud-native, AI-enabled platform. Customers trust Commvault to conduct the fastest, most complete recoveries – not just their data, but their entire business. Purpose-built for the agentic enterprise, Commvault also enables organizations to safely embrace AI while protecting against AI-driven threats.
Safe Harbor Statement
This press release may contain forward-looking statements, including statements regarding financial projections, which are subject to risks and uncertainties, such as those related to our restructuring plans, competitive factors, difficulties and delays inherent in the development, manufacturing, marketing and sale of software products and related services, general economic conditions, outcome of litigation and others. For a discussion of these and other risks and uncertainties affecting Commvault’s business, see “Item 1A. Risk Factors” in our annual report on Form 10-K and “Item 1A. Risk Factors” in our most recent quarterly report on Form 10-Q. Statements regarding Commvault’s beliefs, plans, expectations or intentions regarding the future are forward-looking statements, within the meaning of Section 27A of the Securities Act of 1933, as amended, and Section 21E of the Securities Exchange Act of 1934, as amended. All such forward-looking statements are made pursuant to the safe harbor provisions of the Private Securities Litigation Reform Act of 1995. Actual results may differ materially from anticipated results. Commvault does not undertake to update its forward-looking statements.
Overview ($ in thousands)
Constant Currency – Revenue ($ in thousands)
The constant currency impact is calculated using the average foreign exchange rates from the prior year period and applying these rates to foreign-denominated revenues in the current corresponding period. Commvault analyzes revenue growth on a constant currency basis in order to provide a comparable framework for assessing how the business performed excluding the effect of foreign currency fluctuations. The non-GAAP financial measures presented in this press release should not be considered as a substitute for, or superior to, the measures of financial performance prepared in accordance with GAAP.
Disaggregation of Revenues ($ in thousands)
Our Americas region includes the United States, Canada, and Latin America. Our International region primarily includes Europe, Middle East, Africa, Australia, India, Southeast Asia, and China.
Total ARR, Subscription ARR and SaaS ARR1 ($ in thousands)
Constant Currency – ARR1 ($ in thousands)
The constant currency impact on ARR1 is calculated using the foreign exchange spot rates from March 31, 2025 and applying these rates to foreign-denominated results in the periods presented.
Additional Financial Information
GAAP net income was $18 million, or $0.40 per diluted share for the three months ended December 31, 2025
GAAP gross margin was 81.1% and non-GAAP gross margin2 was 81.5% for the three months ended December 31, 2025
We repurchased approximately 327,000 shares of common stock for $41 million during the three months ended December 31, 2025
Commvault’s Board of Directors approved recommitting our share repurchase program so that $250 million was made available as of January 14, 2026
Weighted average diluted shares outstanding were approximately 45 million for the period ended December 31, 2025
Cash and cash equivalents totaled $1,026 million as of December 31, 2025
SaaS net dollar retention rate (NRR)4 was 121% as of December 31, 2025
At the end of the third quarter, we initiated a cost optimization program aimed to align our cost structure to the evolving needs of the business. Refer to Note 7 below for further details.
Use of Non-GAAP Financial Measures
Commvault has provided in this press release the following non-GAAP financial measures: non-GAAP income from operations (EBIT), non-GAAP income from operations margin, non-GAAP gross margin, non-GAAP net income, non-GAAP diluted earnings per share, non-GAAP free cash flow, annualized recurring revenue (ARR), subscription ARR, SaaS ARR and SaaS net dollar retention rate (NRR). This financial information has not been prepared in accordance with GAAP. Commvault uses these non-GAAP financial measures internally to understand, manage and evaluate its business and make operating decisions. Commvault believes that the use of these non-GAAP financial measures, when used as a supplement to GAAP financial measures, provides an additional tool for investors to use in evaluating ongoing operating results and trends, and in comparing its financial results with other companies in Commvault’s industry, many of which present similar non-GAAP financial measures to the investment community. Commvault has also provided its revenues, ARR, subscription ARR and SaaS ARR on a constant currency basis. Commvault analyzes revenue growth, ARR, subscription ARR and SaaS ARR on a constant currency basis in order to provide a comparable framework for assessing how the business performed excluding the effect of foreign currency fluctuations.
All of these non-GAAP financial measures should be considered as a supplement to, and not as a substitute for, financial information prepared in accordance with GAAP. Investors are encouraged to review the reconciliation of these non-GAAP measures to their most directly comparable GAAP financial measures, which are included in this press release.
Non-GAAP income from operations and non-GAAP income from operations margin. These non-GAAP financial measures exclude noncash stock-based compensation charges and additional Federal Insurance Contribution Act (FICA) and related payroll tax expense incurred by Commvault when employees vest in restricted stock awards. Commvault has also excluded restructuring costs, noncash amortization of intangible assets, business combination costs, the change in the estimated fair value of contingent consideration, adjustments from the sale and leaseback of headquarters and other nonrecurring charges from its non-GAAP results. These adjustments are further discussed in the reconciliation of GAAP to non-GAAP financial measures. Commvault believes that these non-GAAP financial measures are useful metrics for management and investors because they compare Commvault’s core operating results over multiple periods. When evaluating the performance of Commvault’s operating results and developing short- and long-term plans, Commvault does not consider such expenses.
Although noncash stock-based compensation and the additional FICA and related payroll tax expenses are necessary to attract and retain employees, Commvault places its primary emphasis on stockholder dilution as compared to the accounting charges related to such equity compensation plans. Commvault believes that providing non-GAAP financial measures that exclude noncash stock-based compensation expense and the additional FICA and related payroll tax expenses incurred on vesting of restricted stock awards allow investors to make meaningful comparisons between Commvault’s operating results and those of other companies.
There are a number of limitations related to the use of non-GAAP income from operations and non-GAAP income from operations margin. The most significant limitation is that these non-GAAP financial measures exclude certain operating costs, primarily related to noncash stock-based compensation, which is of a recurring nature. Noncash stock-based compensation has been, and will continue to be for the foreseeable future, a significant recurring expense in Commvault’s operating results. In addition, noncash stock-based compensation is an important part of Commvault’s employees’ compensation and can have a significant impact on their performance. The following table presents the stock-based compensation expense included in cost of revenues, sales and marketing, research and development and general and administrative ($ in thousands):
The table above excludes stock-based compensation expense related to the Company’s restructuring activities described below in Note 7.
The components that Commvault excludes in its non-GAAP financial measures may differ from the components that its peer companies exclude when they report their non-GAAP financial measures. Due to the limitations related to the use of non-GAAP measures, Commvault’s management assists investors by providing a reconciliation of each non-GAAP financial measure to the most directly comparable GAAP financial measure. Commvault’s management uses non-GAAP financial measures only in addition to, and in conjunction with, results presented in accordance with GAAP.
Non-GAAP net income and non-GAAP diluted earnings per share (EPS). In addition to the adjustments discussed in non-GAAP income from operations, non-GAAP net income and non-GAAP diluted EPS incorporates a non-GAAP effective tax rate of 24%.
Commvault anticipates that in any given period its non-GAAP tax rate may be either higher or lower than the GAAP tax rate as evidenced by historical fluctuations. The GAAP tax rates in recent fiscal years were not meaningful percentages due to the dollar amount of GAAP pre-tax income. For the same reason as the GAAP tax rates, the estimated cash tax rates in recent fiscal years are not meaningful percentages. Commvault defines its cash tax rate as the total amount of cash income taxes payable for the fiscal year divided by consolidated GAAP pre-tax income. Over time, Commvault believes its GAAP and cash tax rates will align.
Commvault considers non-GAAP net income and non-GAAP diluted EPS useful metrics for Commvault management and its investors for the same basic reasons that Commvault uses non-GAAP income from operations and non-GAAP income from operations margin. In addition, the same limitations as well as management actions to compensate for such limitations described above also apply to Commvault’s use of non-GAAP net income and non-GAAP diluted EPS.
Non-GAAP gross margin. Commvault defines this non-GAAP financial measure as GAAP gross margin adjusted to exclude cost of revenues related to noncash stock-based compensation.
Non-GAAP free cash flow. Commvault defines this non-GAAP financial measure as net cash provided by operating activities less purchases of property and equipment. Commvault considers non-GAAP free cash flow a useful metric for Commvault management and its investors in evaluating Commvault’s ability to generate cash from its business operations. In addition, the same limitations as well as management actions to compensate for such limitations described above also apply to Commvault’s use of non-GAAP free cash flow.
Forward-looking non-GAAP measures. In this press release, Commvault presents non-GAAP gross margin, non-GAAP EBIT margin and free cash flow on a forward-looking basis. The most directly comparable GAAP measures are not accessible on a forward-looking basis without unreasonable efforts, because certain items that impact these GAAP measures, cannot be reasonably predicted or quantified. The probable significance of these items may be material, and as a result, the corresponding GAAP measures and a quantitative reconciliation to those GAAP measures are not available on a forward-looking basis.
Notes
Annualized recurring revenue (ARR) is defined as the annualized recurring value of all active contracts at the end of a reporting period. It includes recurring subscription offerings (including term licenses, SaaS, and utility software), maintenance related to perpetual and term licenses, extended maintenance contracts (enterprise support), and managed services. It excludes non-recurring elements such as perpetual licenses and professional services which are typically delivered at a point in time. ARR is calculated by dividing the total contract value by the number of days in the contract term and multiplying by 365. Subscription ARR includes only term licenses, SaaS, and utility arrangements, calculated using the same methodology as ARR. SaaS ARR includes only the cloud-hosted portion of subscription ARR and is calculated using the same methodology.
These metrics should be viewed independently of GAAP revenue, deferred revenue and unbilled revenue and are not intended to be combined with or to replace those items. These metrics are not a forecast of future revenues. Management believes that reviewing these metrics, in addition to GAAP results, helps investors and financial analysts understand the value of Commvault’s recurring revenue streams presented on an annualized basis. There is no direct GAAP comparative to ARR. See “Use of Non-GAAP Financial Measures” for additional explanation.
A reconciliation of GAAP to non-GAAP results has been provided in the reconciliation of GAAP to non-GAAP financial measures included in this press release. An explanation of these measures is also included under the heading “Use of Non-GAAP Financial Measures.”
Commvault does not provide forward-looking guidance on a GAAP basis as certain financial information, the probable significance of which cannot be determined, is not available and cannot be reasonably estimated. See “Forward-looking non-GAAP measures” for additional explanation.
SaaS net dollar retention rate (NRR) is the percentage of SaaS ARR retained from existing customers at the start of an annual period after accounting for expansion revenue, churn, and downgrades. It is presented on a constant currency basis using exchange rates as of March 31, 2025. Acquired SaaS ARR is excluded until the acquisition is fully integrated, which we generally expect to occur twelve months from the close date. We believe our SaaS NRR offers valuable insight into the year-over-year expansion of our existing customer base, reflecting both increased utilization of current products and services as well as the adoption of additional offerings. There is no direct GAAP comparative to NRR. See “Use of Non-GAAP Financial Measures” for additional explanation.
Represents noncash stock-based compensation charges associated with restricted stock units granted and our Employee Stock Purchase Plan, exclusive of stock-based compensation expense related to Commvault’s restructuring activities described below in Note 7.
Represents additional FICA and related payroll tax expenses incurred by Commvault when employees vest in restricted stock awards.
During fiscal 2026, we initiated two restructuring plans designed to optimize our cost structure, enhance organizational agility, align resources with strategic priorities, and reorganize our business technology function. These initiatives include workforce reductions, technology transitions, office lease closures, and the exit of operations in certain jurisdictions. The related charges primarily consist of severance and associated employee termination costs, stock‑based compensation expense resulting from modification events, and office closure and exit charges. We expect both restructuring plans to be substantially completed during fiscal 2027.
Restructuring charges incurred in the prior year relate to a plan initiated in the fourth quarter of fiscal 2024 and completed in fiscal 2025. These charges consisted of severance and associated employee termination costs and stock‑based compensation expense resulting from modification events.
Represents noncash amortization of intangible assets.
During the first quarter of fiscal 2025, we entered into a settlement agreement resulting in a payment of approximately $1.5 million which resolved certain legal matters. For the three months ended June 30, 2024, approximately $0.7 million was recorded in general and administrative expenses and the remaining $0.8 million was incurred in a prior period that is not presented in the consolidated statements of operations.
These charges relate to acquisition and business development activities, including legal, accounting and advisory services. Management believes, when used as a supplement to GAAP results, that the exclusion of these costs will help investors and financial analysts understand Commvault’s operating results and underlying operational trends as compared to other periods.
Represents the change in the estimated fair value of the contingent consideration arrangement related to the acquisition of Appranix, Inc.
During the first quarter of fiscal 2026, we finalized the sale of our corporate headquarters and entered into a lease for a portion of the premises. These noncash charges represent accounting adjustments for a $1.3 million loss associated with the related lease terms and an $0.8 million adjustment to reflect the final sale price of the assets resulting in a net charge of $0.5 million recorded in general and administrative expense on the consolidated statements of operations.
Represents noncash impairment charges related to our corporate headquarters.
These primarily legal and consulting expenses are related to our response in the second quarter of fiscal 2026 to a one-time security matter from the first quarter. Given the non-recurring nature of the matter, these costs have been excluded from non-GAAP results to provide a clearer view of ongoing operating performance.
The provision for income taxes is adjusted to reflect Commvault’s estimated non-GAAP effective tax rate of 24%.
More related posts
Commvault Encourages Organizations to Adopt a Four-Step Approach to Resilience in the Age of Frontier AI
TINTON FALLS, NJ – January 26, 2026 – Commvault (NASDAQ: CVLT), a leader in unified resilience at enterprise scale, today announced an expanded collaboration with Google Cloud that enhances data protection, security, and resilience capabilities for customers.
As enterprises migrate more workloads to the cloud, the need for resilience remains key. Ransomware and insider threats are growing in sophistication; recovery windows are shrinking, and regulatory pressures continue to rise. According to SentinelOne, 80% of companies have encountered an increase in the frequency of cloud attacks1 and industry reports show that the average downtime following a ransomware attack is 24 days,2 creating costly operational gaps.
Against this backdrop and to help cloud-first and hybrid organizations remain resilient, Commvault has introduced new capabilities that deliver immutable protection, rapid recovery of data and cloud applications, as well as archiving for compliance support – all within one platform.
New Commvault capabilities for Google Cloud users include:
Advancing security and supporting compliance with Commvault’s Air Gap Protect (AGP): Enables immutable, indelible backups that can be stored directly in an isolated, virtually air-gapped location in Google Cloud, helping to isolate data from production systems and to defend against ransomware and insider threats. A new compliance-ready Archive Tier supports regulatory requirements and optimizes long-term retention.
Rebuilding cloud apps and accelerating recoveries with Commvault Cloud Rewind: With this announcement, Google Cloud customers can also use Commvault Cloud Rewind to rapidly and cleanly rebuild cloud applications. This is an important advancement as these applications, and associated dependencies, often power enterprise data and are essential to keeping business running, even during ransomware events or major deployment errors.
Simplifying compliance search for Google Workspace environments: Expands on existing Google Workspace protection, first announced last year, by adding advanced compliance-search capabilities for Commvault’s eDiscovery offering. Customers can now locate and export relevant data, such as email messages and files, across their Google Workspace backups faster for audits, litigation, or investigations. This expanded support is designed to help organizations reduce the time and costs associated with eDiscovery and support their legal and regulatory obligations.
“Organizations are under immense pressure to outpace cyberattacks that increasingly target backup environments,” said Rajiv Kottomtharayil, Chief Products Officer, Commvault. “By expanding our collaboration with Google Cloud, we’re giving enterprises the confidence that their critical data and cloud applications are protected, isolated, and recoverable, so their business never stops.”
“Cyber resilience is a critical requirement for enterprises operating in the cloud today,” said Asad Khan, Senior Director, Product Management, Storage, Google Cloud. “With Commvault’s Air Gap Protect, Cloud Rewind, and enhanced data protection for Google Workspace, customers gain additional defenses against ransomware and the ability to rapidly restore applications and data running on Google Cloud.”
“Ransomware continues to evolve, with attackers increasingly targeting data backup infrastructure to limit recovery options,” said Todd Thiemann, Principal Analyst at Omdia. “Commvault’s expansion with Google Cloud, including immutable backups and cross-project recovery, represents an important advancement for enterprises seeking cyber resilience in cloud environments.”
Availability
Commvault’s expanded Air Gap Protect capabilities for Google Cloud are available today. Cloud Rewind and Google Workspace protection are available via Google Cloud Marketplace. Compliance Search capabilities for Google Workspace are currently available in early access and are targeted for general availability in the first half of 2026.
About Commvault Commvault (NASDAQ: CVLT) is a leader in unified resilience at enterprise scale. In a constantly evolving threat landscape, Commvault keeps customers ready by unifying data security, identity resilience, and cyber recovery, on one cloud-native, AI-enabled platform. Customers trust Commvault to conduct the fastest, most complete recoveries – not just their data, but their entire business. Purpose-built for the agentic enterprise, Commvault also enables organizations to safely embrace AI while protecting against AI-driven threats.
TINTON FALLS, NJ – January 13, 2026 – Commvault (NASDAQ: CVLT), a leader in unified resilience at enterprise scale, today announced Commvault Cloud Unified Data Vault, a cloud-native service that extends Commvault’s trusted, air-gapped protection and resilience capabilities to data written using the S3 protocol, bringing S3-based application and AI data under a unified, policy-driven protection framework for enterprise-grade resilience. By providing a secure, Commvault-managed S3-compatible endpoint, Unified Data Vault allows organizations to apply policy-driven, immutable protection to modern and custom workloads, including emerging AI workloads, without installing agents or building new data management silos.
Many developers use S3 as the default for exporting backups – from databases like CockroachDB and Greenplum to services such as Docusign and monday.com. But these backups often reside in fragmented buckets without consistent retention or lifecycle control, creating hidden compliance risks and recovery delays. Unified Data Vault closes that gap by giving teams a simple path to move S3-compatible backups directly into Commvault-managed, air-gapped storage where data automatically inherits encryption, deduplication, immutability, and policy-based governance.
“S3 fundamentally changed how data is stored. Unified Data Vault changes how that data is protected,” said Pranay Ahlawat, Chief Technology and AI Officer, Commvault. “For the first time, developers and data teams can write directly to a Commvault-managed S3 endpoint and instantly gain encryption, immutability, and policy control – all without agents or added complexity. It’s enterprise-grade cloud protection built for the builder.”
Key customer benefits include:
Agentless simplicity: Enables applications, databases, and workflows to write directly to a Commvault-managed S3 endpoint—no agents or custom scripts required.
Automated enterprise protection: Provides immutability, encryption, deduplication, and retention controls the moment backups are written.
Developer-ready programmability: Integrates with native S3 workflows and APIs for frictionless DevOps automation.
Centralized policy governance: Applies consistent protection and user-set compliance policies across clouds, regions, and workloads.
“For many developers, S3 is the de facto data store for popular AI databases and applications. The need to bring a strong resilience posture to these large data sets is paramount,” said Archana Venkatraman, Senior Research Director, IDC. “Unified Data Vault extends centralized automation, immutability, and air-gap protection to S3 data in a way that is easy for developers to use yet gives SecOps and IT teams peace of mind that end-to-end resilience is factored into the equation.”
Availability
Commvault Cloud Unified Data Vault is available via Early Access with General Availability targeted for spring 2026.
The new service will also be available through Commvault’s partner ecosystem, enabling managed service providers, resellers, and cloud service partners to extend Commvault Cloud to new S3-native workloads. Partners gain new opportunities to deliver differentiated, value-added cyber resiliency.
About Commvault Commvault (NASDAQ: CVLT) is a leader in unified resilience at enterprise scale. In a constantly evolving threat landscape, Commvault keeps customers ready by unifying data security, identity resilience, and cyber recovery, on one cloud-native, AI-enabled platform. Customers trust Commvault to conduct the fastest, most complete recoveries – not just their data, but their entire business. Purpose-built for the agentic enterprise, Commvault also enables organizations to safely embrace AI while protecting against AI-driven threats.
More related posts
Commvault Encourages Organizations to Adopt a Four-Step Approach to Resilience in the Age of Frontier AI
Tinton Falls, N.J. – January 6, 2026 – Commvault (NASDAQ: CVLT) – Commvault will webcast a discussion of its third quarter fiscal year 2026 earnings results on Tuesday, January 27, 2026 beginning at 8:30 a.m. EST at http://ir.commvault.com.
Investors can access the live webcast by visiting http://ir.commvault.com. Investors may also access the call by dialing Toll Free: (800) 715-9871 or International: (646) 307-1963 and referencing Event ID 7425985. To avoid delays, we encourage participants to dial into the conference call fifteen minutes ahead of the scheduled start time. A replay of the webcast will also be available at http://ir.commvault.com.
About Commvault Commvault (NASDAQ: CVLT) is a leader in unified resilience at enterprise scale. In a constantly evolving threat landscape, Commvault keeps customers ready by unifying data security, identity resilience, and cyber recovery, on one cloud-native, AI-enabled platform. Customers trust Commvault to conduct the fastest, most complete recoveries – not just their data, but their entire business. Purpose-built for the agentic enterprise, Commvault also enables organizations to safely embrace AI while protecting against AI-driven threats.
More related posts
Commvault Encourages Organizations to Adopt a Four-Step Approach to Resilience in the Age of Frontier AI
TINTON FALLS, NJ – December 18, 2025 – Commvault (NASDAQ: CVLT), a leader in unified resilience at enterprise scale, today announced it will be a launch partner for the AWS European Sovereign Cloud, a new independent cloud for Europe which will launch in the State of Brandenburg, Germany by the end of 2025.
The Commvault Cloud platform, including cyber resilience innovations recently introduced as part of the company’s latest ’Unity’ platform release, is planned to be available on the AWS European Sovereign Cloud, further supporting Commvault’s growing European customer base.
The AWS European Sovereign Cloud will be a fully-featured, independently operated sovereign cloud backed by strong technical controls, sovereign assurances, and legal protections designed to meet the needs of European governments and enterprises. The AWS European Sovereign Cloud infrastructure will be entirely located within the EU and operated independently from existing Regions. Only AWS employees, residing in the EU, will control day-to-day operations, including access to data centers, technical support, and customer service for the AWS European Sovereign Cloud. As with existing AWS Regions, customers will have the control and assurance that AWS services will not access or use customer data for any purpose without their agreement, as well as access to the strongest sovereignty controls among leading cloud providers.
Commvault Cloud on AWS European Sovereign Cloud is planned to provide European organizations with a secure solution that is purpose-built for cloud environments, delivering cost-optimized resilience at scale for AWS customers. The Commvault platform provides the ease-of-use of a turnkey SaaS solution with AI-enabled discovery, classification, and protection policy recommendations to help simplify onboarding and protection of resources across accounts within the Sovereign Cloud. It also provides extensive cyber resilience capabilities, incorporating air gapped backups, integrated AI-enhanced threat detection and response, and cleanroom recovery orchestration that allow customers to safely analyze threats, test processes, or stage restore operations to reduce the risk of reinfection. These features support data resilience and operational recovery imperatives that are increasingly required under regulations such as GDPR, DORA, and NIS2.
“Customers across Europe are under immense pressure to meet sovereignty requirements while defending against escalating cyber threats,” said Darren Thomson, Field CTO – Security, EMEAI, Commvault. “As a launch partner for the AWS European Sovereign Cloud, we plan to deliver cyber resilience bringing Commvault’s strongest protection and recovery capabilities to the organizations that need them most.”
This announcement builds on recent milestones in Commvault’s long-standing collaboration with Amazon Web Services (AWS), including achieving the AWS Resilience Competency in the Recovery category and being named the 2025 AWS Global Storage Partner of the Year. These recognitions underscore Commvault’s leadership in cloud-native data protection and its commitment to helping organizations address evolving resilience and digital sovereignty needs with trusted, enterprise-grade technology on AWS.
Availability
Commvault Cloud is targeted for availability on the AWS European Sovereign Cloud in the first half of calendar year 2026. Pricing will be finalized prior to general availability and will reflect AWS’s unique model for SaaS infrastructure and compute within the Sovereign Cloud environment.
About Commvault Commvault (NASDAQ: CVLT) is a leader in unified resilience at enterprise scale. In a constantly evolving threat landscape, Commvault keeps customers ready by unifying data security, identity resilience, and cyber recovery, on one cloud-native, AI-enabled platform. Customers trust Commvault to conduct the fastest, most complete recoveries – not just their data, but their entire business. Purpose-built for the agentic enterprise, Commvault also enables organizations to safely embrace AI while protecting against AI-driven threats.
More related posts
Commvault Encourages Organizations to Adopt a Four-Step Approach to Resilience in the Age of Frontier AI
TINTON FALLS, NJ – December 18, 2025 – Commvault (NASDAQ: CVLT), a leader in unified resilience at enterprise scale, today announced its partnership with Pinecone to bring advanced cyber resilience capabilities to joint customers, helping enterprises protect and rapidly recover vector retrieval workloads that power retrieval-augmented generation (RAG) and other AI use cases.
Many enterprises already use Commvault as a single, unified pane of glass to manage their cloud and on-prem resilience operations. With the rise of vectors as a critical data type for today’s AI applications, this solution extends Commvault’s capabilities to include these workloads, adding an additional layer of resilience on top of Pinecone’s already durable, natively backed-up vector storage. Commvault’s extensive resilience capabilities also help joint customers support compliance and governance requirements.
Vector databases such as Pinecone sit at the heart of modern AI, giving systems fast access to the knowledge they need for training and for delivering accurate, context-aware responses. These databases store numerical representations—digital fingerprints that capture relationships among text, images, and other content. They are foundational to AI accuracy, and essential during inference. Yet until now, enterprises in highly regulated industries with advanced compliance controls have had limited options for safeguarding this data against corruption, deletion, or attacks. This new offering changes that.
Commvault’s solution addresses this priority by enabling immutable backup, point-in-time-recovery (PITR), and customizable extended retention of vector data—in addition to Pinecone’s natively durable object-storage and built-in backup system—all without impacting query latency. Delivered via Commvault Cloud, the solution supports Amazon Web Services (AWS), Microsoft Azure, Google Cloud, and multi-cloud deployments, offering a unified approach for enterprise AI resilience. It allows organizations to elevate their RAG systems from experimental prototypes to always-on, resilient production environments.
Key features and benefits of the solution:
Accelerated PITR Keeps AI Applications Running: Enables restoration of vector indexes to a prior state, minimizing downtime and preserving quality for RAG inference – the background process that takes place when a model generates an output.
Protection Against Data Poisoning, Evasion, Privacy, and Abuse Attacks: Backups are stored as encrypted, air-gapped, immutable copies, helping to enable clean recovery – even from malicious injection or accidental deletion.
Unified Cyber Resilience Across Clouds: A single platform delivers robust protection for Pinecone deployments across AWS, Azure, and Google Cloud, reducing fragmentation and enabling consistent security and recovery.
Support Compliance and Audit Readiness: Maintains indelible, auditable copies to support governance, regulatory, and audit requirements in AI workflows.
“As enterprises embed AI deeper into their operations and leverage RAG, the vector database layer has become mission-critical; increasingly, these organizations seek additional layers of protection and compliance beyond their already highly durable systems. With Pinecone, we are closing that protection gap,” said Pranay Ahlawat, Chief Technology and AI Officer, Commvault. “We’re enabling AI stacks to operate with the same confidence, governance, and recoverability that traditional workloads demand.”
“Pinecone is built for performance and scale, and our customers trust us with their most critical AI assets. Partnering with Commvault allows us to offer an even deeper level of resilience for organizations with complex compliance needs,” said Jeff Zhu, VP Product, Pinecone.
Availability
The integration between Commvault and Pinecone is targeted for general availability globally in the first half of 2026.
About Commvault Commvault (NASDAQ: CVLT) is a leader in unified resilience at enterprise scale. In a constantly evolving threat landscape, Commvault keeps customers ready by unifying data security, identity resilience, and cyber recovery, on one cloud-native, AI-enabled platform. Customers trust Commvault to conduct the fastest, most complete recoveries – not just their data, but their entire business. Purpose-built for the agentic enterprise, Commvault also enables organizations to safely embrace AI while protecting against AI-driven threats.
More related posts
Commvault Encourages Organizations to Adopt a Four-Step Approach to Resilience in the Age of Frontier AI
TINTON FALLS, NJ – December 17, 2025 – Commvault (NASDAQ: CVLT), a leader in unified resilience at enterprise scale, today announced findings of a new Commvault-commissioned survey revealing a significant paradox in the security habits and expectations of adults in New York City, the nation’s most populated metropolis.
The results show that New Yorkers are becoming increasingly focused on how organizations handle their data – and many are willing to reconsider or abandon brands that don’t hit the mark. At the same time, even as many New Yorkers report taking meaningful steps to protect themselves, notable gaps remain in personal security habits. This tension illustrates the growing importance of a shared-responsibility model in today’s threat environment: consumers play a role, but businesses must lead with stronger cyber resilience or potentially pay the price in terms of lost revenue and brand loyalty.
The survey of 1,001 New York professionals, gig workers, and students found that New Yorkers surveyed* expect businesses to take every precaution possible to safeguard their data and prioritize data protection and security.
Over 85% of everyday New Yorkers said they would (41.8%) or might (43.7%) stop using a company if it suffered a data breach – underscoring that a perceived lack of focus on data security and resilience can erode trust.
Over a third (38%) have already stopped using a service because they did not trust it to protect their data.
Over two in five (43%) New Yorkers continue doing business with companies that they believe take data security seriously, and more than half (56%) would recommend them to friends and family.
These high expectations also come at a time when cyber fraud is widespread. Many of the New Yorkers surveyed (48%)1 stated they have been the victim of a cyberattack at least once – leading some residents to be more vigilant when it comes to their own data.
And while many are indeed attempting to follow best practices, behaviors also reveal meaningful gaps that leave a substantial portion of the population more vulnerable than they may realize.
44% of New Yorkers use unique passwords for all of their accounts – both personal and professional, yet 56%2 still reuse passwords across multiple accounts, creating a single point of failure that bad actors can exploit. This not only puts personal data at risk, but businesses they work for as well. A compromised personal password reused on a corporate account is one of the most common ways attackers gain entry to enterprise systems.
When using public WiFi, slightly more than half of New Yorkers3 try to follow best practices like using two-factor authentication (53%) and a VPN or secure network (33%). However, 15%4 report using no security measures at all, leaving their devices — and any accounts they access — fully exposed to credential theft, session hijacking, and other forms of data interception.
And some New Yorkers (49%) avoid accessing sensitive information like banking accounts and email when on public WiFi altogether. But that leaves more than half who may still take chances, often without knowing how easily attackers can capture credentials or personal data on unsecured networks.
“Consumers are more security-minded than ever before – making decisions like where to shop or what bank they use based on the company’s data stewardship,” said Vidya Shankaran, Field CTO, Cloud, Security, and Emerging Technologies at Commvault. “For companies, especially retailers during this holiday season, prioritizing customer data is now a prerequisite for maintaining customer confidence and loyalty.” Read more of Vidya’s thoughts in today’s blog here.
“New York City is a microcosm of what we’re seeing in the rest of the country,” said Jessica Barker, MBE, PhD, co-CEO, Cygenta. “Consumer expectations tied to security and resilience have never been higher for businesses, and that’s only going to get more pronounced as the AI era accelerates. Once businesses lose consumer confidence, it’s incredibly hard to get it back. You must be prepared because consumers are watching, and their trust is on the line.”
Research Methodology
*This survey was conducted independently and exclusively for Commvault by Censuswide. It reveals the views of 1,001 New York professionals, gig workers, and students. The sample included 36% Managers/Supervisors, 30% Individual Contributors, and 19% Executives. Data for this report was collected between June 4 and June 10, 2025. Censuswide abides by and employs members of the Market Research Society, follows the MRS code of conduct and ESOMAR principles, and is also a member of the British Polling Council.
About Commvault Commvault (NASDAQ: CVLT) is a leader in unified resilience at enterprise scale. In a constantly evolving threat landscape, Commvault keeps customers ready by unifying data security, identity resilience, and cyber recovery, on one cloud-native, AI-enabled platform. Customers trust Commvault to conduct the fastest, most complete recoveries – not just their data, but their entire business. Purpose-built for the agentic enterprise, Commvault also enables organizations to safely embrace AI while protecting against AI-driven threats.
1. ‘Multiple times, please specify’ and ‘Once’ answers combined 2. ‘I reuse passwords across work and personal accounts’ and ‘I reuse passwords but not the same across work and personal accounts’ answers combined 3. Those who have connected to public Wi-Fi in places like cafes, parks, or transit hubs 4. ‘I don’t take any security measures because I think it is safe’ and ‘I don’t take any security measures even if I don’t think it is safe’ answers combined
More related posts
Commvault Encourages Organizations to Adopt a Four-Step Approach to Resilience in the Age of Frontier AI
TINTON FALLS, NJ – December 11, 2025 – Commvault (NASDAQ: CVLT), a leader in unified resilience at enterprise scale, today announced a new partnership and technology integration with Delinea, a leader in privileged access management (PAM). The integration connects the Commvault Cloud platform with Delinea’s Secret Server, helping joint customers strengthen credential security, support compliance initiatives, and streamline data recovery.
Securing user credentials is already a familiar challenge for many organizations and is compounded by the proliferation of non-human, machine identities – used by applications, scripts, and automated services. In 2024, nearly one-third (33%) of security incidents stemmed from compromised privileged identities.1 Bad actors know that once credentials are granted or stolen and privileged access is achieved, the door is open to launch attacks that can go unnoticed for some time.
In partnering with Delinea, Commvault is extending new privileged access management capabilities into the Commvault Cloud platform, helping customers to:
Centralize credential management: Manage and rotate credentials for backup environments from a single platform, securely store, rotate, and govern the credentials required across your data protection environment within a centralized secrets vault, reducing operational complexity and eliminating unmanaged or orphaned accounts.
Just-in-Time (JIT) access: Automatically issue temporary credentials for each backup or restore job, revoking access upon completion to minimize misuse.
Strengthen audit and compliance capabilities: Enforce least privilege access – only the access you need, only when you need it – and have the ability to generate detailed audit logs to support compliance initiatives including SOX, HIPAA, PCI-DSS, and GDPR.
These capabilities deliver significant benefits, including reduced risk of downtime, stronger support for compliance objectives, increased IT efficiency, and faster threat response.
“Commvault unifies data security, identity resilience, and cyber recovery on one platform – and continues to expand the power of the platform through integrations that deliver exceptional value for customers,” said Alan Atkinson, Chief Business Development Officer, Commvault. “Our integration with Delinea strengthens customers’ ability to manage credentials and limit privilege misuse, which can help protect against rapidly evolving identity-driven attacks while advancing unified resilience.”
“True cyber resilience depends on both the ability to recover data and the security of the recovery process itself,” said Chris Kelly, President at Delinea. “By extending our privileged access management capabilities to Commvault Cloud, we are advancing identity security, reducing the risks of manual backup credential management, and helping to ensure that recovery systems remain trustworthy and ready when needed the most.”
The Commvault Cloud integration with Delinea is available globally today to joint customers at no extra cost. The strategic expansion of Commvault’s security ecosystem continues to enhance the company’s security-related capabilities and helps security and IT teams stay resilient in a world of escalating threats.
About Commvault Commvault (NASDAQ: CVLT) is a leader in unified resilience at enterprise scale. In a constantly evolving threat landscape, Commvault keeps customers ready by unifying data security, identity resilience, and cyber recovery, on one cloud-native, AI-enabled platform. Customers trust Commvault to conduct the fastest, most complete recoveries – not just their data, but their entire business. Purpose-built for the agentic enterprise, Commvault also enables organizations to safely embrace AI while protecting against AI-driven threats.
About Delinea Delinea is a pioneer in securing human and machine identities through intelligent, centralized authorization, empowering organizations to seamlessly govern their interactions across the modern enterprise. Leveraging AI-powered intelligence, Delinea’s leading cloud-native Identity Security Platform applies context throughout the entire identity lifecycle – across cloud and traditional infrastructure, data, SaaS applications, and AI. It is the only platform that enables you to discover all identities – including workforce, IT administrator, developers, and machines – assign appropriate access levels, detect irregularities, and respond to threats in real-time. With deployment in weeks, not months, 90% fewer resources to manage than the nearest competitor, and a 99.995% uptime, the Delinea Platform delivers robust security and operational efficiency without complexity. Learn more about Delinea on LinkedIn, X, and YouTube.
TINTON FALLS, N.J. – December 4, 2025 – Commvault (NASDAQ: CVLT), a leader in unified resilience at enterprise scale, today announced that Jen DiRico, Chief Financial Officer, will be departing the company at the end of the calendar year to pursue another opportunity. The company has initiated a comprehensive executive search for its next CFO.
As part of this transition, Sanjay Mirchandani, Commvault’s President and CEO, will assume oversight of a newly established Office of the CFO comprised of Kevin White, Vice President of Finance, and Danielle Abrahamsen, Chief Accounting Officer, until the new CFO is in place.
“I want to thank Jen for her partnership and wish her the best,” said Mirchandani. “As we search for our next CFO and continue to execute on our financial objectives, we do so with the support of a seasoned leadership team, industry-leading cyber resilience solutions, and strong financial performance.”
“Commvault is in an enviable market position as it leads the way in cyber resilience,” said DiRico. “The company empowers customers to recover fast, confidently move to the cloud, and embrace AI. It’s been an honor to be part of the company’s journey.”
The Company notes there are no changes to its outlook as previously disclosed in its second quarter earnings results on October 28, 2025. Commvault expects to report its third quarter 2026 results at the end of January 2026.
About Commvault
Commvault (NASDAQ: CVLT) is a leader in unified resilience at enterprise scale. In a constantly evolving threat landscape, Commvault keeps customers ready by unifying data security, identity resilience, and cyber recovery, on one cloud-native, AI-enabled platform. Customers trust Commvault to conduct the fastest, most complete recoveries – not just their data, but their entire business. Purpose-built for the agentic enterprise, Commvault also enables organizations to safely embrace AI while protecting against AI-driven threats.
TINTON FALLS, N.J. – December 3, 2025 – Commvault (NASDAQ: CVLT), a leader in unified resilience at enterprise scale, today announced it will demonstrate its latest innovations in cyber resilience and AI-enabled recovery at the Gartner IT Infrastructure, Operations & Cloud Strategies (IOCS) Conference 2025, taking place December 9 – 11, 2025 in Las Vegas.
On Tuesday, December 9 at 11:45 a.m. PST, Commvault’s Global Field CTO Rahul Pawar will lead a session, “Unified Cyber Resilience with AI for Hybrid & Cloud,” exploring how enterprises can gain unified visibility and control across hybrid and multi-cloud environments with the Commvault Cloud platform. Attendees will learn how AI-driven insights and intelligent automation help foster faster, cleaner recoveries, stronger protection, and measurable cost efficiencies across complex infrastructures. Learn more here.
At Booth #344, Commvault will showcase new cyber resilience innovations introduced in November at the company’s SHIFT 2025 event. For example, attendees can hear more about Synthetic Recovery, which utilizes AI to help identify corrupted data following an attack and cleanly recover the rest. Visitors can also learn about the company’s new Identity Resilience capabilities, which enable customers to find hard-to-detect threats in popular identity solutions, log and audit malicious changes, and rapidly roll back changes to a trusted, clean state.
Attendees can enter a raffle to win special giveaways such as Ray-Ban Meta Wayfarer Sunglasses integrated with Meta AI. Reserve a meeting time with Commvault in advance here.
To explore the innovations featured at the Gartner IOCS Conference and see the latest advancements unveiled at SHIFT 2025, visit Commvault’s on-demand SHIFT 2025 content hub. There, viewers can gain insights into Commvault’s newest capabilities in cloud-native data protection, identity resilience, and cyber recovery. Learn more and access all SHIFT 2025 sessions on-demand.
About Commvault Commvault (NASDAQ: CVLT) is a leader in unified resilience at enterprise scale. In a constantly evolving threat landscape, Commvault keeps customers ready by unifying data security, identity resilience, and cyber recovery, on one cloud-native, AI-enabled platform. Customers trust Commvault to conduct the fastest, most complete recoveries – not just their data, but their entire business. Purpose-built for the agentic enterprise, Commvault also enables organizations to safely embrace AI while protecting against AI-driven threats.
More related posts
Commvault Encourages Organizations to Adopt a Four-Step Approach to Resilience in the Age of Frontier AI
TINTON FALLS, NJ – December 2, 2025 – Commvault (NASDAQ: CVLT), a leader in unified resilience at enterprise scale, today announced it is a recipient of a 2025 Geography and Global AWS Partner Award, recognizing leaders around the globe that are playing key roles in helping their customers drive innovation and build solutions on Amazon Web Services (AWS).
Commvault is excited to announce it has been named the winner of the Global Storage Partner of the Year, which recognizes a top AWS Storage Competency partner who provides industry-leading consulting and technology services for a variety of use cases, including Backup & Restore operations to, from, and within the AWS environment; primary storage using IP File or Block protocols and object storage; active and passive data archiving capabilities; and business continuity/disaster recovery (BCDR) solutions.
Announced during the Partner Awards Gala at AWS re:Invent 2025, the Geographic and Global AWS Partner Awards recognize a wide range of AWS Partners that have embraced specialization, innovation, and cooperation over the past year. Geo and Global AWS Partner Awards recognize partners whose business models continue to evolve and thrive on AWS as they support their customers.
Commvault was named the AWS Global Storage Partner of the Year for its sustained innovation in cloud-native data protection, enterprise-grade storage operations, and joint customer success at scale. Available on AWS Marketplace, Commvault uniquely delivers unified resilience to enterprises globally, helping them migrate, protect, and cleanly recover critical AI data and workloads using AWS object, file, and block storage services. This helps organizations reduce risk, simplify operations, and maintain a state of continuous readiness.
“Being named AWS Global Storage Partner of the Year is an incredible honor and a validation that Commvault and AWS together are delivering the unified resilience enterprises need for the AI era,” said Michelle Graff, Senior Vice President, Global Partners & Channel Sales, Commvault. “AWS makes AI possible. Commvault makes it resilient. By unifying data security, identity resilience, and cyber recovery across AWS and hybrid environments, we’re giving customers the simplicity and confidence to innovate at massive scale.”
“Partnering with Commvault and AWS has changed the way we protect and recover our most critical data. Together, they’ve helped us recover faster, simplify operations, and strengthen confidence in our cloud strategy,” said Matt Williams, Director, Compute Ops, News Corp.
The Geography and Global AWS Partner Awards included a self-nomination process across several award categories, awarded at both the geographic and global level. All AWS Partners were invited to participate and submit a nomination. Award submissions were reviewed by a third-party, Canalys, and selected with special emphasis placed on customer success use cases.
In addition, there were several data-driven award categories, which were evaluated by a unique set of metrics that helped measure AWS Partners’ performance over the past year. Canalys audited the datasets used to ensure that all measurements and calculations were objective and accurate. Finalists represented the top three ranked AWS Partners across each category.
The AWS Partner Network (APN) is a global program focused on helping partners innovate, accelerate their journey to the cloud, and take full advantage of the breadth and depth of AWS.
Learn more at AWS re:Invent
Whether it’s Amazon S3, DynamoDB, or Apache Iceberg, Commvault enables AWS customers to protect, recover, and rebuild their most critical data and applications. See how at AWS re:Invent, December 1-5 at Booth #621. For unified resilience that runs deep, register here.
About Commvault Commvault (NASDAQ: CVLT) is a leader in unified resilience at enterprise scale. In a constantly evolving threat landscape, Commvault keeps customers ready by unifying data security, identity resilience, and cyber recovery, on one cloud-native, AI-enabled platform. Customers trust Commvault to conduct the fastest, most complete recoveries – not just their data, but their entire business. Purpose-built for the agentic enterprise, Commvault also enables organizations to safely embrace AI while protecting against AI-driven threats.
About AWS Partner Awards
The AWS Partner Awards recognise members of the AWS Partner Network (APN) whose business models have embraced specialization, innovation and customer-success execution in the AWS ecosystem. The Storage Partner of the Year category honours top partners providing consulting and technology services for backup & restore operations to, from, and within the AWS environment; primary storage using file or block protocols and object storage; active and passive archiving; and business-continuity/disaster-recovery (BCDR) solutions. (Amazon Web Services, Inc.)
More related posts
Commvault Encourages Organizations to Adopt a Four-Step Approach to Resilience in the Age of Frontier AI
TINTON FALLS, NJ – December 1, 2025 – Commvault (NASDAQ: CVLT), a leader in unified resilience at enterprise scale, today announced that it has achieved the Amazon Web Services (AWS) Resilience Competency in the Recovery category. This designation recognizes Commvault as an AWS Partner that provides validated solutions to help customers improve their critical systems availability and resilience posture using AWS Resilience Services.
In achieving the AWS Resilience Competency in the Recovery category, Commvault has demonstrated technical proficiency and proven customer success supporting AWS customers’ resilience goals. This achievement builds on Commvault’s work with AWS to help enterprises recover faster from cyber incidents, cloud outages, and data corruption across AWS native, hybrid, and multi-cloud environments.
“Achieving the AWS Resilience Competency reflects Commvault’s dedication to providing solutions that strengthen their resilience when using AWS,” said Rajiv Kottomtharayil, Chief Product Officer, Commvault. “Organizations today face increasing pressure to protect their data from cyber threats, operational disruptions, and the rapid adoption of AI. Our cloud-native platform delivers the visibility, automation, and recovery intelligence needed to keep critical workloads secure and available on AWS. By leveraging AWS, we’re enabling customers to build a more resilient future with confidence.”
Commvault supports a wide breadth of AWS workloads, including Amazon Simple Storage Service (Amazon S3), Amazon Elastic Compute Cloud (Amazon EC2), and Amazon DynamoDB. From readiness to protection to recovery, Commvault delivers these capabilities through the cloud-native Commvault Cloud platform and integrated solutions from strategic GSI and security partners for AWS environments.
Most recently, Commvault has made it even easier for AWS customers to access its full portfolio of offerings with the new multi-product listing in AWS Marketplace. This includes three of Commvault’s industry-leading cyber resilience and data protection solutions – Commvault Cloud, Cloud Rewind, and Clumio. Click here to view the listing.
Learn more at AWS re:Invent
Whether it’s Amazon S3, DynamoDB, or Apache Iceberg, Commvault enables AWS customers to protect, recover, and rebuild their most critical data. See how at AWS re:Invent, December 1-5 at Booth #621. For cyber resilience that runs deep, register here.
About Commvault
Commvault (NASDAQ: CVLT) is a leader in unified resilience at enterprise scale. In a constantly evolving threat landscape, Commvault keeps customers ready by unifying data security, identity resilience, and cyber recovery, on one cloud-native, AI-enabled platform. Customers trust Commvault to conduct the fastest, most complete recoveries – not just their data, but their entire business. Purpose-built for the agentic enterprise, Commvault also enables organizations to safely embrace AI while protecting against AI-driven threats.
More related posts
Commvault Encourages Organizations to Adopt a Four-Step Approach to Resilience in the Age of Frontier AI
