Dhaka, Dec 05 (V7N) – The Government of Bangladesh has released the draft of the National Source Code Policy 2025, aimed at recognizing all publicly funded software as national assets and ensuring public ownership, security, transparency, and reusability of software developed with taxpayer money. The draft has been published on the website of the ICT Division, carrying the tagline “Public Money, Public Code,” according to a statement issued on Thursday by the Ministry of Posts, Telecommunications and Information Technology.

The proposed policy covers all software, digital services, applications, datasets, and related digital operations funded by the state budget, foreign loans, or development partners working under the government. It will be mandatory for ministries, departments, directorates, statutory bodies, autonomous organizations, and semi-autonomous institutions.

Under the draft policy, all software developed with public funds must have their source code, design files, and documentation stored in a mandatory central repository managed by the Bangladesh Computer Council. No software may be put into functional use until it is archived in the national repository. Additional security storage will be arranged when required.

The policy prioritizes reuse over redevelopment, stating that before creating any new software, public agencies must search for existing solutions that meet their requirements. If they choose not to use an available solution, they must provide written justification.

The draft also establishes that software source code developed with public money should, by default, remain open for public use, except in cases involving national security, defense, or confidentiality. Such restricted code will require written justification, formal registration, and periodic review.

The policy proposes strict security standards, including continuous testing, vulnerability assessments, approval protocols, and documentation verification for all software. A designated standards committee will oversee secure development practices. Access to the source code repository will be role-based, and all developers, reviewers, and contributors will be required to sign government confidentiality agreements.

Datasets associated with government software will be categorized as open, restricted, or controlled and must be registered in the National Data Catalogue. For software involving data analytics, machine learning, or data exchange, documentation on data sources, usage, and operational guidelines must be stored in the repository. Restricted data will require confidentiality agreements.

The policy introduces new structures for implementation and oversight. A designated authority will be responsible for execution, interpretation, and granting exemptions. The Bangladesh Computer Council will manage the repository, pre-deployment testing system, and access control. Agencies failing to comply may face administrative actions. The policy will be reviewed every three years or earlier if necessary.

The draft marks a significant step toward increasing transparency in public digital services, strengthening cybersecurity, and reducing software duplication costs. Officials say the policy will support long-term digital governance goals and ensure that resources developed with public funds remain accessible, secure, and reusable for future national projects.

END/RKB/SMA/