All companies that process EU resident data must be ready to comply when the GDPR enforcement starts on May 25, 2018.
As a company, SAP Concur is committed to ensuring compliance with the GDPR by May 25, 2018. SAP Concur has been consistent in its approach to data protection as part of our general product standards and this is now being extended to reflect new requirements of the GDPR.
SAP Concur solutions adhere to industry practices for global data privacy, security and data governance. We help you protect your data and optimise your travel, expense and invoice experience.
SAP Concur services have always been built on stringent data protection principles and standards. Below are some examples of how our services will aim to meet the key compliance requirements.
Personal data is available for reporting and export to the data subject or authorized employees, who require access to perform a relevant, critical business function. Any changes made to personal profile data are automatically tracked in SAP Concur products - regardless of the channel used to make the change.
SAP Concur offers Role Based Permissions (RBP) to keep personal data secure in the travel, expense and invoice management products and through backend processes.
SAP Concur enables logging of personal data changes and access logging for sensitive personal data.
SAP Concur shares information notices with customers to reflect the updates in our travel, expense and invoice management services.