In today's digital age, data collection, storage, and utilization have become essential for business operations and personal interactions. However, the growing importance of data-driven processes and respective analyses has raised significant concerns about data privacy, security, and the need to comply with federal regulatory requirements. 

Data Privacy for Guarding Digital Sanctity

Data privacy is a basic principle that governs the collection and use of personal information. With the increasing number of online platforms and interconnected devices, there is a higher risk of unauthorized access to sensitive data. People are becoming more aware of their rights to control the information they share online, and they expect organizations to handle their data responsibly.

Federal Data and Regulatory Landscape

Federal regulatory requirements are important for managing data in the SAP Ecosystem. Regulatory bodies like the General Data Protection Regulation (GDPR) in Europe and the Health Insurance Portability and Accountability Act (HIPAA) in the United States have strict rules for data privacy and security practices. These regulations aim to ensure that organizations collect, process, and store data in a way that respects individuals' rights and prevents misuse.

Safeguarding New Cloud Innovations of SAP

In today's fast-paced business world, it's crucial to stay ahead of the competition. That's why SAP has invested in innovative solutions and technologies to enhance efficiency and improve the customer experience. Among these innovations are SAP Signavio Process Insights, SAP Generative AI, SAP Datasphere, and SAP Build. These technologies are designed to overcome the challenges of rapid transformations and improve the quality of services. They will transform the way businesses operate, make decisions, and optimize processes. However, it's important to note that data privacy is critical, and it's essential to establish trusted communication between SAP Cloud Solutions and S/4HANA systems.

Infusing Privacy with SAP Data Custodian Features

The following are the key features of SAP Data Custodian.

Here is an example of how the Transparency and Control features of SAP Data Custodian can be integrated with the SAP Signavio Process Insights solution:

Contextual Application Control for SAP Signavio Process Insights

 Scenario Description: A customer using SAP ECC or SAP S/4HANA stores federal data and has recently decided to use SAP Signavio Process Insights to analyze and improve their business processes. However, some of the data to be analyzed contains sensitive information and as such, should be excluded from the data collection. For instance, a particular sales organization shows exposure to such sensitive data as shown in the SAP Signavio Process Insights screen below. SAP Signavio Process Insights solution offers role-based access controls however, some of the data privacy aspects are still needed. 

SAP Data Custodian Solution Offering:

SAP Signavio Process Insights periodically processes extracted data from SAP ERP systems and provides insights and recommendations on business processes. The ST-PI plugin is used to extract application data from SAP ECC or SAP S/4HANA and those data will be imported into SAP Signavio Process Insights for business process analysis. SAP Data Custodian can be used to control sensitive data at the point of extraction. This means the data excluded via SAP Data Custodian will not leave your ERP system. The integration code for the Data Custodian S/4HANA Add-on is embedded natively into ST-PI, eliminating the need for any additional integration steps.

Prerequisites

• SAP Data Custodian, add-on for SAP S/4HANA SP15 is installed and configured.
• SAP Data Custodian tenant is configured including control policies.
• ST-PI SP25 installed in SAP ECC or SAP S/4HANA
• SAP Signavio Process Insights source system prerequisites for SAP ECC or SAP S/4HANA are met. 

High-Level Steps:

1. S/HANA: Configure Org-Level Data for Filtering in SAP Data Custodian Application Controls (IMG via transaction /n/sdcac/img)
2. SAP Data Custodian Tenant: Create an SAP Data Custodian policy to remove sensitive data from S/4HANA Extractions (via Unions Management in SAP Data Custodian Tenant). After synchronization, the resource facts configured in the SAP S/4HANA system are available in your SAP Data Custodian tenant. These resource facts can be configured in SAP Data Custodian policies to remove sensitive data from SAP ERP extractions. 
3. S/4HANA: Setup Data Transfer to SAP Signavio Process Insights (via transaction /n/sdf/pins_setup) 
4. SAP Signavio Process Insights tenant: SAP Signavio Process Insights Filtered Sales Organization which was restricted in Data Custodian Policy
5. Data Custodian generated alert for the filtered Sales organization

   Benefits of the SAP Data Custodian Integration with SAP Signavio Process Insights:

   • Address Global Data Privacy Regulations 
   • Natively built into SAP Data Custodian Transparency and Control Add-on  
   • No ABAP Customizations required
   • Policy-based configuration setup and no special development needed
   • Establishing a Privacy Foundation for achieving Data Privacy and Control with features such as Anonymization, Data Blocking, Data Masking, and Pseudonymization  

Key SAP Contacts:

SAP Data Custodian Product Management: Priyank Patel, Peter Whibley

SAP Signavio Product Management: Dirk Jendroska, Sandra Meier, Till Trautewig

SAP MaxAttention CoE: Kiran Kola, Rohit Dwivedi