Compliance & Security

Protecting your financial information is our highest priority. As a Certified Public Accountant serving West Virginia individuals and small businesses, we follow strict federal and state data security standards to ensure your sensitive information remains confidential, encrypted, and protected.

Federal Security Compliance

FTC Safeguards Rule (16 CFR Part 314)

We maintain full compliance with the Federal Trade Commission Safeguards Rule, which requires:

  • A Written Information Security Plan (WISP)
  • Multi-Factor Authentication (MFA)
  • Encryption of data at rest and in transit
  • Annual employee security training
  • Continuous system monitoring
  • Vendor risk assessment and due diligence

These safeguards are designed to protect customer financial data from unauthorized access or breaches.

IRS Publication 4557 – Safeguarding Taxpayer Data

As required by the IRS, we implement strict data protection protocols including:

  • Restricted access to taxpayer information
  • Encrypted electronic communication
  • Written data security policies
  • Incident response planning
  • Secure document retention and disposal procedures

Our security practices align with IRS standards to prevent identity theft and tax-related fraud.

Gramm-Leach-Bliley Act (GLBA)

Under GLBA requirements, we:

  • Provide appropriate privacy protections
  • Conduct risk assessments
  • Safeguard nonpublic personal information
  • Maintain documented data protection procedures

West Virginia Compliance Requirements

West Virginia Data Breach Notification Law (WV Code §46A-2A-101)

In compliance with West Virginia law, we maintain documented security controls and procedures to ensure:

  • Prompt reporting of any qualifying data breach
  • Proper protection of personal information belonging to West Virginia residents
  • Reduced liability through documented compliance programs

Written Information Security Plan (WISP)

Our firm maintains and annually reviews a comprehensive Written Information Security Plan consistent with federal and multi-state small business requirements for handling client Personally Identifiable Information (PII).

Ongoing Security Measures

To remain audit-ready and proactive, we:

  • Utilize secure cloud-based platforms with encryption
  • Enforce Multi-Factor Authentication across systems
  • Conduct periodic security reviews
  • Maintain secure email and document-sharing protocols
  • Monitor compliance updates at both federal and state levels

Fully compliant with FTC Safeguards Rule and IRS Publication 4557, your financial data is encrypted, protected, and handled with the highest professional standards.

We need your consent to load the translations

We use a third-party service to translate the website content that may collect data about your activity. Please review the details in the privacy policy and accept the service to view the translations.