IR-2019-200: National Tax Security Awareness Week, Day 5: Tax professionals need data protection plans; must guard against identity theft

IRS Newswire December 6, 2019

News Essentials What's Hot News Releases IRS - The Basics IRS Guidance Media Contacts Facts & Figures Around The Nation e-News Subscriptions The Newsroom Topics Multimedia Center Noticias en Español Radio PSAs Tax Scams The Tax Gap Fact Sheets IRS Tax Tips Armed Forces Latest News Home IRS Resources Compliance & Enforcement Contact My Local Office Filing Options Forms & Instructions Frequently Asked Questions News Taxpayer Advocate Where to File IRS Social Media

Issue Number:    IR-2019-200 Inside This Issue National Tax Security Awareness Week, Day 5: Tax professionals need data protection plans; must guard against identity theft WASHINGTON – As National Tax Security Awareness week concludes, the IRS, state tax agencies and the tax industry today reminded tax professionals that federal law requires them to create and follow a written information security plan to protect their clients' data. The reminder came as the IRS and its Security Summit partners today completed the fourth annual National Tax Security Awareness Week. The purpose of the week-long educational effort is to encourage individuals, businesses and tax professionals to take steps to protect sensitive data, including their identities and personal information.  "The Security Summit partners have made great progress against tax-related identity theft," said IRS Commissioner Chuck Rettig. "But we need to do more, and we need the help of taxpayers and tax professionals to continue our momentum. We all have a role to play, especially tax professionals that remain among the most coveted of targets by identity thieves."   This is part of a larger education effort by the Security Summit partners, a public-private partnership of the IRS, state tax agencies, the nation's tax industry and tax professionals. This summer, the Summit partners offered tax professionals a Taxes-Security-Together Checklist to consider. Today, the IRS and Summit partners renewed their call for tax professionals to take time to review the safeguards prior to the start of the 2020 filing season and to take appropriate steps. With the filing season just weeks away, tax professionals who have a data security plan should review it for updates. Those who don't have a plan should create one. Having an information security plan is not just a good idea, it's federal law. Identity thieves target tax professionals because of the client data they hold. Thieves use stolen data from tax practitioners to create fraudulent returns with more realistic data − that can be harder for the IRS and the Security Summit partners to detect. To get started on an information security plan, tax professionals can review Publication 4557, Safeguarding Taxpayer Data. It details critical security measures that all tax professionals should enact. The publication also includes information on how to comply with the FTC Safeguards Rule, including a checklist of items for a prospective data security plan. Tax professionals are asked to focus on key areas such as employee management and training; information systems; and detecting and managing system failures. The FTC-required information security plan must be appropriate to the company's size and complexity, the nature and scope of its activities and the sensitivity of the customer information it handles. According to the FTC, each company, as part of its plan, must: Designate one or more employees to coordinate its information security program; Identify and assess the risks to customer information in each relevant area of the company's operation and evaluate the effectiveness of the current safeguards for controlling these risks. Design and implement a safeguards program and regularly monitor and test it; Select service providers that can maintain appropriate safeguards, make sure the contract requires them to maintain safeguards and oversee their handling of customer information; and Evaluate and adjust the program in light of relevant circumstances, including changes in the firm's business or operations, or the results of security testing and monitoring. The FTC says the requirements are designed to be flexible so that companies can implement safeguards appropriate to their own circumstances. The Safeguards Rule requires companies to assess and address the risks to customer information in all areas of their operations. Please note: The FTC currently is re-evaluating the Safeguards Rule and has proposed new regulations. Tax professionals should be alert to any changes in the Safeguards Rule and its effect on the tax preparation community. Back to Top         Thank you for subscribing to the IRS Newswire, an IRS e-mail service. If you know someone who might want to subscribe to this mailing list, please forward this message to them so they can subscribe. This message was distributed automatically from the mailing list IRS Newswire. Please Do Not Reply To This Message.

 

---

Update your subscriptions, modify your password or email address, or stop subscriptions at any time on your Subscriber Preferences Page. You will need to use your email address to log in. If you have questions or problems with the subscription service, please contact subscriberhelp.govdelivery.com.

This service is provided to you at no charge by the Internal Revenue Service (IRS).

---

This email was sent to business.solutions.ve@gmail.com by: Internal Revenue Service (IRS) · Internal Revenue Service · 1111 Constitution Ave. N.W. · Washington DC 20535