MBIS dera

Discover personal data fields, encrypt sensitive personal data and anonymize personal data to comply with GDPR requirements by MBIS dera solution.

With MBIS dera (discover, encrypt, redact, anonymize), automatically discover personal data fields; encrypt sensitive personal data during retention period; dynamically and permanently anonymize (redact) personal data in SAP® and SQL based non-SAP® systems at the database level with certain rules, conditions and methods and ensure your compliance with GDPR regulations.

More information

What is MBIS dera?

According to Law on the Protection of Personal Data (KVKK) numbered 6698 : «despite being processed under the provisions of this law and other related laws, personal data shall be erased, destructed or anonymized by the controller, ex officio or upon demand by the data subject, upon disappearance of reasons which require the process.»

Anonymization is the process of rendering personal data impossible to link or associate with an identified or identifiable natural person, even through matching them with other data.

dera is a special SAP® ABAP add-on software, developed by MBIS R&D Center, which discovers personal data fields; encrypts and redacts (anonymize) personal data in SAP® , with certain rules, conditions and methods for compliance with GDPR / KVKK.

Main functionalities of ‘dera’

Personal Data
Discovery

Automaticaly finds and reports the personal data fields created to keep personal data.
Finds added/modified fields in custom tables. (as long as standard data element types are used)
Creates personal data fields catalogue from the reported fields and allows you to use them for redaction and encrytion operations.

Data
Redaction

Redacts personal data at the database level as a scheduled SAP® JOB or manually.
Enables to run redaction operations as background jobs.
Triggers and executes an approval workflow before redaction performed, if opted so.

Data
Encryption

Saves encrypted versions of personal data in dera tables before redaction operations.
Standard users see anonymized data whilst authorized users can see the original (decrypted) data based on authorization level.

Redaction in Non-SAP®
Systems

Runs SQL scripts to delete or update personal data kept in non-SAP® systems.
Performs redaction operations synchronously in non-SAP® systems through matching ID’s as soon as redaction is completed in SAP® to delete or anonymize related data.
Carries out redaction operations for non-SAP® systems manually or automatically at given periods.

Why ‘dera’?

GDPR Compliance

dera effectively meets related GDPR compliance requirements by encrypting and anonymizing ([sensitive]) personal data in multiple systems

ECC & S/4HANA Multisystem Support

dera works on both SAP® ECC and S/4HANA ERPs as well as any SAP® system which supports ABAP e. g. CRM, SRM, HR

Cost-Effective with Low TCO

dera is much more cost effective with relatively low TCO compare to existing expensive solutions

Centralized Data Anonymization

dera provides centrally managed personal data anonymization capability for both SAP® and non-SAP® systems from a single platform

Fast-Track Implementation

Thanks to its ready-to-use catalogs and pre-defined workflows, dera enables very fast implementation

Personal Data Field Discovery in SAP®

With its automatic personal date discovery function for SAP® , dera takes GDPR compliance to a higher level by minimizing the risk of overlooking any [sensitive] data

Flexible & Adaptable

‘dera can be easily customized and new functions can be added in accordance with specific business needs

And more…

dera comes with rich set of useful functionalities such as data subject level authorization, approval workflows, and more…

FAQ

Does this solution interfere with the SAP® system's source code?

No. dera does not interfere with SAP® 's original code. The field values in the related tables are changed within defined rules.

Can anonymized data be reversed or is the data permanently changed?

Applying a database level anonymization process permanently changes the field values according to the defined rule, thus anonymized data cannot be returned.

Does our SAP® system slow down when running field-based checks?

No, it doesn't. It is possible to work on different parallel sessions while continuing the data crushing process and running other processes in the background.

Can dera be used to anonymize the data stored in non-SAP® systems?

Yes. dera has screens for non-SAP® and external systems where you can anonymize the desired content by applying table-field based rules and create scripts to perform anonymization/permanent change operations. Anonymization/permanent change operations can be executed for all associated systems centrally from dera.

Is there a predefined rule set to implement anonymization processes for personal data?

Yes. dera has a predefined rule catalog for the anonymization of fields containing personal data within the scope of KVKK/GDPR. In order to avoid data inconsistency, it does not recommend applying anonymization to all fields containing personal data. Instead, it suggests permanently change the data of a few related fields (such as Name and Surname) in order to break links that could point out the "real person". It provides with a predefined rule set prepared accordingly. If necessary, new rule sets can be defined for new fields.

Does dera also work in customized programs (Z-programs)?

Yes. By adding these fields to the field catalog, you can permanently change data in customized fields.

Will dera continue to operate when we upgrade our SAP® system from ECC to S/4HANA?

Yes. dera also works on different SAP® versions.

Does dera Fiori work in different SAP® interfaces such as WebGui?

dera's transaction codes can be called from different SAP® interfaces. In addition, since dera operates at database level, all related systems are affected by permanent data anonymization.

Can dera be used for GDPR-related actions?

dera recommends permanently changing the data of several relevant fields in order to break the links that may point out the real person. It presents a predefined rule set accordingly. Thus, it allows compliance with the data annihilation liability of GDPR.

If I purchase dera, do I need to buy an additional license from SAP® ? Does dera bring any hidden costs?

dera is an SAP® add-on, so it does not require an additional license or hardware other than its own license.

How are dera's maintenance services provided? What services can I get under maintenance?

Updates, add-ons and versions related to the product are covered in the maintenance agreement. Communication is provided via MBIS's help desk application.

Which databases does dera support?

dera supports all SAP® installed databases. For non-SAP® system databases, additional scripts are written and run within dera. It is the customer's responsibility to develop the script.

What are the redaction methods?

There are different methods that can be used. For example, methods such as mixing, fixed value assignment, fixed date assignment, fixed text, parametric text assignment, random text or date assignment are used in dera.

What technical competencies should the person have who will manage dera?

Users with basic SAP® knowledge can manage dera with user training; it does not require any further competence. System-wise expertise may be required for script development for external systems.

I don't use SAP® , can I still use dera?

dera is a solution that is installed in SAP® and enables the process to be carried out in all systems from within SAP® centrally.

Watch dera Introduction Video

Kaynaklar

MBIS’in bilgi birikiminden faydalanın, farkındalığınızı artırın.

MBIS'in sunduğu SAP® S/4HANA Finance Çözümü ile
kazanan siz olun.

Bu dokümanın amacı, bir S/4HANA Finance projesinin hazırlık aşamasında yapılması gerekenlere dikkat çekmek ve implementasyonun geri kalanının daha sorunsuz ilerlemesini sağlamaktır.

İndir

Please contact us for further information

Name*

Surname*

Company*

Title*

e-Mail*

Message*

By filling out this form, I hereby accept and declare that I have read and understood the Clarification Text regarding the processing of the personal data of visitors to the MBIS website and the use of cookies

Privacy Overview

This website uses cookies to provide you with a better service. To change your cookie preferences and get detailed information about Cookies, please read the Cookie Policy.

Necessary

Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.

Cookie	Duration	Description
cookielawinfo-checbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Functional

Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.

Cookie	Duration	Description
bcookie	2 years	This cookie is set by linkedIn. The purpose of the cookie is to enable LinkedIn functionalities on the page.
lang	session	This cookie is used to store the language preferences of a user to serve up content in that stored language the next time user visit the website.
lidc	1 day	This cookie is set by LinkedIn and used for routing.
pll_language	1 year	This cookie is set by Polylang plugin for WordPress powered websites. The cookie stores the language code of the last browsed page.

Analytics

Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.

Cookie	Duration	Description
_ga	2 years	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_gat	1 minute	This is a pattern type cookie set by Google Analytics, where the pattern element on the name contains the unique identity number of the account or website it relates to. It appears to be a variation of the _gat cookie which is used to limit the amount of data recorded by Google on high traffic volume websites.
_gid	1 day	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visted in an anonymous form.
CONSENT	16 years 5 months 1 day 11 hours	These cookies are set via embedded youtube-videos. They register anonymous statistical data on for example how many times the video is displayed and what settings are used for playback.No sensitive data is collected unless you log in to your google account, in that case your choices are linked with your account, for example if you click “like” on a video.

Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.

Cookie	Duration	Description
bscookie	2 years	This cookie is a browser ID cookie set by Linked share Buttons and ad tags.
VISITOR_INFO1_LIVE	5 months 27 days	This cookie is set by Youtube. Used to track the information of the embedded YouTube videos on a website.
YSC	session	This cookies is set by Youtube and is used to track the views of embedded videos.

Performance

Others

Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.

Cookie	Duration	Description
AnalyticsSyncHistory	1 month	No description
li_gc	2 years	No description
UserMatchHistory	1 month	Linkedin - Used to track visitors on multiple websites, in order to present relevant advertisement based on the visitor's preferences.