Useful facts about access control for SAP tables in data extraction.
zap Audit accesses about 120 SAP tables
You can download the data scope in the software (see screenshot or have a look at the installation instructions). The specific listing contains all SAP tables and accessed fields. It will also show if a field is pseudonymized per default during data extraction.

You can download the zap Audit data scope from within the software (see screenshot or have a look at the installation instructions). The specific listing contains all SAP tables and accessed fields. It will also show if a field is auto-pseudonymized during data extraction.
zap Audit only requires read permissions
zap Audit does not alter any of your SAP system data. No writing or editing permissions are required. You can read this guide to configure your SAP user. You can control the access by setting up the SAP logging for that user.
Personal data is auto-pseudonymized
When data is downloaded from an SAP system, zap Audit automatically pseudonymizes personal data. This personal data is pseudonymized before being stored in the zap Audit database and is never stored in plaintext.