Security & WISP Compliance
We protect your clients' tax data with the highest security standards required by the IRS.
What is a WISP?
The Written Information Security Plan (WISP) is a mandatory written security plan for every tax preparer in the United States, per IRS Publication 4557 and the FTC Safeguards Rule.
Important: Every tax preparer in the U.S. is legally required to have a documented WISP. Non-compliance can result in fines up to $50,000 per violation and PTIN revocation.
Common Risks You Must Avoid
Unencrypted email
Emails travel in plain text. Anyone on the network can intercept your clients' bank statements.
Generic shared clouds
Personal Google Drive or Dropbox don't meet the access control and audit requirements demanded by the IRS.
No documented WISP
When renewing your PTIN, you declare having a security plan. Without one, you face fines up to $50,000 per violation.
Our Security Measures
AES-256 Encryption
All files are stored with military-grade encryption, the same standard used by financial institutions.
HTTPS/TLS in Transit
Every data transfer between your browser and our servers is protected with TLS certificates.
Complete Audit Log
Every action (upload, download, access) is logged with date, time, IP, and user for WISP compliance.
Access Control
Secure authentication with unique credentials per preparer. Only authorized users access documents.
Security Officer Designation
Our team acts as your data security officer, overseeing the protection of tax information.
Incident Response Plan
Documented procedures for data breach response: IRS notification and affected client communication.