GDPR and the Oracle E-Business Suite
GDPR and the Oracle E-Business Suite
By Marc Caruso
On 08 May 2018

There is a lot of activity in the market these days surrounding General Data Protection Regulation (GDPR) readiness for Oracle applications – especially for Oracle E-Business Suite customers. The regulations are scheduled to go into effect on May 25 th 2018, and many organizations are only just starting their planning now.

GDPR is still in its infancy and is not too well defined just yet but it does have a number of requirements pertaining to data encryption, data transferability, data auditing, and data retention. GDPR leaves it up to the market as far as how those requirements are met, which means that customers are asking us daily what they need to do to prepare. Many of the answers are not straightforward, not certain, and not easy to implement, as they combine software and process to achieve the desired end goal. At a minimum, customers should be thinking about performing an assessment to discover personal data and sensitive personal data in their environments, so they can begin acting on initiatives to protect that data.

The good news is that Oracle has recently released several white papers and tools to help customers deal with the regulations. These include:

As you’ll see from the MOS note for E-Business Suite, many of the controls Oracle acknowledges will be required are not yet developed. However, one key tool was just released last week: The E- Business Suite Person Data Removal Tool (DRT). This tool was developed to overwrite HR Person, TCA Party, and FND User data to comply with a Data Subject’s “right to be forgotten”, and ensures referential integrity is maintained. It’s only available for 12.2 today, but we expect a tool for 12.1.3 to follow shortly. Be sure to read the associated Process Guide. While this isn’t a panacea (you still need to worry about any customizations that use personal data), it’s a good baseline.

Our teams at Data Intensity are continuing to expand upon and refine our solutions for GDPR compliance. If you need help, please get in touch via email at contact@dataintensity.com and keep checking back with our blog for updates.

Get in touch

We always put our customers first. Contact us by using the form below, and we will get back to you as soon as we can.

Please make sure to use a valid company email.
Please make sure to use a valid email format.

Data Intensity Solutions you are interested in (Select one that applies):

Submit
Please make sure all the mandatory fields marked red are filled.

Clicking this button tells us that you also agree to our privacy policy and cookie policy. You can opt out of these communications at any time.