Skip to Content

SAP HANA Enterprise Cloud SOC 1 (ISAE3402) Audit Report 2020 H2

SAP HANA Enterprise Cloud is a fully scalable and secure private managed cloud solution available only from SAP and helps organizations to drive IT and business transformation, quickly delivering business outcomes, and reducing risk. The SAP HANA Enterprise Cloud reference architecture helps the customer to use flexible services for modular and rapid deployment. 

The SAP HANA Enterprise Cloud drives: Innovation at your own pace; An adaptive, scalable operating model; Reduced time and cost to go-live; Comprehensive SLAs coordinated across solution landscape.

SOC1 reports specifically address service organizations internal control over financial reporting and controls specified by the service provider. The SOC1 reports are intended solely for the information and use of existing user entities (for ex. Existing customers of the service organization), their financial statement auditors and management of the service organization. SOC 1 reports are prepared in accordance with Statement on Standards for Attestation Engagements (SSAE) No.18, a new guidance that the auditors use to conduct a SOC1 engagement. SOC1 Type 1 covers management’s description of a service organization’s system and the suitability of the design of controls at a specific point in time, whereas a SOC1 Type 2 also includes the operating effectiveness of controls for a dedicated period of time.

SAP HANA Enterprise Cloud has prepared SOC1 Type 2 audit report by an independent 3rd party accountant. This version of the report covers the audit period 1. May 2020 to 31. October 2020. 

The following locations and their IaaS provider are covered:

Location
Ownership

Colorado, US

SAP

St. Leon–Rot, Germany

SAP

Walldorf, Germany (productive since February 2020)

SAP

Amsterdam, Netherlands

Co-location

Frankfurt, Germany

Co-location

Moscow, Russia

Co-location

Osaka, Japan

Co-location

Santa Clara, US

Co-location

Sterling, US

Co-location

Sydney, Australia

Co-location

Tokyo, Japan

Co-location

Toronto, Canada

Co-location

Ashburn, US

Co-location

Asia-Pacific, Seoul

Amazon Web Service (AWS)

Asia-Pacific, Singapore

Amazon Web Service (AWS)

Asia-Pacific, Sydney

Amazon Web Service (AWS)

Asia-Pacific, Tokyo

Amazon Web Service (AWS)

EU, Frankfurt

Amazon Web Service (AWS)

EU, Ireland

Amazon Web Service (AWS)

Middle East, Bahrain

Amazon Web Service (AWS)

South America, Sao-Paulo

Amazon Web Service (AWS)

US East, North Virginia

Amazon Web Service (AWS)

US West, Oregon

Amazon Web Service (AWS)

Australia East, Sydney

Microsoft Azure

Canada Central, Toronto

Microsoft Azure

East Asia, Hongkong

Microsoft Azure

Germany Central, Frankfurt

Microsoft Azure

Ireland, Dublin

Microsoft Azure

Japan East, Tokyo

Microsoft Azure

Japan West, Osaka

Microsoft Azure

Korea Central, Seoul

Microsoft Azure

South Africa North, Johannesburg

Microsoft Azure

South East Asia, Singapore

Microsoft Azure

US East, Virginia

Microsoft Azure

US West, Washington

Microsoft Azure

West Europe, Amsterdam

Microsoft Azure

Australia, Southeast

Google Cloud Platform

Belgium, West Europe (productive since September 2020)

Google Cloud Platform

Iowa, US Central

Google Cloud Platform

London, West Europe

Google Cloud Platform

Northern Virginia, US East

Google Cloud Platform

The use of these reports is restricted. A copy of this report is available for all SAP Converged Cloud customers who had productive and had financially-relevant systems during the audit period covered by the report.

Back to top