The scope of this SOC report includes the SAP HANA® Enterprise Cloud services as offered in the data centers for the productive customer systems that have the status “business live” (i.e. in daily productive business use) in the following locations: St. Leon–Rot / Germany, Amsterdam / Netherlands, Sterling / US, Santa Clara / US, Tokyo / Japan, Osaka / Japan, Sydney / Australia, Moscow / Russia and Toronto / Canada.
The SAP HANA® Enterprise Cloud offering is a comprehensive cloud infrastructure combined with managed services. Customers can run their SAP HANA® applications, including SAP Business Suite, SAP NetWeaver Business Warehouse and custom applications in a managed cloud environment.
The ultimate priority of SAP HANA® Enterprise Cloud is the fast readiness of the SAP HANA® platform. The goal of SAP HANA® Enterprise Cloud is to enable businesses to analyze vast amounts of data rapidly thus providing real-time insights into the firm, and ensure the ability to transform capital expenditure into operative expenditure based on the subscription model SAP offers to their customers.
SOC1 reports specifically address service organizations internal control over financial reporting and controls specified by the service provider. The SOC1 reports are intended solely for the information and use of existing user entities (for ex. Exiting customers of the service organization), their financial statement auditors and management of the service organization. SOC 1 reports are prepared in accordance with Statement on Standards for Attestation Engagements (SSAE) No.16, a new guidance that the auditors use to conduct a SOC1 engagement. SOC1 Type 1 covers management’s description of a service organization’s system and the suitability of the design of controls at a specific point in time, whereas a SOC1 Type 2 also includes the operating effectiveness of controls for a dedicated period of time.
SAP HANA® Enterprise Cloud has regularly prepared SOC1 Type 2 audit reports by an independent 3rd party accountant. This version of the report covers the audit period 1. November 2015 to 30. April 2016, the locations St. Leon–Rot / Germany, Amsterdam / Netherlands, Sterling / US, Santa Clara / US, Tokyo / Japan, Osaka / Japan, Sydney / Australia, Moscow / Russia and Toronto / Canada.
The use of these reports is restricted. A copy of this report is available for all SAP HANA® Enterprise Cloud customers who had productive and had financially-relevant systems during the audit period covered by the report.