• Free Enewsletter
  • Free Estate Planning Guide
  • Get Started
  • Text Resize
    Subsribe to RSS Feed

    Monday August 3, 2020

    Washington News

    Washington Hotline

    Data Security Requirements for Tax Preparers

    During tax year 2017, the IRS reported that 80 million tax returns were filed by professional tax preparers. About 56% of taxpayers needed the assistance and advice of a professional tax preparer.

    If you are in the majority of taxpayers who use a professional tax preparer, you benefit from the efforts of the IRS and the Federal Trade Commission (FTC) to protect your personal tax information. In IR-2019-131 the IRS offered tips to tax preparers on ways to safeguard client information.

    "Protecting taxpayer data is not only a good business practice, it is the law for professional tax preparers," IRS Commissioner Chuck Rettig stated. "Creating and putting into action a written data security plan is critical to protecting your clients and protecting your business."

    The FTC requires all tax preparers to comply with the "Safeguards Rule." While the scope and complexity of a plan will relate to the size of the tax preparation organization, all tax preparers must have a written data security plan.

    The plan must include the following five components:
    1. Security Coordinator — A named employee must be in charge of the data security program.
    2. Risk Assessment — The Security Coordinator must review all procedures for data security. This may include firewalls, anti-virus software, data encryption policies and a review of individuals who have access to servers and data.
    3. Safeguards Program — The Security Coordinator must periodically analyze the system and ensure that the operating systems, firewall and anti-virus software updates have been completed. Many data breaches have occurred because an operating system, firewall or anti-virus software update was not installed.
    4. Review of Service Providers — Many tax preparers use software or servers maintained by third parties. The Security Coordinator must review the data safety plans of outside providers.
    5. Security Evaluation — Data security is an ongoing program. The Security Coordinator must periodically review the overall security plan and make updates as needed.
    Editor's Note: Tax professionals can find a detailed security checklist in IRS Pub. 4557, Safeguarding Taxpayer Data. This guide also explains how to train employees and manage data systems.

    Published July 26, 2019
    Subsribe to RSS Feed

    Previous Articles