top of page

WISP Compliance Pack

The all-in-one Information Security Program for Accountants

Woman Working on Laptop

FTC Safeguards Rule and IRS 4557 Compliant

The WISP Compliance Pack designed specifically for accountants and financial institutions. 

To comply with the IRS and FTC Safeguards Rule, a Written Information Security Plan (WISP) is essential for financial institutions.

 

The IRS requires tax preparers to confirm they have a data security plan in place when renewing their Preparer Tax Identification Number (PTIN).

 

The iComply online WISP Compliance Pack will give you the confidence to meet the requirements and renew your PTIN hassle-free.

Comprehensive

Our pre-written policies provide a ready-to-use framework, saving your organization the time and effort required to develop policies from scratch. This allows for quicker implementation of security measures.

Cost-Effective

Our pack helps you align with major regulations like FTC Safeguards Rule, IRS 4557, GDPR and CCPA. Use our Gap Assessment checklist to track your compliance journey and identify areas for improvement.

Industry Aligned

Built on the foundations of ISO 27001 and NIST CSF 2.0, our WISP addresses the core aspects of information security. From thorough risk assessment to employee training, we've got every angle covered to protect your digital assets.

Take a look through the WISP...

We've got you covered.

​The Compliance Pack includes a detailed Written Information Security Plan with over 30 pre-built policies and supporting documents based on the ISO 27001 Information Security Management System and NIST Cyber Security Framework (CSF) that are easy to use and customizable. 

If you are subject to the following regulations the WISP Compliance Pack can help you on your way: 

  • Sarbanes Oxley (SOX)

  • Gramm-Leach Bliley Act (GLBA) 

  • Payment Card Industry Data Security Standard (PCI DSS)

  • Federal Information Security Management Act (FISMA)

  • California Consumer Privacy Act (CCPA

  • EU / UK General Data Protection Regulation (GDPR) 

  • Internal Revenue Service Publication (IRS 1075)

It contains the core framework for an accounting firm to implement an information security program and help achieve compliance with the FTC Safeguards Rule and more. 

What's included? 

"You can absolutely write your own WISP. There’s no law that says you need to hire a third-party consultant or purchase an off-the-shelf solution to craft your own information security plan. In fact, understanding your organization’s unique needs might put you in a position to do it yourself".


"But there's a catch - just because you "can" write your own plan, doesn't always mean you "should. Whether or not you should tackle this task yourself really depends on your knowledge, experience and understanding of cybersecurity best practices".

What goes into writing a WISP? 

bottom of page