SUCCESSFUL ANONYMIZATION AT R+V
With our solution, we not only increase data security in SAP test environments, but also comply with EU GDPR guidelines – R+V Versicherung relies on our Smart Data Protection solution for this for the provision of data protection-compliant production system copies. R+V has implemented our innovative anonymization approach in its standard processes in order to be able to provide data protection-compliant, production-related test systems at all times.
R+V Allgemeine Versicherung AG has a lot of experience and high standards in the provision of data protection-compliant SAP test systems.
In order to enable integrative, cross-system tests, the anonymization of personal and business data in all production-related test systems should be carried out according to the same system.
Thanks to the flexible definition options for anonymization rules in our Smart Data Protection , we were able to adapt the established anonymization system of R+V Versicherung and thus alienate SAP system copies analogous to surrounding non-SAP test systems.
Our Smart Data Protection Framework is an innovative solution for anonymizing data in SAP test systems that ensures data protection compliance without compromising test quality.
A SOLUTION THAT CONVINCES
WHY R+V VERSICHERUNG RELIES ON THE SMART DATA PROTECTION SOLUTION
With our “Smart Data Protection” solution, we are breaking completely new ground and delivering a timely, innovative approach to data protection for SAP test systems.
The solution enables intelligent, technically consistent encryption, which on the one hand does not restrict the usability of the system for test purposes in any way and on the other hand fulfills all legal requirements with regard to data protection. The absolute innovation of the solution is the ability to automatically determine the fields and information relevant for encryption from the data model of any SAP module or customer extension. This enables the use of a single solution for all SAP systems in use, with little time required for specialist departments and IT, as well as rapid commissioning.
- Provision of data protection-compliant SAP test systems with high data volumes
- Need for integrative anonymization across SAP and non-SAP test systems
- Ensuring usability for testing purposes while complying with legal data protection requirements
To meet these challenges, R+V Versicherung opted for paricon’s Smart Data Protection solution after successfully implementing a proof of concept. The main steps for the introduction were as follows:
- Localization of information worthy of protection: Initial identification of all personal data in the SAP system with our innovative, automatic Smart Search. In this way, a very large amount of relevant data was collected, which also relates in particular to customer extensions.
- Individual setting of the anonymization logic: In the second step, the anonymization rules were configured in such a way that the logic of the existing anonymization functions of the peripheral systems was also implemented 1:1 for the SAP systems.
- Performance optimization: In the final step, the performance of our solution was adapted to the infrastructure and sizing of the R+V test systems.
The use of paricon’s Smart Data Protection solution has led to a significant increase in the security and efficiency of the provisioning processes for data protection-compliant SAP test systems at R+V Versicherung. The following specific added value was achieved:
- Security gain: Our search engine-based localization approach ensures that vulnerable locations are found and anonymized throughout the system – our approach is the first to fully and completely anonymize the systems
- Tester acceptance: By adopting the familiar anonymization logic, testers find uniform and familiar test data sets in all systems
- Time savings during deployment: The deployment time for anonymized test systems has been significantly reduced thanks to the ease of use and high processing performance
- Fast implementation: Including the implementation of the individual anonymization logic, the solution was integrated into the deployment processes within a few months
Quick Facts
Automatic localization
of data worthy of protection in SAP test systems via search engine-based approach
Anonymization of SAP test systems analogous to established, cross-system alienation rules
Compliance with the legal requirements of the EU GDPR – for the protection of personal data through anonymization
High-performance alienation
of large SAP test systems through HANA optimization and individual scaling options
Fast introduction of the solution: Low implementation effort and fast commissioning
WHAT THE CUSTOMER SAYS
Michael Hammelstein
Project manager for the introduction of Smart Data Protection
By using the paricon solution, we have achieved a significant increase in security while maintaining our usual anonymization routines.
The automatic search mechanism of the paricon solution finds data worthy of protection without time-consuming specialist department workshops and complicated selection rules. The high flexibility of the anonymization engine enables us to alienate the SAP systems in the same way as our host systems and other applications. This simplifies cross-system test activities and creates a high level of acceptance among testers for working with anonymized test data.
Günter Graf
Technical project manager
In addition to the high flexibility of the paricon solution, we were particularly impressed by the runtime behavior. Compared to previous anonymization approaches, Smart Data Protection allows us to anonymize much more extensively thanks to the search algorithm, while at the same time reducing the runtime. This has significantly reduced the deployment time for secure, data protection-compliant test systems.