Return to course: Annual WISP Security Awareness Training and Certification
WISPGenerator.com
Previous
Previous Section
Course Overview
Annual WISP Security Awareness Training and Certification
Introduction
Welcome Aboard: Your Journey to Becoming a Data Protection Pro!
Course
Lesson 1: Understanding PII in the Context of Tax and Accounting
Lesson 2: The IRS and Protecting PII
Lesson 3: Introducing the WISP - Your New Best Friend
Lesson 4: The Objective of a WISP
Lesson 5: Who Gets Access to PII Data?
Lesson 6: The Essentials of a WISP
Lesson 7: The Consequences of Ignoring PII Protection
Lesson 8: The Importance of Regular WISP Review
Lesson 9: Proper Disposal of PII Data
Lesson 10: Responding to a Data Breach
Conclusion
In Conclusion: You're a Data Protection Pro!
Certification
Annual WISP Security Awareness Certification
Annual WISP Security Awareness Certification
Complete the Following 10 Multiple Choice Questions
What is PII (Personally Identifiable Information) in the context of tax and accounting?
*
Client's favorite color
Client's favorite color
Client's Social Security Number
Client's favorite restaurant
Which U.S. government agency has established regulations regarding the protection of PII data in tax, accounting, and CPA firms?
*
FDA
IRS
EPA
FCC
What is a WISP (Written Information Security Plan) in the context of data protection?
*
A software tool for data encryption
A document outlining a company's data protection procedures and protocols
A type of data breach
A hardware tool for data protection
What is one of the objectives of having a WISP?
*
To provide an outline for social media usage
To provide a guide for data protection and breach response
To provide a sales strategy for the company
To provide an organizational chart of the company
Who should have access to PII data according to IRS and FTC regulations?
*
All employees of the firm
Only those employees who need the data to do their job
Only top management of the firm
The public
What is one of the required elements of a WISP according to IRS and FTC guidelines?
*
A list of favorite movies of all employees
Detailed security measures to protect PII
A list of all the employees' home addresses
A list of all past and present clients of the firm
What is the consequence of failing to adhere to IRS and FTC regulations regarding PII data protection?
*
A high-five
Fines and potential legal action
An invitation to a party
A free vacation
How often should a WISP be reviewed and updated?
*
Once a decade
When there is a data breach
Annually, or whenever there are significant changes to the firm's practices or applicable regulations
Never, once it's written it's final
What is the recommended method for disposal of PII data?
*
Throwing it in the trash can
Shredding, burning, or otherwise rendering it unreadable
Giving it to a third party without consent
Keeping it indefinitely
How should a tax, accounting, or CPA firm respond to a suspected or confirmed PII data breach?
*
Ignore it and hope it goes away
Respond according to the procedures outlined in the WISP
Delete all data from the firm's systems
Inform all friends and family about the breach