Three key tips to comply with employees’ right to privacy

05 August 2021
Written by Danielle Larocca

With over 25 years in SAP Human Capital Management, Danielle is a recognized leader in HR technology. She holds the distinguished roles of SAP Mentor and SuccessFactors Confidant, and serves as HXM Chairperson for ASUG (America's SAP User Group). Danielle is a sought-after speaker at international conferences, sharing insights on HR tech trends. She has authored four best-selling books on SAP and holds certifications in both SAP and SuccessFactors technologies.

blog_qm&dsm-soterion-solutions-employees-right-to-privacy_header-image

There is quite a bit in the news lately about hackers, scammers, ransomware and technology, and security is always at the forefront. The protection of employee data is a critical aspect for those of us in the Human Capital Management and Payroll workforce. The laws and regulations vary by country and include the POPI Act, GDPR and HIPAA as examples, but there is also simply the commonsense requirement to maintain employees’ right to privacy.

 

Many times the vulnerability of employee data is caused by human error, as in this famous example from a few years back: Payroll company apologizes for accidentally publishing social insurance numbers. Other times it is more malicious in nature, where the motivation is to cyberattack an organization to steal employee identities.

 

Regardless of the intent, ensuring your critical HR and Payroll data is secure is a necessity. For those companies using SAP® or SAP SuccessFactors, here are a few key points that you need to be aware of.

1. Make sure your data is secure in non-production systems

Whether you are using SAP or SuccessFactors, your data may reside in more than one environment. Often customers need valid data in non-productive instances or clients for testing, support, or training. This is an area of vulnerability as the controls in place in non-productive environments may be different from those in production. Customers often refresh data from one environment to another which may include employee data. In these cases, you require a secure mechanism for the secure movement of that data and the appropriate anonymization of that data in SAP or SAP SuccessFactors hybrid environments. To learn more and to be sure that your critical data is secure and leveraging an SAP-certified solution, visit Data Sync Manager (DSM) for HCM for more information.

 

Make sure your data is secure in non-production systems

2. Ensure you know all the places this employee data exists

It is easy to identify the primary location that stores a lot of the basic employee data. For example, we know that the Gender field is stored on Infotype 0002 Personal Information in SAP and on the Employee Profile in SuccessFactors Employee Central. However, we also need to think about any of the places that data is propagated to including reports, interfaces and spool files, and ensure that the data is secured there as well. Knowing all of these touchpoints is critical. One way to ensure that your data is protected is to be sure that any third-party solutions that you are using are certified by SAP, as only those that hold the appropriate certifications are ensured to respect the appropriate SAP and SuccessFactors authorizations. For reporting, interfaces and documents, the leading solution that holds this critical SAP certification is the Query Manager with Document Builder, visit Query Manager for more information.

 

leveraging an SAP-certified solution to access sensitive HR data

3. Routinely review your SAP authorizations

Ensuring compliance with any regulations is not a one-time activity but rather a recurring event that requires continuous review and update. In the SAP ECC world, this includes not only access to employee data but access to develop or execute ABAP (where code can be written to evaluate table or cluster data) and database access. I have seen many employers that made an enormous effort to keep master data locked down at the transaction code/infotype/user level while ignoring the availability of that sensitive data to anyone with the skills to review data either via code, ad hoc table access (SQ01), spools or Basis database (Select *...) access. Additionally, data is also fed to Finance modules with their own sets of authorizations that require review. Keep in mind any monies paid are recorded somewhere and even a cost center report could divulge critical sensitive information that may make an employee’s personal data vulnerable.

 

For SAP HCM, authorization objects are the nuts and bolts of your HR security. They decide what can be done on a given infotype. Access needs to be controlled and reviewed regularly but you also need to consider segregation of duties for payroll processing. To look after these concerns and assess, update and maintain roles and authorizations in a cost-effective and intuitive way, and comply with data privacy regulations, check out Soterion Access Risk Manager. Visit Soterion's compliance software for more information.

 

Routinely review your security authorizations and protocols

 

 

Explore Popular Tags

SAP SuccessFactors Query Manager SAP HCM SAP HCM reporting HCM Reporting Intelligent HR and Payroll SAP SuccessFactors Employee Central Payroll Human Capital Management (HCM) SAP Payroll SAP Reporting EPI-USE Labs HCM SAP SuccessFactors Reporting PRISM Payroll Payroll reporting reporting Document Builder Query Manager Analytics Connector SAP Analytics Cloud Artificial Intelligence (AI) SAP HCM Data SAP Query SAP S/4HANA Microsoft PowerBI SAP Payroll data SAP SuccessFactors People Analytics Variance Monitor SAP HXM HR and Payroll data SAP SAP S/4HANA Private Cloud Edition (S/4 PCE) Tableau HXM Move Payroll Data SAP ERP HCM SAP HCM On-Premise Solutions SAP HCM Payroll SAP HR Reporting SuccessConnect people analytics sap query hr AI Data Sync Manager Employee Central Payroll Employee data Journey to SAP SuccessFactors Machine Learning (ML) PRISM for HCM (Private Cloud Edition) PRISM free assessment SAP Business Technology Platform SAP HCM journey SAP and SuccessFactors HXM Reporting COVID-19 Cloud-based SAP HCM solutions Employee Central Payroll Reporting Employee payroll GeoClock H4S4 HCM Productivity Suite HR Joule PRISM for ECP SAP HCM/HXM SuccessFactors reporting solution ABAP DSM for HCM Employee communication Generative AI Let's Talk HCM On-Premise Payroll Pay Recon SAP HCM Analysis SAP HCM for SAP S/4HANA On-Premise SAP HR SAP SuccessFactors HCM Journey SAP SuccessFactors Roadmaps SAP data privacy and compliance Transformation without re-implementation Ultimate Guide: SAP HCM & Payroll Options accurate payroll data data validation payroll control center 2024 BTP ChatGPT Data Sync Manager for HCM Digital transformation EPI-USE Labs’ solutions Employee Central GDPR HCM, HR Large Language Models Move to SuccessFactors Employee Central OData PRISM for H4S4 Query Manager with Document Builder Real-time reporting and document creation SAP Analytics Cloud (SAC) SAP Data Warehouse Cloud SAP HCM On-premise SAP HCM for S/4HANA SAP On-Premise customers SAP Payroll to the Cloud SAP Road maps SAP SAPPHIRE 2024 SAP SuccessFactors Time Management SAP SuccessFactors Time Tracking SAP customers SAP data SAP data privacy & security Success Factors SuccessConnect 2019 Tax Reporting Time management certification custom infotype data source ebook on-premise SAP HCM s/4HANA Analytics solutions Automated reports Automation Cloud migrations Comparing data DSM Object Sync for SuccessFactors Hybrid Data Secure Data Types Data analysis Employee Central time Employee Letters Free HCM Assessment HR Journey HR employee reports Hourly time tracking Human Experience Management (HXM) Human Resources Human Resources data Hybrid Reporting SAP and SuccessFactors Hybrid SAP and SuccessFactors Hybrid reporting Hybrid reporting solution Integrated reporting SuccessFactors SAP Intelligent Enterprise Microsoft Excel Natural Language Processing News OData integration OM Object Sync On-Premise Payroll S/HANA Sidecar On-premise reporting Organization of the data PA Pay reconciliation People Analytics Workforce Planning Personalized documents Prompt Engineering Protect personal employee data Recruitment data Report Stories Reporting and analysis Robotic Process Automation (RPA) Robotic Process Automation framework S/4HANA Private Cloud Edition (PCE) SAP BTP SAP Data Privacy Suite SAP Data Security SAP ERP Payroll customers SAP HCM 2023 SAP HCM Roadmap SAP HCM and Payroll customers SAP HXM 2021 SAP Mentors SAP SuccessFactors Hybrid SAP SuccessFactors Next-Gen Payroll SAP SuccessFactors Release updates SAP Wage Type Reporter SAP certified solution SAP migration SAPPHIRE 2018 SuccessFactors and the Intelligence Enterprise SuccessFactors' Employee Central Payroll TCO Calculator The Report Center The Road to People Analytics Tracking employee time Workforce Planning ad hoc data variances easy reporter high-speed, low-risk on-premise SAP data partner roadmap single reporting solution sq01 stories in SAP SuccessFactors People Analytics technology third party ALE STP report APJ ASUG Accessing COVID-19 data Ad Hoc Query American Payroll Association (APA) Analytics Connector Analytics reports Analytics solution At-risk employees Australian Payroll Australian Tax Office (ATO) Automated analysis and pay run reconciliations Automatic HR reports Best practice in BI Bots Business Analytics Business Intelligence COVID-19 statistics COVID-19 vaccinations Careers Certified solutions Check for data replication errors Client Sync Client-centric Cloud Cloud hosting SAP PCE Cloud innovations Company Branding Compare legacy HR and Payroll data Configuration Center Copy and mask test data Coronavirus Created timestamp Custom Development Custom store Customer-specific infotypes DSAG Data Privacy Data Replication Data Sources Data Sync Manager (DSM) Data access Data privacy regulations Data production support issue solution Deep Learning Democratize data Description
+ See More

Get Instant Updates


Leave a Comment: