Preamble

With its online platform - openSAP - SAP offers you the possibility to take part in free online courses on Information Technology-related topics. As a registered user you have access to the course content (videos, quizzes, reading material) and, after successful completion, you receive a record of achievement. Moreover, for the duration of the course the discussion forum and the collab spaces are available for your questions and interaction with other learners.

When conducting online courses, the collection and storage of personal data is unavoidable. The protection of your data and the lawful collection, processing, and use of it is therefore a matter of particular concern to us. We would thus like to inform you here which data will be collected when you visit our website and register for one or more of our courses. We would further like to inform you about the purpose of collecting this data and in what scope it will be used.

On every website of our web offering you can print out and/or save this privacy policy, which is to be found in the page footer under "Privacy".

A. GENERAL INFORMATION

Data Controller. The data controller in case of openSAP (https://open.sap.com and respective openSAP mobile applications) is SAP SE, Dietmar-Hopp-Allee 16, 69190 Walldorf, Germany (“SAP”), with its data protection officer Mathias Cellarius (privacy@sap.com).

Duration of data storage. SAP will only store your name, email address and the respective profile data that you provide voluntarily, i.e. gender, date of birth, employer or university, city, country, career status, expertise, highest degree, IT background and position (your “Personal Data”) for as long as you have an active user account on the openSAP platform plus, where applicable, any additional periods under applicable laws during which SAP has to retain your Personal Data.

Why is the provision of Personal Data required? SAP requires your Personal Data to enable you to attend openSAP courses that are of interest for you. Any provision of this information is entirely voluntarily for you. However, without provisioning email address and name, it will unfortunately not be possible for SAP to make the relevant openSAP courses available to you.

Transmission of Personal Data to a non-EEA country. openSAP does not transfer any of your Personal Data to countries outside the European Economic Area.

Recipients of Personal Data. SAP will forward your Personal Data to Hasso-Plattner-Institute for Digital Engineering gGmbH, Prof.-Dr.-Helmert-Str. 2-3, 14482 Potsdam, Germany (“HPI”). HPI will use this Personal Data for the provisioning and operation of the openSAP platform on behalf of SAP.

Rights to access/rectification/erasure/restriction of processing/portability. You can request from SAP at any time information about which Personal Data SAP processes about you and the correction or deletion of such Personal Data. You can also always change or delete your Personal Data by yourself on the openSAP platform. Please note, however, that SAP can or will delete your Personal Data only if there is no statutory obligation or prevailing right of SAP to retain it. Kindly note further that if you request that SAP deletes your Personal Data, you will not be able to continue to use openSAP.

You may further request from SAP a copy of the Personal Data that you have provided to SAP. In this case, please contact the email address below and specify the information or processing activities to which your request relates, the format in which you would like this information, and whether the Personal Data is to be sent to you or another recipient. SAP will carefully consider your request and discuss with you how it can best fulfill it.

Furthermore, you can request from SAP that SAP restricts your Personal Data from any further processing in any of the following events: (i) you state that the Personal Data SAP has about you is incorrect, (but only for as long as SAP requires to check the accuracy of the relevant Personal Data), (ii) there is no legal basis for SAP processing your Personal Data and you demand that SAP restricts your Personal Data from further processing, (iii) SAP no longer requires your Personal Data but you claim that you require SAP to retain such data in order to claim or exercise legal rights or to defend against third party claims or (iv) in case you object to the processing of your Personal Data by SAP (based on SAP’s legitimate interest as further set out in Section B. below) for as long as it is required to review as to whether SAP has a prevailing interest or legal obligation in processing your Personal Data.

Please direct any such request to open@sap.com

Right to lodge a complaint with a supervisory authority. If you take the view that SAP is not processing your Personal Data in accordance with the requirements set out herein or applicable EEA data protection laws, you can at any time lodge a complaint with the data protection authority of the EEA country where you live or with the data protection authority of the country or state where SAP has its registered seat.

Consents of children. This website and app is not directed to users of an age of below 16 years. If you are younger than 16, you may not register with and use this website and app.

B. PROCESSING BASED ON A STATUTORY PERMISSION

Provision of Service. In order to be able to make openSAP available to you, SAP is required to process the following information: In every visit to our website, the user data from your Internet browser is automatically submitted and stored in protocol files - the so-called server log files. The stored data sets contain the following information:

  • Date and time of the server request
  • Name of the requested page
  • Referrer URL (the website from where you arrived at our website)
  • Type and version of your browser
  • The IP address of the accessing computers
  • HTTP Error Code and Error Message (in case of erronous requests)

These data are solely used for bug fixing purposes, i.e. to find and fix errors in our platform software. Logging data is retained for a maximum duration of 4 weeks.

Processing based on a legitimate interest of SAP. Each of the use cases below constitutes a legitimate interest of SAP to process or use your Personal Data. If you do not agree with this approach, you may object against SAP’s processing or use of your Personal Data as set out below.

Helpdesk. The openSAP Helpdesk requires your name and e-mail address to provide you with technical and platform-related support. The use of your Personal Data is limited to the support communication with the openSAP Helpdesk.

Learning progress and performance. openSAP keeps track of your learning progress and performance to provide you with respective course certificates, such as “Records of Achievement” and “Confirmations of Participation”.

In order to keep you up-to-date. Within an existing business relationship between you and SAP, SAP may inform you, where permitted in accordance with local laws, about its products or services (including course announcements, recommendations and platform related information) which are similar or relate to such products and services you have already purchased or used from SAP.

Surveys. SAP may invite you to participate in questionnaires and surveys. These questionnaires and surveys will be generally designed in a way that they can be answered without any Personal Data. If you nonetheless enter Personal Data in a questionnaire or survey, SAP may use such Personal Data to improve its products and services.

Evaluation of Anonymized Data Sets. SAP may anonymize Personal Data provided under this Privacy Statement to create anonymized data sets, which will then be used to improve the openSAP offerings.

You can at any time object against SAP’s use of your Personal Data for these purposes by sending an email to open@sap.com. In this case, SAP will carefully review any such objection and cease further use of the relevant information, unless SAP can claim compelling legitimate grounds for the use of the information, which override your interest in objecting or if SAP requires the information for the establishment, exercise or defense of legal claims.

The purposes of the processing of personal data including the legal basis.

There are two ways to create a user account on openSAP. You can either register directly on openSAP with your name and e-mail address or use the SAP Cloud Identity for Single Sign-On. In both cases openSAP will create a minimal user profile containing the Personal Data needed for the provision of its services. If you decide to use SAP Cloud Identity for Single Sign-On, a centralized user profile will be created in addition.

Creating a minimal user profile. SAP requires your name and email address in order to enable you to participate in openSAP courses and to register for the openSAP website and respective mobile applications. Your name, email address and date of birth (optionally, if you provide it in your profile) will also appear on personal course documents, such as “Confirmations of Participation” and “Records of Achievement”. Your email address will be used for course related communications and the announcement of new courses and changes to the openSAP platform.

Parts of the openSAP web offerings and respective mobile applications bring you in touch with other openSAP users, e.g. to discuss with other learners in the discussion forum or the Collab Spaces of openSAP courses. If you decide to participate in these activities, other users will have access to parts of your minimal profile data, i.e. your full name (unless you choose to set a differing display name) and your profile picture, if you have uploaded one.

Creating a centralized user profile. If you decide to use SAP Cloud Identity for Single Sign-On, SAP requires you to register and create a centralized user profile. User profiles provide the option to display personal information about you to other users, including but not limited to your name, photo, social media accounts, postal or email address, or both, telephone number, personal interests, skills (e.g. professional skills and/or completed openSAP courses) , and basic information about your company. If your company is a SAP partner, openSAP may use this information to provide you with special partner-related course offerings.

These profiles created in the SAP Cloud Platform Identity Authentication Service, may also allow you to access other web offerings of SAP or of other entities of the SAP Group, or both. It is, however, always your choice which of these additional web offerings you use and your Personal Data is only forwarded to them once you initially access them. Kindly note that without your consent for SAP to create such user profiles SAP will not be in a position to offer such services to you where your consent is a statutory requirement that SAP can provide these services to you.

Within any web offering, beyond the mere provision of access your profile is used to personalize interaction with other users (for example, by way of messaging or follow functionality) and by SAP to foster the quality of communication and collaboration through such offerings and for SAP to provide gamification elements (gamification is the process of taking something that already exists, such as a website, an enterprise application, or an online community, and integrating game mechanics into it to motivate participation, engagement, and loyalty). To the greatest extent supported by the relevant web offering, you can use the functionality of the relevant web offering to determine which information you want to share.

Web Analysis. To continually improve our offer we use the open source web analytic software "Matomo" (formerly known as "Piwik").

With Matomo we can receive in real time reports about, e.g., the number of visitors, the search machines and the search words used that lead users to our offer. This helps us to constantly optimize our offer and design it accordingly.

Matomo also uses cookies that are stored on your computer and enable an analysis of your use of the website (also see Section D). These cookies have a lifespan of 1 week. The information generated by the cookie about your use of this Internet offer is saved on our server. We would also like to note that on this website Matomo uses the "anonymize IP" function. This ensures an anonymous capture of your IP address (so-called IP masking) by us. Your IP address is only stored in abbreviated form, thus does not allow any conclusions to be drawn about your identity.

News about openSAP related products and services. SAP requires your Personal Data to inform you about openSAP´s course-related offerings and services (e.g. discounts on books, openSAP reactivation codes, and other offerings outside the openSAP platform, e.g. SAP Learning Hub offerings), as well as personalized communication based on your preferences and learning history (e.g. special information for learners who received a record of achievement).

All communications come directly from openSAP and your Personal Data will not be shared with any other organization inside or outside of SAP. Any such use of information is based on the consent you grant hereunder.

Withdrawal of consent in to the processing of Personal Data. You may withdraw your consent for SAP to process your Personal Data as stated herein at any time. Once you assert this right, SAP will not process your Personal Data any longer unless legally required to do so. However, any withdrawal has no effect on past processing by SAP up to the point in time of your withdrawal. Please direct any such request to open@sap.com.

D. Information on Cookies

Cookies.Our website uses "cookies". Cookies are small files that are stored on your data carrier and store specific settings and data for exchange with our system via your browser. Cookies help us, for example, to realize fundamental features of the platform, e.g. keeping you logged in, as well as to design our offers to be as comfortable, efficient and interesting as possible for you. A basic distinction is made between different types of cookies: so-called session cookies, which can be deleted as soon as you close your browser, and temporary cookies, which are saved for a longer period of time on your data carrier. This storage helps us design our website and our offer in a way that suits you. It also eases your use. For example, certain entries you make are saved in such a way that you do not have to continually repeat them.

For the most part, the cookies we use are so-called session cookies, with which you can be identified during the duration of your visit. After the session has ended the session cookies expire automatically.

Moreover, we use temporary cookies to store user preferences in your browser (for example: caption language or volume in the video player). If you give us consent for Web Analysis (see Section C), we store temporary cookies as part of the web analysis tool "Matomo". These have a lifespan of 1 week.

There is no personal data saved on the cookies we implement. The cookies are thus not assignable to you or to any other person.

If you wish to dissent from the storage of cookies, you can deactivate cookie storage in your browser, limit its use to certain websites, or set your browser in such a way that you will be informed as soon as a cookie is sent. You can also delete cookies at any time from your PC's hard drive. However, please note that you will be unable to use our offer if you completely reject the storage of session cookies.

JavaScript. In addition, we also use JavaScript to enable basic functionality and enhance the user experience of our website. JavaScript does not store any personal information. If you disable JavaScript via your browser setting, you can only make very limited use of our offerings.

The JavaScript files for openSAP are partly delivered via the Microsoft Azure Edge Content Delivery Network. By doing so, the CDN provider - the Microsoft Corporation - can get access your IP address (see section E for details).

E. External Resources

Links to other websites. This website may contain links to foreign (meaning non-SAP Group companies) websites. SAP is not responsible for the privacy practices or the content of websites outside the SAP Group of companies. Therefore, we recommend that you carefully read the privacy statements of such foreign sites.

The social media buttons used are purely links, and thus not the so-called "like" and "share" buttons used by social media services. They do not transfer customer data or IP addresses.

Vimeo. Our website includes content from the video portal Vimeo.com. The site operator is Vimeo LLC, 555 West 18th Street, New York, NY 10011, USA. When you visit one of our sites with a video player, a connection will be established to the Vimeo servers.

Vimeo will then be informed which of our pages you have visited ("Referer URL"). Vimeo will also have access to your IP address.

Microsoft Azure Edge. Our website loads parts of the so-called "static resources", i.e. files which don't change often and are usually quite large (e.g. JavaScript, Cascading Style Sheets or images) from a Content Delivery Network (CDN). CDN providers run servers in different parts of the world and mirror our static resources on each of these servers. When your browser loads such a static resource, you will always be connected to the closest (and thus fastest) CDN server. When downloading, the CDN provider is informed which of our pages you have visited ("Referer URL") and also has access to your IP address.

The CDN for openSAP is Microsoft Azure Edge, operated by the Microsoft Corporation, One Microsoft Way, Redmond, Washington 98052, USA. The responsible data protection officer for the EEA can be contacted via: Microsoft Ireland Operations Limited, Attn: Data Protection Officer, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland.

此页最后更改时间为2018年10月10日 星期三 07:45:23 UTC。

帮助台

您报告的信息已递交至openSAP支持团队,我们将尽快解决您的问题。谢谢!

谢谢

系统错误

返回