Skip to Content

SAP Financial Services Network SOC 1 (ISAE3402) Audit Report 2018 H1

The scope of this SOC report includes SAP Financial Services Network is hosted in SAP SE's data centers St. Leon–Rot, Germany as well as in co-location data center in Ashburn (Virginia USA).

SAP Financial Services Network is an innovative on-demand solution that connects banks and other financial institutes with their corporate customers on a secure network owned and managed by SAP. The network offers multiple services over one single channel while supporting the deployment of new ones. As key benefits, the solution automates financial transactions, reduces payment rejection rates, eases reconciliation and provides enhanced visibility to corporate treasury. It combines SAP expertise in applications, analytics, and in-memory computing to provide a standard, innovative technology for financial institutions and their corporate customers on a platform that accommodates future integration needs. 

SAP Financial Services Network is capable of performing a failover in case of a disaster (disaster recovery). This capability is currently only offered to non-European customers. SAP Financial Services Network is entirely operated by SAP. 

SAP Financial Services Network is a product implemented by SAP, and as such it uses the “Idea-toMarket” (I2M) process framework for system and software development. The I2M process framework is ISO-9001 certified.

SOC1 reports specifically address service organizations internal control over financial reporting and controls specified by the service provider. The SOC1 reports are intended solely for the information and use of existing user entities (for ex. Existing customers of the service organization), their financial statement auditors and management of the service organization. SOC 1 reports are prepared in accordance with Statement on Standards for Attestation Engagements (SSAE) No.18, a new guidance that the auditors use to conduct a SOC1 engagement. SOC1 Type 1 covers management’s description of a service organization’s system and the suitability of the design of controls at a specific point in time, whereas a SOC1 Type 2 also includes the operating effectiveness of controls for a dedicated period of time.

SAP Financial Services Network has prepared SOC1 Type 1 audit report by an independent 3rd party accountant. This version of the report covers the audit period from 1. November 2017 to 30. April 2018, the location St. Leon–Rot, Germany as well as in co-location data center in Ashburn (Virginia USA).

The use of these reports is restricted. A copy of this report is available for all SAP Financial Services Network customers who had productive and had financially-relevant systems during the audit period covered by the report.

Back to top