SAP Moves to Block Unauthorised AI Agents from Its Platforms

SAP Draws a Hard Line on AI Access

SAP, the German enterprise software giant, has published a sweeping new API policy that restricts third-party artificial intelligence agents from interacting with its platforms unless they operate within SAP-approved architectures. The move positions the company as one of the most aggressive enterprise vendors seeking to control how AI tools interact with corporate data, and it has provoked an immediate backlash from customers and analysts.

What the Policy Says

Published in April 2026 and designated API Policy v4/2026, the updated terms prohibit API use for interaction or integration with semi-autonomous or generative AI systems that plan, select, or execute sequences of API calls. The policy also bans scraping, harvesting, or systematic large-scale data extraction, except through SAP-endorsed pathways. Only interfaces listed in the SAP Business Accelerator Hub or official product documentation will receive full support going forward.

The restriction effectively channels AI-driven access through SAP's own products, including its Joule assistant, Business Data Cloud, and Agent Gateway. Third-party tools from companies including Microsoft and Salesforce now face formal constraints. According to reporting on 3 May, SAP is actively moving to block unauthorised AI agents such as OpenClaw from its systems, viewing external agents as a threat to sales of its own AI offerings.

Customer Backlash

The German-speaking SAP User Group, known as DSAG, has sharply criticised the policy. Chairman Jens Hungershausen warned that the vague language creates paralysis among customers, saying that if companies are unsure, they will probably do nothing, putting innovation at risk. DSAG has promised to publish its own FAQs to help clarify the implications.

Critics argue the policy creates an asymmetry: SAP's own AI products face no such restrictions whilst rival tools are locked out, raising vendor lock-in concerns. The EU Data Act, effective since September 2025, anchors customer rights to data generated in connected systems, adding a legal dimension to the dispute.

SAP's Defence

On SAP's Q1 2026 earnings call, CEO Christian Klein said the intent is to protect domain expertise and prevent performance degradation, not to block customers from their own data. An SAP spokesperson said the updates clarify the design-intended use of SAP interfaces and help protect system stability and customer data. SAP has also issued an FAQ and revised the original document following the initial pushback.

The tension reflects a broader question now confronting enterprise software: who controls the AI layer sitting atop corporate data, and whether platform vendors can act as both gatekeeper and competitor.