CABINET, FOOD WARMIN

HEATED CABINET,MOBI RP001: DLA PACKAGING REQUIREMENTS FOR PROCUREMENT
RA001: THIS DOCUMENT INCORPORATES TECHNICAL AND/OR QUALITY REQUIREMENTS (IDENTIFIED BY AN 'R' OR AN 'I' NUMBER) SET FORTH IN FULL TEXT IN THE DLA MASTER LIST OF TECHNICAL AND QUALITY REQUIREMENTS FOUND ON THE WEB AT:
http://www.dla.mil/HQ/Acquisition/Offers/eProcurement.aspx http://www.dla.mil/HQ/Acquisition/Offers/eProcurement.aspx
FOR SIMPLIFIED ACQUISITIONS, THE REVISION OF THE MASTER IN EFFECT ON THE SOLICITATION ISSUE DATE OR THE AWARD DATE CONTROLS. FOR LARGE ACQUISITIONS, THE REVISION OF THE MASTER IN EFFECT ON THE RFP ISSUE DATE APPLIES UNLESS A SOLICITATION AMENDMENT INCORPORATES A FOLLOW-ON REVISION, IN WHICH CASE THE AMENDMENT DATE CONTROLS.
RQ011: REMOVAL OF GOVERNMENT IDENTIFICATION FROM NON-ACCEPTED SUPPLIES
RD003, COVERED DEFENSE INFORMATION POTENTIALLY APPLIES
GILL GROUP, INC. 6N797 P/N H-339-214
DLA issues this document using the DoD authorized unit of issue, please refer to the following URL to determine the corresponding ANSI X12 unit of issue.
https://view.officeapps.live.com/op/view.aspx?src=https%3A%2F%2Fwww.dla.mil%2FPortals%2F104%2FDocuments%2FDLMS% 2FeApplications%2FLogDataAdmin%2FUnitofIssueandPurchaseUnit.xlsx&wdOrigin=BROWSELINK
ITEM NO. SUPPLIES/SERVICES QUANTITY UNIT UNIT PRICE AMOUNT. 0001 7310-01-573-3659 5.000 EA $ _______________ $ ______________ CABINET,FOOD WARMIN
PRICING TERMS: Firm Fixed Price
QTY VARIANCE: PLUS 0% MINUS 0%
INSPECTION POINT: DESTINATION
ACCEPTANCE POINT: DESTINATION
FOB: DESTINATION DELIVERY DATE: 30 DAYS ADO
PREP FOR DELIVERY:
PKGING DATA-QUP:001
WILL BE PACKAGED IN ACCORDANCE WITH ASTM D3951.
All DLA Master List of Technical and Quality Requirements take precedence over ASTM D3951. Mark and label all packaging and packing in accordance with MIL-STD-129. The Unit of Issue (U/I) and Quantity per Unit Pack (QUP) will be as specified in the contract/purchase order. PALLETIZATION SHALL BE IN ACCORDANCE WITH RP001: DLA PACKAGING REQUIREMENTS FOR PROCUREMENT
BULK BREAK POINT:
W44QQ8
SPE3SE-26-Q-0280
SUPPLY/SERVICE: 7310-01-573-3659 CONT'D
W6YW USALRCTR FT SILL BLDG 2243 HIRSCH RD BAY 3 FORT SILL OK 73503-5100 US
SHIP BY TRACEABLE MEANS. DO NOT USE PARCEL POST.
FREIGHT SHIPPING ADDRESS:
W45XU0
W1D2 US ARMY ADA SCH DOL PBO BLDG 2243 HIRSCH RD FORT SILL OK 73503-5100 US
MARKFOR
W45XU0
W1D2 US ARMY ADA SCH DOL PBO BLDG 2243 HIRSCH RD FORT SILL OK 73503-5100 US
M/F: (TCN) W45XU061280001 RDD: PROJ: TP 3 SUPP ADD: W44DQ1 SIG: A
FOR GOVERNMENT USE ONLY: (IPD) 13
DIC: A3A DIST: ADV: FC: 61
GOVT USE External External External Customer RDD/ ITEM PR PRLI PR PRLI Material Need Ship Date. 0001 7016790092 0001 N/A N/A N/A 05/13/2026

SPE3SE-26-Q-0280
Part 12 Clauses
52.212-4 TERMS AND CONDITIONS -COMMERCIAL PRODUCTS AND COMMERCIAL SERVICES (DEVIATION 2026-O0038) (FEB
2026) FAR
CLAUSES ADDED TO PART 12 BY ADDENDUM
52.203-14 DISPLAY OF HOTLINE POSTER (NOV 2021) FAR
As prescribed in 3.1004(b), insert the following clause: (a) Definition. “United States,” as used in this clause, means the 50 States, the District of Columbia, and outlying areas. (b) Display of fraud hotline poster(s). Except as provided in paragraph (c). (1) During contract performance in the United States, the Contractor shall prominently display in common work areas within business segments performing work under this contract and at contract work sites. (i) Any agency fraud hotline poster or Department of Homeland Security (DHS) fraud hotline poster identified in paragraph (b)(3) of this clause; and (ii) Any DHS fraud hotline poster subsequently identified by the Contracting Officer. (2) Additionally, if the Contractor maintains a company website as a method of providing information to employees, the Contractor shall display an electronic version of the poster(s) at the website. (3) Any required posters may be obtained as follows: Poster(s) Obtain from &ZF2031401& &ZF2031402& &ZF2031403& &ZF2031404& (Contracting Officer shall insert --(i) Appropriate agency name(s) and/or title of applicable Department of Homeland Security fraud hotline poster); and (ii) The website(s) or other contact information for obtaining the poster(s).) (c) If the Contractor has implemented a business ethics and conduct awareness program, including a reporting mechanism, such as a hotline poster, then the Contractor need not display any agency fraud hotline posters as required in paragraph (b) of this clause, other than any required DHS posters. (d) Subcontracts. The Contractor shall include the substance of this clause, including this paragraph (d), in all subcontracts that exceed the threshold specified in Federal Acquisition Regulation 3.1004(b)(1) on the date of subcontract award, except when the subcontract— (1) Is for the acquisition of a commercial product or commercial service; or (2) Is performed entirely outside the United States. (End of clause)
252.203-7002 REQUIREMENT TO INFORM EMPLOYEES OF WHISTLEBLOWER RIGHTS (DEC 2022) DFARS
52.204-19 INCORPORATION BY REFERENCE OF REPRESENTATIONS AND CERTIFICATIONS (DEVIATION 2026-O0038) (FEB
2026) FAR
252.204-7003 CONTROL OF GOVERNMENT PERSONNEL WORK PRODUCT (APR 1992) DFARS
252.204-7004 ANTITERRORISM AWARENESS TRAINING FOR CONTRACTORS (JAN 2023) DFARS
252.204-7009 LIMITATIONS ON THE USE OR DISCLOSURE OF THIRD-PARTY CONTRACTOR REPORTED CYBER INCIDENT
INFORMATION (JAN 2023) DFARS
252.204-7012 SAFEGUARDING COVERED DEFENSE INFORMATION AND CYBER INCIDENT REPORTING (DEVIATION 2024-O0013)
(MAY 2024) DFARS
(a) Definitions. As used in this clause
Adequate security means protective measures that are commensurate with the consequences and probability of loss, misuse, or unauthorized access to, or modification of information.
Compromise means disclosure of information to unauthorized persons, or a violation of the security policy of a system, in which unauthorized intentional or unintentional disclosure, modification, destruction, or loss of an object, or the copying of information to unauthorized media may have occurred.
Contractor attributional/proprietary information means information that identifies the contractor(s), whether directly or indirectly, by the grouping of information that can be traced back to the contractor(s) (e.g., program description, facility locations), personally identifiable information, as well as trade
SPE3SE-26-Q-0280
Part 12 Clauses (CONTINUED)
secrets, commercial or financial information, or other commercially sensitive information that is not customarily shared outside of the company.
Controlled technical information means technical information with military or space application that is subject to controls on the access, use, reproduction, modification, performance, display, release, disclosure, or dissemination. Controlled technical information would meet the criteria, if disseminated, for distribution statements B through F using the criteria set forth in DoD Instruction 5230.24, Distribution Statements on Technical Documents. The term does not include information that is lawfully publicly available without restrictions.
Covered contractor information system means an unclassified information system that is owned, or operated by or for, a contractor and that processes, stores, or transmits covered defense information.
Covered defense information means unclassified controlled technical information or other information, as described in the Controlled Unclassified Information (CUI)
Registry at http://www.archives.gov/cui/registry/category-list.html, that requires safeguarding or dissemination controls pursuant to and consistent with law, regulations, and Governmentwide policies, and is -
(1) Marked or otherwise identified in the contract, task order, or delivery order and provided to the contractor by or on behalf of DoD in support of the performance of the contract; or
(2) Collected, developed, received, transmitted, used, or stored by or on behalf of the contractor in support of the performance of the contract.
Cyber incident means actions taken through the use of computer networks that result in a compromise or an actual or potentially adverse effect on an information system and/or the information residing therein.
Forensic analysis means the practice of gathering, retaining, and analyzing computer-related data for investigative purposes in a manner that maintains the integrity of the data.
Information system means a discrete set of information resources organized for the collection, processing, maintenance, use, sharing, dissemination, or disposition of information.
Malicious software means computer software or firmware intended to perform an unauthorized process that will have adverse impact on the confidentiality, integrity, or availability of an information system. This definition includes a virus, worm, Trojan horse, or other code-based entity that infects a host, as well as spyware and some forms of adware.
Media means physical devices or writing surfaces including, but is not limited to, magnetic tapes, optical disks, magnetic disks, large-scale integration memory chips, and printouts onto which covered defense information is recorded, stored, or printed within a covered contractor information system.
Operationally critical support means supplies or services designated by the Government as critical for airlift, sealift, intermodal transportation services, or logistical support that is essential to the mobilization, deployment, or sustainment of the Armed Forces in a contingency operation.
Rapidly report means within 72 hours of discovery of any cyber incident.
Technical information means technical data or computer software, as those terms are defined in the clause at DFARS 252.227-7013, Rights in Technical Data --Other Than Commercial Products and Commercial Services, regardless of whether or not the clause is incorporated in this solicitation or contract. Examples of technical information include research and engineering data, engineering drawings, and associated lists, specifications, standards, process sheets, manuals, technical reports, technical orders, catalog-item identifications, data sets, studies and analyses and related information, and computer software executable code and source code.
(b) Adequate security. The Contractor shall provide adequate security on all covered contractor information systems. To provide adequate security, the Contractor shall implement, at a minimum, the following information security protections:
(1) For covered contractor information systems that are part of an Information Technology (IT) service or system operated on behalf of the Government, the following security requirements apply:
(i) Cloud computing services shall be subject to the security requirements specified in the clause 252.239-7010, Cloud Computing Services, of this contract. (ii) Any other such IT service or system (i.e., other than cloud computing) shall be subject to the security requirements specified elsewhere in this contract.
(2) For covered contractor information systems that are not part of an IT service or system operated on behalf of the Government and therefore are not subject to the security requirement specified at paragraph (b)(1) of this clause, the following security requirements apply:
(i) Except as provided in paragraph (b)(2)(ii) of this clause, the covered contractor information system shall be subject to the security requirements in National Institute of Standards and Technology (NIST) Special Publication (SP) 800-171, “Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations”, Revision 2 (available via the internet at http://dx.doi.org/10.6028/NIST.SP.800-171 ).
SPE3SE-26-Q-0280
Part 12 Clauses (CONTINUED)
(ii)(A) The Contractor shall implement NIST SP 800-171, as soon as practical, but not later than December 31, 2017. For all contracts awarded prior to October 1, 2017, the Contractor shall notify the DoD Chief Information Officer (CIO), via email at osd.dibcsia@mail.mil, within 30 days of contract award, of any security requirements specified by NIST SP 800-171 not implemented at the time of contract award.
(B) The Contractor shall submit requests to vary from NIST SP 800-171 in writing to the Contracting Officer, for consideration by the DoD CIO. The Contractor need not implement any security requirement adjudicated by an authorized representative of the DoD CIO to be nonapplicable or to have an alternative, but equally effective, security measure that may be implemented in its place.
(C) If the DoD CIO has previously adjudicated the contractor's requests indicating that a requirement is not applicable or that an alternative security measure is equally effective, a copy of that approval shall be provided to the Contracting Officer when requesting its recognition under this contract.
(D) If the Contractor intends to use an external cloud service provider to store, process, or transmit any covered defense information in performance of this contract, the Contractor shall require and ensure that the cloud service provider meets security requirements equivalent to those established by the Government for the Federal Risk and Authorization Management Program (FedRAMP) Moderate baseline ( https:// http://www.fedramp.gov/resources/documents/) and that the cloud service provider complies with requirements in paragraphs (c) through (g) of this clause for cyber incident reporting, malicious software, media preservation and protection, access to additional information and equipment necessary for forensic analysis, and cyber incident damage assessment.
(3) Apply other information systems security measures when the Contractor reasonably determines that information systems security measures, in addition to those identified in paragraphs (b)(1) and (2) of this clause, may be required to provide adequate security in a dynamic environment or to accommodate special circumstances (e.g., medical devices) and any individual, isolated, or temporary deficiencies based on an assessed risk or vulnerability. These measures may be addressed in a system security plan.
(c) Cyber incident reporting requirement.
(1) When the Contractor discovers a cyber incident that affects a covered contractor information system or the covered defense information residing therein, or that affects the contractor's ability to perform the requirements of the contract that are designated as operationally critical support and identified in the contract, the Contractor shall -
(i) Conduct a review for evidence of compromise of covered defense information, including, but not limited to, identifying compromised computers, servers, specific data, and user accounts. This review shall also include analyzing covered contractor information system(s) that were part of the cyber incident, as well as other information systems on the Contractor's network(s), that may have been accessed as a result of the incident in order to identify compromised covered defense information, or that affect the Contractor's ability to provide operationally critical support; and
(ii) Rapidly report cyber incidents to DoD at https://dibnet.dod.mil.
(2) Cyber incident report. The cyber incident report shall be treated as information created by or for DoD and shall include, at a minimum, the required elements at https://dibnet.dod.mil.
(3) Medium assurance certificate requirement. In order to report cyber incidents in accordance with this clause, the Contractor or subcontractor shall have or acquire a DoD-approved medium assurance certificate to report cyber incidents. For information on obtaining a DoD-approved medium assurance certificate, see https://public.cyber.mil/eca/.
(d) Malicious software. When the Contractor or subcontractors discover and isolate malicious software in connection with a reported cyber incident, submit the malicious software to DoD Cyber Crime Center (DC3) in accordance with NSN/Part Number: 7310-01-573-3659 Quantity: 5 EA Purchase Request: 7016790092QTY: 5 Delivery: 30 days ADO