This document discusses SuccessFactors and the General Data Protection Regulation (GDPR). It provides an introduction to GDPR, including its scope, principles, important terms, and enforcement date of May 2018. It then discusses how SuccessFactors addresses the active, retention and end of use phases of data processing as required by GDPR. It also outlines SuccessFactors modules and features that are relevant to GDPR compliance, such as role based permissions, logging of data reads and changes, and personal data reporting.
2. PRIVATE & CONFIDENTIAL
TalenTeam Webinars
• TalenTeam’s platform to share
• 30 Minutes
• Feel free to stick around for questions afterwards
3. Most Experienced
partner in EMEA
users is our
largest
Customer
300,000
TalenTeam
in Numbers
Years of
SuccessFactors
LMS Experience
14
Learning
projects
delivered by
our
consultants.
48
Professionally
Certified
Consultants
20+
users is our
smallest
Customer
450
5. PRIVATE & CONFIDENTIAL
Agenda
5
• Introduction to GDPR
• Scope
• Principles
• Important Terms
• SuccessFactors(SF) and
GDPR
• Active Phase
• Retention Phase
• End of Use Phase
• SF Modules and Features
6. PRIVATE & CONFIDENTIAL
Introduction to GDPR
SuccessFactors and GDPR | 6
Designed to harmonize data privacy laws across Europe
Replaces the Data Protection Directive 95/46/EC
Approved by the EU Parliament on 14 April 2016
MAY 2018
25
Enforcement date:
10. PRIVATE & CONFIDENTIAL
Principles
SuccessFactors and GDPR | 10
Accountability
Improve accountability and increase transparency
Up to €20 million or 4% of enterprise’s global annual
revenue for noncompliance
11. PRIVATE & CONFIDENTIAL
Important Terms
SuccessFactors and GDPR | 11
Data Protection by Design
and by Default
Technical and Organisational Security Data Subject Rights
Data
Governance
Data Retention vs Data
Deletion
Data Protection as a
part of Legal compliance
12. PRIVATE & CONFIDENTIAL
SuccessFactors and GDPR
SuccessFactors and GDPR | 12
Active Retention
End of
Use
Data processed for its
specific purpose
Data displayed or
processed for specific
purposes only
Data purged
13. PRIVATE & CONFIDENTIAL
Active Phase
SuccessFactors and GDPR | 13
Role Based Permissions
• Principle of “Need to Know”
• Main elements of RBP:
Permission Groups
Permission Roles
Target Population
14. PRIVATE & CONFIDENTIAL
Active Phase
SuccessFactors and GDPR | 14
Read Logging
Logging data reads
regardless of channel used
Who viewed data
•And whose data was read
Change Logging
Logging of changes to
personal data, regardless of
channel used
•Who changed data
•For whom was data changed
•The ‘before value’ and ‘after
value’ of the data changed
16. Retention Phase
Scenarios when data is not actively processed but stored for compliance
Retention periods include
When there is no business need to process personal data, it is advisable to
delete or at least restrict access to the data to minimise risk of data loss or
breach.
RegulatoryLegal Statutory Contractual
The idea for TalenTeam’s webinars is to have a platform to share
30 minute discussion on an interesting topic relating to SAP SuccessFactors. Something we wanted to share.
We would appreciate you keeping all questions to the end where Oksana will stick around for a bit
Without further ado, please let me introduce Oksana