CAP helps application projects to comply with data privacy regulations using SAP Business Technology Platform (BTP) services.
Find a step-by-step guide to these hereinafter...
SAP does not give any advice on whether the features and functions provided to facilitate meeting data privacy obligations are the best method to support company, industry, regional, or country/region-specific requirements. Furthermore, this information should not be taken as advice or a recommendation regarding additional features that would be required in specific IT environments. Decisions related to data protection must be made on a case-by-case basis, considering the given system landscape and the applicable legal requirements.
Data protection is associated with numerous legal requirements and privacy concerns, such as the EU's General Data Protection Regulation. In addition to compliance with general data protection and privacy acts regarding personal data, you need to consider compliance with industry-specific legislation in different countries/regions.
CAP supports applications in their obligations to comply to data privacy regulations, by automating tedious tasks as much as possible based on annotated models. That is, CAP provides easy ways to designate personal data, as well as out-of-the-box integration with SAP BTP services, which enable you to fulfill specific data privacy requirements in your application. This greatly relieves application developers these tedious tasks and related efforts.
The first and frequently only task to do as an application developer is to identify entities and elements (potentially) holding personal data using @PersonalData annotations. These are used to automate CAP-facilitated audit logging, personal data management, and data retention management as much as possible.