top of page

What is the WISP?

The WISP is a Written Information Security Plan that protects tax professionals and clients from unauthorized access to sensitive information. It helps identify actions to take in the event of a security incident, data loss or theft.


Is it for all tax professionals?

Online Training.png

Employee Management and Training

Agreements, Limited Access, Password-Activated Screen Savers, Policies and Procedures, On-going Training, etc.


Information Systems

Access Controls, Strong Passwords, Multi-factor Authentication, Secure Backups, Device Inventory, Data Encryption, etc.


Detecting and Managing System Failures

Anti-virus, Anti-spyware, Firewalls, Updates, Communication Plan, etc.

What should it included?


What is included with our WISP service?

  • Safeguard Documentation

  • Risk Assessment

  • Employee Cybersecurity Training

  • Data Breach and Recovery Plan

  • Professional Insurance Policy Review

  • Business Continuity Plan

  • Backup and Restore Policies/Procedures

  • Communication Plan

  • Personnel and Device Inventory

  • Printed and Digital WISP (Personalized)

  • Access to a Subject Matter Expert

What people say about us...


I. Londono, Tax Pro

I hired their services to prepare the plan. They have given me peace of mind. Their professionalism in preparing it, the recommendations and the follow-up to complete it was to my complete satisfaction.


M. Naranjo, Tax Pro

They made our security plan when the law first required it, and they have helped us year after year to keep it current. Excellent service, professional, and reliable.


We strongly advise that we all take immediate action to improve our practices and prepare for a future visit or Inquiry from the IRS.

J. Jimenez, CPA & Tax Pro

Avoid Fines and Penalties ranging from
$1,000 to $50,000


  • Deliver a comprehensive Written Information Security Plan (WISP), not just a template.

  • Elaborate the WISP based on the laws.

  • Offer certified training approved by the IRS.

  • Document your incident response plan.

  • Identify who should be contacted and how in the event of a data breach.

  • Identify risks and share remediation plan.

  • Create security policies and procedures.

  • Give you access to an assigned consultant.

  • Share best practices to secure your business.

  • Share an annual checklist to update the WISP.

  • Involve you during the entire process.
  • We not lock you into an ongoing contract.
  • Only propose services you will need based on the size/type of your business.
  • Give you access to bilingual support.


  • Do not give you a completed, personalized WISP. They only give you a template which you will need to complete.

  • Cannot offer IRS certified training.

  • Do not give you a full list of local, regional and federal entities to contact in the event of breach.

  • Do not give you a risk assessment based on your type of business.

  • Do not include security policies and procedures.

  • Do not give you access to an assigned consultant.

  • Do not share best practices free of charge.

  • Do not help you update the WISP on your own.

  • Make you stay on a contract, otherwise, you will loose access to your WISP template.
  • Sell you services you might not need based on the size/type of your business.
  • Only give you support in English.

Order your WISP now!

Don't wait until it is too late!


By completing this form and placing this order, you agree to the following three agreements, terms and conditions:


Do you know what would be the cost of not having a comprehensive WISP?

  • Financial losses ($1K to $50K)

  • Regulatory Non-Compliance

  • Reputational Damage

  • Disruption of Operations

  • Litigation and Legal Challenges

  • Challenges to return to your business after a cyber attack

  • Etc.

Congratulations! on taking this step to secure your clients' data and your business. If you are here, you have questions about the WISP. Let us help you make an informed decision.

bottom of page