Document from CIS Legislation database © 2003-2020 SojuzPravoInform LLC

LAW OF THE REPUBLIC OF KAZAKHSTAN

of November 24, 2015 No. 418-V ZRK

About informatization

(as amended on 25-06-2020)

This Law governs the public relations in the field of informatization arising in the territory of the Republic of Kazakhstan between state bodies, physical persons and legal entities during creation, development and operation of objects of informatization and also with the state support of development of industry of information and communication technologies.

Section 1. Bases of regulation of the relations in the field of informatization

Chapter 1. General provisions

Article 1. The basic concepts used in this Law

In this Law the following basic concepts are used:

1) automation - process of use of means of information and communication technologies for optimization of creation, search, collection, accumulating, storage, processing, obtaining, use, conversion, display, distribution and provision of information;

2) informatization - the organizational, social and economic and scientific and technical process directed to automation of activities of subjects of informatization;

3) service model of informatization - realization of the centralized approach in informatization of the state functions and the state services based on creation or development of information and communication services, and also their rendering;

3-1) project of public-private partnership on service model of informatization - set of consecutive actions for creation or development, and also rendering information and communication services;

3-2) agreement of public-private partnership on service model of informatization - the service contract determining the rights, obligations, responsibility of the parties and other conditions during creation, development and rendering information and communication services which parties are the state partner, the operator of information and communication infrastructure of "the electronic government" and the private partner who is the supplier of service software products or objects of information and communication infrastructure;

4) objects of informatization - electronic information resources, the software, Internet resource and information and communication infrastructure;

5) the owner of objects of informatization - subject to which the owner of objects of informatization granted rights of possession and uses of objects of informatization in the limits determined by the law or the agreement and procedure;

5-1) integration of objects of informatization - action for the organization and ensuring information exchange between objects of informatization based on the standard data transfer protocols used in the Republic of Kazakhstan;

6) the qualifier of objects of informatization (further - the qualifier) - the systematized list of categories directed to identification and the description of objects of informatization;

6-1) development of object of informatization - stage of lifecycle of object of informatization throughout which the complex of actions for implementation of additional functional requirements, and also upgrades of the object of informatization put into commercial operation for the purpose of optimization of its functioning and (or) expansion of functionality is performed;

6-2) implementation of object of informatization - the stage of creation or development of object of informatization directed to carrying out complex of the actions for commissioning of object of informatization including preparation of automation object and personnel, carrying out commissioning, preliminary and acceptance tests;

6-3) maintenance of object of informatization - the ensuring use of the object of informatization put into commercial operation according to its assignment including actions for carrying out adjustment, modification and elimination of defects of the software without carrying out upgrade and implementation of additional functional requirements and on condition of preserving its integrity;

6-4) creation of object of informatization - stage of lifecycle of object of informatization throughout which the realization of complex of the organizational and technical actions directed to development, trial operation, implementation of object of informatization, and also acquisition and (or) property employment (lease) of complex of technical means, necessary for its functioning, and the software is enabled;

6-5) commercial operation of object of informatization - stage of lifecycle of object of informatization throughout which use of object of informatization in the normal mode according to the purposes, tasks and requirements stated in technical documentation and the specifications and technical documentation is performed;

6-6) trial operation of object of informatization - the operation of object of informatization in pilot zone which is carried out for the purpose of identification and remedial action of its functioning and determination of compliance to requirements of technical documentation;

6-7) lifecycle of object of informatization - set of stages of creation, commercial operation, development and termination of commercial operation of object of informatization;

7) information security in the field of informatization (further - information security) - condition of security of electronic information resources, information systems and information and communication infrastructure from external and internal threats;

8)  No. 237-VI ZRK is excluded according to the Law of the Republic of Kazakhstan of 18.03.2019;

9) advisory council in the field of informatization (further - advisory council) - the interdepartmental commission under authorized body considering questions on informatization of activities of state bodies;

10) authorized body in the field of informatization (further - authorized body) - the central executive body performing management and cross-industry coordination in the field of informatization and "the electronic government";

11) subjects of informatization - the state bodies, physical persons and legal entities performing activities or entering legal relationship in the field of informatization;

12) information system - organizationally the arranged set of the information and communication technologies, service personnel and technical documentation realizing certain technological actions by means of information exchange and intended for the solution of specific functional objectives;

13) No. 237-VI ZRK is excluded according to the Law of the Republic of Kazakhstan of 18.03.2019;

14)  No. 128-VI ZRK is excluded according to the Law of the Republic of Kazakhstan of 28.12.2017;

15) No. 237-VI ZRK is excluded according to the Law of the Republic of Kazakhstan of 18.03.2019;

16) No. 237-VI ZRK is excluded according to the Law of the Republic of Kazakhstan of 18.03.2019;

17) No. 237-VI ZRK is excluded according to the Law of the Republic of Kazakhstan of 18.03.2019;

18) audit of information system - independent inspection of information system for the purpose of increase in efficiency of its use;

19) No. 237-VI ZRK is excluded according to the Law of the Republic of Kazakhstan of 18.03.2019;

20) No. 237-VI ZRK is excluded according to the Law of the Republic of Kazakhstan of 18.03.2019;

21) No. 237-VI ZRK is excluded according to the Law of the Republic of Kazakhstan of 18.03.2019;

22) No. 237-VI ZRK is excluded according to the Law of the Republic of Kazakhstan of 18.03.2019;

23) information and communication infrastructure - set of the objects of information and communication infrastructure intended for ensuring functioning of the technological circle for the purpose of forming of electronic information resources and provision of access to them;

Crucial objects of information and communication infrastructure - objects of information and communication infrastructure, violation or the termination of functioning of which leads 24) to emergency situation of social and (or) technogenic nature or to considerable negative effects for defense, safety, the international relations, economy, certain spheres of economy or for life activity of the population living in the corresponding territory including infrastructure: heat supplies, electric utility services, gas supply, water supply, industry, health care, communication, bank sphere, transport, hydraulic engineering constructions, law-enforcement activities, "the electronic government";

25) objects of information and communication infrastructure - information systems, technological frameworks, the hardware and software, server rooms (data-processing centers), networks of telecommunications, and also systems of information security support and smooth functioning of technical means;

26) information and communication service - service or set of services in property hiring (lease) and (or) placement of computing resources, to provision of the software, software products, service software products and technical means in use, including communication services by means of which functioning of these services is provided;

26-1) design assignment of information and communication service - the document reflecting technical, organizational and other requirements to information and communication service and also ceiling price of information and communication service;

27) the directory of information and communication services - the single reference book of the information and communication services provided to state bodies by the operator of information and communication infrastructure of "the electronic government";

28) information and communication technologies - set of methods of work with electronic information resources and the methods of information exchange performed using the hardware and software and network of telecommunications;

29) industry of information and communication technologies - the economy industry connected with designing, production and implementation of the software, technical means, consumer electronics and its components, and also with provision of information and communication services;

29-1) monitoring of events of information security - permanent observation of object of informatization for the purpose of identification and identification of events of information security;

30) event of information security - the condition of objects of informatization testimonial of possible violation of the existing security policy or about before unknown situation which can be related to safety of objects of informatization;

30-1) monitoring system of information security support - the organizational and technical actions directed to carrying out monitoring of safe use of information and communication technologies;

30-2) authorized body in the field of information security support - the central executive body performing management and cross-industry coordination in the field of information security support;

30-3) national institute of development in the field of information security support - the legal entity determined by the Government of the Republic of Kazakhstan for the purpose of development of the sphere of information security and the electronic industry;

30-4) operational Information Security Center - the legal entity or structural division of the legal entity performing activities for protection of electronic information resources, information systems, networks of telecommunications and other objects of informatization;

30-5) service of response to incidents of information security - the legal entity or structural division of the legal entity performing activities according to the competence established by this Law;

31) incident of information security - separately or serially arising failures in work of information and communication infrastructure or its separate objects creating threat to their proper functioning and (or) conditions for illegal obtaining, copying, distribution, modification, destruction or blocking of electronic information resources;

31-1) industry Information Security Centers - the legal entity or structural division of authorized body on regulation, control and supervision of the financial market and financial institutions performing activities for coordination of information security support of the financial market and financial institutions, branches of banks - nonresidents of the Republic of Kazakhstan, branches of the insurance (reinsurance) organizations - nonresidents of the Republic of Kazakhstan, branches of insurance brokers - nonresidents of the Republic of Kazakhstan;

32) information security product - the software, technical and other means intended and used for ensuring information protection;

33) the hardware and software - set of the software and the technical means jointly applied to the solution of tasks of certain type;

33-1) international technological Astana Hub park - the legal entity determined by the Government of the Republic of Kazakhstan, owning on the property right or other legal causes single material complex where favorable conditions for realization of innovative activities in the field of information and communication technologies are created;

33-2) acceleration of members of the international technological park "Astana Hub" - process of preparation and training of members of the international technological park "Astana Hub" to implementation of their innovative projects in the field of information and communication technologies;

34)  No. 237-VI ZRK is excluded according to the Law of the Republic of Kazakhstan of 18.03.2019;

35) open data - the public electronic information resources presented in the machine-readable form and intended for further use, the repeated publication in invariable type;

36) the Internet portal of open data - the web portal component of "the electronic government" providing centralized storage of descriptive and reference information on open data;

37) the software - set of programs, program codes, and also software products with the technical documentation necessary for their operation;

38) software product - the independent program or part of the software which is goods which irrespective of her developers can be used in the provided purposes according to the system requirements established by technical documentation;

38-1) biometric authentication - package of measures, identifying the personality based on physiological and biological invariable signs;

38-2) blockchain - the information and communication technology providing information invariance in the distributed platform of the interconnected data units this based on chain, the set algorithms of confirmation of integrity and means of enciphering;

39) the one-time password - the password valid only for one session of authentication of subjects of receipt of services electronically;

39-1) distributed platform of data - technological framework which components are connected among themselves by the set algorithms take place on different nodes of network, can have one or more owners, and also can have the different level of identity of data;

39-2) data analysts - processing of data with the purpose of receipt of information and outputs for decision making;

40) domain name - the character (alphanumeric) designation created according to rules of addressing of the Internet, corresponding to certain network address and intended for the named appeal to the Internet object;

41) the free software - the open source software concerning which the owner grants to the user the right to unrestricted installation, start and copying, and also free use, studying, development and distribution;

42) local area network - the part of network of telecommunications having the closed infrastructure to connection point to other networks of telecommunications and providing information transfer and the organization of joint access to network devices in territorially limited space of object (the room, the building, construction and its complex);

43) system maintenance - actions for ensuring smooth functioning of the hardware and software and networks of telecommunications;

43-1) intelligent robot - the automated device making certain action or idle taking into account the apprehended and recognized external environment;

44) the Internet - the world system of the joint networks of telecommunications and computing resources for transfer of electronic information resources;

45) the single gateway of Internet access - the hardware and software intended for protection of networks of telecommunications in case of Internet access and (or) to the communication networks having Internet connection;

46) Internet resource - information (in text, graphical, audiovisual or other type) placed on the hardware and software having the unique network address and (or) domain name and functioning on the Internet;

46-1) space of the Kazakhstan segment of the Internet - set of the Internet resources placed on the hardware and software located in the territory of the Republic of Kazakhstan;

47) the national gateway of the Republic of Kazakhstan - the information system intended for ensuring interstate information exchange of information systems and electronic information resources of the states;

47-1) profile of protection - the list of the minimum requirements to safety of the program and technical means which are components of objects of informatization;

48) single platform of Internet resources of state bodies - the technological framework intended for placement of Internet resources of state bodies;

49) architecture of state body - the description of the flowing and planned condition of state body, including its tasks, functions, organizational structure, electronic information resources, information and communication infrastructure and their interrelation;

50) the public technical service - the joint-stock company created according to the decision of the Government of the Republic of Kazakhstan;

51) the specifications and technical documentation - set of the documents determining general tasks, the principles and requirements to creation and use (operation) of objects of informatization, and also control of their compliance to the established requirements in the field of informatization;

52) the user - the subject of informatization using objects of informatization for accomplishment of specific function and (or) task;

52-1) register of the confidential software and products of the electronic industry - the list of the software and products of the electronic industry conforming to requirements of information security, created for the purposes of ensuring defense of the country and safety of the state;

53) service software product - the software product intended for realization of information and communication service;

54) technical support - rendering consulting, information and technological and other services in support of operability of licensed software and technical means;

55) technical documentation - documentation kit on information system, information communication framework of "the electronic government" and software product, including the service software product including the specification, design assignment, operational and other documentation;

55-1) digital asset - the property created in electronic and digital form using means of cryptography and computer calculations, which is not the financial instrument and also electronic and digital form of the certificate of property rights;

55-2) service of digital documents - the object of information and communication infrastructure of "the electronic government" assigned to the operator and intended for creation, storage and use of electronic documents for the purpose of realization of the state functions and the state services following from them and also in case of interaction with physical persons and legal entities, obtaining and rendering services electronically;

Warning!!!

This is not a full text of document! Document shown in Demo mode!

If you have active License, please Login, or get License for Full Access.

With Full access you can get: full text of document, original text of document in Russian, attachments (if exist) and see History and Statistics of your work.

Get License for Full Access Now

Disclaimer! This text was translated by AI translator and is not a valid juridical document. No warranty. No claim. More info

Effectively work with search system

Database include more 40000 documents. You can find needed documents using search system. For effective work you can mix any on documents parameters: country, documents type, date range, teams or tags.
More about search system

Get help

If you cannot find the required document, or you do not know where to begin, go to Help section.

In this section, we’ve tried to describe in detail the features and capabilities of the system, as well as the most effective techniques for working with the database.

You also may open the section Frequently asked questions. This section provides answers to questions set by users.

Search engine created by SojuzPravoInform LLC. UI/UX design by Intelliants.