Skip to Content
Contact Us
Call Me Now Call Offline
SAP can call you to discuss any questions you have.
Chat Now Chat Offline
Get live help and chat with an SAP representative.
Contact Us
E-mail us with comments, questions or feedback.

Amazon Web Services with SAP HANA Enterprise Cloud SOC 2 Audit Report 2018 H1

The scope of this SOC report includes the SAP HANA® Enterprise Cloud services as offered in the Amazon Web Services (AWS) data centers for the productive customer systems that have the status “business live” (i.e. in daily productive business use) in the following locations Dublin, Ireland and US East, Virginia USA.


The SAP HANA® Enterprise Cloud offering is a comprehensive cloud infrastructure combined with managed services. Customers can run their SAP HANA® applications, including SAP Business Suite, SAP NetWeaver Business Warehouse and custom applications in a managed cloud environment.


The ultimate priority of SAP HANA® Enterprise Cloud is the fast readiness of the SAP HANA® platform. The goal of SAP HANA® Enterprise Cloud is to enable businesses to analyze vast amounts of data rapidly thus providing real-time insights into the firm, and ensure the ability to transform capital expenditure into operative expenditure based on the subscription model SAP offers to their customers.


SAP HANA® Enterprise Cloud deployments on external infrastructures are partially administered by the external IaaS provider and partially administered by SAP HANA® Enterprise Cloud. The scope of SAP security measures for deployments on external IaaS provider includes Orchestration & Account configuration (the interface between external IaaS services and SAP HANA® Enterprise Cloud) as well as Operation Systems, Database and Application Services deployed within the accounts.


SOC2 reports fulfill various information and assurance needs of customers and aim to place trust in SAPs service organization systems, processes and controls. These narratives are related to the trust principles Security, Availability, Confidentiality Processing Integrity or Privacy which must be met to demonstrate a well-designed system.  SOC2 also contains details on performed tests and their results. SOC2 Type 1 covers management’s description of a service organization’s system and the suitability of the design of controls at a specific point in time, whereas a SOC2 Type 2 also includes the operating effectiveness of controls for a dedicated period of time.


Amazon Web Services with SAP HANA Enterprise Cloud has prepared SOC2 Type1 audit report by an independent 3rd party accountant. This version of the report is as of 30 April 2018, the locations Dublin, Ireland and US East, Virginia USA and the trust principles Security, Availability and Confidentiality.


The use of these reports is restricted. A copy of this report is available for all SAP customers and prospects with non-disclosure agreement in place.

Back to top