Professional responsibilities in data security for tax professionals
  • Home
Advertisement Feature
Abstract image of a lock inside a network

Professional responsibilities in data security for tax professionals

Jun 04, 2023 · 2 min read

Cybercriminals are familiar with tax practices and the depth of confidential client data available for the taking — data these thieves want to use to commit financial and tax-related crimes. As a tax professional, you must safeguard your clients’ data. Laws and professional responsibilities, such as those listed below, bind you to a high standard of quality control to be certain data is kept safe.

  • Gramm-Leach-Bliley Act (GLBA): According to the Federal Trade Commission (FTC) safeguards rule, tax preparers must implement security plans to protect client data. Failure to do so may result in an FTC investigation. Learn how to comply with these rules and read more guidance on data security in IRS Publication 4557, Safeguarding Taxpayer Data. Note, the safeguards rule contained in the Gramm-Leach-Bliley Act was amended in December 2021. The amendments are applicable beginning June 9, 2023.

  • Sec. 7216, Disclosure or Use of Information by Preparers of Returns: This criminal provision in the Internal Revenue Code prohibits preparers from knowingly or recklessly disclosing or using tax return information. See the AICPA’s Sec. 7216 guidance and the IRS’s Sec. 7216 frequently asked questions (FAQs) to help you comply.

  • Treasury Department Circular No. 230, Regulations Governing Practice before the IRS: These rules impose an obligation on practitioners to exercise due diligence in preparing returns or other documents related to a federal tax matter. A violation may subject a practitioner to sanctions, including censure, suspension or disbarment from practice before the IRS. See the AICPA’s guidance on Circular 230.

  • AICPA Code of Professional Conduct: As a member of the AICPA, you have responsibilities to the public, clients and colleagues, including responsibilities to keep client information confidential and secure. Access the full Code of Professional Conduct.

  • AICPA Statements on Standards for Tax Services (SSTSs): This guidance delineates members' responsibilities to taxpayers, the public, the government and the tax profession. Access the complete set of SSTSs, interpretations and FAQs.

  • Other requirements: Depending on your situation, you may need to adhere to other privacy requirements. See the AICPA’s information security and privacy guidance.

Related tools and resources

Visit our Cybersecurity Resource Center to access additional tools and learn how cyberattacks are impacting other aspects of the accounting profession.

What did you think of this?

Every bit of feedback you provide will help us improve your experience

What did you think of this?

Every bit of feedback you provide will help us improve your experience

Related content