The subject of the order is the supply of equipment and software to enhance the cybersecurity level of the hospital along with the expansion and integration of hospital systems under the National Recovery and Resilience Plan: Investment D.1.1.2 accelerating digital transformation processes in healthcare through further development in healthcare within the project titled "Improving the level of cybersecurity, digitization of medical documentation and development of e-services and artificial intelligence solutions at the Specialist Hospital named after Dr. Alfred Sokołowski in Wałbrzych." A further and detailed description of the subject of the order is included in Annex No. 1 to the Terms of Reference (hereinafter: SWZ).
Brand new, not previously displayed, non-demonstrative equipment.
The contracting authority conducts the order in accordance with the DNSH (Do No Significant Harm) principle, which means it does not cause significant harm to environmental objectives. The contracting authority requires that the delivered angiograph complies with the principle of "doing no significant harm" as per Article 17 of EU Regulation 2020/852 and guidelines of the National Recovery and Resilience Plan. The contractor is obliged to carry out the delivery in a manner that ensures there is no negative impact of the order on environmental objectives, in particular: prevention of environmental pollution, effective resource management, minimization of emissions and waste. In this regard, the contractor submits the required statement (Annex No. 11 to SWZ).
The contracting authority confirms that specialized waste management will be conducted in accordance with currently applicable regulations and environmental requirements and the Hospital Procedure No. P-EPID-01 dated 15.05.2023 regarding the handling of waste generated in the Hospital.
The execution of the order includes the following elements:
Element I:
- Network traffic analysis system along with SOC and SIEM system along with ASM and pentests - 1 complete set.
- Devices for protection against cyber attacks from the outside and inside (firewall) - 2 pieces
- Conducting a comprehensive implementation of the MS Exchange mail server for a minimum of 800 mailboxes - 1 complete set.
- Email protection system class SEG (Secure Email Gateway) - device to protect the mail server from cyber attacks from the outside - 1 item.
Element II:
- Offsite backup of hospital systems for a period of 3 years
- Upgrade of VEEAM licenses to Veeam Data Platform Advanced version (to run Veeam Threat Hunter and Veeam One) - 1 piece
- Implementation of AD MS server for at least 800 users, along with necessary licenses - conducting a comprehensive migration of the Active Directory environment in the infrastructure while ensuring continuity of catalog services and related systems - 1 complete set
- Integrated system for the protection of workstations, servers, and EDR/XDR threat analysis service - for a minimum of 800 positions for a period of 36 months - 1 complete set
- System for central analysis and archiving of security logs class -1 piece
Element III:
- Expansion of the server room - Supply/sale of a disk array with a capacity of at least 300 TB along with installation and commissioning - 1 piece
- Expansion of the server room - Supply/sale of a virtualization server along with installation and commissioning - 2 pieces
- Expansion of the server room - Supply/sale of SAN switches along with their installation and commissioning - 2 pieces
- Expansion of the server room - Purchase of additional licenses for virtualization software VMWARE - 1 piece
- Supply, assembly, configuration of managed L2 layer switches - 35 pieces
- Supply, assembly, configuration of managed L2 layer switches - 3 pieces
- Supply, assembly, configuration of managed stackable L2 layer switch - 15 pieces
- Supply, assembly, configuration of managed stackable L3 layer switch - 7 pieces
- Supply of multimode SFP+ transceivers - 20 pieces
- Supply of SFP+ transceivers - 70 pieces
- SFP56 DWDM transceiver - 17 pieces
- Software for LAN management along with implementation - 1 piece
- Expansion of network infrastructure with Access Point.
According to the provisions of Article 257 point 1 of the Public Procurement Law, the Contracting Authority reserves the right to cancel the procurement procedure if the public funds that the Contracting Authority intended to allocate to finance all or part of the order are not granted to them.
Note!
- Before concluding the contract, the Contracting Authority will require the most advantageous Contractor to provide a completed questionnaire for the assessment of the data processing entity on behalf of the administrator (Annex No. 11 to SWZ).
- The draft contract for the processing of personal data on behalf of the administrator will be specified after the contractor is selected.
Requirements regarding personal data protection (GDPR) and cybersecurity:
1. Depending on the model of execution accepted by the Contractor, the execution of the subject of the order may involve the necessity for the Contractor to process personal data on behalf of the Contracting Authority, including special categories of data, in particular data concerning health.
2. In the case referred to in paragraph 1, the processing of personal data by the Contractor may only take place on the basis of a data processing entrustment agreement concluded with the Contracting Authority before the commencement of processing, in accordance with Article 28 of the GDPR and under the conditions specified in the SWZ and the draft contract.
3. If the execution of the order does not require data processing by the Contractor within the meaning of Article 28 of GDPR, the Contractor may obtain only incidental and technical access to personal data that does not constitute the commission of personal data processing.
......................Continued in SWZ

LOT-0001
Supply of equipment and software to enhance the cybersecurity level of the hospital along with the expansion and integration of hospital systems under the National Recovery and Resilience Plan: Investment D.1.1.2 accelerating digital transformation processes in healthcare through further development in healthcare within the project titled "Improving the level of cybersecurity."
The subject of the order is the supply of equipment and software to enhance the cybersecurity level of the hospital along with the expansion and integration of hospital systems under the National Recovery and Resilience Plan: Investment D.1.1.2 accelerating digital transformation processes in healthcare through further development in healthcare within the project titled "Improving the level of cybersecurity, digitization of medical documentation and development of e-services and artificial intelligence solutions at the Specialist Hospital named after Dr. Alfred Sokołowski in Wałbrzych." A further and detailed description of the subject of the order (size, scope, type, and quantity of deliveries) along with the assortment-price form can be found in Annex No. 1 to the Terms of Reference.