GDPR and the Oracle E-Business Suite
GDPR and the Oracle E-Business Suite
By Marc Caruso
On 08 May 2018

There is a lot of activity in the market these days surrounding General Data Protection Regulation (GDPR) readiness for Oracle applications – especially for Oracle E-Business Suite customers. The regulations are scheduled to go into effect on May 25 th 2018, and many organizations are only just starting their planning now.

GDPR is still in its infancy and is not too well defined just yet but it does have a number of requirements pertaining to data encryption, data transferability, data auditing, and data retention. GDPR leaves it up to the market as far as how those requirements are met, which means that customers are asking us daily what they need to do to prepare. Many of the answers are not straightforward, not certain, and not easy to implement, as they combine software and process to achieve the desired end goal. At a minimum, customers should be thinking about performing an assessment to discover personal data and sensitive personal data in their environments, so they can begin acting on initiatives to protect that data.

The good news is that Oracle has recently released several white papers and tools to help customers deal with the regulations. These include:

As you’ll see from the MOS note for E-Business Suite, many of the controls Oracle acknowledges will be required are not yet developed. However, one key tool was just released last week: The E- Business Suite Person Data Removal Tool (DRT). This tool was developed to overwrite HR Person, TCA Party, and FND User data to comply with a Data Subject’s “right to be forgotten”, and ensures referential integrity is maintained. It’s only available for 12.2 today, but we expect a tool for 12.1.3 to follow shortly. Be sure to read the associated Process Guide. While this isn’t a panacea (you still need to worry about any customizations that use personal data), it’s a good baseline.

Our teams at Data Intensity are continuing to expand upon and refine our solutions for GDPR compliance. If you need help, please get in touch via email at and keep checking back with our blog for updates.

Get in touch

We always put our customers first. Contact us by using the form below, and we will get back to you as soon as we can.