SAP Trust Center

The scope of this SOC report includes the SAP S/4HANA Cloud as offered in the primary data centers in St. Leon–Rot (Germany), Sterling (USA), Sydney (Australia), Osaka (Japan) Toronto (Canada), Dubai (UAE), Frankfurt (Germany), Moscow (Russia), Riyadh (Saudi Arabia), Shanghai (China) and Tokyo (Japan).

SAP S/4HANA Cloud is the intelligent cloud ERP that accelerates digital value creation through fast adoption of live business processes and intelligent automation across the organization. 

Compared to traditional on-premise implementations, SAP S/4HANA Cloud lets customers deploy enterprise-ready ERP in the cloud in a fraction of the time and at a fraction of the cost. SAP S/4HANA Cloud can be integrated with other SAP software and technology such as SAP S/4HANA (for 2-tier ERP), SAP SuccessFactors solutions, SAP Ariba solutions, Concur solutions, and our financials solutions.

SAP Marketing Cloud
The SAP Marketing Cloud provides superior customer insight to power a highly agile and scalable marketing execution platform. Reach your customers at all points of their journey, and boost loyalty by responding in context to deliver the best possible customer experience. SOC 1 reports specifically address service organizations internal control over financial reporting and controls specified by the service provider. The SOC 1 reports are intended solely for the information and use of existing user entities (for ex. Existing customers of the service organization), their financial statement auditors and management of the service organization.

SOC 1 reports specifically address service organizations internal control over financial reporting and controls specified by the service provider. The SOC 1 reports are intended solely for the information and use of existing user entities (for ex. Existing customers of the service organization), their financial statement auditors and management of the service organization. SOC 1 reports are prepared in accordance with Statement on Standards for Attestation Engagements (SSAE) No.18, a new guidance that the auditors use to conduct a SOC 1 engagement. SOC 1 Type 1 covers management’s description of a service organization’s system and the suitability of the design of controls at a specific point in time, whereas a SOC 1 Type 2 also includes the operating effectiveness of controls for a dedicated period of time.

SAP S/4HANA has regularly prepared SOC 1 Type 2 audit reports by an independent 3rd party accountant. This version of the report covers the audit period 1. November 2020 to 30. April 2021, the primary data centers in locations in St. Leon–Rot (Germany), Sterling (USA), Sydney (Australia), Osaka (Japan) Toronto (Canada), Dubai (UAE), Frankfurt (Germany), Moscow (Russia), Riyadh (Saudi Arabia), Shanghai (China) and Tokyo (Japan).

The use of these reports is restricted. A copy of this report is available for all SAP S/4HANA customers who had productive and had financially-relevant systems during the audit period covered by the report.