Skip to Content
Author's profile photo Luis Felipe Lanz

Is your SAP Solution Manager GDPR Compliant ?

Update: Please note we’re not providing on this post any legal advisory topic, for that you need to be in touch with your legal department and ask them for advice

Also, a new book SAP & GDPR is available in  or Amazon

No, this post is not another “Please stay with us” email,  and yes you are reading right, “GDPR (General Data Protection Regulation) and SAP Solution Manager
Fortunately for EU citizens and unfortunately for some folks the GDPR is here, active since May, 25th 2018 and it can be painful for your company if you did’t take the appropriate measures
For sure, you are done with it, otherwise why are you reading a blog right ?
You were focused in your customer facing solutions, those exposed for the public and for the employees, like your CRM, Portal, Employee Central System, and even your Company Instagram account, but what about SAP Solution Manager ? your DPO probably said during the GDPR preparation: that is a box full of monitoring alerts and ticketing, who will take care of it ? 
The answer is: The GDPR Auditor, so if that occurs you, my friend are in serious trouble !,  the Data Protection Officer will be charged and will need to find a good Lawyer and your company might get into financial problems due to the elevated fines
To avoid that the previous things occurs,  you need to take some extraordinary measures, like the ones described in the following SAP Notes:
KEY NOTE: SAP Note 2610137 Personal Data related information within SAP Solution Manager
And the following SAP Notes:
2638080 – Manage personal data stored by addon ST-A/PI
2512600 – Availability of field masking in SAP Basis
2595045 – GDPR in Solman BW Reports of ITSM, Charm and Test Suite
2644997 – Identify personal data stored by Job Management and Business Intelligence Monitoring
2641343 – Focused Build and Insights: Identifying and deletion of personal data
2611875 – ABAP program for GDPR Technical Check
Also please be aware of the following SAP Notes for your GDPR Compliance:
2179230 – How to activate EU Access Service from SAP
1825544 – Simplified Deletion and Blocking of Personal Data in SAP Business Suite
And for your SM always check the Security Optimization Guidesection “Data Protection and Privacy Measures”
And last but not least, review the information provided by the SAP central information page GDPR for customers  more SAP Notes might appear
With this regulation, be prepared, and don’t let a temporary solution become a permanent mistake
To get fast access to the SAP Notes, get into SAP Support Portal Launchpad and type the note number, i.e.:
Hope you find this information useful

Assigned Tags

      1 Comment
      You must be Logged on to comment or reply to a post.
      Author's profile photo Ruediger Stoecker
      Ruediger Stoecker

      Luis, I would like to add the following information:

      SAP Note 2610137 Personal Data related information within SAP Solution Manager

      Quote: "In the majority of cases, compliance with data privacy laws is not a product feature. SAP software supports data privacy by providing security features and specific data-protection-relevant functions such as functions for the simplified blocking and deletion of personal data. SAP does not provide legal advice in any form."

      Security Optimization Guide, section “Data Protection and Privacy Measures” (SAP Solution Manager 7.2 SPS 07)