Privacy Law Compliance for SAP

Data privacy regulations are prompting enterprises to re-think their data management practices. Qlik solutions can assist you with GDPR, CCPA, and LGPD compliance, especially in SAP environments.

Reduced risk of non-compliant usage with personal data

Qlik Gold Client® for Data Protection addresses challenges around using personal data, also referred to as Personally Identifiable Information (PII), in several ways.

  • Synchronize anonymization procedures across all core and/or industry-specific SAP modules.

  • Anonymization process cannot be reverse engineered.

  • Implement the “right to be forgotten” by erasing and obfuscating PI in production.

  • Easily report on these procedures to demonstrate compliance.

A shield icon with "PII" text in the center. Below it are five icons: a controller, a circular arrow, "x2", a brightness symbol, and a document.

Enforce the right to erasure and operationalize data retention

The ‘right to erasure’ and that personal data is not kept for longer than is necessary are two of the most challenging aspects of today’s data privacy regulations. However, referential integrity executed through Qlik Gold Client for Data Protection ensures that when customer data is purged from your system, all instances of that PII data are deleted across all SAP environments. Gold Client for Data Protection can obfuscate the original data and can also delete all the change documents in SAP that contain the original information.

Illustration shows a trash bin icon beside a person icon with the SAP logo below it, downward green arrows pointing to leading to loading icons indicate deletion or removal of data.

Non-production SAP environments

Production data cannot simply be copied “as is”. Amongst the new requirements introduced by the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and Lei Geral de Proteção de Dados (LGPD), is the right of restriction on the use of PII. If production data is sourced for development, testing or user training, then data managers must apply anonymization techniques to all PII, and this process must be irreversible.

Illustration depicting data flow from production to quality assurance, training, and development. Production data is securely transferred to multiple stages represented by different symbols.

Powerful data masking

Qlik Gold Client provides several options to protect PII data via data masking. Data masking applies a set of rules to “scramble” your production data when it is replicated to a non-production environment.

  • Dynamic masking is used when the data is in flight.

  • Static masking is when applying scrambling rules to a previously unscrambled non-production SAP environment.


The Qlik data masking process cannot be reverse engineered to recreate the original source data.

Diagram showing Production Records with columns for Update, Transaction, Address, State, and ZIP, alongside Anonymized Non-Prod Records with Name, Transaction, Address, State, and ZIP columns, indicating data scrambling and maintaining integrity.

Learn more about Qlik Gold Client for Data Protection today