GDPR Applies to Non-Production SAP Environments too!
- Your system is not up to date? It holds old information and is not fully GDPR compliant yet?
- You and your data governance team are unsure what data there is in the system, if it has expired and/or needs to be gotten rid of?
You are not alone.
What data do you need to protect, retain, delete and manage? What is the best way to organise your efforts to achieve full compliance?
In the lead up to GDPR on May 25th, much thought had been given to what data needs to be protected, retained, deleted and managed in SAP Production environments.
There are plenty of articles and blogs, quite rightly, considering the pervasion of sensitive personal data throughout a Production SAP environment: employee data that is not just in the HR or Payroll modules but also in Finance Accounts Payables for expense payment purposes, employee data that is in approval workflow constructs, employee and payroll data that is perhaps in external pension interface files.
There is much to consider in terms of system, process, data and people implications to ensure that your SAP Production system and data management protocols are GDPR compliant.
Less heralded, and perhaps attracting less attention, has been the fact that this same sensitive personal data is often available in a host of non-Production SAP instances.
Therefore we have put together all the information and guidance you will need in the 'Guide on GDPR Compliance for Non-Production SAP Environments'.
Our 'Guide on GDPR Compliance for Non-Production SAP Environments' takes into account your business and team's specific situation and propose solutions based on it. Download it at the bottom of this page (click on the guide under 'Downloads', fill in the quick for your download to start).
- Who will benefit from this guide?
If you have SAP installed you will find that one, several or all of the instances in this guide relate to your situation.
- What is included in the guide?
Follow the flowchart to quickly determine what is your specific situation. Then we briefly explain what the impact could be for non-compliance within your non-production environments. Following is the good bit where we detail recommendations and technical solutions which you can apply yourself or with the team.
Contact Absoft for more information and help on your specific case.