Does absolutely nobody have access to the building?
The data centre is guarded around the clock, 365 days of the year. In addition, personnel turnstiles and locks are used to regulate access to the building. This is only possible for employees explicitly authorised to do so who have to identify themselves with personalised ID cards. This means they can only enter rooms in which they have to undertake tasks. Particularly sensitive areas of the data centre require additional authentication by means of biometric scans.
What protection is there against hackers?
The data flow into the data centre is continuously monitored. An “Intrusion Detection System” (IDS) identifies any suspicious activities and several series-connected firewalls produced by different manufacturers provide effective protection for the data in the data centre. Data exchange with customers is undertaken using encryption as a basic principle. Back-up files, which are stored in another data centre for safety reasons, are also transferred in encrypted form or via tap-proof glass fibre cables.
How is the power supply guaranteed?
The power supply is designed to cope with failures in a number of ways. Should there be a public power supply failure powerful blocks of batteries automatically switch on immediately. These provide the servers and technical facilities with electricity for up to 15 minutes without any interruption. This is a sufficient period to cover the time it takes for the emergency electricity diesel generators to automatically start. These supply the entire data centre with electricity on a long-term basis.
Does hardware failure pose a danger?
Virtualisation means the availability and functional capability of the software does not depend on individual servers or databases. Virtual and physical servers, (HANA) databases and networks each access a pool of physical hardware; if individual components within this experience a failure then the load can be redistributed to other components with the minimum of switching time and without the virtual systems losing any stability. Should hardware actually suffer a failure on a larger scale, for example due to a fire, the data can be retrieved from the back-up files.
How does the fire protection operate?
The data centre is divided into many fire sections so as to prevent any fire spreading in an uncontrolled manner. All the rooms of the data centre are monitored by thousands of fire detectors and smoke extraction systems (SES). The SESs recognise specific degassings if electronic components overheat and trigger a pre-alarm. This means a fire can be prevented. Should a fire still break out, the room affected is flooded with extinguishing gas (INERGEN) and the fire is smothered. Sprinklers are not deployed as water would destroy large areas of the sensitive electronics involved. The fire brigade, which is automatically called in such a case, would be able to use water or foam as an extinguishing agent as a last resort.
How stable is the building?
The data centre is made of 100,000 tons of reinforced concrete and is built on a foundation consisting of 480 concrete pillars buried 16 metres deep in the earth. The outer walls of the building of the data centre consist of 30 cm thick reinforced concrete. The particularly sensitive server rooms are also surrounded by a total of three concrete walls. This form of construction provides effective protection against all imaginable forms of severe weather. Even a small aircraft crashing into the building would not seriously damage this construction. The region of Germany in which the building stands is not rated as being at risk of suffering an earthquake, although the solid construction would even withstand such an event.
Is data protection guaranteed?
SAP ensures compliance with data protection regulations. Customer data in the Cloud services remain in the area of jurisdiction chosen by the customer and no data is conveyed to third parties. Data protection is also ensured with traceability during maintenance work and when advice is being provided by Support staff.
How can data be retrieved?
Back-ups are compiled as Disk-to-Disk copies allowing on one hand for the files to be created quickly and, on the other hand, for quick retrieval of the files. In addition to the full daily back-ups, intermediate versions (“incremental back-ups”) are created several times daily. Back-ups are stored not just in the data centre but also at a second site for safety reasons. Data transferred in this event is encrypted.
Certificate in Information Security Management Systems
This standard defines the requirements for the production, introduction, operation and continuous improvement of an information security management system. In the scope of this, consideration is given to IT risks in terms of confidentiality, integrity and the availability of information. The SAP data centre forms an important element in the internal and external audit conducted each year.
SOC 1 / SSAE 16
Statement on Standards for Attestation Engagements No. 1 (Attestation)
The SSAE 16 or SOC 1 (Service Organisation Controls) is an attestation regarding the control mechanisms of a Service Organisation which has effects on financial reporting. The physical security of the SAP data centre is also of relevance for the audits conducted every two years.
SOC 2 Service Organisation Controls Report (Attestation)
SOC 2 is concerned with integrity, security, availability, confidentiality and data security. The SAP data centre is audited every two years.
ISO 22301 Business Continuity Management
The standard in the area of “Business Continuity Management” (BCM) ensures continuous business operation, including in critical situations. It lays down how interruptions to business can be avoided and how business can be resumed in the shortest time possible in an emergency situation.