Bookmark and Share

IRS.gov Banner
IRS Tax Tips Dec 6, 2024

Useful Links:

IRS.gov

Help For Hurricane Victims

News Essentials

What's Hot

News Releases

IRS - The Basics

IRS Guidance

Media Contacts

Facts & Figures

Around The Nation

e-News Subscriptions

The Newsroom Topics

Multimedia Center

Noticias en Español

Radio PSAs

Tax Scams/Consumer Alerts

The Tax Gap

Fact Sheets

IRS Tax Tips

Armed Forces

Latest News

IRS Resources

Contact Your Local IRS Office

Filing Your Taxes

Forms & Instructions

Frequently Asked Questions

Taxpayer Advocate Service

Where to File

IRS Social Media

 

Issue Number:  Tax Tip 2024-93


Tax professional tips for creating a data security plan

Tax professionals are required by law to create a Written Information Security Plan – or WISP – to protect their clients’ data. The IRS and the Security Summit partners have created an easy-to-follow Written Information Security Plan that outlines the basics and walks tax professionals through how to get started on a plan and understand security compliance requirements and professional responsibilities.

Creating a WISP

A WISP protects client information most effectively when tailored to the size, scope, complexity and sensitivity of the customer data it handles. A WISP should focus on:

  • Employee training and management.
  • Information systems.
  • System failure detection and management.

WISP Requirements

Tax professionals are required by law to have a WISP in place to protect customer data.  As a part of their security plan, each tax professional needs to:

  • Designate one or more employees to coordinate its information security program.
  • Identify and assess risks to customer information in each relevant area of the company's operation.
  • Evaluate the effectiveness of the current safeguards for controlling those risks.
  • Design and implement a safeguards program and regularly monitor and test it.
  • Contract a service provider that maintains safeguards and handling of customer information.

Tax professionals should always be evaluating and adjusting their WISP based on relevant circumstances, changes in the firm's business or operations or the results of security testing and monitoring. For more on security awareness and WISPs, check out National Tax Security Awareness Week 2024.

 

More information:

Back to top

 

FaceBook Logo  YouTube Logo  Instagram Logo  Twitter Logo  LinkedIn Logo

Thank you for subscribing to IRS Tax Tips, an IRS e-mail service. For more information on federal taxes please visit IRS.gov.

This message was distributed automatically from the IRS Tax Tips mailing list. Please Do Not Reply To This Message.

 

This email was sent to [email protected] by: Internal Revenue Service (IRS) · Internal Revenue Service · 1111 Constitution Ave. N.W. · Washington, D.C. 20535 GovDelivery logo