New to Data Security?

Create a WISP Security Data account to get started today.
$29 Fillable WISP Account
with Attachments, Checklists, Forms, Templates and Documents

All "Documents" are included:

50-Page WISP (13 Pages Plan + 37 Pages Attachments):
- 7 Contracts/Agreements
- 13 Attachments
- 14 Checklists
- 10 Forms
- 15 Templates
- 16 hyperlinks to: IRS and Government Publications on Appendix
Fully Customizable IRS WISP
Secure and Encrypted Cloud Hosting for Your Firm's Written Information Security Plan
eSign from Anywhere
Any Future Updates Included (until Renew date of September 1st)
Information resources to create and complete your Written Information Security Plan (WISP)
September 1st, - Renewable Annual Subscription for Tax Returns

IRS WISP Cover sheet

Customize your WISP

Develop a Written Information Security Plan (WISP): The IRS mandates that all tax professionals create and implement a WISP to safeguard taxpayer data. The IRS provides guidance on creating a WISP in Publication 5708.

WISP OBJECTIVES, PURPOSE, AND SCOPE

Keep your current Clients' data secure!

This plan outlines the processes and measures the Firm adopts to evaluate and manage the collection, access, storage, usage, transmission, and protection of PII.

What about DSC?

Employ Data Security Coordinator

The WISP Agreement with the Data Security Coordinator serves as a cornerstone document for ensuring data security, regulatory compliance, and the protection of sensitive information.

IRS Publication 5708: Employee & Contractor Acknowledgment Template for Compliance

Employee / Contractor WISP Agreement

Payment Solutions with ACH Processing

Ensure compliance with IRS Publication 5708 using our professionally crafted Employee/Contractor Acknowledgment of Understanding template.

Inventory Information Stored or Processed

Plan for Managing Information Stored or Processed and Restricting Use of Personal Devices. Comprehensive Documentation of Data Stored or Processed. To safeguard sensitive information in alignment with IRS Publication 5708

Public Information Officer

Perform many types of transactions with ease.

The WISP Public Information Officer (PIO) plays a crucial role in managing external communications, ensuring that all statements, releases, and information shared by the firm are consistent, accurate, and professional.

Monitoring and Testing Procedures

Monitoring and Testing Procedures: Implement regular audits, vulnerability assessments, and penetration testing to evaluate the effectiveness of existing security measures..

Monitoring and Testing Procedures: Implement regular audits, vulnerability assessments, and penetration testing to evaluate the effectiveness of existing security measures.

Renewal PTIN

PTIN and WISP Annually

Best Practices for IRS, FTC, and HIPAA Data Security Compliance in Remote Work

I.R.S. Publication 1345 – Authorized IRS e-file Providers of Individual Income Tax Returns

All Attachments, Checklists, Forms, Template and Documents provide 10 extra rows for "Your Firm" unique requirements

Protect Your Clients; Protect Yourself
IRS Guides on identity theft (All links are on below and the Appendix on 2026 WISP)
Individuals
Businesses
Tax professionals
Report a Breach - State Data Breach Contacts (All state links are on the Appendix on 2026 WISP)
State Attorneys General - Most states require that the state attorney general be notified of data breaches.
IRS "6" Mandated Standards - IRS Publication 1345
Data Security Coordinator Compliance Person - Responsiblities
Data Security Coordinator Compliance Person - Agreement and Attachment #3
Public Information Officer - Responsibilites
Public Information Officer - Agreement
Document Safety Measures in Place with Suggested Policies to Include in your WISP - Template #8
Firm Employees Authorized to Access PII - Template #9
Employee Acknowledgement of Understanding - Agreement - Attachment #5
Contractor Acknowledgement of Understanding - Agreement- Attachment #5
Government Agencies - Ongoing
Remote Working Employees - Template and Agreement
Remote Working Contractors - Template and Agreement
PII Disclosure Policy
Reportable Events Policy
WISP and HIPPA - Satisfying PII Protection Requirements through a Written Information Security Plan (WISP) in Compliance with HIPAA, IRS, and FTC Regulations
WISP Duties of ERO Electronically File - Template to capture the key duties of an EFIN and PTIN holder serving as an ERO
IRS Publication 1345 - Templates of:
- Key E-File Requirements Outlined
- What are the EFIN, PTIN and ERO Duties After Submitting the Return to the IRS
IRS Publication 5461 - Protect personal and financial information online
IRS Publication 5461d - Tax professionals should review their security protocols
IRS Publication 4557 - Template of: Safeguarding Taxpayer Data
WISP Reportable Event Policy
IRS Publication 5708 - Templates of:
- What Does the FTC Require for WISP Compliance
IRS Publication 5709 - Templates of:
- IRS Mandated "6" Standards;
- WISP security procedures Authorized IRS e-file Providers;
- Intermediate Service Provider receives tax information from an Electronic Return Originator (ERO);
- IRS e-file Rules and Requirements
IRS Publication 5293 - Templates of:
- track and document ERO duties...;
- Learn the Signs of Data Theft;
- Proactive Security Practices...;
Professional Responsibility and Data Security: Practitioners’ Obligation to Have a Written Information Security Plan (https://www.writtendatasecurityplan.com/documents/2023-10-careful-wisp(ef)-professional-responsibility-and-data-security.pdf) IRS Publication 5293 - Content and Templates
WISP - EFIN, PTIN and ERO - Content and Templates

APPENDIXES on our WISP

Best Practices for IRS, FTC, and HIPAA Data Security Compliance in Remote Work

Prior Years:

Or,

Free WISP

This Free WISP adherence with IRS Pub 5708 and IRS Pub 5709;
16 Publications on Appendix