======Reference interface of public administration======

===== Description of the reference interface =====

In accordance with its definition enshrined in Act No. 365/2000 Coll., on public administration information systems and Act No. 111/2009 Coll., on basic registers, the reference interface is effectively understood as an interface for the implementation of links between public administration information systems, especially in the implementation of an interconnected data fund by sharing data between individual agency information systems in the form of shared services. The reference interface is therefore a communication interface for the provision and use of shared services of individual administrators of public administration information systems.

The reference interface consists of three main components:

^ Component^ Abbreviation^ Functionality description |
| Information system of basic registers| [[nap:iszr|ISZR]]| Provides all services related to the use of data from basic registers, also implements services for editors to the registers and for sharing data of editors of registers |
| Information Shared Service System| [[nap:egsb|eGSB/ISSS]]| Interface for sharing and exchanging data between ISVS and making links between them |
| Information system for bulk data output in multiagenda queries (Forms Agenda Information System)| [[nap:fais|FAIS]]| It is used for processing queries and outputting data in the form of forms, including bulk forms, also from multiple PIs or other ISVS. Queries and outputs are transmitted via Data Mailboxes. |


The use of data via the reference interface is always made exclusively on the basis of the relevant permissions recorded in [[nap:rpp|RPP]], but this does not mean that [[nap:rpp|RPP]] controls the actual release of data. The final decision on whether or not to release data is always the responsibility of the source AIS (the one whose data is requested). It makes this decision on the basis of the entitlement reference data recorded in [[nap:rpp|RPP]].
In the future development of PPDF, it is envisaged that permissions for data or specific services will be checked by [[nap:iszr|ISZR]] and [[nap:egsb|eGSB/ISSS]] using reference data from [[nap:rpp|RPP]]. Thus, the end state should be that the requesting system calling the service receives the requested data or information that it does not have the necessary permissions for the request. Thus, permissions, and thus access to data and services, would not need to be done by the system or its administrator, but would be controlled by the [[nap:rpp|RPP]] references. 


Through the reference interface:

  * The writing and editing of data in the basic registers is implemented.
    * Perform [[nap:editorske_ais|Basic registry editors]] using the services of the external interface [[nap:iszr|ISZR]]
  * Executes the use of basic registers data
    * With regard to the permissions to access data in the basic registers, according to the announcement of the individual agendas in [[nap:rpp|RPP]], using the services of the external interface [[nap:iszr|ISZR]]
    * Notification and update services for basic registers are also implemented using the [[nap:iszr|ISZR]] external interface services
  * Data exchange in the form of shared services between AIS is implemented
    * Performed by OVM between each other using [[nap:egsb|eGSB/ISSS]] and data exchange services. In case of data exchange on natural persons, [[nap:egsb|eGSB/ISSS]] performs the translation of AIFOs via [[nap:iszr|ISZR]]
  * Implement bulk data output and query/response composition services for multiple data
      * Implemented by the FAIS component and used by OVM or SPUU with appropriate authorization 
      * FAIS makes calls to the ISZR and ISSS services based on a request received via the data mailbox and returns the compiled response to the requester again via the data mailbox
  * Implement notification and data update services in individual agendas using the central component

Basic rules for using the reference interface

  * Comply with the Decree on Act 365/2000 Coll., especially on the technical and functional parameters of the connection to the reference interface 
  * The reference interface is accessed by the OVM through its AIS and by the SPÚ through the private data use system or through the AIS of another OVM
  * Each system accessing the reference interface must prove its 'identity' by means of a system certificate issued by a Certification Authority under the management of SZR
  * When exchanging data on subjects of law or objects of territorial identification, it is verified whether these subjects (ROB, ROS) or objects (RÚIAN, RPP) are listed in the basic registers (verification of the reference link)
  * The OVM requesting data on a specific subject is responsible for its proper identification in its agenda, i.e. the indication of the AIFO if it is a natural person or the ID number if it is a legal person. If the subject is not properly identified, the data obtained may be indicative only
  * Records (logs) of the identification of the requesting system, time of response, structure and content of the data provided shall be kept by the providing system. The identification of the providing system, time of response, structure and content of the data shall be kept by the receiving system. The reference interface shall record the identification of both systems, the time and the structure of the data transmitted. 
  * Procedural interfacing with [[nap:document_management system|eSSL]] when the reference interface is used to transmit documents according to the rules of the file service. This only applies to situations where the content is actually a document and therefore not just a data transfer.

==== Information system for the management of the use and publication of data of the Public Administration Reference Interface of the Czech Republic ====

The Information System for the Management of the Extraction and Publication of the Data of the Public Administration Reference Interface of the Czech Republic (also referred to as the "Connection Management System") is a Public Administration Information System that enables any entity that is connected to the Public Administration Reference Interface (according to Act 365/2000 Coll.) to manage data on information systems that provide or extract data through the Reference Interface.
The link management system will be created as an extension of the current RAZR system (registration authority of basic registers) or as a new system and must support the following functionalities:
  * Login via JIP/KAAS
  *Login via the NIA system
  *Evidence of all connected IS (agency information systems and private data use systems) according to the register of public administration information systems 
  *Evidence of all subject administrators of connected IS and their administrators (editors)
  *Evidence of all contexts according to the agendas defined in the RPP
  *Control of data permissions according to RPP
  *History of data consumption and publication of the connected IS according to the logs of the reference interface
  *Individualization of information for logged-in and authorized user
  *Allowing reporting of unauthorised drawdown/data provision, including tracking of progress
  *Allow reporting of certificate misuse, including tracking of progress
  * Enable ordering a new certificate, including progress tracking
  *Enable context management (creation, modification, deletion)

{{ :nap-document:rizeni_sprava_ref_interface.png |}}


==== Basic Registry Information System ====

{{page>en:nap:iszr}}

==== Basic registers ====

{{page>en:nap:zakladni_registry}}

==== Reference data ====

{{page>en:nap:referencni_udaje}}

==== Editorial AIS ====

{{page>en:nap:editorske_ais}}

==== eGovernment Service Bus / Shared Service Information System ====

{{page>en:nap:egsb}}

==== IS Interface for Batch Data Exchange ====

{{page>en:nap:fais}}


===== Reference Interface Rules =====

==== Method of obtaining reference data ====

{{page>en:nap:ziskavani_referencnich_udaju}}

==== Obligation to use the reference interface ====

The obligation to use reference interfaces for making so-called "links" between different public administration information systems is imposed by the Act on Public Administration Information Systems. Thus, in general, it is the reference interface that is to be primarily used for data sharing, data exchange and interconnection of individual public administration information systems of different administrators. For information systems of the same administrator, this may not always be the case, unless the translation of agency identifiers is used for communication about a legal entity within two or more agencies.

It must be stressed that only by using the reference interface is the translation of AIFOs correctly performed (the AIFO of one person in one agency must not be provided to another agency). Only the reference interface is linked to the ORG registry and performs the translation of the AIFO.

==== Possibility to use the reference interface ====

In addition to the obligation for public administration information system administrators, there is also the possibility for other entities to use the reference interface or the services it provides. Specifically, these are entities of the type of SPUU (Private Data User) according to Act 111/2009 Coll., which need a legal authorisation to use the services of the reference interface.


==== Use of the reference interface for the exchange of data within the interconnected data fund ====

The exchange/sharing of data between the different public administration information systems is carried out exclusively through the reference interface, namely the [[nap:egsb|eGSB/ISSS]] component. As specified in [[nap:linked_datovy_fund|linked_datovy_fund]], the data exchange is always realised within a per-entity context.

Access to the services of the reference interface is only possible at the network level through the [[nap:communication_infrastructure_of_public_government|Central Point of Service (CMS)]], and consequently to the [[nap:communication_infrastructure_of_public_government|communication infrastructure of public administration (KIVS)]], which can be called a private network for the performance of public administration on the territory of the state.

Administrators of agency information systems must implement the connection to the reference interface, according to the relevant methodological documents and operating rules:

  * [[https://szrcr.cz/cs/dulezite-dokumenty/21-provozni-rad-iszr|Operating Rules of the ISZR]]
  * [[https://szrcr.cz/images/dokumenty/dulezite/Podminky_pro_pripojeni_agendovych_informacnich_systemu_do_ISZR_verze_2.08_final_170206.pdf|Conditions for connecting AIS to the ISZR]]

=== Use of the reference interface for reference data retrieval ====

In addition to the operating rules, administrators of agency information systems follow other procedures, mainly legislative ones. The current state (2020) still forces a legal mandate for the use of reference data. V

=== Use of the reference interface for the provision of agency data ===


Administrators of agency information systems providing agency data implement the connection of their AIS to the [[nap:egsb|eGSB/ISSS]] in the role of publisher and control the permissions to use the data according to the permissions in [[nap:rpp|RPP]]. For data exchange, they shall build their AIS services to be called and mediated by [[nap:egsb|eGSB/ISSS]].


=== Use of the reference interface to draw on agenda data ===


Administrators of AISs that use data provided by another agency make calls to [[nap:egsb|eGSB/ISSS]] services (they do not need to know the specific AIS, they request the data from the agency), and only if they have the appropriate permissions registered with the provider agency in [[nap:rpp|RPP]].


=== Use of the reference interface when registering and editing data in basic registries ===


The [[nap:editorske_ais|Basic registers reference data editors]] implement the connection of their editorial agency information systems to [[nap:iszr|ISZR]] by means of external interface services according to the relevant documentation of the Basic Registers Administration and, in cases where the agency information systems are not also separate document registers, then the connection of these systems to [[nap:document_management system|eSSL]] within internal links. They do not use any other interface than the ISZR for editing data and handling complaints about data in the basic registers.



{{tag>"reference interface" "Basic registers" eGSB ISGSB ISSS FAIS "Functional unit"}}