- FTC enhanced Safeguards Rule effective June 9, 2023: Resources currently available:
En atención a la implementación de los más recientes requisitos aplicables a entidades que ofrecen servicio de preparación de planillas, entre los cuales se encuentra la necesidad de desarrollar, implementar y mantener un plan de seguridad para proteger la información de sus clientes, incluimos los recursos que el AICPA ha hecho disponibles en relación al tema. El Colegio de CPA se encuentra haciendo gestiones para ofrecer varias actividades educativas sobre estos requisitos para el beneficio de la matrícula:
Below is the list or resources we currently have on the Enhanced Safeguards Rule under the Gramm-Leach-Bliley Act (GLBA) and the Written Information Security Plan (WISP). Additional resources are being developed too. As they become available they will be posted on our landing page (#1 below). I’ll also reach out with the most pertinent resources.
1. Professional Responsibilities in Data Security for Tax Professionals landing page – this has various resources, with different levels of access (open to all, AICPA members and Tax Section members) including links to articles and IRS publications https://www.aicpa-cima.com/resources/article/professional-responsibilities-in-data-security-for-tax-professionals
2. The GLBA security plan template (locked to AICPA Tax Section members) – https://www.aicpa-cima.com/resources/download/gramm-leach-bliley-act-information-security-plan-template
3. Video – there will be a future page that will be open to everyone. Video was recorded last week at the AICPA’s ENGAGE conference and will include some general information. We plan to push communications to this page when it’s live.
4. Tax newsletter blurb – we pushed out a blurb in our Tax Section newsletter last week:
- Updated FTC Safeguards Rule goes into effect on June 9
A Written Information Security Plan (WISP) is required by the Federal Trade Commission’s (FTC) Safeguards Rule of the Gramm-Leach-Bliley Act (GLBA) whereby financial institutions, including tax preparers, must develop, implement and maintain a comprehensive security plan to protect customer and client information. The FTC updated its requirements and will go in effect on June 9. Tax Section members will be able to download an updated version of the Gramm-Leach-Bliley Act Information Security Plan Template next week.
5. AICPA articles not already included in the above list:
- Complying with the Safeguards Rule for information security (The Tax Adviser, May 2023)
- Guide released for tax pros’ information security plan (The Tax Adviser, August 2022)
- Keeping client data secure: How’s your cybersecurity immunity? (The Tax Adviser, December 2021)
6. IRS Information – Security Summit – link to IRS page on information security. Note, under the “Additional Information”, section there are links to various IRS publications including, Publication 5708 (Creating a Written Information Security Plan for your Tax & Accounting Practice) and Publication 4557 (Safeguarding Taxpayer Data: A Guide for Your Business) along with a link to a separate landing page titled, Data Theft Information for Tax Professionals
7. Additional AICPA Resource – WISP: Required by federal law for tax practitioners – part of the Private Companies Practice Section (PCPS) resources and available to all AICPA members
8. AICPA Tax Section Odyssey podcast – Accounting transformation with Donny Shimamoto (June 2023) – discusses written information security plans