Does anyone in your company need to see older personal data, which others should no longer see? With the introduction of the GDPR, there was a need to limit who has access to view information and how long information should be available.
Traditional authorization control has controlled which objects you have access to view, but not how long you have access to those objects. If you, or someone in your HR department, first had access to an employee's personal data, traditional authorization control has not distinguished between active employees and employees who have left.
The introduction of gdpr means that this needs to be changed. You have to decide which personal data to keep. You must also decide how long it should be retainedand who should have access to this personal data.
With this in mind, Sariba has developed an additional authorization check, for SAP HR. The Sariba HR Data Protection Control solution makes it possible to distinguish who has access to personal data based on the employee's role.
This ensures that only those roles that will have access to older personal data have access to older personal data. This is set up in accordance with your company's internal privacy policy and GRPD.
Saribas HR Data Protection Control allows you to restrict access to personal data in SAP HR based on infotypes. The controls that are set up can also be date-based, i.e. controls are set up based on the end date of a record in an infotype.
You can keep your HR administrators out of the new authorization check, so that they have access to all the personal data they need to do their job.
How to use the solution?
Our new controls are based on SAP Standard Business Add Ins (BAdI). The layout is done in a self-developed table. This table is set up in accordance with your company's internal regulations and helps you comply with the GDPR rules. For example, you can set restrictions on restricted address data older than 365 days. You can also restrict access to bank details immediately after an employee is terminated. The possibilities are many, and the solution is adapted to your requirements and needs.
Benefits of using Sariba HR Data Protection Control:
• A simple solution that contributes to your company's internal regulations and GDPR being taken care of
• Set limits on what information is available based on roles
• By adopting date management for information, you are taking an important step towards becoming GDPR compliant compliant
• Different controls for active employees and employees who have left make it easy to comply with the regulations
Want to know more?
More information or a demonstration of the solution can be obtained by contacting Marita Johansen.