Show TOC

Background documentationConsiderations about Data Protection Locate this document in the navigation structure

 

As a technical framework that allows changing business-critical interface data, the SAP Application Interface Framework is required to save user-related information that could be marked as personal, private or confidential. The access to this information is limited by authorizations. The following user-related or potentially confidential data is saved and could be accessed using the SAP Application Interface Framework.

Single or Multi Message Index Table

The single or multi message index tables, which record aggregated information on a per-data-message-level, contain fields for:

  • The user name of the user that processed the message, along with date and time of initial message processing

  • The user name of the user that last changed the message (restarted or canceled it), along with date and time of the action

Data in the single or multi index tables is not visible on any screen within the SAP Application Interface Framework. It can only be accessed through direct database query or the ABAP dictionary.

Log of Changes in the Error Handling

Changes to a data message’s field values that originated from the Monitoring and Error Handling transaction are recorded in a log table. Information saved is:

  • The name and path of the changed field along with old and new value

  • The user name of the user who initiated the change, along with date and time of the change

The changes log data can be viewed in the Error Handling Changes Log transaction. This transaction is protected by authorization object S_TCODE. The transaction enables the user to see a list of changes. It is only when the user selects a change log entry and chooses to view the details, that the user name of the user who made the change is displayed.

Information Contained in Interface Data

Depending on your interfaces, message data might contain personal, private, or confidential information. This information will be accessible by all users that have the authorization to display or change messages of the interface in the Monitoring and Error Handling transaction. If you identify such information and do not want the information to be available for the error handling, you can define the corresponding structures as Hide Structures. You can do this in the view Namespace-specific Features within the Customizing of the SAP Application Interface Framework.