The scope of this C5 report includes SAP Fieldglass services as offered in the primary data center St-Leon Rot (Germany) as well as in the co-locations Elk Grove (Illinois), San Jose (California) and Amsterdam (Netherlands).
SAP Fieldglass provides a cloud-based Vendor Management System (VMS) to manage services procurement and external workforce programs. Hundreds of global businesses leverage our industry-leading technology to gain visibility into their external labor, project-based services including Statements of Work (SOWs), independent contractors, and additional flexible talent pools.
The Cloud Computing Compliance Controls Catalogue (abbreviated “C5”) is intended primarily for cloud service providers as well as their customers and auditors. It is defined which requirements (also referred to as controls in this context) the cloud providers have to comply with or which minimum requirements the cloud providers should be obliged to meet. The catalogue is divided into 17 thematic sections (e.g. organization of information security, physical security). The surrounding parameters provide additional information on the data location, provision of services, place of jurisdiction, certifications and duties of investigation and disclosure towards government agencies and contain a system description.
SAP Fieldglass has prepared C5 Type 2 audit report by an independent 3rd party accountant. This version of the report covers the audit period 1. October 2019 to 30. September 2020, and the location St-Leon Rot (Germany) as well as in the co-locations Elk Grove (Illinois), San Jose (California) and Amsterdam (Netherlands).
The use of this report is restricted. A copy of this report is available for all SAP Fieldglass customers with productive systems. This report is also available for prospective customers under the signed non-disclosure agreement.