top of page
Danial-Does-Taxes-LLC-logo
Client Portal

WRITTEN INFORMATION SECURITY PLAN (WISP)

Danial Does Taxes LLC

Effective Date: 01/01/2026 | Last Reviewed: 02/21/2026

1. Purpose

This Written Information Security Plan (“WISP”) describes the safeguards implemented by Danial Does Taxes LLC to protect the confidentiality, integrity, and security of taxpayer information in compliance with federal regulations, including the FTC Safeguards Rule and IRS Publication 4557.

2. Information Security Responsibility

As a solo practitioner, Danial Browne, Owner, serves as the Information Security Coordinator and is responsible for:

  • Maintaining this WISP
  • Identifying and managing security risks
  • Implementing safeguards
  • Responding to security incidents
  • Reviewing this plan annually
3. Information Covered

This plan applies to all nonpublic personal information, including:

  • Social Security Numbers, ITINs, and EINs
  • Tax return data and financial statements
  • Bank account information
  • Driver’s license numbers and business records

Information may exist in paper, electronic, or cloud-based systems.

4. Risk Assessment

Danial Does Taxes LLC periodically assesses reasonably foreseeable risks, including phishing attacks, malware, ransomware, unauthorized access to devices, and theft of physical records. Safeguards are adjusted as risks evolve.

5. Administrative Safeguards
  • Access to taxpayer information is limited to the Owner only.
  • No unauthorized individuals may access client data.
  • Confidential information is not discussed in public or unsecured settings.
  • Third-party service providers are selected based on security standards.
6. Technical Safeguards

Danial Does Taxes LLC maintains the following protections:

A. Secure Devices: Antivirus/anti-malware software installed and updated; system updates enabled; device auto-lock enabled.

B. Encryption: Devices containing taxpayer information are encrypted; data transmitted electronically is encrypted (SSL/TLS).

C. Multi-Factor Authentication (MFA): MFA enabled for tax software, email accounts, cloud storage, and financial institutions.

  • Password Security: Strong, unique passwords required; password manager utilized.
  • Secure Internet: Encrypted Wi-Fi only; public Wi-Fi avoided.
  • Backups: Encrypted backups performed regularly; restoration tested.
7. Physical Safeguards

Paper documents are stored in locked cabinets; office access is restricted; screens are locked when unattended. Paper records are cross-cut shredded when no longer needed.

8. Data Retention & Disposal

Tax records are retained for 3–7 years. Electronic records are securely deleted, and physical records are shredded prior to disposal. Devices are wiped before replacement.

9. Incident Response Plan
  • Secure affected systems immediately.
  • Assess scope and type of information involved.
  • Notify affected clients and authorities as required by law.
  • Document the incident and corrective action.
10. Annual Review

This WISP is reviewed annually and updated to reflect regulatory changes, technology updates, business growth, or identified security risks.

11. Certification

I certify that Danial Does Taxes LLC maintains and enforces the safeguards described in this Written Information Security Plan.

Danial Browne
Owner, Danial Does Taxes LLC
Date: 02/22/2026

bottom of page