AI FlowOps
11 phrases highlighted - open package

Pricing and SLA exhibit - highlighted evidence

Case: State Benefits Portal Modernization RFP ref: DSS-2024-0041 Active page: 2

Request for Proposal, p. 10 - Contract terms, indemnification, insurance, and audit rights

Contractor shall indemnify, defend, and hold harmless the State, its officers, agents, and employees from and against any and all claims, damages, losses, costs, and expenses, including attorney's fees, without monetary limitation.

Security questionnaire, p. 2 - Data handling and privacy documents

The RFP package does not include a signed data processing agreement. Vendors must identify any privacy, residency, retention, data processing, or subcontractor terms required before implementation or production use.

Pricing and SLA exhibit, p. 2 - Pricing schedule

The modernization program will be contracted as a fixed fee of $4,800,000. The fixed fee is inclusive of all deliverables, integrations, transition activities, training materials, launch support, and post-launch stabilization required for the State Benefits Portal Modernization project.

Implementation exhibit, p. 3 - Production timeline and legacy integration

The selected vendor shall complete production go-live within 12 weeks of contract award. The production timeline must include the following minimum activities:

Pricing and SLA exhibit, p. 4 - SLA credits

Service credits of up to 15% of monthly fees shall apply in the event of a service level breach as defined in the final SLA schedule.

Request for Proposal, p. 10 - Insurance requirements

Contractor must carry $5,000,000 in professional liability insurance and provide a certificate of coverage before contract execution.

Request for Proposal, p. 10 - Audit rights

The State may audit vendor records related to contract performance, invoicing, security obligations, service level performance, and compliance with contractual requirements. Audit rights may continue for seven years after contract expiration unless otherwise limited by the final services agreement.

Security questionnaire, p. 5 - Data residency

The agency has not specified whether data residency must be state-only, United States-only, or otherwise restricted. Vendors must state where production data, backups, logs, support records, analytics records, monitoring records, and administrative records will be stored.

Security questionnaire, p. 3 - Access controls and audit logging

The proposed solution must log administrator actions, citizen account access events, case-worker updates, integration failures, security events, authentication events, authorization changes, role changes, privilege changes, data exports, material configuration changes, and production support access.

Pricing and SLA exhibit, p. 4 - Service level credits

Service credits do not replace the vendor’s obligation to remediate issues. If a service level breach occurs, the Department may request a service impact report, root-cause analysis, remediation plan, and evidence that corrective actions have been completed.

Implementation exhibit, p. 4 - Agency dependencies

The Department will provide subject-matter experts, integration access, available test data, procurement clarification responses, and production readiness decision makers. Vendors must identify any Department dependency that could delay production launch if agency access is unavailable.