Bookmark and Share [ [link removed] ]

a { color:#0073AF !important;} a:hover { color:#004673 !important;}
IRS.gov Banner
IRS Newswire August 9, 2022

News Essentials

What's Hot [ [link removed] ]

News Releases [ [link removed] ]

IRS - The Basics [ [link removed] ]

IRS Guidance [ [link removed] ]

Media Contacts [ [link removed] ]

Facts & Figures [ [link removed] ]

Around The Nation [ [link removed] ]

e-News Subscriptions [ [link removed] ]

________________________________________________________________________

The Newsroom Topics

Multimedia Center [ [link removed] ]

Noticias en Espa?ol [ [link removed] ]

Radio PSAs [ [link removed] ]

Tax Scams [ [link removed] ]

The Tax Gap [ [link removed] ]

Fact Sheets [ [link removed] ]

IRS Tax Tips [ [link removed] ]

Armed Forces [ [link removed] ]

Latest News Home [ [link removed] ]

________________________________________________________________________

IRS Resources

Contact My Local Office [ [link removed] ]

Filing Options [ [link removed] ]

Forms & Instructions [ [link removed] ]

Frequently Asked Questions [ [link removed] ]

News [ [link removed] ]

Taxpayer Advocate [ [link removed] ]

Where to File [ [link removed] ]

IRS Social Media [ [link removed] ]

________________________________________________________________________


Issue Number:????IR-2022-147

Inside This Issue
________________________________________________________________________

*Security Summit releases new data security plan to help tax professionals; new WISP simplifies complex area*

WASHINGTON ? The Security Summit partners today unveiled a special new sample security plan designed to help tax professionals, especially those with smaller practices, protect their data and information.

The special plan, called a Written Information Security Plan or WISP [ [link removed] ], is outlined in a 29-page document that?s been worked on by members of the Security Summit, including tax professionals, software and industry partners, representatives from state tax groups and the IRS.

Federal law requires all professional tax preparers to create and implement a data security plan. The Security Summit group ? a public-private partnership between the IRS, states and the nation?s tax industry ? has noticed that some tax professionals continue to struggle with developing a written security plan.

In response to this need, the Summit ? led by the Tax Professionals Working Group ? has spent months developing a special sample document that allows tax professionals to quickly set their focus in developing their own written security plans.

?Tax professionals play a critical role in our nation?s tax system,? said Carol Campbell, director of the IRS Return Preparer Office and co-lead of the Summit tax professional group. ?But for many tax professionals, it is difficult to know where to start when developing a security plan. The Summit members worked together on this guide to walk tax pros through the many considerations needed to create a Written Information Security Plan to protect their businesses and their clients, as well as comply with federal law.?

Each year, the Security Summit partners highlight a ?Protect Your Clients; Protect Yourself? summer campaign aimed at tax professionals. This is the fourth in a series of five tips for this year?s effort. These are issued each Tuesday to coincide with the Nationwide Tax Forums, which help educate tax professionals on security and other important topics.

There are many aspects to running a successful business in the tax preparation industry, including reviewing tax law changes, learning software updates and managing and training staff. One often overlooked but critical component is creating a WISP.

?There?s no way around it for anyone running a tax business. Having a written security plan is a sound business practice ? and it?s required by law,? said Jared Ballew of Drake Software, co-lead for the Summit tax professional team and incoming chair of the Electronic Tax Administration Advisory Committee (ETAAC). ?The sample provides a starting point for developing your plan, addresses risk considerations for inclusion in an effective plan and provides a blueprint of applicable actions in the event of a security incident, data losses and theft.?

Security issues for a tax professional can be daunting. The Summit team worked to make this document as easy to use as possible, including special sections to help tax professionals get to the information they need.

?We have tried to stay away from complex jargon and phrases so that the document can have meaning to a larger section of the tax professional community,? said Campbell. ?It is not intended to be the final word in Written Information Security Plans, but it is intended to give tax professionals a place to start in understanding and attempting to draft a plan for their business.?
?
A security plan should be appropriate to the company?s size, scope of activities, complexity and the sensitivity of the customer data it handles. There is no one-size-fits-all WISP. For example, a sole practitioner can use a more abbreviated and simplified plan than a 10-partner accounting firm, which is reflected in the new sample WISP from the Security Summit group.

Once completed, tax professionals should keep their WISP in a format that others can easily read, such as PDF or Word. Making the WISP available to employees for training purposes is encouraged. Storing a copy offsite or in the cloud is a recommended best practice in the event of a natural disaster.

*Additional resources*
Tax professionals also can get help with security recommendations by reviewing IRS Publication 4557, Safeguarding Taxpayer Data [ [link removed] ], and Small Business Information Security: The Fundamentals [ [link removed] ] by the National Institute of Standards and Technology. The IRS Identity Theft Central [ [link removed] ] pages for tax pros, individuals and businesses have important details as well.

Publication 5293, Data Security Resource Guide for Tax Professionals [ [link removed] ], provides a compilation of data theft information available on IRS.gov. Also, tax professionals should stay connected to the IRS through subscriptions to e-News for Tax Professionals [ [link removed] ] and social media [ [link removed] ].

The IRS also recommends tax professionals create a data theft response plan, which includes contacting the IRS Stakeholder Liaisons [ [link removed] ] to report a theft.

Back to Top [ #Fifteenth ]

________________________________________________________________________

FaceBook Logo [ [link removed] ]??YouTube Logo [ [link removed] ] ?Instagram Logo [ [link removed] ]? Twitter Logo [ [link removed] ] ?LinkedIn Logo [ [link removed] ]

________________________________________________________________________

Thank you for subscribing to the IRS Newswire, an IRS e-mail service.

If you know someone who might want to subscribe to this mailing list, please forward this message to them so they can subscribe [ [link removed] ].

This message was distributed automatically from the mailing list IRS Newswire. *Please Do Not Reply To This Message.*


________________________________________________________________________

Update your subscriptions, modify your password or email address, or stop subscriptions at any time on your Subscriber Preferences Page [ [link removed] ]. You will need to use your email address to log in. If you have questions or problems with the subscription service, please contact subscriberhelp.govdelivery.com [ [link removed] ].

This service is provided to you at no charge by the Internal Revenue Service (IRS) [ [link removed] ].


body .abe-column-block {min-height: 5px;} ________________________________________________________________________

This email was sent to [email protected] by: Internal Revenue Service (IRS) ? Internal Revenue Service ? 1111 Constitution Ave. N.W. ? Washington DC 20535 GovDelivery logo [ [link removed] ]