Loren Data's SAM Daily™

 fbodaily.com
Home Today's SAM Search Archives Numbered Notes CBD Archives Subscribe
FBO DAILY - FEDBIZOPPS ISSUE OF FEBRUARY 22, 2019 FBO #6300
SOURCES SOUGHT

66 -- STX Genetics Reference Lab Testing

Notice Date
2/20/2019
 
Notice Type
Synopsis
 
NAICS
334516 — Analytical Laboratory Instrument Manufacturing
 
Contracting Office
00504;Department of Veterans Affairs;Contracting Section;7201 I-40 West Suite 100;Amarillo TX 79106
 
ZIP Code
79106
 
Solicitation Number
36C25719Q0391
 
Response Due
3/6/2019
 
Archive Date
5/5/2019
 
Point of Contact
Phil Campos
 
Small Business Set-Aside
N/A
 
Description
The SouthTexas Veterans Health System; Audie L. Murphy Division in San Antonio, Texas is seeking Service Disabled Veteran Owned Small Business (SDVOSB), Veteran Owned Small Business (VOSB) or Small Business (SB) sources capable of meeting the requirement listed below. The acquisition will be accomplished using commercial item procedures in accordance with FAR Part 13. NOTE: TO QUALIFY SDVOSB AND VOSB VENDORS MUST BE CERTIFIED IN THE VA VENDOR INFORMATION PAGES (VIP) DATABASE. The North American Industry Classification System (NAICS) is 334516. Any SDVOSB, VOSB or Small Business firms who wish to identify their interests and capability to provide this service must provide information by notifying the Contract Specialist no later than NOON PM Central Time March 6, 2019. Notification shall be e-mailed to Phil Campos, at canuto.campos@va.gov. DISCLAIMER This Source Sought Notice is issued solely for information and planning purposes only and does not constitute a solicitation. All information received in response to this Notice that is marked as proprietary will be handled accordingly. In accordance with the Federal Acquisition Regulation, responses to this notice are not offers and cannot be accepted by the Government to form a binding contract. Responders are solely responsible for all expenses associated with responding to this Notice. Scope of work: DESCRIPTION/SPECIFICATIONS/WORK STATEMENT BACKGROUND: The purpose of the resulting contract will be to provide a Blanket Purchase Order for Specialized Genetic Laboratory Fee Basis Testing for the South Texas Veterans Health Care System (STVHCS), Audie L. Murphy Division located at 7400 Merton Minter Blvd., San Antonio, TX 78229-4404. STATEMENT OF WORK: Contractor agrees to furnish all personnel, labor, transportation, equipment, materials and supplies necessary to provide Laboratory Fee Basis Testing and guidance in Exome & General Genetics, Oncology, Cardiology, Neurology and Pathology as specified herein for eligible VA beneficiaries of the South Texas Veterans Health Care System, Audie L. Murphy Division located at 7400 Merton Minter Blvd., San Antonio, TX 78229-4404. At minimum the contractor must provide a menu of the following listed tests and provide the below listed requirements(No substitutions): Test Code Test Description Genes TAT 8838 BRCA 1 &2 seq and del/dup BRCA1, BRCA2 6-10 Days 8836 BRCA Plus ATM, BRCA1, BRCA2, CDH1, CHEK2, PALB2, PTEN, TP53 7-10 Days 8824 Cancer Next APC, ATM, BARD1, BMPR1A, BRCA1, BRCA2, BRIP1, CDH1, CDK4, CDKN2A, CHEK2, DICER1, EPCAM, GREM1, HOXB13, MLH1, MRE11A, MSH2, MSH6, MUTYH, NBN, NF1, PALB2, PMS2, POLD1, POLE, PTEN, RAD50, RAD51C, RAD51D, SMAD4, SMARCA4, STK11, TP53 14-21 Days 8822 Colo Next APC, BMPR1A, CDH1, CHEK2, EPCAM, GREM1, MLH1, MSH2, MSH6, MUTYH, PMS2, POLD1, POLE, PTEN, SMAD4, STK11, TP53 14-21 Days 8511 Lynch MLH del/dup analysis 6-10 Days 9510 Customized Panel (Various tests) AIP, ALK, APC, ATM, AXIN2, BAP1, BARD1, BLM, BMPR1A, BRCA1, BRCA2, BRIP1, CASR, CDC73, CDH1, CDK4, CDKN1B, CDKN2A, CFTR, CHEK2, CPA1, CTNNA1, CTRC, DICER1, EGFR, EPCAM, FANCC, FH, FLCN, GALNT12, GREM1, HOXB13, KIT, MAX, MEN1, MET, MITF, MLH1, MRE11A, MSH2, MSH3, MSH6, MUTYH, NBN, NF1, NF2, NTHL1, PALB2, PDGFRA, PHOX2B, PMS2, POLD1, POLE, POT1, PRKAR1A, PRSS1, PTCH1, PTEN, RAD50, RAD51C, RAD51D, RB1, RET, SDHA, SDHAF2, SDHB, SDHC, SDHD, SMAD4, SMARCA4, SMARCB1, SMARCE1, SPINK1, STK11, SUFU, TMEM127, TP53, TSC1, TSC2, VHL, XRCC2 14-21 Days 8726 Adenomatous Polyposis APC MUTYH 14-21 Days 8835 GYN Plus BRCA1, BRCA2, BRIP1, EPCAM, MLH1, MSH2, MSH6, PALB2, PMS2, PTEN, RAD51C, RAD51D, TP53 14-21 Days 8830 Ova Next ATM, BARD1, BRCA1, BRCA2, BRIP1, CDH1, CHEK2, DICER1, EPCAM, MLH1, MRE11A, MSH2, MSH6, MUTYH, NBN, NF1, PALB2, PMS2, PTEN, RAD50, RAD51C, RAD51D, SMARCA4, STK11, TP53 14-21 Days 8820 Breast Next ATM, BARD1, BRCA1, BRCA2, BRIP1, CDH1, CHEK2, MRE11A, MUTYH, NBN, NF1, PALB2, PTEN, RAD50, RAD51C, RAD51D, TP53 14-21 Days 8874 Cancer Next Expanded AIP, ALK, APC, ATM, BAP1, BARD1, BLM, BMPR1A, BRCA1, BRCA2, BRIP1, CDH1, CDK4, CDKN1B, CDKN2A, CHEK2, DICER1, EPCAM, FANCC, FH, FLCN, GALNT12, GREM1, HOXB13, MAX, MEN1, MET, MITF, MLH1, MRE11A, MSH2, MSH6, MUTYH, NBN, NF1, NF2, PALB2, PHOX2B, PMS2, POLD1, POLE, POT1, PRKAR1A, PTCH1, PTEN, RAD50, RAD51C, RAD51D, RB1, RET, SDHA, SDHAF2, SDHB, SDHC, SDHD, SMAD4, SMARCA4, SMARCB1, SMARCE1, STK11, SUFU, TMEM127, TP53, TSC1, TSC2, VHL, XRCC2 14-21 Days The Reference Laboratory selected is required to be fully licensed, accredited and inspected by the Laboratory Accreditation of an accrediting agency to include; College of American Pathologists (CAP) with deemed status from the Center for Medicare and Medicaid Services, Center for Disease Control and any other state regulatory agencies as mandated by Federal and State Statutes. The Laboratory is required to be certified by the Joint Commission, American Associates of Blood Banks (AABB) as applicable. The Clinical Laboratory shall meet all requirements set forth by the Clinical Laboratory Improvement Act (CLIA) of 1988 and comply with the National Standards to Protect the Privacy of Personal Health Information (HIPPA). These above listed requirements must be met upon the date of Solicitation. The Reference Laboratory must provide 95% of the required testing inhouse and not outsourced to other subcontracted Reference Laboratories. All subcontracted Reference Laboratories are subject to the requirements outlined above. The Contractor shall provide timely (defined by the minimum and maximum turnaround times detailed in the description of requirements) and appropriate testing of patient specimens as requested by STVHCS facilities. Each STVHCS facility will provide laboratory specimens properly collected identified with both the Patient s Identification (as utilized by each facility) and requested tests. For those specimens that require special handling, the Contractor shall provide at no additional charge an adequate supply of specimen collection materials for such testing that is destined to the commercial reference laboratory for analysis (i.e. dry ice, stabilizing tablets, ice packets, 24-hour collection container with preservatives, special collection tubes, etc.). Each test report shall at minimum indicate the following information: Patient's name and/or identification number Physician's name (if supplied) VISN 17 medical record number or laboratory accession number (if supplied) VISN 17 submitting facility name Patient's location (clinic/ward) (if supplied) Test ordered Date/time of specimen collection (when available) Date/time test completed Test result Reference intervals Toxic and therapeutic ranges, if applicable Flagged abnormal test results Reference laboratory specimen number Name of testing laboratory, if other than Contractor Any other information the laboratory has that may indicate a questionable validity of test results Unsatisfactory specimen shall be reported with documentation supporting its unsuitability for testing Contractor shall provide daily, by 12:00 PM, a report listing all incomplete specimens and their processing status. The Contractor shall store the specimens a minimum of seven (7) to ten (10) days after the test is reported in the event that subsequent action is necessary (i.e. problem solving, add-on test, and/or repeat testing). The Contractor shall state their specimen retention time. Laboratory requests with Patient Demographics will be entered into the VA Decentralized Hospital Computer Program (DHCP) by the VA Processing Section. Specimens will be picked up daily by the Contractor for further processing. Once laboratory requests with Patient Demographics for identification purposes are processed by the Contractor, the results will be returned to the VA Processing Section via secure fax or secure computer work station for entering results in DHCP by VA personnel. Information will then be made electronically available to the clinicians by VA personnel. Laboratory procedures that have not been assigned a log number will not be paid by the STVHCS or performed by the Contractor. INVOICING: Payment to be made monthly in arrears by certified invoices and must contain the contract number and obligation number in addition to the requirements detailed in 52.212-4 (G) to be considered valid. Invoices shall also contain a line item for each test and quantities billed for. STVHCS will not pay for tests that are not clearly identified by accession number on the Contractors invoice. WORK HOURS: Contractor shall be responsible for providing services in between the hours of 8:00am and 4:30pm Monday through Friday excluding Federal Holidays. Federal Holidays are as follows: New Years Day, Martin Luther King s Birthday, President s Day, Memorial Day, Independence Day, Labor Day, Columbus Day, Veterans Day, Thanksgiving Day, Christmas Day and any other day specifically designated as a national holiday by the President of the United States. CONTRACTING OFFICER REPRESENTATIVE: The Contracting Officer Representative (COR) is identified as the Administrative Officer for Pathology and Laboratory Medicine Service. Prior to contract award, the Contracting Officer shall designate a VA Medical Center employee as the Contracting Officer's Technical Representative (COR). All work coordination shall be made through the COR. The Contractor shall be provided a copy of the letter of delegation authorizing the COR at the commencement of the term of this agreement. No other person shall be authorized to act in such capacity unless appointed in writing by the Contracting Officer. The Contracting Officer is the only person authorized to approve changes or modify any of the requirements under this contract. The contractor shall communicate with the Contracting Officer on all matters pertaining to contract administration. Only the Contracting Officer is authorized to make commitments or issue changes, which will affect price, quantity, or quality of performance of this contract. In the event the Contractor effects any such changes at the direction of any person other than the Contracting Officer, the change shall be considered to have been made without authority and no adjustment will be made in the contract price to cover any increase in costs incurred as a result thereof. Government Inherent Functions: Contractor shall not perform inherently governmental functions. This includes, but is not limited to, determination of agency policy, determination of Federal program priorities for budget requests, direction and control of government employees, selection or non-selection of individuals for Federal Government employment including the interviewing of individuals for employment, approval of position descriptions and performance standards for Federal employees, approving any contractual documents, approval of Federal licensing actions and inspections, and/or determination of budget policy, guidance, and strategy. General Duties, Requirements, and Expectations: Be professionally competent to handle required duties. Work with staff to ensure safety measures are in place and documented. Services provided under the terms of this contract are required to be in compliance with the American Association of Blood Banks (AABB) and College of American Pathologists (CAP). Information Systems Officer, Information Protection:       The contractor will not have access to VA Desktop computers nor will they have access to online resources belonging to the government while conducting services. If removal of equipment from the VA is required, any memory storage devices, such as hard drives, solid state drives and non-volatile memory units will remain in VA control and will not be removed from VA custody.   Privacy Officer:   The contractor will have access to Patient Health Information (PHI) but will not have the capability of accessing patient information from the VA System during the services provided to the VA. Records Manager: 1. Contractor shall comply with all applicable records management laws and regulations, as well as National Archives and Records Administration (NARA) records policies, including but not limited to the Federal Records Act (44 U.S.C. chs. 21, 29, 31, 33), NARA regulations at 36 CFR Chapter XII Subchapter B, and those policies associated with the safeguarding of records covered by the Privacy Act of 1974 (5 U.S.C. 552a). These policies include the preservation of all records, regardless of form or characteristics, mode of transmission, or state of completion.   2. In accordance with 36 CFR 1222.32, all data created for Government use and delivered to, or falling under the legal control of, the Government are Federal records subject to the provisions of 44 U.S.C. chapters 21, 29, 31, and 33, the Freedom of Information Act (FOIA) (5 U.S.C. 552), as amended, and the Privacy Act of 1974 (5 U.S.C. 552a), as amended and must be managed and scheduled for disposition only as permitted by statute or regulation.   3. In accordance with 36 CFR 1222.32, Contractor shall maintain all records created for Government use or created in the course of performing the contract and/or delivered to, or under the legal control of the Government and must be managed in accordance with Federal law. Electronic records and associated metadata must be accompanied by sufficient technical documentation to permit understanding and use of the records and data.   4. STVHCS and its contractors are responsible for preventing the alienation or unauthorized destruction of records, including all forms of mutilation. Records may not be removed from the legal custody of STVHCS or destroyed except for in accordance with the provisions of the agency records schedules and with the written concurrence of the Head of the Contracting Activity. Willful and unlawful destruction, damage or alienation of Federal records is subject to the fines and penalties imposed by 18 U.S.C. 2701. In the event of any unlawful or accidental removal, defacing, alteration, or destruction of records, Contractor must report to STVHCS. The agency must report promptly to NARA in accordance with 36 CFR 1230. 5. The Contractor shall immediately notify the appropriate Contracting Officer upon discovery of any inadvertent or unauthorized disclosures of information, data, documentary materials, records or equipment. Disclosure of non-public information is limited to authorized personnel with a need-to-know as described in the [contract vehicle]. The Contractor shall ensure that the appropriate personnel, administrative, technical, and physical safeguards are established to ensure the security and confidentiality of this information, data, documentary material, records and/or equipment is properly protected. The Contractor shall not remove material from Government facilities or systems, or facilities or systems operated or maintained on the Government s behalf, without the express written permission of the Head of the Contracting Activity. When information, data, documentary material, records and/or equipment is no longer required, it shall be returned to STVHCS control or the Contractor must hold it until otherwise directed. Items returned to the Government shall be hand carried, mailed, emailed, or securely electronically transmitted to the Contracting Officer or address prescribed in the [contract vehicle]. Destruction of records is EXPRESSLY PROHIBITED unless in accordance with Paragraph (4). 6. The Contractor is required to obtain the Contracting Officer's approval prior to engaging in any contractual relationship (sub-contractor) in support of this contract requiring the disclosure of information, documentary material and/or records generated under, or relating to, contracts. The Contractor (and any sub-contractor) is required to abide by Government and STVHCS guidance for protecting sensitive, proprietary information, classified, and controlled unclassified information. 7. The Contractor shall only use Government IT equipment for purposes specifically tied to or authorized by the contract and in accordance with STVHCS policy.   8. The Contractor shall not create or maintain any records containing any non-public STVHCS information that are not specifically tied to or authorized by the contract.   9. The Contractor shall not retain, use, sell, or disseminate copies of any deliverable that contains information covered by the Privacy Act of 1974 or that which is generally protected from public disclosure by an exemption to the Freedom of Information Act.   10. The STVHCS owns the rights to all data and records produced as part of this contract. All deliverables under the contract are the property of the U.S. Government for which STVHCS shall have unlimited rights to use, dispose of, or disclose such data contained therein as it determines to be in the public interest. Any Contractor rights in the data or deliverables must be identified as required by FAR 52.227-11 through FAR 52.227-20. 11. Training.  All Contractor employees assigned to this contract who create, work with, or otherwise handle records are required to take VHA-provided records management training, Talent Management System (TMS) Item #10176, Privacy and Information Security, Rules of Behavior. The Contractor is responsible for confirming training has been completed according to agency policies, including initial training and any annual or refresher training. B.3 SPECIAL CONTRACT REQUIREMENTS STX-HCR671-04 GENERAL INFORMATION SECURITY REQUIREMENTS /RECORDS All information and records provided to Contractor by VA, in whatever medium, as well as all information and documents, including drafts, emails, back-up copies, hand-written notes and copies that contain such information and records gathered or created by Contractor (collectively referred to as VA information ) in the performance of this contract, regardless of storage media, are the exclusive property of VA. Contractor does not retain any property interest in these materials, and will not use them for any purpose other than performance of this contract. Upon completion or termination of the contract, Contractor will either provide all copies of all VA information to VA or certify that it has destroyed all copies of all VA information as required by VA in a method specified by VA, at VA s option. Medical records of any kind including notes shall be returned to the VA. The Contractor will not retain any copies of VA information. Where immediate return or destruction of the information is not practicable, Contractor will return or destroy the information within 30 days of completion or termination of the contract. All provisions of this contract concerning the security and protection of VA information that is the subject of this contract will continue to apply to VA information for as long as the Contractor retains it, regardless of whether the contract has been completed or terminated. Prior to termination or completion of this contract, Contractor will not destroy VA information received from VA or gathered or created by Contractor in the course of performing this contract without prior written approval by VA. Contractor will receive, gather, store, back up, maintain, use, disclose and dispose of VA information only in accordance with the terms of this contract and applicable federal and VA information confidentiality and security laws, regulations and policies. The Contractor shall not make copies of VA information except as necessary to perform this agreement or to preserve electronic information stored on Contractor electronic storage media for restoration in case any electronic equipment or data used by the Contractor needs to be restored to an operating state. Contractor shall provide access to VA information only to employees, subcontractors, and affiliates only: (1) to the extent necessary to perform the services specified in this Contract, (2) to perform necessary maintenance functions for electronic storage or transmission media necessary for performance of this contract, and (3) only to individuals who first satisfy the same conditions, requirements and restrictions that comparable VA employees must meet in order to have access to the same VA information. These restrictions include the same level of background investigations, where applicable. Contractor will store, transport or transmit VA information only in an encrypted form, using an encryption application that meets the requirements of FIPS 140-2, and is approved for use by VA. Except for uses and disclosures of VA information authorized by this contract for performance of the contract, the contractor may use and disclose VA information only in two other situations: (i) in response to an order of a court of competent jurisdiction, or (ii) with VA s prior written authorization. The contractor will refer all requests for, demands for production of, or inquiries about, VA information to VA for response. If VA information subject to the contract includes information protected by 38 USC 7332, or 5705, include the following after the last sentence of the paragraph immediately above: Contractor shall not release information protected by either 38 USC 5705 or 7332 in response to a court order, and shall immediately refer such court orders to VA for response. Prior to any disclosure pursuant to a court order, the Contractor shall promptly notify VA of the court order upon its receipt by the Contractor, provide VA with a copy by fax or email, whichever is faster, and notify by telephone the VA individual designated in advance to receive such notices. If the Contractor cannot notify VA before being compelled to produce the information under court order, the Contractor will notify VA of the disclosure as soon as practical and provide a copy of the court order, including a copy of the court order, a description of the records provided pursuant to the court order, and to whom the Contractor provided the records under the court order. The notice will include the following information to the extent that the Contractor knows it, if it does not show on the face of the court order: the records disclosed pursuant to the order, to whom, where, when, and for what purpose, and any other information that the Contractor reasonably believes is relevant to the disclosure. If VA determines that it is appropriate to seek retrieval of information released pursuant to a court order before Contractor notified VA of the court order, Contractor will assist VA in attempting to retrieve the VA information involved. The Contractor will inform VA by the most expeditious method available to Contractor of any incident of suspected or actual access to, or disclosure, disposition, alteration or destruction of, VA information not authorized under this Contract ( incident ) within one hour of learning of the incident. An incident includes the transmission, storage or access of VA information by Contractor or subcontractor employees in violation of applicable VA confidentiality and security requirements. To the extent known by the Contractor, the Contractor s notice to VA will identify the information involved, the circumstances surrounding the incident (including to whom, how, when, and where the VA information was placed at risk or compromised), and any other information that the contractor considers relevant. Contractor will simultaneously report the incident to the appropriate law enforcement entity of jurisdiction. The Contractor, its employees, and its subcontractors and their employees will cooperate with VA and any law enforcement authority responsible for the investigation and prosecution of any possible criminal law violation(s) associated with any incident. The Contractor also will cooperate with VA in any civil litigation to recover VA information, to obtain monetary or other compensation from a third party for damages arising from any incident, or to obtain injunctive relief against any third party arising from, or related to, the incident. VA will provide the Contractor with the name, title, telephone number, fax number and email address of the VA official to whom the Contractor will provide all notices required by this Contract. VA has the right during normal business hours to inspect the Contractor s facility, information technology systems and storage and transmission equipment, and software utilized to perform the contract to ensure that the Contractor is providing for the security of VA data and computer systems in accordance with the terms of this Contract. Contractor will receive, gather, store, back up, maintain, use, disclose and dispose of VA information only in compliance with all applicable Federal Information Processing Standards (FIPS) and Special Publications (SPs) issued by the National Institute of Standards and Technology (NIST) concerning VA information that is the subject of this contract. If NIST issues or updates an applicable FIPS or SP after execution of this contract, the parties agree to negotiate in good faith to implement the FIPS or SP in this contract. A determination by VA that the Contractor has violated any of the information confidentiality and security provisions of this contract, including a violation of any applicable FIPS or SP, shall be a basis for VA to terminate the contract for cause. If anyone performing this contract, including employees of subcontractors, accesses VA computer systems or data in the performance of the contract, VA may monitor and record all such access activity. If VA monitoring reveals any information of suspected or potential criminal law violations, VA will refer the matter to the appropriate law enforcement authorities for investigation. Contractor shall inform its employees and other individuals performing any part of this contract that VA may monitor their actions in accessing or attempting to access VA computer systems and the possible consequences to them for improper access, whether successful or not. The Contractor shall ensure that any subcontractors or others acting on behalf of, or for, the Contractor in performing any part of this contract inform their employees, associates or others acting on their behalf that VA may monitor their access activities. Execution of this contract and any subcontract or agreement constitutes consent to VA monitoring. The Contractor will ensure that all individuals who will access VA data or systems in performing the contract are appropriately trained in the applicable VA confidentiality and security requirements. Contractor may do this by requiring and documenting that these individuals have completed the VA training for its employees. To the extent practicable, Contractor shall mitigate any harmful effect on individuals whose VA information was accessed or disclosed in an incident. Contractor shall require subcontractors, agents, affiliates or others to whom Contractor provides access to VA information for the performance of this contract to agree to the same VA information confidentiality and security restrictions and conditions that apply to the Contractor before providing access. The contractor shall abide by FAR clauses 52.224-1 and 52.224.2. The contractor shall abide by FAR clauses 52.239-1 and 52.224.1-2 for Privacy or Security Safeguards In the performance of any part of the work on this contract, the contractor shall utilize only employees, subcontractors or agents who are physically located within a jurisdiction subject to the laws of the United States. Contractor will ensure that it does not use or disclose Patient Health Information (PHI) received from Covered Entity in any way that will remove the PHI from such jurisdiction. Contractor will ensure that its employees, subcontractors and agents do not use or disclose PHI received from Covered Entity in any way that will remove the PHI from such jurisdiction. STX671-01 LOW RISK-CONTRACTOR PERSONNEL SECURITY REQUIREMENTS (May 2010) All contractor employees who require access to the Department of Veterans Affairs computer systems or routine access to VA Facilities shall be the subject of a background investigation and must receive a favorable adjudication from the VA Office of Security and Law Enforcement prior to contract performance. This requirement is applicable to all subcontractor personnel requiring the same access. Position Risk and Sensitivity Designations Shall be determined by Contracting Officer s Representative (COR) in accordance with VHA Directive 0710 Appendix A. The position sensitivity for this contract has been designated as LOW RISK Position Risk and Sensitivity Designations are directly tied to background investigative requirements. A position designated as Low Risk requires a National Agency Check with Inquires (NACI). A position designated as Moderate Risk requires a Minimum Background Investigation (MBI). A position designated as High Risk requires a Background Investigation (BI). Contractor Responsibilities: The contractor shall bear the expense of obtaining background investigations. If the investigation is conducted by the Office of Personnel Management (OPM), the contractor shall reimburse VA within 30 days from receipt of a bill of collection. Cost and Time Frames: Low Risk (NACI)-- The case is only open for 30 days except in rare occasions when something in the person s background requires and extension.   This investigation is done by mail and that is why we have to be so stringent with the paperwork.   The average turn around on these cases is 45 days. The contractor shall prescreen all personnel requiring access to the computer systems to ensure they maintain a U.S. citizenship and are able to read, write, speak and understand the English language. After award and prior to contract performance, contractor shall submit to the Contracting Officer s Representative all required information to initiate background check by completing the latest version of Local Background Check Request Formfor each employee providing services under this contract. This form shall be provided by the COR. Contractor shall notify the COR prior to changing/adding new contract personnel by submitting a new Local Background Check Request Form. The Contractor, when notified of an unfavorable determination by the Government shall withdraw the employee from consideration of working under this contract. The contractor shall submit the following required forms to the VA Office of Security and Law Enforcement as outlined within automatic email notification identifying the web site link following the detailed instructions regarding completion of the application process. This includes: Standard Form 85, Questionnaire for Non-Sensitive Positions If needed, Continuation Sheet for Questionnaires Standard Form 86A FD 258, U.S. Department of Justice Fingerprint Applicant Chart; OR schedule to have electronic fingerprints as coordinated by COR VA Form 0710, Authority for Release of Information Form copies Optional Form 306, Declaration for Federal Employment (one copy submitted to office conducting electronic fingerprinting) The Contractor shall ensure that all personnel requiring computer access will complete the VA s Cyber Security Training and Privacy training prior to obtaining computer access and annually thereafter. Failure to comply with the contractor personnel security requirements may result in termination of the contract. Government Responsibilities: The VA Office of Security and Law Enforcement will provide the necessary forms to the contractor or to the contractor s employees after receiving a background investigation request. The COR shall submit Local Background Check Request Form to Contracting to initiate request in the Contractor Request Database (CRD). Upon receipt, the VA Office of Security and Law Enforcement will review the completed forms for accuracy and forward the forms to OPM to conduct the background investigation. The forms will be returned to the Contractor if incomplete or inaccurate. The VA Office of Security and Law Enforcement will notify the Contracting Office and contractor after adjudicating the results of the background investigations received from OPM. The Contracting Office will file and secure evidence that investigations have been completed or are in the process of being requested appropriately. The COR shall ensure that all personnel requiring computer access have completed the VA s Cyber Security Training and VA s General Privacy Training and signed Rules of Behavior, prior to obtaining computer access and annually thereafter; hard copies provided to contract officer by contract number STX671-02 Personal Security Verification (PIV) Card and/or Security Badge Requirements for Contractor Employees (FEB 2010) Definitions. As used in this clause Access means routine, unescorted physical entry into, and to the extent authorized, mobility within a Government facility. Also, it means the ability to obtain, view, read, modify, delete, and/or otherwise make use of information technology. Contractor employee means an employee of the prime contractor or of any subcontractor, affiliate, partner, joint venture, or team members with which the contractor is associated. It also includes consultants engaged by any of those entities. Facility and Government facility mean buildings, including areas within buildings, owned, leased, shared, occupied, or otherwise controlled by the federal government. Information technology means any equipment or interconnected system or subsystem of equipment, including telecommunications equipment that is used in the automatic acquisition, storage, manipulation, management, movement, control, display, switching, interchange, transmission, or reception of data or information. This includes both major systems/applications and general support systems as defined by OMB Circular A-130, owned by VA or owned and operated on VA s behalf by another party. Access to VA Facilities or Systems. General. The performance of this contract requires contractor employees to have routine, unescorted access to VA facilities. All such employees who do not already possess a current Security Badge or PIV Card acceptable to VA shall be required to provide personal information, undergo an FBI National Criminal History Fingerprint Check, and obtain a Security Badge or PIV Card prior to being permitted access to any such facility in performance of this contract. No contractor employee will be permitted routine, unescorted access to a VA facility without a proper Security Badge or PIV Card. Citizenship-related requirements. If required by the contract, each affected contractor employee as described in paragraph 14.1.2 shall be: A United States (U.S.) citizen; or A national of the United States (see 8 U.S.C. 1408); or An alien lawfully admitted into the United States for permanent residence as evidenced by an Alien Registration Receipt Card Form I 151. Background information. For each contractor employee that has access to VA facilities or systems, the contractor shall coordinate with assigned Contracting Officer s Representative (COR) to schedule electronic finger printing and initiate a Special Agreement Check (SAC). The COR will provide instructions to the contractor regarding the local procedures for fingerprinting and obtaining Security Badges or PIV Cards. After completion of the fingerprint check, the Contracting Officer will notify the contractor in writing if any contractor employee is determined to be unsuitable to be given access to a government facility or VA system. If so notified, the contractor shall not allow such employees to perform work on this contract. Security Badge or PIV Cards. VA will issue a Security Badge or PIV Card to each contractor employee who is to be given routine, unescorted access to VA facilities or access to VA systems and does not already possess a Security Badge or PIV Card. Contractor employees that require logical access and email address in VA systems, access to sensitive records, sensitive physical access or common physical access of greater than 6 months, or considered as a fulltime equivalent will require PIV Card, requiring background investigation (NACI) and SAC. VA will issue Non-PIV Security Badges to contractor employees that require logical access with no email address in VA systems, access to sensitive records, sensitive physical access or common physical access of less than 6 months, or not considered as a fulltime equivalent will require non-PIV Card, requiring SAC. This card is issued with expiration date of 6 months or less. Security Badge or PIV Cards shall identify individuals as contractor employees. Contractor employees shall display their Security Badge or PIV Cards on their persons at all times while working in a VA facility and shall present their cards for inspection upon request by VA officials or VA security personnel. The contractor shall be responsible for all Security Badge or PIV Cards issued to the contractor s employees and shall immediately notify the COR if any Security Badge or PIV Card(s) cannot be accounted for. The contractor shall notify the COR immediately whenever any contractor employee no longer has a need for his/her VA-issued Security Badge or PIV Card (e.g., employee terminates employment with the contractor, employee s duties no longer require access to VA facilities). In such cases, the COR will instruct the contractor on how to return the Security Badge or PIV Card. Upon expiration of this contract, the COR will instruct the contractor on how to return all VA-issued Security Badge or PIV Cards not previously returned. The contractor shall not return Security Badge or PIV Cards to any person other than the COR. Control of access. VA shall have and exercise full and complete control over granting, denying, withholding, and terminating access of contractor employees to VA facilities and systems. The Contracting Officer will notify the contractor immediately when VA has determined that an employee is unsuitable or unfit to be permitted access to a VA facility or system. The contractor shall immediately notify such an employee that he/she no longer has access to any VA facility or system, shall retrieve the employee s Security Badge or PIV Card from the employee, and shall provide a suitable replacement employee in accordance with the requirements of this clause. The VA will not give the contractor the reason for requiring the removal of the unsuitable contractor employee but can provide the applicant the phone number to call the FBI to receive a copy of the SAC report used for this determination. The Government shall not be responsible for any costs incurred by the contractor as a result of removing such employee from the subject contract. Termination. Failure on the part of the Contractor to comply with the terms of this clause may result in termination of this contract for default. STX-HRC671-02 Health Insurance Portability and Accountability Act (HIPAA) Compliance (Feb 2010) HIPAA COMPLIANCE: HIPAA compliance is required. Contractor must adhere to the provisions of Public Law 104-191, Health Insurance Portability and Accountability Act (HIPAA) of 1996 and the National Standards to Protect the Privacy and Security of Protected Health Information (PHI). As required by HIPAA, the Department of Health and Human Services (HHS) has promulgated rules governing the security and use and disclosure of protected health information by covered entities, including the Department of Veterans Affairs (VA). TUBERCULIN SKIN TEST: A tuberculin skin test shall be required for all employees before reporting to STVHCS and then annually. Annual tests shall be required for all negative results, completed during the anniversary month of initial test. Positive results should not be tested annually. All results forwarded to the Contracting Officer Technical Representative (COR). This test verifies the presence of tuberculosis (TB) (Mycobacterium tuberculosis). The Mantoux skin test uses TB antigens called purified protein derivative (PPD). The test cannot tell if the infection is active or inactive (latent). STX-HCR671-01 Annual Office of Inspector General (OIG) Statement (Feb 2010) Providers and contracting entities have an affirmative duty to check the program exclusion status of individuals and entities prior to entering into employment or contractual relationships, or run the risk of civil monetary penalties (CMP) liability if they fail to do so. The Contractor shall provide a signed annual report to the COR stating each individual or entity under this contract has been checked against the OIG List of Excluded Individuals/Entities http://www.oig.hhs.gov/fraud/exclusions.html and found no individual or entity had been excluded from participation in Medicare, Medicaid and other Federal healthcare programs. The report will be due each year on the renewal date of the contract. Office of Inspector General of the Department of Health and Human Services (IG/HHS) has made a determination that prior to obligating VA contracts, purchase orders, task and delivery orders, and purchase cards orders paid with VA healthcare funds may not be entered with any individual, or with any entity or organization that has been listed on the HHS/OIG Exclusionary List. VA does not have the burden of defending the merits of the HHS/OIG decision established under §42 U.S.C. 1320a-7. STX-HCR671-03 National Provider Identifier (NPI) Information Required (Feb 2010) All Contractors and healthcare practitioners who provide billable healthcare services to the Department of Veterans Affairs, VHA, shall obtain a National Provider Identifier (NPI) as required by the Health Insurance Portability and Accountability Act (HIPPA) National Provider Identifier Final Rule, administered by the Centers for Medicare and Medicaid Services (CMS). This rule establishes assignment of a 10-digit numeric identifier for healthcare practitioners, intended to replace the many identifiers currently assigned by various health plans. Each practitioner needs only one NPI, valid for all employers and health plans. The NPI may be obtained via a secure website at: https://nppes.cms.hhs.gov/NPPES Contractors must also designate their Specialties/Subspecialties by means of Taxonomy Codes on the NPI application. Required Registration with Contractor Performance Assessment Reporting System (CPARS) As prescribed in Federal Acquisition Regulation (FAR) Part 42.15, the Department of Veterans Affairs (VA) evaluates contractor past performance on all contracts that exceed $100,000, and shares those evaluations with other Federal Government contract specialists and procurement officials. The FAR requires that the contractor be provided an opportunity to comment on past performance evaluations prior to each report closing. To fulfill this requirement VA uses an online database, the Contractor Performance Assessment Reporting System (CPARS), which is maintained by the National Institutes of Health (NIH). The CPARS database information is shared with the Past Performance Information Retrieval System (PPIRS) database, which is available to all Federal agencies. Each contractor whose contract award is estimated to exceed $100,000 is required to register with the NIH CPARS database at the following web address: https://cpscontractor.nih.gov. Help in registering can be obtained by contacting CPARS Support E-mail (CPARS-support-l@list.nih.gov) or by calling (301) 451-2771. Registration should occur no later than thirty days after contract award, and must be kept current should there be any change to the contractor s registered representative. For contracts with a period of one year or less, the contracting officer will perform a single evaluation when the contract is complete. For contracts exceeding one year, the contracting officer will evaluate the contractor s performance annually. Interim reports will be filed each year until the last year of the contract, when the final report will be completed. The report shall be assigned in CPARS to the contractor s designated representative for comment. The contractor representative will have thirty days to submit any comments and re-assign the report to the VA contracting officer. Failure to have a current registration with the NIH CPARS database, or to re-assign the report to the VA contracting officer within those thirty days, will result in the Government s evaluation being placed on file in the database with a statement that the contractor failed to respond. VA Handbook 6500.6 Appendix C Paragraph 2 - ACCESS TO VA INFORMATION AND VA INFORMATION SYSTEMS A contractor/subcontractor shall request logical (technical) or physical access to VA information and VA information systems for their employees, subcontractors, and affiliates only to the extent necessary to perform the services specified in the contract, agreement, or task order. All contractors, subcontractors, and third-party servicers and associates working with VA information are subject to the same investigative requirements as those of VA appointees or employees who have access to the same types of information. The level and process of background security investigations for contractors must be in accordance with VA Directive and Handbook 0710, Personnel Suitability and Security Program. The Office for Operations, Security, and Preparedness is responsible for these policies and procedures. Contract personnel who require access to national security programs must have a valid security clearance. National Industrial Security Program (NISP) was established by Executive Order 12829 to ensure that cleared U.S. defense industry contract personnel safeguard the classified information in their possession while performing work on contracts, programs, bids, or research and development efforts. The Department of Veterans Affairs does not have a Memorandum of Agreement with Defense Security Service (DSS). Verification of a Security Clearance must be processed through the Special Security Officer located in the Planning and National Security Service within the Office of Operations, Security, and Preparedness. Custom software development and outsourced operations must be located in the U.S. to the maximum extent practical. If such services are proposed to be performed abroad and are not disallowed by other VA policy or mandates, the contractor/subcontractor must state where all non-U.S. services are provided and detail a security plan, deemed to be acceptable by VA, specifically to address mitigation of the resulting problems of communication, control, data protection, and so forth. Location within the U.S. may be an evaluation factor. The contractor or subcontractor must notify the Contracting Officer immediately when an employee working on a VA system or with access to VA information is reassigned or leaves the contractor or subcontractor s employ. The Contracting Officer must also be notified immediately by the contractor or subcontractor prior to an unfriendly termination. VA Handbook 6500.6 Appendix C Paragraph 6 - SECURITY INCIDENT INVESTIGATION The term security incident means an event that has, or could have, resulted in unauthorized access to, loss or damage to VA assets, or sensitive information, or an action that breaches VA security procedures. The contractor/subcontractor shall immediately notify the COR and simultaneously, the designated ISO and Privacy Officer for the contract of any known or suspected security/privacy incidents, or any unauthorized disclosure of sensitive information, including that contained in system(s) to which the contractor/subcontractor has access. To the extent known by the contractor/subcontractor, the contractor/subcontractor s notice to VA shall identify the information involved, the circumstances surrounding the incident (including to whom, how, when, and where the VA information or assets were placed at risk or compromised), and any other information that the contractor/subcontractor considers relevant. With respect to unsecured protected health information, the business associate is deemed to have discovered a data breach when the business associate knew or should have known of a breach of such information. Upon discovery, the business associate must notify the covered entity of the breach. Notifications need to be made in accordance with the executed business associate agreement. In instances of theft or break-in or other criminal activity, the contractor/subcontractor must concurrently report the incident to the appropriate law enforcement entity (or entities) of jurisdiction, including the VA OIG and Security and Law Enforcement. The contractor, its employees, and its subcontractors and their employees shall cooperate with VA and any law enforcement authority responsible for the investigation and prosecution of any possible criminal law violation(s) associated with any incident. The contractor/subcontractor shall cooperate with VA in any civil litigation to recover VA information, obtain monetary or other compensation from a third party for damages arising from any incident, or obtain injunctive relief against any third party arising from, or related to, the incident. VA Handbook 6500.6 Appendix C Paragraph 9 - TRAINING All contractor employees and subcontractor employees requiring access to VA information and VA information systems shall complete the following before being granted access to VA information and its systems: Sign and acknowledge (either manually or electronically) understanding of and responsibilities for compliance with the Contractor Rules of Behavior, Appendix E relating to access to VA information and information systems; Successfully complete the VA Cyber Security Awareness and Rules of Behavior training and annually complete required security training; Successfully complete the appropriate VA privacy training and annually complete required privacy training; and Successfully complete any additional cyber security or privacy training, as required for VA personnel with equivalent information system access [to be defined by the VA program official and provided to the contracting officer for inclusion in the solicitation document e.g., any role-based information security training required in accordance with NIST Special Publication 800-16, Information Technology Security Training Requirements.] The contractor shall provide to the contracting officer and/or the COR a copy of the training certificates and certification of signing the Contractor Rules of Behavior for each applicable employee within 1 week of the initiation of the contract and annually thereafter, as required. Failure to complete the mandatory annual training and sign the Rules of Behavior annually, within the timeframe required, is grounds for suspension or termination of all physical or electronic access privileges and removal from work on the contract until the training and documents are complete. NOTE: THIS NOTICE WAS NOT POSTED TO FEDBIZOPPS ON THE DATE INDICATED IN THE NOTICE ITSELF (20-FEB-2019); HOWEVER, IT DID APPEAR IN THE FEDBIZOPPS FTP FEED ON THIS DATE. PLEASE CONTACT 877-472-3779 or fbo.support@gsa.gov REGARDING THIS ISSUE.
 
Web Link
Link To Document
(https://www.fbo.gov/spg/VA/VAAHCS/VAAHCS/36C25719Q0391/listing.html)
 
Place of Performance
Address: SouthTexas Veterans Health system;Audie L. Murphy Division;7400 Merton Minter Blvd;San Antonio, Texas
Zip Code: 78229
Country: United States
 
Record
SN05226939-F 20190222/190220230016 (fbodaily.com)
 
Source
FedBizOpps Link to This Notice
(may not be valid after Archive Date)
FSG Index  |  This Issue's Index  |  Today's FBO Daily Index Page |
ECGrid: EDI VAN Interconnect ECGridOS: EDI Web Services Interconnect API Government Data Publications CBDDisk Subscribers
 Privacy Policy  Jenny in Wanderland!  © 1994-2024, Loren Data Corp.