Guidance for GovTech and Public Administration
The public sector carries a special responsibility for data sovereignty and traceability. EMBAG requirements, open-government goals, and open IT architectures need technical guardrails that work in operations and procurement.
Authority over domain processes, law, and procurement stays with the responsible body. le dot supports with architecture, security, integration, and implementation leadership.
Focus Areas
Software Supply Chain Security
SBOM processes and technical reviews make risks visible in both purchased and self-developed solutions.
EMBAG Implementation and OSPO
Open source by default is translated into processes, policies, and responsibilities, not just declarations of intent.
Replace domain applications
Domain applications are modernised step by step through API facades while operations keep running.
Anchor adoption
New domain systems, platforms, and AI applications are anchored in administrative practice and everyday use after go-live.
Common situations
Domain Application Modernisation
Legacy systems are replaced step by step through API-centric architectures, without needlessly endangering domain processes.
Procurement with Public-Code Criteria
Tenders, usage rights, and publication obligations are framed so that open reuse remains possible.
Compliance Automation
Procurement, security, and operational evidence are made technically verifiable where infrastructure, deployment, and record-keeping allow it.
Register and Domain Data Exchange
Data flows between specialist units are ordered by responsibilities, interfaces, and documented evidence.
Further information
- EMBAG, open source by default for Swiss federal authorities.
- SBOM, transparency over software dependencies.
- Software Supply Chain Security, securing the supply chain as architecture and operating model.
- Public Code, public money for public code.
- AI Governance, making AI use governable, from the EU AI Act to the revFADP.
- EU AI Act, the first comprehensive regulation of AI.
- Offensive Security, proactive defence through red teaming.