Data Custodian Model: Protecting Your Data In The Public Cloud

Thomas Saueressig and Tom Lee

There is new thinking about a governance, risk, and compliance (GRC) model for data protection in the cloud: the data custodian. While many enterprises want to move to the public cloud to benefit from its greater flexibility, agility, and scalability, they are nevertheless worried about complicated data protection, privacy, and sovereignty-related legal requirements such as the General Data Protection Regulation (GDPR) and the Federal Data Protection Act (FDPA). The European Union, Canada, Russia, Saudi Arabia, and many other countries are introducing new and stringent data protection laws.

Data privacy laws often restrict the geographies in which enterprises may store, process, and access sensitive data. Enterprises that do not comply with these laws potentially risk significant fines and dissatisfied customers. But opting for a physically isolated or private cloud solution to meet these complex data protection and sovereignty requirements comes at a high cost. And this approach can severely limit the cloud provider’s ability to fulfill its availability and disaster recovery commitments.

An innovative data custodian model encompasses both the data custodian role and the software solution. This can provide enterprises with the flexibility and scalability of the public cloud, as well as transparency and control of the private cloud. The concept is to provide transparency features as well as data access control with software as a key element.

The data custodian model

With the data custodian model, companies can take control of their data in the public cloud, with cloud-provider access control and software-defined geolocation controls of customer data and resources. Enterprises requiring an independent entity to oversee and handle their data on a public cloud can contract with a third party acting on their behalf as a trusted data custodian.

With the data custodian model, enterprises can flexibly configure policies for their data in the public cloud to help address their unique needs and specific, regional data protection regulation requirements (such as GDPR and FDPA). This includes geolocation control policies for data access, storage, movement, and processing. The data custodian software can continuously monitor and provide risk and compliance reporting in alignment with the customer-defined policies and help the customer manage policy violations as needed. The reporting provides transparency into, for example, geolocation of the customer resources and data accessed, geolocation of the accessor, reason for the access, read/write actions performed on data during that access, and time of access. The reporting can also capture details of access made by the cloud provider.

Significant customer benefits

There are several key benefits of the data custodian model. First, enterprise customers will not need to build in-house expertise and can instead take advantage of the GRC expertise of the data custodian. This will help customers ensure that their data is accessed and stored in compliance with their data protection policies, there is no unauthorized data access, and the data does not cross the prescribed geographical boundaries.

With near real-time notifications of policy violations, companies can respond quickly and take immediate corrective action to protect their customers’ data. With a flexible policy engine, companies can specify software-defined geolocation control policies for their data and resources in the public cloud. In other words, they can take advantage of the benefits of a globally connected public cloud, while still addressing their country or customers’ data sovereignty requirements. A software-defined geolocation control approach can further help companies adjust their data protection policies within a reasonable timeframe in response to changes in regulations, offering a significant advantage over approaches based on physical separation and isolation.

For more information about the data custodian model, please contact SAP_DataCustodian@sap.com.


Thomas Saueressig

About Thomas Saueressig

Thomas Saueressig is chief information officer, global head of IT Services, and a member of the SAP Chief Technology Officer circle. In his role as SAP CIO, he represents the entire IT organization internally and externally. He works to enable SAP’s IT organization to become agile, user-centric, and business-driven, with a cloud-first approach. His teams enable new business models and optimize business processes by leveraging the latest technologies and innovations, to provide a modern workplace. Thomas has vast experience in the global IT organization, starting with building up the Enterprise Mobility organization and leading all cross functions, over to heading the entire IT Project Delivery and Client IT organization globally. His focus is to create a user-centric IT organization, that delivers great user and customer experiences and changes the perception of IT. Prior to this, he supported Executive Board Member Gerhard Oswald as Executive Board Assistant in his daily operations and strategic projects. Thomas started his career in SAP Consulting where he successfully led multiple CRM customer projects. Thomas was honored to be included on Fortune’s 40 Under 40 list in 2016 and was recognized in 2017 as one of Constellation Research’s Business Transformation 150, a list that recognizes the top global executives leading transformation efforts in their organizations. He has a degree in Business Information Technology from the University of Cooperative Education in Mannheim (Germany), and a joint executive MBA from ESSEC (France), and Mannheim Business School (Germany).

Tom Lee

About Tom Lee

Tom Lee is global vice president and COO of Cloud Architecture & Engineering at SAP. In his role, Tom leads the multi-cloud organization in IT Services to help drive cloud transformation and technology co-innovation initiatives with SAP’s public cloud partners. Previously, Tom was head of global business development for SAP’s strategic customer engagement program, where he was responsible for worldwide customer presales support in driving SAP HANA solution and platform adoption across SAP’s top global customer base. Prior to joining SAP, he was a management consultant at The Boston Consulting Group, advising companies in the technology, energy, and financial services industries. Tom holds a bachelor’s degree in Business Administration, summa cum laude, from Texas Tech University and an M.B.A. from Columbia Business School.