Companies need to consider the different aspects of data processing, such as providing, accessing and destroying personal data, to ensure that they are fully GDPR compliant. That is why optimizing these processes is essential for an increasing number of our customers.
The Austrian Red Cross (Upper Austria) is another customer that we’re helping to meet regulatory requirements.
We’re putting the necessary access restrictions in place in the first phase, and SAP provides the corresponding authorization objects for specific access periods. We will focus on the destruction of data in the later phases. SAP’s Information Lifecycle Management defines data retention rules for each piece of data, so once the appropriate test runs have been conducted, the final data destruction process can be run.