# Governance Memo — ERPforgeAI Metadata Extractor

*Attach this to your change ticket. One page. Fill the three bracketed fields.*
*(Served copy; canonical template also at `/docs/governance-memo.md` in the repo.)*

---

**Subject:** Execution of a transient, read-only SAP analysis utility
**System:** [ SID / client ]  **Requested by:** [ name ]  **Date:** [ date ]

## What is being run

A small, read-only ABAP report (or Oracle SELECT script) provided by ERPforgeAI,
run **once** by our own developer in [ SID ]. Program(s):
`[ e.g. Z_ERPFORGE_01_STECKBRIEF ]`. Full source is published under the MIT
license and each download carries a published SHA-256 checksum
(https://erpforgeai.de/sap-tools.html).

## What it reads — and does not read

- **Reads:** SAP **metadata** only — table/field *definitions*, function-module
  signatures, class interfaces, release/SP level, object existence, table *sizes*.
- **Does NOT read:** table rows, master data, documents, HR/personal data, or any
  business content.

## What it does NOT do (verifiable in the source)

- No `UPDATE` / `INSERT` / `MODIFY` / `DELETE` on database tables — **read-only**.
- No RFC, no `DESTINATION`, no network or internet connection.
- No server-side file write, no `SUBMIT`, no `CALL TRANSACTION`, no `COMMIT WORK`.
- ERPforgeAI receives **no** access to this system. No account, no VPN, no RFC.

## Data flow

The program produces a metadata export **on screen**. Our developer reviews it and
**manually** uploads it to ERPforgeAI's EU-hosted platform (Hetzner,
Falkenstein/Nürnberg, Germany). **No byte leaves [ SID ] unless our developer
exports it.** Processing and storage are in the EU; an Art. 28 GDPR data-processing
agreement (AVV) is available.

## Footprint & disposal

The program is a transient analysis utility. After the metadata export is produced,
the program object is deleted from [ SID ]. Nothing of ERPforgeAI's remains.

## Verification performed

- [ ] Source read and reviewed (governance header + body).
- [ ] SHA-256 checksum verified against the published value.
- [ ] Confirmed: read-only, no RFC/network, no business-data access.

*Reviewer: ____________________   Signature/Date: ____________________*