Free WISP Download From PTIN Directory For 2024

 “There’s no way around it for anyone running a tax business. Having a written security plan is a sound business practice – and it’s required by law,” said Jared Ballew of Drake Software, co-lead for the Summit tax professional team and incoming chair of the Electronic Tax Administration Advisory Committee (ETAAC). 


When tax preparers renew their PTIN on the W-12 ,  they will notice it now states “Data Security Responsibilities: “As a paid tax return preparer, I am aware of my legal obligation to have a data security plan and to provide data and system security protections for all taxpayer information. Check the box to confirm you are aware of this responsibility.”  

The IRS requires a written information security plan for accountants to protect clients’ data. Having a written information security plan is required because once implemented properly it helps you take the right steps to practice good security.

Our free information security plan template, which you can download for free by filling out the form, covers topics that range from:

  •  Antivirus protections
  • Two-factor authentication
  • Password
  • Cybersecurity
  • Employee training
  • Steps to take in the case of a data breach.

What Exactly Is A WISP?

A Written Information Security Plan is the formal document in which an accounting firm describes the technical, physical, and administrative safeguards which ensure information privacy.

A WISP requires an accounting firm to be well prepared for any cyber threat which is posed to the sensitive data held in a firm’s possession – physically or electronically. The goal of the IRS requiring this document is to keep individual firms accountable for the security of breaches in customer data. Those who choose to neglect these stringent guidelines may incur a heavy fine from the federal government.

Does YOUR Accounting Firm Need WISP?

Certified Public Accounting firms are some of the most vulnerable to security breaches since they contain a customers’ sensitive data. The financial data of different businesses and their owners can offer a huge payday for those intent to exploit your system. Recognizing this ever-growing problem, the different levels of government put these legal responsibilities on these firms to encourage compliance.

What If Your Firm Has No WISP?

The fifth Title of the Financial Services Modernization Act of 1999, also known as the Gramm Leach Bliley Act, states that all financial institutions working under the Federal Trade Commission are required to take necessary steps to ensure the protection of customers’ sensitive data as stated in the Safeguard Rule. The Federal Trade Commission has implemented this rule through different regulatory sectors. Violation of this rule results in a heavy penalty, the details of which are:

  • The firm violating the law would have to pay a fine of $100,000 each time it violates it
  • The individual members of the firm are personally accountable to pay a fine of $10,000 for each violation.
  • Title 18 of the United States Code also declares violating individuals may face imprisonment for five years for each violation.
  • Also both the fine and imprisonment can be imposed on the violating party.
  • Depending on the severity of the violations the prosecuting institutions can seek a higher fine or jail term. The scope and number of customers who are impacted dictate the severity of punishment

Endorsement from PTIN.ORG

“We are proud to announce that as part of our strategy to help tax professionals comply with Federal and State data breach guidelines to insure you are protecting your clients’ data, the PTINdirectory has partnered with Rush Tech Support [Tech 4 Accountants] . They can be trusted and are located only in the U.S mainland.

It is imperative that the IT team you work with can be trusted since you will be relying on them to protect your data while having access to your data. All Rush Tech [Tech 4 Accountants] technicians have cyber security certifications from the Association of International Certified Public Accountants.

Rush Tech Support [Tech 4 Accountants] are experts in cybersecurity and IT specifically for Accountants and are offering PTIN registrants a Complimentary IT Audit for the purpose of exposing any dangerous non-compliance issues. Their free analysis and report will not only identify possible dangerous gaps and deficiencies in IRS compliance but also show how those threats could be mitigated should you wish to use their expertise.

Data breaches have increased 330% since the start of COVID-19, and Accounting Today has stated “In 2022, amid the global COVID-19 crisis, the idea that ‘ignorance is bliss’ in cybersecurity and compliance is now passé”. Non-compliance with IRS Publication 4557 can lead to identity theft, tax fraud and huge fines if there is a data breach and the entity is found to have been negligent.

We have chosen Rush Tech because they are experts in IT/Cybersecurity specifically for Accountants and Tax Professionals and are AICPA Certified. We have given them a Five-Star Review Award. We recommend you take advantage of this Complimentary IT Audit that Rush Tech is offering so that you can be 100% sure that you are compliant!

Michael Rosedale CPA
President, PTIN.ORG”

PTIN Directory

Having the endorsement from the prestigious PTIN Directory let’s our clients know that the people who download this template are not only on the path to IRS compliance, but also have a secured and vetted organization to offer the plan. 


The PTIN Directory has vetted dozens of IT providers, and nobody has been able to match the level of expertise that Tech 4 Accountants has been able to produce. 


If you hold a PTIN, this is a must, and Tech 4 Accountants Makes I.T. Easy

Download Your Free Written Information Security Plan Template​

Skip to content