In most cases portal end users of ESS applications will not have access to PA30 except for employees working in HR Department.
How are the authorizations set up in your case. Can HR employees who have access to PA30 modify their own data directly in the backend.
If not you can rest assured whenever change log of infotype shows a different person it is done through PA30.
Does this help?