P-1 Preparing Returns (Data Protection and Identity Theft) Flashcards
What is publication 5293?
Publication 5293 is the Data Security Resource Guide for Tax Professionals.
What is the Safeguard rule?
This Federal Trade Commission (FTC) Rule, (otherwise known as the Safeguards Rule) requires financial institutions, as defined, which includes professional tax preparers, data processors, affiliates, and service providers to ensure the security and confidentiality of customer records and information.
What is the IRS publication 4557?
IRS publication 4557 is a checklist for safeguarding client information
Authorized E-file providers must follow the IRS six security, privacy, and business standards to better serve taxpayers and protect their individual income tax information collected, processed, and stored. T/F
True,
Authorized E-file providers must follow the IRS six security, privacy, and business standards to better serve taxpayers and protect their individual income tax information collected, processed, and stored.
What are the standards of the IRS’s mandatory security practices based on for E-file providers?
The standards are based on the Gramm-Leach-Bliley Act.
What are the six requirements for IRS E-file security?
The six requirements are:
1. Extended Validation SSL Certificates
2. External Vulnerability Scan
3. Information Privacy and Safeguard Policies
4. Protection against bulk filing of fraudulent income tax returns
5. Public Domain Name Registration
6. Reporting of Security Incidents
What website should clients be referred to if their identity is stolen?
Refer clients to identitytheft.gov for general recommendations for your clients.
When a complaint is filed through identitytheft.gov what government agency is the report going to?
The report is going to the FTC, Federal trade commission.
What must a tax preparer have to inquire about a client’s return information with IRS?
The tax preparer must have a power of attorney on file, and the tax payer must authenticate the their identity with the IRS customer service representative.
When requesting a copy of a fraudulent return, if the fraudulent information used is listed as a dependent, can the authorized preparer request a copy?
No,
Due to federal privacy laws, the victim’s name and SSN must be listed as either the primary or secondary taxpayer on the fraudulent return; otherwise, the IRS cannot disclose the return information.
As described in Publication 4600, what does the Gramm-Leach-Bliley Act require?
It requires that financial institutions (including return preparers) provide clients with privacy notices that explain that institution’s practices for collection and sharing information.
What does the financial privacy rule involve?
The financial privacy rule requires financial institutions, including tax return preparers, to give their customers privacy notices.
What is the main requirement of the FTC safeguards rule for tax return preparers?
The main requirement is the develop, implement and maintain an information security program.
When setting up a tax practice, what are three things that must be done to safeguard security?
- Implement effective technologies to protect website against bulk filing of fraudulent income tax returns
- Run weekly vulnerability scans in accordance with PCI DSS.
- Website must be registered with a domain registrar in the US accredited by ICANN.
If an individual’s SSN has been compromised and they receive notice via the IRS, what form should they file?
The taxpayer should file form 14039 (Identity theft Affidavit).
