ISVS – Long-term management
Long-Term ISVS Management Certification – A New Legislative Obligation for Public Administration
As of September 1, 2023, a new regulation No. 360/2023 Coll. came into effect, significantly changing the requirements for the management of Information Systems of Public Administration (ISVS). One of the major changes is the introduction of the obligation to certify so-called long-term ISVS management, which affects a large number of public sector organizations — both in terms of legislative responsibility and the financing of ICT projects.
EZÚ is an accredited certification center and provides professional services for assessing the compliance of public sector organizations’ information strategies with the requirements of the new regulation.
What Is Long-Term ISVS Management Certification?
It is an independent assessment of whether an organization is capable of planning, managing, and maintaining its information systems in line with legislative and methodological requirements.
The primary subject of the certification is the Information Strategy of the Public Authority (Informační koncepce OVS) — a mandatory document that must now include not only ICT development goals and strategies but also process descriptions, technical requirements, data structure, and lifecycle management approaches.
According to Act No. 365/2000 Coll. and the new regulation, the certification requirement applies to:
Central administrative authorities (e.g., ministries, nationwide government agencies)
Public authorities operating or commissioning their own ISVS
Municipalities and regions carrying out more complex agendas using their own ISVS
State-funded organizations entrusted by law with public administration activities via ICT systems
What Has Changed with the New Regulation?
Expanded content of the Information Strategy (Informační koncepce OVS): mandatory sections now include operational documentation, security documentation, financial evaluation, system lifecycle management, and data architecture
Higher demands on documentation quality and consistency: the assessment focuses on actual management capabilities, not just formal compliance
Changed concept of certification: the focus is on the real state of ICT governance, not only on declared strategies
Possibility of issuing a conditional certificate: if deficiencies are identified, the certificate may be issued with reservations and for a shorter period (e.g., 2 years)
Impact on public procurement and funding: certification becomes a mandatory requirement for certain types of financing from public budgets or EU funds
EZÚ Services in This Area
EZÚ performs the compliance assessment and, upon meeting all requirements, issues a Certificate of Compliance, which may be valid for up to 5 years.
Sales
Ing. Lenka Mariánková
Product Manager
Coordinator and technical specialist
Ing. Roman Csirik
eIDAS Project Coordinator
Technical specialist
Ing. Michal Hager
Head of Cyber Security Department
Why choose EZÚ?
- Experienced expert auditors
- Personnel at the very highest level
Reasons to get certification
- Fulfilment of obligations under legislation for public authorities.