Get Started Now! Get Your Credit Repair Do It Yourself!!

What Tax Pros Should Do in Case of Data Theft

New IdentityTheft Scam

Tax professionals are being reminded by the IRS that they should report incidents of data theft immediately and follow an established process for helping the IRS protect their clients.

If notified timely, the IRS can help stop fraudulent tax returns being filed in clients’ names, which otherwise might delay legitimate tax refunds. This action to help protect taxpayers requires the cooperation of the tax professional with the IRS.

Although the IRS and its Security Summit partners are making progress against tax-related identity theft, cybercriminals continue to evolve, and data thefts at tax professionals’ offices are on the rise. Thieves use stolen data from tax practitioners to create fraudulent returns that are harder to detect.

Should a tax professional experience a data compromise – whether by cybercriminals, theft or accident – there are certain basic steps to take. These include:

Contacting the IRS and law enforcement:

  • Internal Revenue Service, report client data theft to local stakeholder liaisons. Liaisons will notify IRS Criminal Investigation and others within the agency on the tax professional’s behalf. Speed is critical. If reported quickly, the IRS can take steps to block fraudulent returns in clients’ names.
  • Federal Bureau of Investigation, local office (if directed).
  • Secret Service, local office (if directed).
  • Local police – To file a police report on the data breach.

Contacting states in which the tax professional prepares state returns:

  • Any breach of personal information could have an effect on the victim’s tax accounts with the states as well as the IRS. To help tax professionals find where to report data security incidents at the state level, the Federation of Tax Administrators has created a special page with state-by-state listings.
  • State Attorneys General  for each state in which the tax professional prepares returns.  Most states require that the attorney general be notified of data breaches. This notification process may involve multiple offices.

Contacting experts:

  • Security expert – to determine the cause and scope of the breach, to stop the breach and to prevent further breaches from occurring.
  • Insurance company – to report the breach and to check if the insurance policy covers data breach mitigation expenses.

Contacting clients and other services:

  • Federal Trade Commission – for guidance for businesses. For more individualized guidance, contact the FTC at [email protected].
  • Credit / identity theft protection agency – certain states require offering credit monitoring/ID theft protection to victims of ID theft.
  • Credit bureaus – to notify them if there is a compromise and clients may seek their services.
  • Clients – Send an individual letter to all victims to inform them of the breach but work with law enforcement on timing. (Clients should complete IRS Form 14039, Identity Theft Affidavit, but only if their e-filed return is rejected because of a duplicate Social Security number or they are instructed to do so.)
  • Remember: IRS toll-free assisters cannot accept third-party notification of tax-related identity theft. Again, preparers should use their local IRS Stakeholder Liaison to report data loss.

Source: on 2018-09-12 15:41:15

Read More At Source Site

Add a Comment

Your email address will not be published. Required fields are marked *

− 6 = 2