Sara -

It is possible to connect GRC with BPC if you are on BPC 10.0 NW version. For prior version like 7.5, you can connect, but it would require a custom adapter (eg. the one provided by Greenlight technologies).

With BPC 10.0, it's possible to connect using an RFC connection.

Responses to your questions:

• Is BPC based on transactions? or based in wendynpros?
  • It is a combination. Administration activities in the NW version are using standard basis, security and some BI transactions (for data extraction). End users generally access BPC through an excel add-in (Flex client) though they need to be created in the backend system and be assigned the right authorizations.
• Is any kind of General ruleset for BPC with transaction?.
  • Yes, but there is no standard ruleset. There is a 2 layer authorization piece (backend roles created using PFCG and assignment of task/data access profiles). If you setup your system in a specific way, you can unify the authorization to completely being driven by PFCG roles, which enables easy creation of functions that can be used to ultimately build your risks/ruleset. Primarily, the risks for BPC are focussed around the consolidations area.
• Is it possible to manage Roles Maintenance, User Provisioning and Emergency Access with BPC?
  • Yes for the Netweaver version. It's standard functionality similar to other ABAP systems that are integrated with GRC. One thing to keep in mind for BPC is that Task/Data profiles are not assignable using User Provisioning unless the roles are setup in a specific way.

There is an integration document written on SDN wiki around GRC 10 - BPC 10 integration which will give an idea of how it's setup.