In this article, we discuss a judgment of the preliminary injunction court exposing the messy application of the AVG in a procurement process. The AVG requirements were classified as “nice to haves,” rather than “need to haves,” making personal data protection seem less important than other criteria such as price and ease of use. This undermines confidence in government action and highlights the need for contracting authorities to take the AVG seriously and integrate it properly into procurement procedures.