Information on security requirements
Security is a top priority for the Swiss Federal Department of Defence, Civil Protection and Sport (DDPS). The requirements for its contractors are high, which is why the DDPS works according to international standards for information security.
The Federal Act of 25 September 2020 on Data Protection (Data Protection Act, FADP) and the Federal Act of 18 December 2020 on Information Security in the Confederation (Information Security Act, ISA) bindingly specify how sensitive information is to be dealt with.
The State Secretariat for Security Policy SEPOS as the responsible specialist authority issued standard terms on information security for procurement contracts (in German), which came into force on 1 January 2026.
SEPOS has developed guidelines (in German) and appropriate comments to define the valid standard terms in each case.
The decision cheatsheet GTC + SEPOS standard terms (in German) are available for correct assessment of the standard terms. This represents a simplified work aid of Procurement IT FOBL.
If you have any questions, please contact the responsible project controllers and project managers.