21 Feb SAP Business One prepares for GDPR
To make sure all customers are compliant with GDPR, SAP will be enhancing the current features in SAP Business One, as well as introducing new ones. These new enhancements will follow the release of SAP Business One 9.3 Patch Level 04.
Back in May 2016, the EU introduced the General Data Protection Regulation (GDPR) – a newly harmonized data protection law.
GDPR was created for strengthening and unifying data protection for everyone living in the European Union.
Following the date of May 25th 2018, the GDPR will be a mandatory law throughout all the EU and the European Economic Area (EEA).
What changes under the GDPR?
Overall, the new regulation means all customers and service providers must implement a numerous amount of new legal requirements which will have a significant impact on their business.
All controllers and processors need to understand which parts should concern them and then how to apply them accordingly.
SAP is developing all their products, making sure all customers will be compliant with GDPR by the fall date in May. They are doing this by enhancing the existing features as well as introducing new ones.
What’s available now
General Authorizations: Authorizations enable appointed users to create, view and update any documents and master data of business partners.
Change Log: This enables users with the correct permissions to check details about changes of data in certain fields.
Data Ownership: With this function, users can define the rightful owner of any information provided. This means the company has control over certain data elements and it’s secured and protected by the fixed authorization. This data can only be accessed by the permitted users only.
Manual Erasure of Personal Data: This feature enables a user to manually delete personal data unless it serves as a primary key which is interconnected with other objects.
It is the responsibility of the user to ensure any data erased does not go against any regulations.
Systems Access Log: Users with a special authorization can scan and review details – about logs – to the application, helping to see which users logged into the system and when a certain action took place.
What’s to come
Access Log to Sensitive Personal Data: This feature means tracking and logging is controlled on specific personal data which is deemed as sensitive.
Personal Data Setup: This provides a centralized place where certain pieces of data can be defined and categorized as personal. In the predefined objects, user-defined fields can be customized and marked by users as personal.
Extending Change Log to Additional Forms: This function enables a user with permitted authorizations to view details about change in fields.
Personal Data Management Wizard: All records of personal related fields are listed in a structural form. Authorized users will be able to erase personal data selected if not in conflict with any regulations.
Overall, SAP has implemented a wide-range of features to showcase their commitment to the data protection and privacy laws.
This protects data from accidental loss, destruction, and unauthorized access.
All in all, this provides a GDPR compliant approach in providing services to all customers.