SAP and SAP SuccessFactors attach great importance to the security of their data centers, by taking technical and physical precautions to ensure the safety of customer data.
Data centers are guarded at all times, with additional control at access locks. Biometrical scans protect sensitive areas. This ensures that only authorized staff have access. In case of a power outage, the centers have back-up batteries and diesel engines, which can operate the centers self-sufficiently. The buildings are earthquake-resistant and to prevent worst case scenarios, each data center has a locally separate back-up center, that can take over seamlessly for the primary center. Of course, each back-up center has the same security standards as the primary centers.
On a technical level, data centers have multiple firewalls that prevent unauthorized access and suspicious activities are detected by powerful monitoring systems (Intrusion Detection System / IDS). Data exchange with customers is encrypted and tap-proof, as well as all data back-ups.
SAP data centers are regularly inspected by TÜV, KPMG and internal auditors. Centers hold multiple certificates that confirm their security and resilience. The most important certification standards obtained include ISO 27001, SOC 1 / SSAE 16, SOC 2 and ISO 22301.
Within the framework of the Next Generation Cloud Delivery, most of SAP‘s applications will be based on a new platform, in order to enable a “4+1” strategy. The goal is to outsource the majority of the applications and customer workloads to one of the four hyperscalers (Amazon Web Services, Microsoft Azure, Google Cloud Platform, Alibaba Cloud) or to a separate Cloud infrastructure from SAP (SAP Converged Cloud). Because SAP offers its entire Cloud-based SAP SuccessFactors Human Experience Management (HXM) Suite in the Hyperscale environment, customers can use the advantages of a powerful data platform, which provides considerable additional capacity for the execution of operative workloads.
You can find further information under: https://www.sap.com/about/trust-center/data-center.html