Congratulations! on taking this step to secure your clients' data and your business. If you are here, you have questions about the WISP. Let us help you make an informed decision.
Is it for all tax professionals?
Employee Management and Training
Agreements, Limited Access, Password-Activated Screen Savers, Policies and Procedures, On-going Training, etc.
Information Systems
Access Controls, Strong Passwords, Multi-factor Authentication, Secure Backups, Device Inventory, Data Encryption, etc.
Detecting and Managing System Failures
Anti-virus, Anti-spyware, Firewalls, Updates, Communication Plan, etc.
What should it included?
What is included with our WISP service?
-
Safeguard Documentation
-
Risk Assessment
-
Employee Cybersecurity Training
-
Data Breach and Recovery Plan
-
Professional Insurance Policy Review
-
Business Continuity Plan
-
Backup and Restore Policies/Procedures
-
Communication Plan
-
Personnel and Device Inventory
-
Printed and Digital WISP (Personalized)
-
Access to a Subject Matter Expert
​
What people say about us...
I. Londono, Tax Pro
I hired their services to prepare the plan. They have given me peace of mind. Their professionalism in preparing it, the recommendations and the follow-up to complete it was to my complete satisfaction.
M. Naranjo, Tax Pro
They made our security plan when the law first required it, and they have helped us year after year to keep it current. Excellent service, professional, and reliable.
We strongly advise that we all take immediate action to improve our practices and prepare for a future visit or Inquiry from the IRS.
J. Jimenez, CPA & Tax Pro
Avoid Fines and Penalties ranging from
$1,000 to $50,000
We
-
Deliver a comprehensive Written Information Security Plan (WISP), not just a template.
-
Elaborate the WISP based on the laws.
-
Offer certified training approved by the IRS.
-
Document your incident response plan.
-
Identify who should be contacted and how in the event of a data breach.
-
Identify risks and share remediation plan.
-
Create security policies and procedures.
-
Give you access to an assigned consultant.
-
Share best practices to secure your business.
-
Share an annual checklist to update the WISP.
- Involve you during the entire process.
- We not lock you into an ongoing contract.
- Only propose services you will need based on the size/type of your business.
- Give you access to bilingual support.
Others
-
Do not give you a completed, personalized WISP. They only give you a template which you will need to complete.
-
Cannot offer IRS certified training.
-
Do not give you a full list of local, regional and federal entities to contact in the event of breach.
-
Do not give you a risk assessment based on your type of business.
-
Do not include security policies and procedures.
-
Do not give you access to an assigned consultant.
-
Do not share best practices free of charge.
-
Do not help you update the WISP on your own.
- Make you stay on a contract, otherwise, you will loose access to your WISP template.
- Sell you services you might not need based on the size/type of your business.
- Only give you support in English.