Are your SAP systems prepared for compliance with the new European data privacy legislation?
The European Parliament approved the General Data Protection Regulation (the “GDPR”) On Thursday, 14 April 2016. The GDPR will become effective for all companies processing personal data of EU citizens on May the 28th 2016.The legal text of the EU GDPR in your own language can be found here: http://eur-lex.europa.eu/legal-content/EN/TXT/?uri=OJ:L:2016:119:TOC.
It is important for organisations to allocate sufficient time and resources to ensure that they are compliant with the new EU GDPR. Failure to comply with the GDPR may result in enforcement actions under the GDPR, including possible fines up to the greater of € 20 million or 4% of annual global turnover.
How is this related to SAP data?
Most SAP using organizations are storing privacy relevant SAP data in their SAP systems (think of personal data related to customers, vendors, business partners, employees, applicants, patients, etc. etc.)
Many data privacy officers are aware of the new EU GDPR and are looking for instruments and know how to translate and apply data privacy measures to SAP data.
The presentation here below gives you some basic insight on how to handle personal and sensitive data in SAP systems.