Written Information Security Plan (WISP)
U-Consults Tax Services
Introduction
U-Consults Tax Services is committed to protecting the confidentiality, integrity, and security of client information. This Written Information Security Plan (WISP) outlines the administrative, technical, and physical safeguards implemented to protect sensitive taxpayer data in compliance with applicable federal and state data protection standards, including IRS guidelines.
This policy applies to all client information collected through our website, secure portal, tax intake forms, and tax preparation process.
Information We Collect
To provide tax preparation and consultation services, we may collect:
Full legal name
Address and contact information
Social Security Number (SSN) or ITIN
Date of birth
Income documents (W-2, 1099, etc.)
Business income and expense records
Dependent information
Prior-year tax returns
Payment information
Information is collected only when necessary to provide professional tax services.
How We Collect Information
Client information may be collected through:
Secure online intake forms
Encrypted client portal uploads
In-person document submission
Virtual consultation sessions
Sensitive information should never be sent by unsecured email or text message.
Administrative Safeguards
U-Consults implements the following administrative controls:
Access to client data is limited to authorized personnel only
Staff are trained in confidentiality and data protection procedures
Client information is used solely for tax preparation and related services
Confidential information is not shared without the client's authorization unless required by law
Periodic review of data security procedures
Technical Safeguards
To protect electronic data, U-Consults uses:
Secure website encryption (HTTPS/SSL)
Password-protected client portals
Secure hosting environment
Firewall and security monitoring tools
Strong password policies
Limited administrator access
Where applicable, multi-factor authentication (MFA) may be implemented.
Physical Safeguards
Where physical documents are used:
Paper documents are stored securely
Access to physical files is restricted
Sensitive documents are shredded when no longer required
Data Retention & Disposal
Client tax records are retained only for the period necessary to comply with legal, regulatory, and professional requirements.
When information is no longer required:
Electronic files are securely deleted
Physical documents are properly destroyed
Incident Response Plan
In the event of a suspected or confirmed data breach:
Immediate steps will be taken to contain the incident
Affected systems will be secured
Clients will be notified if required by law
Appropriate authorities will be contacted if necessary
Corrective actions will be implemented to prevent recurrence
Client Responsibilities
Clients are encouraged to:
Use strong passwords for portal access
Avoid sharing login credentials
Upload documents only through the secure portal
Notify U-Consults immediately if suspicious activity is detected
No Guarantee of Outcomes
While U-Consults maintains strict data protection standards, no system can guarantee absolute security. We implement reasonable and industry-aligned safeguards to reduce risk and protect client information.
Updates to This Policy
This WISP may be updated periodically to reflect changes in technology, regulations, or operational procedures. Updates will be posted on this page.
Contact Information
For questions regarding this Privacy & Data Security Policy:
U-Consults Tax Services
📞 971-303-853
📧 info@u-consults.com