SAP Signavio SOC 2 Audit Report 2024 H1
SAP Signavio Process Transformation Suite enables organizations not only to understand their existing business processes but also to proactively manage and optimize those processes, achieving the agility necessary for success and thriving. SAP Signavio Process Transformation Suite reinvents the concept of 'process outcomes,' delivering business results that span product and component boundaries – from process mining to process customer journey modeling initiatives. To achieve mentioned objectives, the Signavio suite provides the following services:
SAP Signavio Process Insights
SAP Signavio Process Intelligence
SAP Signavio Journey Modeler
SAP Signavio Process Manager
SAP Signavio Process Governance
SAP Signavio Process Explorer
SAP Signavio Process Collaboration Hub
SAP Signavio Process Transformation Suite
Hosted on AWS, SAP Signavio Process Transformation Suite (excluding SAP Signavio Process Insights) multi-tenant cloud instances are located in:
DC Locations | DC Providers |
Sydney, Australia | AWS |
Singapore | AWS |
Seoul, South Korea | AWS |
Canada Central | AWS |
Frankfurt, Germany | AWS |
Tokyo, Japan | AWS |
Virginia, United States | AWS |
SAP Signavio Process Insights
Hosted on AWS and Azure, SAP Signavio Process Insights multi-tenant cloud instances are located in:
DC Locations | DC Providers |
Sydney, Australia | AWS |
Singapore | AWS |
Seoul, South Korea | AWS |
Canada Central | AWS |
Frankfurt, Germany | AWS |
Tokyo, Japan | AWS |
Virginia, United States | AWS |
Netherlands | Azure |
California, United States | Azure |
SOC 2 reports are prepared in accordance with AT-C Section 205 and the International Standard on Assurance Engagements No. 3000. SOC 2 reports fulfill various information and assurance needs of customers and aim to place trust in SAP’s service organization systems, processes, and controls. These reports are intended to meet the needs of a broad range of users that need detailed information and assurance about the controls at a service organization relevant to Security, Availability, and Processing Integrity of the systems that are used to process users’ data and the Confidentiality and Privacy of the information processed by these systems (AICPA, Trust Services Criteria). Additionally, they can play an important role in the oversight of the organization, vendor management programs, and regulatory oversight. Please note that this examination's scope does not include the controls of any subservice organizations. SOC 2 Type 1 covers management’s description of a service organization’s system and the suitability of the design of controls at a specific point in time, whereas a SOC 2 Type 2 also includes the operating effectiveness of controls for a dedicated period of time.
SAP Signavio has prepared SOC 2 Type 2 audit report by an independent 3rd party accountant. This version of the report covers as of the audit period 1. October 2023 to 31. March 2024, and the trust principles Security, Availability, and Confidentiality.
The use of these reports is restricted. A copy of this report is available for all SAP customers and prospects with a non-disclosure agreement in place.
SAP Signavio Process Transformation Suite enables organizations not only to understand their existing business processes but also to proactively manage and optimize those processes, achieving the agility necessary for success and thriving. SAP Signavio Process Transformation Suite reinvents the concept of 'process outcomes,' delivering business results that span product and component boundaries – from process mining to process customer journey modeling initiatives. To achieve mentioned objectives, the Signavio suite provides the following services:
SAP Signavio Process Insights
SAP Signavio Process Intelligence
SAP Signavio Journey Modeler
SAP Signavio Process Manager
SAP Signavio Process Governance
SAP Signavio Process Explorer
SAP Signavio Process Collaboration Hub
SAP Signavio Process Transformation Suite
Hosted on AWS, SAP Signavio Process Transformation Suite (excluding SAP Signavio Process Insights) multi-tenant cloud instances are located in:
DC Locations | DC Providers |
Sydney, Australia | AWS |
Singapore | AWS |
Seoul, South Korea | AWS |
Canada Central | AWS |
Frankfurt, Germany | AWS |
Tokyo, Japan | AWS |
Virginia, United States | AWS |
SAP Signavio Process Insights
Hosted on AWS and Azure, SAP Signavio Process Insights multi-tenant cloud instances are located in:
DC Locations | DC Providers |
Sydney, Australia | AWS |
Singapore | AWS |
Seoul, South Korea | AWS |
Canada Central | AWS |
Frankfurt, Germany | AWS |
Tokyo, Japan | AWS |
Virginia, United States | AWS |
Netherlands | Azure |
California, United States | Azure |
SOC 2 reports are prepared in accordance with AT-C Section 205 and the International Standard on Assurance Engagements No. 3000. SOC 2 reports fulfill various information and assurance needs of customers and aim to place trust in SAP’s service organization systems, processes, and controls. These reports are intended to meet the needs of a broad range of users that need detailed information and assurance about the controls at a service organization relevant to Security, Availability, and Processing Integrity of the systems that are used to process users’ data and the Confidentiality and Privacy of the information processed by these systems (AICPA, Trust Services Criteria). Additionally, they can play an important role in the oversight of the organization, vendor management programs, and regulatory oversight. Please note that this examination's scope does not include the controls of any subservice organizations. SOC 2 Type 1 covers management’s description of a service organization’s system and the suitability of the design of controls at a specific point in time, whereas a SOC 2 Type 2 also includes the operating effectiveness of controls for a dedicated period of time.
SAP Signavio has prepared SOC 2 Type 2 audit report by an independent 3rd party accountant. This version of the report covers as of the audit period 1. October 2023 to 31. March 2024, and the trust principles Security, Availability, and Confidentiality.
The use of these reports is restricted. A copy of this report is available for all SAP customers and prospects with a non-disclosure agreement in place.