SAP Signavio Cloud Computing Compliance Criteria Catalog (C5:2020) Audit Report 2023
SAP Signavio Process Transformation Suite enables organizations not only to understand their existing business processes but also to proactively manage and optimize those processes, achieving the agility necessary for success and thriving. SAP Signavio Process Transformation Suite reinvents the concept of 'process outcomes,' delivering business results that span product and component boundaries – from process mining to process customer journey modeling initiatives. To achieve mentioned objectives, the Signavio suite provides the following services:
SAP Signavio Process Insights
SAP Signavio Process Intelligence
SAP Signavio Journey Modeler
SAP Signavio Process Manager
SAP Signavio Process Governance
SAP Signavio Process Explorer
SAP Signavio Process Collaboration Hub
The following locations and their IaaS provider are covered:
The Cloud Computing Compliance Controls Catalogue (abbreviated “C5”) is intended primarily for cloud service providers as well as their customers and auditors. It is defined which requirements (also referred to as controls in this context) the cloud providers have to comply with or which minimum requirements the cloud providers should be obliged to meet. The catalogue is divided into 17 thematic sections (e.g. organization of information security, physical security). The surrounding parameters provide additional information on the data location, provision of services, place of jurisdiction, certifications and duties of investigation and disclosure towards government agencies and contain a system description.
SAP Signavio has prepared C5 Type 1 audit reports by an independent 3rd party accountant. This version of the report covers the audit period as of September 30th, 2023.
The use of these reports is restricted. A copy of this report is available for all SAP customers and prospects with non-disclosure agreement in place.