Read Access Logging

Read Access Logging (RAL) is used to monitor and log read access to sensitive data. This data may be categorized as sensitive by law, by external company policy, or by internal company policy. These common questions might be of interest for an application that uses Read Access Logging:

Who accessed the data of a given business entity, for example a bank account?
Who accessed personal data, for example of a business partner?
Which employee accessed personal information, for example religion?
Which accounts or business partners were accessed by which users?

These questions can be answered using information about who accessed particular data within a specified time frame. Technically, this means that all remote API and UI infostructures (that access the data) must be enabled for logging.

Documents in SAP Asset Intelligence Network can be marked as sensitive and log is created for any document downloads (document reads) through UI or API.

For other fields (like free text fields, comment fields), please note that the Cloud service is not designed to collect or store personal data, and customer should not enter any such data in any free text fields of the cloud service. Please also refer to the SAP Asset Intelligence Network Supplement.