Provision of ISO/IEC 27001 information security management system (ISMS) implementation services for the Estonian University of Life Sciences

The machine-readable notice includes mandatory exclusion grounds for final convictions related to participation in a criminal organisation, corruption, fraud, terrorist offences, money laundering or terrorist financing, and child labour or other forms of human trafficking. If an exclusion ground applies, the bidder may provide evidence of self-cleaning measures where allowed. The exact details and any additional grounds must be checked in the tender documents.

The bidder must have prior experience in similar services: at least 2 contracts for implementing an information security management system and/or preparing organisations for a certification audit, completed within the 36 months preceding the start of the procurement. The bidder must provide the contract description, value, dates and the other contracting parties. According to the compliance requirements, the bidder must also submit the project total price, the workload in hours, the CV of the responsible specialist and other information needed to assess that specialist’s qualifications, as well as the service methodology. The person directly delivering the service must have at least C1-level Estonian and be ready to work in English. The bid must also include a draft contract, including confidentiality, copyright and payment terms. The exact requirements must be checked in the tender documents or official tender details if any detail is missing from the machine-readable notice; the notice does not provide a precise number for any additional qualification requirement beyond the items stated here. The machine-readable notice did not include precise requirements for any other qualification or compliance conditions; these must be checked in the tender documents.