CYBER SECURIT AND PRIVACYQUESTIONNAIRE€¦ · Web viewAbility to generate and export personalized...

H. LEE MOFFITT CANCER CENTER AND RESEARCH INSTITUTE, INC.

Request for Proposal

PROPOSAL NUMBER: RFP 20-10-SSPPROJECT NAME: CLINICAL TRIAL MATCHING AND PERSONALIZED MEDICINE SOLUTION

TABLE OF CONTENTS

1. EXECUTIVE SUMMARY.................................................................................................................4

1.1 Moffitt Cancer Center Overview..............................................................................................4

1.2 Request for Proposal (“RFP”) Overview................................................................................4

2. RFP PURPOSE AND OBJECTIVE(S)...........................................................................................4

2.1 RFP Contents............................................................................................................................4

2.2 RFP Timeline.............................................................................................................................4

2.2.1 Respondent Pre-Submission Conference.....................................................................5

2.3 Response Requirements.........................................................................................................5

2.4 Award Criteria............................................................................................................................5

3. RFP QUESTIONS AND REQUIRED PRODUCT(S), SOLUTION(S), AND/OR SERVICE(S) REQUIREMENTS.....................................................................................................................................5

3.1 Respondent Information...........................................................................................................5

3.2 Respondent’s Product/Solution/Services Overview.............................................................6

4. BUSINESS AND FUNCTIONAL REQUIREMENTS....................................................................7

5. REPORTING AND OTHER REQUIREMENTS............................................................................7

5.1 Reporting Requirements..........................................................................................................8

5.2 Technical and Architectural Requirements............................................................................8

5.2.1 General...............................................................................................................................8

5.2.2 Application Servers...........................................................................................................8

5.2.3 Database Servers.............................................................................................................9

5.2.4 Databases..........................................................................................................................9

5.2.5 Network..............................................................................................................................9

5.2.6 Workstations....................................................................................................................10

5.2.7 Integration........................................................................................................................10

5.3 Security....................................................................................................................................10

5.3.1 Rating Information...........................................................................................................10

5.3.2 Risk Management Policies and Procedures................................................................11

5.3.3 Network Security and Data Management....................................................................11

5.3.4 Regulatory and Compliance Management..................................................................11

5.3.5 Past Circumstances/Claims/Breaches.........................................................................11

5.4 Maintenance and Support......................................................................................................12

5.5 Implementation and Training.................................................................................................12

5.6 Pricing.......................................................................................................................................13

____________________________________________________________________________________H. LEE MOFFITT CANCER CENTER AND RESEARCH INSTITUTE, INC.

IT-RFP Template: Revised 3/2020

RFP Project Name: Clinical Trial Matching and Personalized Medicine Solution

Date: 04/08/2020

of 23

5.7 Respondent’s Itemized Pricing..............................................................................................13

6. MOFFITT’S VENDOR CONTRACTING REQUIREMENTS......................................................14

6.1 Access to Moffitt’s Facilities/Systems........................................................................................14

6.2 Vendor Screening...................................................................................................................14

6.3 Assignment..............................................................................................................................15

6.4 Diversity....................................................................................................................................15

6.5 Governing Law........................................................................................................................16

6.6 Indemnification........................................................................................................................16

6.7 Insurance.................................................................................................................................16

6.8 Invoicing and Payment...........................................................................................................17

6.9 Protected Health Information.................................................................................................17

6.10 Quality Metrics.........................................................................................................................18

6.11 Term and Termination............................................................................................................18

6.12 Exceptions to Limitation of Liability.......................................................................................19

6.13 Storage of Moffitt Data...........................................................................................................19

6.14 Confidentiality..........................................................................................................................20

6.15 Counterparts............................................................................................................................20

6.16 Debarment Warranty..............................................................................................................20

Appendix 1– RESPONDENT ACKNOWLEDGEMENT FORM INTENT TO RESPOND..............21

Appendix 2 – SUPPLIER DIVERSITY UTILIZATION AND SUBCONTRACTING PLAN.............22




Date: 04/08/2020

of 23

1. EXECUTIVE SUMMARY1.1 Moffitt Cancer Center Overview.

The H. Lee Moffitt Cancer Center and Research Institute, Inc. (“Moffitt”), located in Tampa, Florida, began operations in 1986. As an academic and research medical center, Moffitt is the only National Cancer Institute-designated oncology research institute in Florida and one of the Southeast's leading cancer centers.

Comprised of an inpatient facility, ambulatory outpatient surgery center, ambulatory clinics, a cancer screening facility and research laboratories, Moffitt offers a sophisticated network of services and technologies that assure the citizens of its region convenient, cost-effective, high quality health care. Moffitt’s workforce is currently comprised of a diverse and robust group of individuals ranging from full-time and part-time employees, medical residents, volunteers, students and interns, all engaging in varying scopes and projects across the institution.

1.2 Request for Proposal (“RFP”) Overview.

Moffitt Cancer Center is seeking a solution that allows clinicians and staff to match patients to potential clinical trials and enables Moffitt’s Personalized Medicine Clinical Service workflows.

2. RFP PURPOSE AND OBJECTIVE(S)

2.1 RFP Contents.

This RFP package includes the following documents and contents, which require responses as part of the Respondent’s proposal as indicated:

1. RFP Document – requires response2. Submit copy of W-9 Form - requires response3. Vendor Acknowledgement Form (Appendix 1) - requires response4. Supplier Diversity Utilization and Subcontracting Plan (Appendix 2) – requires response

2.2 RFP Timeline.

This RFP shall be conducted under the following timeline, which is subject to change only upon prior approval by the Moffitt Purchasing Department and granted to all responsive parties (hereinafter “Respondent(s)” or “Vendor(s)”).

Event Date

Issuance of Bid 04/08/2020

Return of Intent to Bid 04/17/2020

Respondent Pre-Submission Conference Call 04/21/2020

Bid Packages Due from Respondents 05/05/2020

Award of Bid TBD




Date: 04/08/2020

of 23

On the date indicated above for ‘Bid Packages Due from Respondents” in the timeline section of this RFP, Respondent’s bid must be received, via e-mail, in accordance with the requirements below, by no later than 2:00 p.m. Eastern Daylight Time (“EDT”).

2.2.1 Respondent Pre-Submission Conference.

Moffitt will conduct a Respondent Pre-Submission conference call to further clarify and discuss the requirements of this RFP on the following date and time, utilizing conference number: 800-206-6032, Conference ID: 7457113. Date: Tuesday, April 21st, 2020 Time [EDT]:10:30 AM

2.3 Response Requirements.

All bid responses, proposals, and communications, required during the RFP process must be directed to:

Lori Perks Contract Sourcing [email protected]

All responses received are deemed confidential in nature and should be submitted in electronic format.

Failure to adhere to these requirements may result in Respondent not being considered.

2.4 Award Criteria.

The award of this RFP is subject to the terms and conditions contained herein, in addition to any supplemental terms and conditions developed by Moffitt during the course of this RFP process to augment purchase order conditions of the purchase.

Quality of service, pricing, products, acceptance of Moffitt’s Vendor Contracting Requirements, Supplier Diversity and other terms of purchase will be an integral part of the decision selection process.

If Respondent is awarded this RFP bid, a guideline will be developed that will quantify, monitor, and provide a plan for Respondent to cure any deficiencies which shall include, but not be limited to, reimbursement of personnel and administrative costs, monetary assessment for continual deficiencies, and possible cancellation of agreement.

Moffitt reserves the right to award this RFP bid, in whole or in part, to the Respondent that can best meet Moffitt’s business and regulatory needs, in Moffitt’s sole and absolute discretion.

Moffitt assumes no responsibility and bears no liability for costs incurred by a Respondent in the preparation and submittal of a bid in response to this RFP.

3. RFP QUESTIONS AND REQUIRED PRODUCT(S), SOLUTION(S), AND/OR SERVICE(S) REQUIREMENTS

3.1 Respondent Information.

Please provide Respondent’s full company name, address, city, state, zip code, telephone, and fax numbers.




Date: 04/08/2020

of 23

mailto:[email protected]

Please identify the name, title, address, phone and fax numbers, and e-mail address of the primary contact person for this RFP response/project.

Please provide details on the financial stability of your organization.

Please provide a brief overview of Respondent’s company including the number of years in business, number of employees, product and services offering, clientele market description, and any parent corporations if applicable.

Please describe the implementation and account management support offered by Respondent’s company.

Has Respondent conducted business with Moffitt in the past? If so, in what capacity? Please provide a brief description of the relationship between Moffitt and Respondent.

Please describe the attributes that make Respondent’s company an ideal partner for Moffitt?

Please provide confirmation that Respondent’s company, and any affiliates: (i) are not “sanctioned persons” under any federal or state program or law; (ii) have not been listed in the current Cumulative Sanction List of the Office of Inspector General for the United States Department of Health and Human Services for currently sanctioned or excluded individuals or entities; (iii) have not been listed on the General Services Administration’s list of Parties Excluded from Federal Programs; or (iv) have not been convicted of a criminal offense related to healthcare.

In the past five (5) years has Respondent been a defendant in any litigation? If yes, please provide the docket number, a brief description of the nature of the litigation, and its current status.

3.2 Respondent’s Product/Solution/Services Overview.

Please provide an overview of the product(s), solution(s), and/or service(s) offered by Respondent under this proposal.

Please provide a brief overview of the product(s), solution(s), and/or service(s) including the date of first launch or production, major developments, and any previous ownership if applicable.

What level of additional production or development will be offered to meet Moffitt’s needs?

What is Respondent’s release schedule for major and minor product, service, or solution updates?

What is the current version of the proposed product(s), solution(s), and/or service(s)? When is the next significant version expected to be released? Can different versions of the product(s), solution(s), and/or service(s) co-exist?Please list any industry awards that Respondent’s product(s), solution(s), and/or service(s) has received, the awarding party, and the date received.

Please indicate the total number of healthcare center/system implementations and/or partnerships of the product(s), solution(s), and/or service(s) in the last three years, the sizes of the clients and the number of end users utilizing the product(s), solution(s), and/or service(s).

What are the key attributes that make Respondent’s product(s), solution(s), and/or service(s) stand out in the market place as an ideal fit for this RFP and the goals Moffitt is trying to achieve?




Date: 04/08/2020

of 23

4. BUSINESS AND FUNCTIONAL REQUIREMENTS

Please provide a response to each of the following functional requirement(s) detailed below and advise as to whether or not Respondent’s product(s), solution(s), and/or service(s) meet(s) can fulfill each of the identified functional capabilities/needs, and provide an explanation advising as to why or why not, (including context to the functionality) Respondent’s product(s), solution(s), and/or service(s) provide(s) meets this requirement.

Req# DescriptionR.1 Ability to derive discrete values from internal and external structured and unstructured

documents.

R.2 Ability to interface with and incorporate reference datasets, standardized ontologies, and curated databases.

R.3 Ability to create, store, and use a curated knowledge base.

R.4 Ability to interface with Moffitt’s clinical and research systems and enterprise data warehouse.

R.5 Ability to be installed in a local virtual machine environment.

R.6 Ability to be installed in a public cloud.

R.7 Ability for user to interact with solution via a graphical user interface (GUI).

R.8 Ability to curate patient-level data pertaining to commonly used eligibility criteria for clinical trials.

R.9 Ability to derive discrete variables from Moffitt’s Clinical Trials Management System (CTMS) pertaining to eligibility criteria for particular trials.

R.10 Ability to develop algorithms for matching patients to clinical trials with associated probabilities.

R.11 Ability to identify all patients eligible for a selected clinical trial based on inclusion and exclusion criteria.

R.12 Ability to identify all trials with selected clinical and/or molecular characteristics in the eligibility criteria.

R.13 Ability to identify historical occurrence of a particular biomarker to support opening a clinical trial and estimate enrollment.

R.14 Ability to extract and store discrete molecular results data (somatic and germline) from reference laboratory reports.

R.15 Ability to interface with reference laboratories via Application Programming Interface (API).




Date: 04/08/2020

of 23

5. REPORTING AND OTHER REQUIREMENTS

Please provide a response to each reporting requirement detailed below and advise as to whether or not Respondent’s product(s), solution(s), and/or service(s) meets this requirement and provide an explanation advising as to why or why not, (including context to the functionality) Respondent’s product(s), solution(s), and/or service(s) provide(s) meets this requirement.

5.1 Reporting Requirements.

Req# DescriptionRR.1 Ability to provide tracking tools and decision support for Clinical Trials Office staff and

clinicians.

RR.2 Ability to review historical clinical trial matches and accruals.

RR.3 Ability to project future clinical trial matches and accruals.

RR.4 Ability to manage institutional clinical trial portfolio.

RR.5 Ability to generate and export personalized medicine consults in text file and document formats (.doc/.docx, .odt, .pdf, .rtf, .txt).

RR.6 Ability to review key performance indicators including total actionable genetic results generated, clinical recommendations made, results of clinical recommendations, outcomes, drug prescribing, toxicity, and more.

RR.7 Ability to view patient-level clinical and treatment timelines.

5.2 Technical and Architectural Requirements.

5.2.1 General.1. Please describe the solution architecture:

2. Does Respondent have architectural diagrams and technical specifications that Moffitt can review? If so, please provide along with RFP response and include all system components (e.g., application/database servers, authentication, network, database, interfaces, browsers, desktop, reporting, etc.)

3. If solution is cloud or remote hosted, what is the length of data retention?3.1 Is the application and/or database environment single or multi-tenant?3.2 If multitenant, what security controls are in place to protect against information breaches?3.3 If agreement is discontinued, do we have the ability to download all of our data?3.4 Is all data transmitted, processed and stored within the United States?

5.2.2 Application Servers.1. What application server platforms does Respondent support?

Windows Server 2012 (VM) ____ (Physical) _____ Windows Server 2012 R2 (64-bit) (VM) ____ (Physical) _____ Windows Server 2016 (64-bit) (VM) ____ (Physical) _____ Other _______________________

Note: If other please explain why.

Moffitt prefers to maintain a virtual machine (“VM”) environment. If Respondent’s application does not ____________________________________________________________________________________

H. LEE MOFFITT CANCER CENTER AND RESEARCH INSTITUTE, INC.IT-RFP Template: Revised 3/2020


Date: 04/08/2020

of 23

support VM, please explain why.

2. What anti-virus does Respondent support? Sophos ____ Other __________________

Note: If Sophos is not supported, please provide documentation for exceptions.

5.2.3 Database Servers.1. What application server platforms does Respondent support?

Linux 5.x ____ Linux 6.x ____ AIX 6 ____ AIX 7 ____ Windows 2012R2 ____ Windows 2016 ____ Other: ________________________


2. What anti-virus does Respondent support? Sophos

Other __________________Note: If Sophos is not supported, please provide documentation for exceptions.

5.2.4 Databases.1. What database platforms does Respondent support?

Oracle 12.x ____ Oracle 11.2.x – Standard, Enterprise Editions ____ Oracle 11.1.x – Standard and Enterprise Editions ____ SQL Server 2012 ____ SQL Server 2014 Standard & Business Intelligence and Enterprise Editions ____ SQL Server 2016 ____ Other:_________________________


5.2.5 Network.1. Server network connection:

How many Network Interfaces are available? ____ How many Network Interfaces are required? ____ Network Interfaces:

o 10 Mbpso 100 Mbpso 1 Gbpso 10 Gbps

Copper Fiber

2. What wireless standards does Respondent support? 5GHz 802.11a/n/ac ____ 2.4GHz 802.11b/g/n ____ Other _______________________


3. What authentication methods does Respondent support?




Date: 04/08/2020

of 23

802.11i (RSN) ____o WPA2-EAP(TTLS,TLS,PEAP) ____

WPA2-PSK ____ WPA-PSK ____ WEP ____ Other _______________________


5.2.6 Workstations.1. What internet browsers does Respondent support?

IE11 ____ Chrome ____ Other__________________


2. What Operating Systems does Respondent support? Windows 7 Other: ____________________


3. What anti-virus does Respondent support? Sophos Other __________________

Note: If Sophos is not supported, please provide documentation for exceptions.

4. How much memory is needed to support the application?

5.2.7 Integration.1. What methods does Respondent provide for interfacing to other systems?

API ____ ETL ____ FTP ____ HL7____ Other:_________________________


2. Has Respondent done any inbound, outbound, or bi-directional interfaces to the following systems:(Please provide detail below).

5.3 Security.

5.3.1 Rating Information.1. Will the application collect, receive process, transmit, store or maintain any of the following confidential

information:1.1 Protected Health Information (PHI)? (Y/N)1.2 Credit/Debit Card Data/Bank Account Number? (Y/N)1.3 Intellectual Property/Moffitt Business Information? (Y/N)1.4 Personally Identifiable Information (PII)? (Y/N)

5.3.2 Risk Management Policies and Procedures.1. Does Respondent employ a Chief Security Officers and/or a Privacy Officer ?

1.1 Name of Chief Security Officer?____________________________________________________________________________________

H. LEE MOFFITT CANCER CENTER AND RESEARCH INSTITUTE, INC.IT-RFP Template: Revised 3/2020


Date: 04/08/2020

of 23

1.2 Name of Privacy Officer?

2. Does Respondent have any of the following written Policies and/ or Procedures? Include the date of last revision.

2.1 Privacy Policy?2.2 Network Security Policy?2.3 Acceptable Use Policy?2.4 Business Continuity Policy?2.5 Data Security Policy?

5.3.3 Network Security and Data Management.1. Does Respondent employ encryption for the following:

1.1 Data in transit? (Y/N)If yes, type used?

1.2 Data at rest? (Y/N)If yes, type used?

1.3 Date of the last Third-Party Penetration Test?1.4 Date of the last Third-Party Privacy Compliance Audits?1.5 Would Moffitt data be stored by Respondent’s sub-contractor?

If yes, name of sub-contractor?1.6 Will Respondent be responsible for system maintenance? (Y/N)

If yes, is there a system patch policy? (Y/N)If yes, frequency of vulnerability scan and patch cycle?

1.7 Will Respondent allow Moffitt to audit Respondent’s security controls?

5.3.4 Regulatory and Compliance Management.1. Does Respondent have an incident response plan and procedures? (Y/N)?

2. Is Respondent required to obtain Sarbanes-Oxley (SOX) Type I or Type II Audits? If yes, date of last audit?

5.3.5 Past Circumstances/Claims/Breaches.1. Is Respondent involved in an active data security breach, products liability, or similar investigation

related? (Y/N)

2. Has Respondent ever had a regulatory proceeding or investigation initiated against it? (Y/N)If yes, give details.

3. During the past five (5) years has Respondent had any privacy breach incident or complaint initiated against it? (Y/N)

If yes, give details.

4. During the past five (5) years has Respondent had any complaints or litigation pertaining a Network Security or Privacy Breach initiated against it? (Y/N) If yes, give details.

5.4 Maintenance and Support.

1. Describe the organization and structure of Respondent’s technical support services.




Date: 04/08/2020

of 23

2. Describe the support levels/tiers of service provided by Respondent.

3. What are the methods for contacting technical support?

4. What are Respondent’s standard support hours and Service Level Agreements (SLAs)? Does Respondent provide SLA credits for failure to meet SLA commitments? Does Respondent provide clients with a termination for chronic failure right related to Respondent’s continued failure to meet SLA commitments? Please provide details.

5. Please estimate the number of Full Time Employees that Moffitt will need to assign to the solution for product support? Please provide detail, roles recommendations, and number of resources per role.

6. What is the upgrade process and approach for major release upgrades? What is the typical upgrade implementation duration for a client of comparable size and complexity to Moffitt?

7. What is Respondent’s change control process? What communications are provided in advance of changes?

8. What is Respondent’s ability to retain historical data and perform data archival? Please provide details.

9. How are customer requests for enhancements and customizations handled by Respondent?

10. Does Respondent track or survey its clients on the services Respondent provides? If yes, please provide the overall average client satisfaction scores or other examples of how Respondent measures client satisfaction.

11. Describe the ongoing system support provided by Respondent.

5.5 Implementation and Training.

1. Please provide Respondent’s general implementation strategy for a health system installation of comparable size and complexity.

2. What is Respondent’s recommended implementation model/approach and methodology for Moffitt? Please include details on the following:

2.1 Expected implementation length;2.2 End User resource requirements and count for the implementation;2.3 IT and functional analyst resource requirements and count for the implementation;2.4 Project Management resource requirements for the implementation;2.5 A list of the Respondent’s personnel roles and count required to implement this project;2.6 Approach to Analysis;2.7 Approach to Design;2.8 Approach to Build;2.9 Approach to Testing;2.10 Approach to Go-Live and Go-Live Support and resource requirements; and2.11 An overview of the installation schedule. Include major tasks and their duration/staffing/major deliverables.

3. Please describe the documentation and training that will be available to Moffitt users and a training outline. What is the standard model for training the implementation team? What is the standard training model for the end users at time of go-live? What is the standard training duration for each?




Date: 04/08/2020

of 23

4. Does Respondent provide staff for the implementation directly or subcontract to partner firms? Please describe and list any proposed subcontractors, if any, and the scope of work they would perform.

5. Describe the proposed training for the following end-users for the goods/services provided under the RFP:

5.6 Pricing.

1. What is Respondent’s cost/fee structure for the proposed product(s), solution(s), and/or service(s), if applicable?

2. What are the types of licenses offered, including the length of the associated license term(s), and the license fee structure?

3. How are changes (additions, reductions) to the numbers of licenses handled? Example: Are True-ups performed? (i.e., yearly evaluation of end users/licenses to payment tiers)?

5.7 Respondent’s Itemized Pricing.

Respondent must provide a proposal with maximum cost for the proposed product(s), solution(s), and/or service(s) identified within this response to the RFP for the totality of the project as described herein. To the extent desired, additional recommendations and services or options may be included as additions to the project on an optional basis. These optional items shall be priced separate and apart from this RFP.

Note: In order to assist Moffitt in cross evaluating the various bid proposals, Respondent are required to propose a complete hardware/system software configuration and should not assume the use of existing computer hardware infrastructure. Consideration of utilizing the existing hardware/system software will occur during contract negotiations with the successful Respondent.

This section must include all costs associated with the receipt, acquisition, implementation, and/or integration and ongoing operation or utilization of the proposed product(s), solution(s), and/or service(s), as well as any necessary conversions, interfaces and customizations, as applicable. Respondent must provide complete information, regardless of whether it is specifically requested.

Moffitt will most likely request more details regarding Respondent’s cost proposal during its bid proposal evaluation process. Moffitt understands that the actual costs will be detailed in the final purchase agreement between it and the successful Respondent. However, Respondent Is required to provide a breakdown of all applicable rates, fees, and/or charges for the proposed product(s), solution(s), and/or service(s); detailed by each phase individually, and for the totality of the project, and a proposed payment schedule. Respondent must also include an estimate for any travel expenses that they expect to be charged as part of the project and typical return on investment information, if available, as well as any payment/purchase alternatives (e.g., purchase versus licensing options).

6. MOFFITT’S VENDOR CONTRACTING REQUIREMENTS

Moffitt hereby advises Respondent of the contractual provisions to which Moffitt adheres, and which Moffitt requires within its purchase agreements, pursuant to its contractual policies and regulatory requirements.




Date: 04/08/2020

of 23

By submitting a bid response to this RFP, Respondent agrees and commits to include the contractual provisions (“Contractual Provisions”) as detailed below within the purchase agreement(s) between Moffitt and Respondent upon successful award of the RFP bid.

PLEASE BE ADVISED: Should Respondent be awarded the RFP bid, and Respondent subsequently fails to include the below Contractual Provisions (as applicable) within its purchase agreement or the Contractual Provisions are materially changed by Respondent following their insertion into the purchase agreement by Moffitt’s Office of General Counsel, Moffitt reserves the right in its sole discretion, to unilaterally rescind the Respondent’s RFP bid award and to immediately terminate all negotiations with respect to the purchase agreement.

6.6.1 Access to Moffitt’s Facilities/Systems.

In accordance with applicable state, federal, and regulatory requirements, and in conjunction with guidance from the Office of Inspector General, Moffitt strives to ensure a healthy, safe, and secure environment for all of its patients, team members, Vendor personnel and guests. In order to achieve this endeavored level of safety, Moffitt maintains and enforces a detailed policy and procedure for all applicable employees, representatives, Vendors, agents and/or subcontractors (“Non-Employed Moffitt Personnel” or “NEMP”). The NEMP policy applies to all Vendor’s (as well as their personnel and representatives) and subsequently requires that every NEMP, whether coming onsite to one of Moffitt’s facilities and/or accessing any of Moffitt’s systems remotely, has undergone the proper credentialing and/or background check(s) and immunization verification(s) in accordance with Moffitt’s policies. The implementation of the NEMP ensures that: (i) Moffitt conforms with the guidance set forth by the Office of Inspector General; (ii) that all NEMP are competent to perform specified functions and/or are compliant to the needs of Moffitt; and (iii) that Moffitt provides a cohesive process for managing NEMP credentialing both onsite and remotely.

“If it is necessary for Vendor to have access to Moffitt’s facilities/systems, Vendor agrees it and any applicable staff, as determined by Moffitt, will abide by Moffitt’s Oversight of Non-Employed Moffitt Personnel Policy for screening and certification prior to being granted access to Moffitt’s facilities and/or systems, or Moffitt data, on a hosted site, or beginning any work hereunder, whether such activities will be conducted on site or remotely.”

6.2 Vendor Screening.

In conjunction with the foregoing NEMP requirements, Moffitt will screen all Vendors with which it conducts business, including screening for Vendor (and Vendor personnel) debarment. All Vendors are required to complete the Vendor Registration and Screening Process1 prior to conducting business with Moffitt. Any Vendors or Vendor personnel identified as being debarred will be prohibited from conducting business with or performing services for Moffitt.

“Vendor represents and warrants that it and its affiliates: (i) are not “sanctioned persons” under any federal or state program or law; (ii) have not been listed in the current Cumulative Sanction List of the Office of Inspector General for the United States Department of Health and Human Services for currently sanctioned or excluded individuals or entities; (iii) have not been listed on the General Services Administration’s list of Parties Excluded from Federal Programs; or (iv) have not been convicted of a criminal offense related to healthcare (collectively referred to herein as being “Debarred”). Vendor represents and warrants that it and its affiliates shall not knowingly employ, contract with, or retain any person or entity directly or indirectly to perform or provide the services hereunder if such a person or entity is Debarred or is, to Vendor’s knowledge, under investigation for debarment. Furthermore, Vendor

1 Moffitt’s Vendor Registration Process can be initiated by visiting the following: https://eforms.moffitt.org/vendorcertification.aspx




Date: 04/08/2020

of 23

https://eforms.moffitt.org/vendorcertification.aspx

represents and warrants that, to the best of its knowledge, it has not engaged in any conduct or activity which could lead to debarment actions.”

6.3 Assignment.

Moffitt does not agree to the assignment of any of its contracts to third-parties without consent. Any deviation from this provision will require the prior written consent of Moffitt and will afford Moffitt with the opportunity to preemptively screen the assigned Vendor in accordance with Moffitt’s Vendor Screening Process prior to the contract being assigned.

“Neither Party will have the right to assign this Agreement without the prior written consent of the other Party, which consent will not be unreasonably withheld or delayed. In the event of assignment to a Party’s affiliates or as part of a merger, change in control, or sale of all or substantially all the assets of a Party, the assigning Party shall seek the consent of the other Party, and to the extent the other Party does not consent to the assignment within thirty (30) days of the request for consent, the Party requesting the assignment may terminate this Agreement upon notice to the other Party. Any assignment in violation of this Section shall be null and void.”

6.4 Diversity.

It is the policy of Moffitt to maintain a Supplier Diversity Program designed to encourage and prioritize contracting with Diverse Vendors or Non-Diverse Vendors who already subcontract or are willing to subcontract with Diverse Vendors as raw materials suppliers, manufacturers, or subcontractors. As set forth in the Supplier Diversity Utilization and Subcontracting Plan, attached to this RFP or RFQ Appendix 2, the successful bidder shall endeavor to provide fifteen percent (15%) spend with diverse businesses related to the specific commodity or services identified in the proposal.

“Vendor has represented to Moffitt in its Request for Proposal Process that Vendor has agreed to endeavor to provide at least fifteen percent (15%) spend with a certified diverse vendor(s) (“2nd Tier Supplier”) and agrees to document such 2nd Tier Supplier use as follows:

i. To the extent Vendor utilizes 2nd Tier Supplier(s), Vendor will submit a monthly report in an Excel spreadsheet documenting Vendor’s expenditures or payments made to any and all 2nd Tier Supplier(s) as it relates to Vendor’s provision of commodities, services, or supplies obtained from the 2nd Tier Suppliers(s) pursuant to this Agreement (“Report”). Each Report shall contain the following information:

(1) the 2nd Tier Supplier’s name and address; (2) identify the type of commodities, services, or supplies provided by the 2nd Tier

Supplier; (3) the date and dollar amount paid by Vendor to the 2nd Tier Supplier(s) for all

commodities, services, or supplies related to this Agreement; (4) the 2nd Tier Supplier’s Federal Employer Identification Number (FEIN); and (5) a copy of the diversity certificate and the name of the certification

entity/organization issuing the certification for the 2nd Tier Supplier(s) and the associated classification of the 2nd Tier Supplier(s) (e.g., minority, women, veteran, or service-disabled veteran-owned business enterprise).

ii. To the extent Vendor utilizes 2nd Tier Supplier(s), Vendor will provide the Report to Moffitt no later than the seventh (7th) business day of the calendar month, following the month in which the 2nd Tier Supplier(s) provided the associated commodities, services, or supplies to Vendor in Vendor’s fulfillment of its obligations to Moffitt pursuant to this Agreement. The Report shall be submitted to Moffitt’s Manager of Supplier Diversity at [email protected] with an additional copy of the Report submitted to Moffitt




Date: 04/08/2020

of 23

with the applicable invoice for payment for the associated commodities, services and/or supplies.”

6.5 Governing Law.

Moffitt is a not-for-profit corporation established by and governed in accordance with Section 1004.43, Florida Statutes. Accordingly, and as an instrumentality of the State of Florida, any contract and its corresponding performance, entered into by Moffitt shall be controlled and governed by the laws of the State of Florida.

“This Agreement has been entered into in the State of Florida and shall be construed and interpreted in accordance with, and shall be governed by, the laws of the State of Florida and applicable Federal law. Any suit, action or proceeding with respect to or arising out of this Agreement shall have as its venue, Hillsborough County, Florida. In any action or dispute, at law or in equity, that may arise under or out of or otherwise relate to this Agreement or the transactions contemplated hereby, the prevailing Party shall recover its legal expenses, including reasonable attorneys' fees, legal assistants' fees, costs and expenses, from the non-prevailing Party at all court levels (including bankruptcy proceedings and appeals), in addition to any other relief to which that Party shall be entitled.”

6.6 Indemnification.

As an instrumentality of the State of Florida, Moffitt qualifies for the privilege of sovereign immunity under Florida Stat. 1004.43 and 768.28. In order to preserve the privilege of sovereign immunity Moffitt does not enter into indemnity obligations wherein Moffitt is expected to indemnify a Vendor.

6.7 Insurance.

It is the policy of Moffitt to ensure that its Vendors meet Moffitt’s minimum insurance requirements which are as prescribed both by law and within industry standards. Accordingly, listed below are Moffitt’s general insurance requirements for its Vendors:

“Throughout the Term of this Agreement and throughout those applicable periods referenced in Section 95.11, Florida Statutes, Vendor shall obtain and maintain in full force and effect, and for two (2) years following expiration or termination of this Agreement, the types of insurance set forth below in amounts not less than the following:

(i) Workers Compensation insurance as prescribed by the law of the state in which the Services are performed, and in no event less than one million dollars ($1,000,000) each employee, one million dollars ($1,000,000) each accident, and one million dollars ($1,000,000) policy limit, with endorsements waiving subrogation and including a primary and non-contributory clause;

(ii) Commercial General Liability ("CGL") Insurance (with Moffitt as an additional insured) with limits of at least one million dollars ($1,000,000) per occurrence, three million dollars ($3,000,000) annual aggregate, one million dollars ($1,000,000) products/completed operations and three million dollars ($3,000,000) annual aggregate per location / per project, with endorsements waiving subrogation and including a primary and non-contributory clause;

(iii) Business Auto Liability Insurance with limits of at least one million dollars ($1,000,000) combined single limit, per accident, for owned, non-owned and hired autos, with an endorsement waiving subrogation;




Date: 04/08/2020

of 23

(iv) Professional Liability Insurance with limits of at least ten million dollars ($10,000,000) per claim and twelve million dollars ($12,000,000) annual aggregate; and

(v) Cyber Security and Privacy insurance in the amount of at least five million dollars ($5,000,000) aggregate limit.

In each case, all such policies will be procured from an insurance companies having a policy holder with an “A” rating. Upon written request by Moffitt, Vendor will furnish certificates of insurance evidencing the foregoing insurance. Vendor will notify Moffitt in writing at least thirty (30) days prior to any cancellation, termination, or any material change in such policies if such policy is not replaced by a policy that complies with the requirements set forth in this paragraph. Nothing contained in this paragraph shall be construed as a waiver or limitation on Moffitt’s sovereign immunity as set forth under s. 768.28, Florida Statutes. The insurance requirements described above are independent of any indemnity and/or insurance obligations required of Vendor as may be subsequently identified in a contractual relationship between Vendor and Moffitt.”

6.8 Invoicing and Payment.

As a not-for-profit corporation, Moffitt has an obligation to be a good steward of its resources and not agree to any punitive contractual terms. As such, Moffitt’s policies and procedures limit its ability to contractually agree to any payment terms encompassing less than forty-five (45) days after receipt of invoice. Subsequently, Moffitt is unable to agree to any fees and/or penalties for the submission of late payments. That said, Moffitt has processes in place to ensure payments are routinely made in a timely manner.

“Invoices shall be payable to Vendor within forty-five (45) days after Moffitt’s receipt of an invoice. Invoices and documentation shall be sent Attn: Accounts Payable, 12902 Magnolia Drive, MBC-ACCT, Tampa, FL 33612-9497 or [email protected]. Failure to follow these instructions may result in delay in processing invoices for payment.”

6.9 Protected Health Information.

In accordance with the Health Insurance Portability and Accountability Act (“HIPAA”), Moffitt explicitly requires the execution of a Business Associate Agreement (“BAA”) with any and all Vendors that provide services, functions, and/or activities involving the use and/or disclosure of protected health information (“PHI”). The following language will be inserted as appropriate.

“Exchange of PHI. To the extent that protected health information is accessed, received, used, or disclosed pursuant to this Agreement, the Parties agree to comply with the applicable provisions of HIPAA, the HITECH Act, the HIPAA Regulations, and other applicable federal and state laws governing the confidentiality of patient information. Moffitt warrants and represents that Moffitt is a Covered Entity as defined under HIPAA and the HIPAA Regulations. The Parties acknowledge and agree that the terms of this Agreement qualify as, or is deemed by any governing authority to be, a business associate relationship under HIPAA, the HIPAA Regulations or the HITECH Act. Therefore, the Parties agree to enter into, and adhere to the terms set forth in, a separate Business Associate Agreement signed by the Parties. Additionally, in furtherance of the various collaborations provided for under this Agreement, one Party may require the other Party to enter into further confidentiality agreements, provided that such further confidentiality agreements shall be reasonable.”

//OR//

“Possibility of Future Exchange of PHI. To the extent that protected health information is accessed, received, used, or disclosed pursuant to this Agreement, the Parties agree to comply with the applicable provisions of HIPAA, the HITECH Act, the HIPAA Regulations, and other applicable federal and state




Date: 04/08/2020

of 23

laws governing the confidentiality of patient information. Moffitt warrants and represents that Moffitt is a Covered Entity as defined under HIPAA and the HIPAA Regulations. The Parties acknowledge and agree that the terms of this Agreement do not create a relationship that qualifies as a business associate relationship under HIPAA, the HIPAA Regulations and the HITECH Act. However, should the nature of the relationship between the Parties become one that would qualify as, or is deemed by any governing authority to be, a business associate relationship under HIPAA, the HIPAA Regulations or the HITECH Act, the Parties agree to enter into, and adhere to the terms set forth in, a separate Business Associate Agreement signed by the Parties. Additionally, in furtherance of the various collaborations provided for under this Agreement, one Party may require the other Party to enter into further confidentiality agreements, provided that such further confidentiality agreements shall be reasonable.”

6.10 Quality Metrics.

Pursuant to Joint Commission Standard LD.04.03.09, Moffitt is required to monitor quality assurance performance metrics and key performance indicators (“KPIs”) of certain services provided by its Vendors through contractual agreement to: (i) access whether the services are provided safely and effectively; (ii) identify quality and performance problems; (iii) implement appropriate corrective or improvement activities; and (iv) ensure the monitoring and sustainability of those corrective or improvement activities. The identification of the necessary KPIs will be identified by Moffitt and memorialized on an Evaluation Form2 which will be attached as an exhibit to the associated Vendor contract. Failure by Vendor to meet the KPI expectations are grounds for cause for Moffitt’s termination of the applicable contract.

“Moffitt will evaluate and monitor the services under this Agreement to ensure the services are provided safely and effectively and in compliance with applicable laws, regulations, accreditation standards, and Moffitt’s internal policies and procedures. Such evaluation and monitoring shall be based on quality metrics established by Moffitt in accordance with best practices and industry standards and shall include, without limitation, review of the items set forth in Exhibit “___,” which may be amended from time to time. In the event the services fail to meet such quality metrics, Moffitt may address such failure by increasing the monitoring of the services, providing consultation or training, renegotiating this Agreement, or electing to immediately terminate this Agreement for cause in accordance with Section [___], [________________].”

6.11 Term and Termination.

In order to ensure adequate and frequent review and monitoring of its contracts, Moffitt prefers not to enter into a contract term in excess of five (5) years, which will “generally” be identified as an initial three (3) year term with the inclusion of an automatic renewal provision for successive one (1) year terms, capped at a maximum of two (2) renewal terms. Any variations to this standard will be treated by Moffitt on an as-needed basis.

“The term of this Agreement shall be for three (3) years commencing on the Effective Date, unless terminated earlier in accordance with this Agreement. This Agreement shall automatically renew for two (2) successive one (1) year terms provided that any Party may elect not to renew this Agreement by providing written notice to the other Party of its intention’ not to renew this Agreement at least thirty (30) days prior to the expiration of the then current term (the initial term and any renewal terms are, collectively, the “Term”). In the event either Party considers the conduct of the other Party to give rise to cause for termination of this Agreement, such Party shall notify the other Party in writing of the alleged default or cause for termination. If the default or cause is not corrected to the reasonable satisfaction of the Party giving notice within twenty (20) days, the non-defaulting Party shall have the right to immediately terminate this Agreement. Either Party may terminate this Agreement, for any or no reason, by giving at least ninety (90) days’ prior written notice to the other Party.”

6.12 Exceptions to Limitation of Liability.

2 The Evaluation Form can be provided upon request.




Date: 04/08/2020

of 23

Moffitt is generally agreeable to Vendor requests for limitations of liability for indirect and direct damages; provided, such limitations are mutual between the parties where appropriate, and further provided that there are appropriate carveouts to the limitations, as applicable.

“THE LIMITATIONS SET FORTH IN THIS SECTION [___], [________________] SHALL NOT APPLY TO:

a. DAMAGES OR LIABILITIES ARISING FROM:i. LIABILITY FOR INDEMNIFICATION;ii. LIABILITY FOR BREACH OF CONFIDENTIALITY;iii. LIABILITY FOR INFRINGEMENT OR MISAPPROPRIATION OF

INTELLECTUAL PROPERTY RIGHTS;iv. THIRD-PARTY CLAIMS THAT ARE SUBJECT TO INDEMNIFICATION

UNDER SECTION [___], [________________];v. PERSONAL INJURY OR DEATH OR DAMAGE TO ANY REAL OR TANGIBLE

PERSONAL PROPERTY CAUSED BY EITHER PARTY’S GROSSLY NEGLIGENT ACTS OR OMISSIONS OR WILLFUL MISCONDUCT; OR

vi. GROSSLY NEGLIGENT ACTS OR OMISSIONS OR WILLFUL MISCONDUCT OF EITHER PARTY IN PERFORMING ITS OBLIGATIONS UNDER THIS AGREEMENT.

b. A PARTY'S OBLIGATION TO PAY ATTORNEYS' FEES AND COURT COSTS IN ACCORDANCE WITH SECTION [X] ([SECTION HEADER]).”

6.13 Storage of Moffitt Data.

All Moffitt data and information which is provided to Vendor shall be stored, transmitted and processed solely within the United States.

“Vendor shall not transfer or store any of Moffitt’s Personal Data outside of the United States or the European Economic Area (the “EEA”) and shall not permit any Vendor approved third-party subcontractors to store or transfer any Personal Data outside the United States or EEA without the prior written consent of Moffitt, and Vendor will ensure that any such storage or transfer of Personal Data complies with the General Data Protection Regulation (“GDPR).”

**Respondent may provide comments related to Moffitt’s vendor contracting requirements in the space provided below: ___________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________.

6.14 Confidentiality.

For purposes of this Agreement, “Confidential Information” includes, without limitation, any and all information provided by or which will be provided or disclosed (whether or not purposely, marked “confidential” or not) by one Party to the other Party. Confidential Information does not include any information that has become publicly known and made generally available through no wrongful act of the other Party or of others who were under confidentiality obligations. All Confidential Information made available or disclosed in relation to this Agreement shall at all times remain the sole property of the disclosing Party. Each Party shall take all reasonable precautions to maintain the confidentiality of the other Party’s Confidential Information and each Party shall use the other Party’s Confidential Information only to the extent required to perform its obligations under this Agreement. Unless required by law, each Party shall not disclose the other Party’s Confidential Information to anyone other than those directly




Date: 04/08/2020

of 23

involved in this Agreement, including their employees, attorneys, consultants, and accountants, who are bound by obligations of confidentiality at least as stringent as those set forth in this Section. A Party may disclose Confidential Information of the other Party to the extent it is compelled by law, bona fide legal process, or a court of competent jurisdiction to do so, provided the Party gives the other Party prior written notice of such compelled disclosure (to the extent legally permitted) and reasonable assistance, at the other Party’s cost, if the other Party wishes to contest the disclosure.

6.15 Counterparts.

This Agreement may be executed in two (2) or more identical counterparts, each of which shall be deemed to be an original and all of which taken together, shall be deemed to constitute the Agreement when a duly authorized representative of each Party has signed a counterpart. The Parties intend to sign and deliver this Agreement by facsimile or other electronic transmission. Each Party agrees that the delivery of this Agreement by facsimile or electronically shall have the same force and effect as the delivery of original signatures and each Party may use facsimile and or electronic signatures as evidence of the execution and delivery of this Agreement by all Parties to the same extent that an original signature could be used.

6.16 Debarment Warranty.

Vendor represents and warrants that it and its affiliates: (i) are not “sanctioned persons” under any federal or state program or law; (ii) have not been listed in the current Cumulative Sanction List of the Office of Inspector General for the United States Department of Health and Human Services for currently sanctioned or excluded individuals or entities; (iii) have not been listed on the General Services Administration’s list of Parties Excluded from Federal Programs; or (iv) have not been convicted of a criminal offense related to healthcare (collectively referred to herein as being “Debarred”). Vendor represents and warrants that it and its affiliates shall not knowingly employ, contract with, or retain any person or entity directly or indirectly to perform or provide the services hereunder if such a person or entity is Debarred or is, to Vendor’s knowledge, under investigation for debarment. Furthermore, Vendor represents and warrants that, to the best of its knowledge, it has not engaged in any conduct or activity which could lead to debarment actions.

Appendix 1– RESPONDENT ACKNOWLEDGEMENT FORM INTENT TO RESPONDRespondent Acknowledgement Form- Intent to Respond

SUBMIT TO:Lori [email protected] (Fax)

RFP NUMBER: RFP 20-10-SSP

RFP TITLE: CLINICAL TRIAL MATCHING AND PERSONALIZED MEDICINE SOLUTION

RESPONDENT NAME and MAILING ADDRESS: INTENT TO BID: Yes ______________

No _______________

(If unable to bid, indicate reason below)

TELEPHONE NUMBER:

FACSIMILE NUMBER:




Date: 04/08/2020

of 23

RESPONDENT’S AUTHORIZED CONTACT FOR RFP

NAME:

E-MAIL:

How did Respondent learn about this RFP:

__ Notified by Purchasing

__ Community or MWBE Organization

__ Monitoring Moffitt Website

___ Advertisement

___ Other:

SUPPLIER DIVERSITY INFORMATION

Is Respondent a certified “Minority, Women-Owned, Veteran, Service-Disabled Veteran-Owned Business Enterprise” defined as a business concern engaged in commercial transactions and is a least fifty-one (51%) percent minority, woman, veteran, service-disabled veteran-owned, and whose management and daily operations are controlled by such persons?

Yes ________________________ No ____________________

If Respondent is certified as a “Minority, Woman, Veteran, or Service-Disabled Veteran-Owned Business Enterprise,” it must provide a current copy of its certificate with this form, and provide the name of the certifying entity and certification dates below:

Name of Certifying Entity ____________________________

Certification Date Begins ____________________________ Ends _____________________________I certify that this response is made without prior understanding, agreement, or connection with any corporation, firm, or person submitting a response for the same materials, supplies or equipment, and is in all respects fair and without collusion or fraud. I agree to abide by all conditions of this RFP and certify that I am authorized to sign this RFP response for the Respondent and that the Respondent is in compliance with all requirements of the RFP.

_____________________________________ ________________________________________________Signature Printed Name and Date

Appendix 2 – SUPPLIER DIVERSITY UTILIZATION AND SUBCONTRACTING PLANSUPPLIER DIVERSITY UTILIZATION AND SUBCONTRACTING PLAN REQUIREMENTS

I. MOFFITT’S SUPPLIER DIVERSITY MISSION: Moffitt recognizes the importance of supplier diversity in all aspects of our business and procurement practices and actively encourages the development, utilization and economic growth of certified Minority, Women, Veteran and Service-Disabled Veteran-owned Business Enterprises (MBE/WBE/VBE/SDVBE). Central to this initiative is the inclusion and participation of a diverse group of vendors doing business with Moffitt. As such, Moffitt encourages the participation of certified MBE/WBE/VBE/SDVBEs in its procurement process, both at the prime vendor level as well as at the subcontractor level of its prime contracts. Moffitt is committed to a comprehensive Supplier Diversity Program that ensures maximum opportunities exist for such diverse businesses.

II. MOFFITT’S SUPPLIER DIVERSITY RFP SUBMISSION REQUIREMENTS: Moffitt is an equal opportunity corporation, and, as such, strongly encourages the lawful use of certified MBE/WBE/VBE/SDVBEs in the provision of services by providing a fair and equal opportunity to compete for, or for participation in, providing goods, commodities and/or services. Moffitt believes in equal opportunity practices which conform to both the spirit and the letter of all laws against discrimination, and is committed to non-discrimination because of race, creed, color, sex, age, national




Date: 04/08/2020

of 23

origin, or religion. Therefore, in accordance with the Supplier Diversity Program, Moffitt requires that all RFP responses include the following:

1. Respondent’s designation as a certified vendor encompassing MBE/WBE/VBE/SDVBEs designation;

2. Respondent’s ability and/or commitment to endeavor to provide at least fifteen percent (15%) spend with other MBE/WBE/VBE/SDVBEs related to the specific commodity or services identified in Respondent’s proposal;

3. Include, and answer, the following questions related to the Supplier Diversity Utilization and Subcontracting Plan as part of Respondent’s RFP proposal/submission;

a. Identify if a Supplier Diversity Utilization and Subcontracting Plan and Description of your Supplier Diversity Program is being submitted within your RFP proposal/submission by answering the following: ____Yes or ___No.

b. What percentage of spend with certified MBE/WBE/VBE/SDVBEs is projected for the specific commodity or service outlined in this RFP: ___________________ (%).

c. Outline the plan for achieving 1st tier spend with certified MBE/WBE/VBE/SDVBEs and identify the allocated percentage of spend anticipated: ___________________ (%).

d. Outline the plan for achieving 2nd tier spend with certified MBE/WBE/VBE/SDVBEs and identify the percentage of spend anticipated: ___________________ (%).

e. Identity if a list of the certified MBE/WBE/VBE/SDVBEs that Respondent expects to utilize as 2nd tier subcontract(s) is attached to the RFP proposal/submission by answering the following: ____Yes or ___No.

f. Identify Respondent’s agreement to provide monthly Subcontract Expenditure Reports with submittal of every pay application/invoice by answering the following: ____Yes or ___No.

4. Include a Supplier Diversity Utilization and Subcontracting Plan and Description of your Supplier Diversity Program as part of Respondent’s RFP proposal/submission; and

5. Provide a list of the certified MBE/WBE/VBE/SDVBEs that Respondent expects to utilize as 2nd tier subcontract(s).

III. MOFFITT’S SUPPLIER DIVERSITY REPORTING REQUIREMENTS :

1. CERTIFIED DIVERSE VENDORS: A certification letter from any of the following agencies will be required of any Respondent and/or identified subcontractor claiming MBE/WBE/VBE/SDVBE status at the time of the RFP response/submission:

Moffitt accepts all Local, State and Federal Government agencies MBE/WBE certifications, including the following:

City of Tampa Hillsborough County State of Florida Small Business Administration (SBA) 8A Program Certification

Other MBE/WBE certifications accepted include:Florida State Minority Supplier Development Council (FSMSDC) National Minority Supplier Development Council (NMSDC) & regional affiliates Women’s Business Enterprise National Council (WBENC)




Date: 04/08/2020

of 23

http://www.wbenc.org/

http://www.nmsdc.org/

http://www.fsmsdc.org/

http://www.sba.gov/category/navigation-structure/8a-business-development-program

http://www.dms.myflorida.com/agency_administration/office_of_supplier_diversity_osd

http://www.hillsboroughcounty.org/en/businesses/doing-business-with-hillsborough/minorities-and-women

http://www.tampagov.net/minority-business-development/programs/women-and-minority-business-enterprise-program

National Women Business Owners Corporation (NWBOC)

Veteran and Service-Disabled Veteran (VBE/SDVBE) Certification/Verification accepted:

Department of Veterans Affairs State of Florida Office of Supplier Diversity

2. SUBCONTRACTOR EXPENDITURE REPORTS : The successful bidder will be required to provide monthly Subcontract Expenditure Reports to Moffitt identifying certified MBE/WBE/VBE/SDVBE participation that lists total payments made to subcontractor(s) until 100% completion/delivery of the specific commodity or services outlined in this RFP finalized. The report shall include the names, addresses, type of service or commodity provided, dollar amount paid, payment date, FEID #, name of certification entity, business classification, and copy of vendor certification for each vendor identified in the report. All Subcontractor Expenditure reports are also required to be turned in with all pay applications/invoices and a copy sent to Desiree Hanson, Manager, Supplier Diversity Program via email [email protected].

IV. MOFFITT’S CERTIFIED DIVERSE VENDORS (M/W/VBE/SDVBES DIRECTORY LISTING : Vendors seeking access to certified MBEs, WBEs, VBEs that are currently registered with Moffitt for partnerships and subcontract opportunities have access to the Moffitt Certified Diversity Vendor Directory via the following link: Moffitt - Supplier Diversity Vendor Directory (Listing of Certified M/W/VBE/SDVBES) .

Moffitt includes listings of certified Minority, Women, Veteran, and Service-Disabled Veteran-owned Business diversity directories on our website that include the State, City, County, Department of Veterans Affairs, etc., that can be accessed by utilizing the following links:

State of FloridaCity of TampaHillsborough CountyU.S. Department of Veterans Affairs




Date: 04/08/2020

of 23

https://www.vip.vetbiz.va.gov/Search/AdvancedSearchForm

https://tampa.diversitysoftware.com/FrontEnd/SearchCertifiedDirectory.asp?XID=7999&TN=tampa

https://eforms.moffitt.org/MinorityVendorCertExternal/

https://eforms.moffitt.org/MinorityVendorCertExternal/

mailto:[email protected]

http://www.dms.myflorida.com/agency_administration/office_of_supplier_diversity_osd

https://www.vip.vetbiz.va.gov/

http://www.nwboc.org/

CYBER SECURIT AND PRIVACYQUESTIONNAIRE€¦ · Web viewAbility to generate and export personalized...

Documents

Transcript of CYBER SECURIT AND PRIVACYQUESTIONNAIRE€¦ · Web viewAbility to generate and export personalized...