SAP Trust Center

The scope of this C5 report includes SAP Fieldglass as offered in the primary data centers in Amsterdam (Netherlands), Colorado Springs (USA), Sterling (USA), and St. Leon-Rot (Germany).

SAP Fieldglass provides a cloud-based Vendor Management System (VMS) to manage services procurement and external workforce programs. Hundreds of global businesses leverage our industry-leading technology to gain visibility into their external labor, project-based services including Statements of Work (SOWs), independent contractors, and additional flexible talent pools.

The Cloud Computing Compliance Controls Catalogue (C5) is intended primarily for cloud service providers as well as their customers and auditors. It is defined which requirements (also referred to as controls in this context) the cloud providers have to comply with or which minimum requirements the cloud providers should be obliged to meet. The catalogue is divided into 17 thematic sections (e.g. organization of information security, physical security). The surrounding parameters provide additional information on the data location, provision of services, place of jurisdiction, certifications and duties of investigation and disclosure towards government agencies and contain a system. 

SAP Fieldglass has prepared C5 Type 2 audit reports by an independent 3rd party accountant. This version of the report covers the audit period 1. October 2020 to 31. October 2021 in the primary data centers in locations: Amsterdam (Netherlands), Colorado Springs (USA), Sterling (USA), and St. Leon-Rot (Germany).

The use of this report is restricted. A copy of this report is available for all SAP Fieldglass customers with productive systems. This report is also available for prospective customers under the signed non-disclosure agreement.