Quality assurance

The WAE (Wage Amount Encryption) module prevents access to sensitive salary-specific information that bypasses HR authorizations.

Salary data is among the most sensitive in a company. At first glance, it can only be viewed by persons who have the appropriate authorization in human resources.

However, this is a fallacy, since wage type amounts are also "only" stored in tables, which can also be read with standard transactions. In this way, even unauthorized users may be able to access salary information in the SAP system relatively easily.

At the same time, some companies do not want individual personnel administrators to see amounts for all wage types; or only details, such as who receives which bonuses.

FIS/HRD WAE was developed to handle this. Amounts that are stored in maintenance no longer go directly into the infotype tables when the module is used, but are stored separately and encrypted.

In these, it is not apparent which personnel number or which amount is hidden behind the values. This information is only released at runtime, for example, when the salary data is maintained.

The administrator has a variety of options when setting up the system: For example, the so-called "strict authorization check" can be used to prevent an unauthorized administrator from seeing sensitive salary data for certain groups (e.g., non-tariff employees).

All other information and amounts to which he may need access will still be visible. Employee and manager self-service are also taken into account, if desired.

This means that it is still possible for an employee to see and maintain his or her data, and the same applies to his or her supervisor. With encryption via the new FIS module, SAP HCM users can thus once again significantly improve the security of their personnel data.