Safeguarding Data: Requirements and Resources


Editor's note: This is a sidebar for " Protect Your Portable Data - Always and Everywhere ."


CPAs should understand their ethical, legal and regulatory responsibilities to safeguard data. The following listings direct you to primary sources:




  Federal laws

  • Federal Trade Commission, Gramm-Leach-Bliley Act, Disclosure of Nonpublic Personal Information,
  • Department of Commerce, National Institute of Standards and Technology, Federal Information Processing Standards (FIPS),
  • Department of Education, Family Educational Rights and Privacy Act (FERPA),
  • Department of Health and Human Services, Office for Civil Rights, Health Insurance Portability and Accountability Act (HIPAA),


  State and local laws

  • AICPA tally of states and territories that have enacted legislation governing data security breaches, At this writing, 44 states, the District of Columbia, Puerto Rico and the U.S. Virgin Islands had done so.




  Federal Trade Commission (FTC). The FTC’s information for businesses can help you enhance compliance with the law. Also, see regulatory guidance and law enforcement information from the FTC’s Bureau of Consumer Protection, as well as a catalog of cases brought by the agency and a list of all Commission actions ( Other useful FTC publications include:


  Privacy Rights Clearinghouse. Practical information on privacy violations and other issues related to data security breaches,



Year-end tax planning and what’s new for 2016

Practitioners need to consider several tax planning opportunities to review with their clients before the end of the year. This report offers strategies for individuals and businesses, as well as recent federal tax law changes affecting this year’s tax returns.


News quiz: Retirement planning, tax practice, and fraud risk

Recent reports focused on a survey that gauges the worries about retirement among CPA financial planners’ clients, a suit that affects tax practitioners, and a guide that offers advice on fraud risk. See how much you know with this short quiz.


Bolster your data defenses

As you weather the dog days of summer, it’s a good time to make sure your cybersecurity structure can stand up to the heat of external and internal threats. Here are six steps to help shore up your systems.