- SEPOS publishes recommended standard provisions for procurement contracts to increase the federal government’s information security as of January 1, 2026.
- The provisions supplement the GTC and contain a nested test sequence for selecting suitable clauses according to sensitivity, type of service and personal reference.
On behalf of the Federal Council, the Federal Information Security Unit at the State Secretariat for Security Policy SEPOS has Standard provisions for information security for procurement contracts published in order to increase the information security of the federal government and prevent data outflows from suppliers (the Gauges from Xplain were leading).
The standard provisions are to be understood as Recommendation to the requirements and procurement offices of the Federal Government and are January 1, 2026 effective.
You supplement the General Terms and Conditions of the Confederation (see here) and include the following provisions:
- H1 Standard provision without reference to federal IT resources with delivery of federal devices
- H2 Standard provision without reference to federal IT resources without delivery of federal equipment
- I1 Standard provision with reference to federal IT resources (administration, maintenance, verification) with delivery of federal equipment
- I2 Standard provision with reference to federal IT resources (administration, maintenance, verification) without the disposal of federal equipment
- J Standard provision relating to federal IT resources (operation)
For specific application, the document contains Guidelines and comments Standard provisions a nested sequence of checks that recommends a combination of GTC and standard provisions, depending on the sensitivity of the information processed by the service provider, the nature and delivery of the service and the personal nature of the data processed.