Loren Data's SAM Daily™

SAMDAILY.US - ISSUE OF MAY 03, 2020 SAM #6730
SOURCES SOUGHT

U -- CriticalPoint Subscription or Equal Subscirption Service USP 797/800 Training Services Augusta VA Medical Center

Notice Date

5/1/2020 11:35:15 AM
 

Notice Type

Sources Sought
 

NAICS

611430 — Professional and Management Development Training
 

Contracting Office

247-NETWORK CONTRACT OFFICE 7 (36C247) AUGUSTA GA 30904 USA
 

ZIP Code

30904
 

Solicitation Number

36C24720Q0553
 

Response Due

5/6/2020 12:00:00 AM
 

Archive Date

06/05/2020
 

Point of Contact

POD: Chaz Bowling, Contract Specialist Office: (706) 733-0188 Ext. 1125 Cell: (615) 440-3018 Email: Chaz.bowling@va.gov
 

E-Mail Address

chaz.bowling@va.gov
(chaz.bowling@va.gov)
 

Awardee

null
 

Description

This is a Sources Sought to conduct market research to determine the availability of small business vendors capable of providing the requirement for USP 797/800 web-based training and subscription service. Please see Statement of work for details. This requirement is for the Augusta VA Medical Center. The sources sought does not guarantee the issuance of an RFQ. If you have the availability to provide the requirement, please respond to the sources sought with a capabilities statement. The sources sought is issued solely for information and planning purposes. It does not commit the Government to contract for any supply or service whatsoever. The VA is not, at this time, seeking proposals and will not accept unsolicited proposals. Responders are advised that the U.S. Government will not pay for any information or administrative costs incurred in response to the sources sought; all costs associated with responding to the sources sought will be solely at the interested vendor s expense. Not responding to the sources sought does not preclude participation in any future RFQ, if any is issued. Any information submitted by respondents to this RFI is strictly voluntary. All submissions become Government property and will not be returned. Please note that requirements defined to date may change before a final solicitation is released. Sources Sought requirements are as follows: Please acknowledge if your company is an authorized provider of the of these services. Submit responses and related information via email to chaz.bowling@va.gov by 9:30 AM EST, May 05, 2020. Proprietary/Confidential material shall be clearly marked on every page that contains such. Include the name, phone number, and email address of the lead from your organization. VA reserves the right not to respond to any or all emails or materials submitted. Provide Past Performance (if applicable) STATEMENT OF WORK Web-Based Sterile Compounding Training and Evaluation Course GENERAL INFORMATION Purpose: Provide a web-based subscription service for all employees to ensure compliance with the United Stated Pharmacopeia (USP) 797/800 requirements. Background: Charlie Norwood VA Medical Center (CNVAMC) is seeking education to be compliant with USP 797/800. A web-based subscription service will assist CNVAMC in remaining compliant and current with changes to USP 797/800. Course will provide documented training for the Joint commission, CMS, FDA and State Boards of Pharmacy that inspect compounding pharmacies. Scope of Work: Contractor shall provide access to subscription software that provides training modules and documents the completed training as specified in section B, General Requirements. Performance Period: The performance period will be one base year with four 1-year options to renew exercisable at the government s discretion. Base Year 1 August 2020 - 31 July 2021 1st Option Period 1 August 2021 - 31 July 2022 2nd Option Period 1 August 2022 - 31 July 2023 3rd Option Period 1 August 2023 - 31 July 2024 4th Option Period 1 August 2024 - 31 July 2025 Hours of Service: Work is to be done between the hours of 8:00a.m. and 4:00p.m., Monday through Friday, excluding holidays. Federal Holidays New Year s Day January 1st Martin Luther King s Birthday 3rd Monday in January President s Day 3rd Monday in February Memorial Day Last Monday in May Independence Day July 4th Labor Day 1st Monday in September Columbus Day 2nd Monday in October Veteran s Day November 11th Thanksgiving Day Last Thursday in November Christmas Day December 25th Type of Contract: The contract will be a Firm-Fixed-Price contract. GENERAL REQUIREMENTS 1. Training must be web-based through vendors online web portal using standard web browsers (ex: Google Chrome, Internet Explorer). 2. Training must be American College of Pharmacy Education (ACPE) accredited. 3. Training must be trackable for compliance and audit purposes, be readily retrievable and provide detailed analytical trending. 4. Training product must include electronic testing for all topics. 5. Training must be for an unlimited number of Pharmacy employees. 6. Training lessons must meet current standards and be able to be updated as industry standards change. 7. Training must be customizable to meet CNVAMC specifications and recommendations. 8. Training must cover at a minimum the following topics: a. Determining beyond use dates b. Personnel competencies c. Personnel hand hygiene and garbing d. Cleaning and disinfection e. Quality control f. Aseptic technique g. Handling hazardous drugs h. Documentation of compounding process 9. Training reports must be able to be generated to facilitate inspections by internal and external review agencies. 10. Training course must be broken down into steps that require user intervention 11. Training courses must use high definition videos to demonstrate procedures in real work environments. 12. Training courses must check user s attentiveness and comprehension during the lessons. 13. Vendor must always maintain the course content to comply with American College of Pharmacy Education (ACPE). 14. Vendor must provide telephone and email support for users during the hours of performance identified in paragraph 5. VA INFORMATION SYSTEM SECURITY/PRIVACY CLAUSE PER REVIEW OF VA HANDBOOK 6500.6, CONTRACT SECURITY, APPENDIX A- INFORMATION SECURITY AND PRIVACY CHECKLIST: The C&A requirements do not apply and a Security Accreditation Package is not required. Acquisition of this service does not involve the storage, generating, transmitting, or exchanging of VA sensitive information to the vendor There may exist exposure to VA sensitive information, in particular to sensitive personal information (SPI) while implementing contractual services Minimum Statutory Requirements Prohibition on unauthorized disclosure: Information made available to the contractor or subcontractor by VA for the performance or administration of this contract or information developed by the contractor/subcontractor in performance or administration of the contract shall be used only for those purposes and shall not be used in any other way without the prior written agreement of the VA. This clause expressly limits the contractor/subcontractor's rights to use data as described in Rights in Data - General, FAR 52.227-14(d) (1). See VA Handbook 6500.6, Appendix C, paragraph 3.a. Requirement for data breach notification: Upon discovery of any known or suspected security/privacy incidents, or any unauthorized disclosure of sensitive information, including that contained in system(s) to which the contractor/subcontractor has access, the contractor/subcontractor shall immediately and simultaneously notify the COR, the designated ISO, and Privacy Officer for the contract. The term security incident means an event that has, or could have, resulted in unauthorized access to, loss or damage to VA assets, or sensitive information, or an action that breaches VA security procedures. See VA Handbook 6500.6, Appendix C, paragraph 6.a Requirement to pay liquidated damages in the event of a data breach: Consistent with the requirements of 38 U.S.C. �5725, a contract may require access to sensitive personal information. If so, the contractor is liable to VA for liquidated damages in the event of a data breach or privacy incident involving any SPI the contractor/subcontractor processes or maintains under this contract. The contractor/subcontractor shall provide notice to VA of a security incident as set forth in the Security Incident Investigation section above. Upon such notification, VA must secure from a non-Department entity or the VA Office of Inspector General an independent risk analysis of the data breach to determine the level of risk associated with the data breach for the potential misuse of any sensitive personal information involved in the data breach. The term 'data breach' means the loss, theft, or other unauthorized access, or any access other than that incidental to the scope of employment, to data containing sensitive personal information, in electronic or printed form, that results in the potential compromise of the confidentiality or integrity of the data. Contractor shall fully cooperate with the entity performing the risk analysis. Failure to cooperate may be deemed a material breach and grounds for contract termination. Each risk analysis shall address all relevant information concerning the data breach, including the following: (1) Nature of the event (loss, theft, unauthorized access); (2) Description of the event, including: (a) date of occurrence; (b) data elements involved, including any PII, such as full name, social security number, date of birth, home address, account number, disability code; (3) Number of individuals affected or potentially affected; (4) Names of individuals or groups affected or potentially affected; (5) Ease of logical data access to the lost, stolen or improperly accessed data in light of the degree of protection for the data, e.g., unencrypted, plain text; (6) Amount of time the data has been out of VA control; (7) The likelihood that the sensitive personal information will or has been compromised (made accessible to and usable by unauthorized persons); (8) Known misuses of data containing sensitive personal information, if any; (9) Assessment of the potential harm to the affected individuals; (10) Data breach analysis as outlined in 6500.2 Handbook, Management of Security and Privacy Incidents, as appropriate; and (11) Whether credit protection services may assist record subjects in avoiding or mitigating the results of identity theft based on the sensitive personal information that may have been compromised. Based on the determinations of the independent risk analysis, the contractor shall be responsible for paying to the VA liquidated damages in the amount of $37.50 per affected individual to cover the cost of providing credit protection services to affected individuals consisting of the following: (1) Notification; (2) One year of credit monitoring services consisting of automatic daily monitoring of at least 3 relevant credit bureau reports; (3) Data breach analysis; (4) Fraud resolution services, including writing dispute letters, initiating fraud alerts and credit freezes, to assist affected individuals to bring matters to resolution; (5) One year of identity theft insurance with $20,000.00 coverage at $0 deductible; and (6) Necessary legal expenses the subjects may incur to repair falsified or damaged credit records, histories, or financial affairs (see VA handbook 6500.6, appendix c, paragraph 7.a, 7.d) D. INVOICES: 1. Payment will be made upon receipt of a properly prepared detailed invoice, prepared by the Contractor, validated by the Contracting Officer s Representative (COR), and submitted electronically through OB-10. 2. A properly prepared invoice will contain: a. Invoice Number and Date b. Contractor s Name and Address c. Accurate Purchase Order Number d. Supply or Service provided e. Total amount due
 

Web Link

SAM.gov Permalink
(https://beta.sam.gov/opp/85f6901cb8784337a70bddf43e6e6b25/view)
 

Place of Performance

Address: Department of Veterans Affairs;Charlie Norwood VA Medical Center;1 Freedom Way;Augusta, GA 30904, USA

Zip Code: 30904

Country: USA
 

Record

SN05643371-F 20200503/200501230145 (samdaily.us)
 

Source

SAM.gov Link to This Notice
(may not be valid after Archive Date)

---

| FSG Index  |  This Issue's Index  |  Today's SAM Daily Index Page |