How Third-Party Vendors are Helping CPAs Protect Client Data

by CPACharge | Nov 29, 2017
Today’s accounting professionals know that data security is a more urgent concern than ever. CPAs are in possession of their clients’ most sensitive personal and financial details, so it’s no surprise they’ve become prime hacking targets.

High-profile scams involving the filing of fake tax returns have even spurred the IRS to launch a public awareness campaign to educate tax preparers about the importance of data security. “We’re very concerned that identity thieves, in their never-ending hunt for taxpayer data, are turning their attention more and more to focus on tax return preparers,” said IRS Commissioner John Koskinen.

The IRS has advised CPAs to review all aspects of their data security strategies, including administrative practices, building protection, computer security, staff, and information systems. As you review your own firm’s data security measures, consider the role third-party service providers can play in your accounting firm’s IT infrastructure, and explore ways to limit your liability while working to keep clients’ data secure and private.

Shifting data to qualified third-party vendors
Many small and medium-sized accounting firms don’t have an IT specialist on staff, which means they’re often ill-equipped to navigate modern data security issues. This is why some are turning to qualified third-party solutions to take advantage of these companies’ more advanced security measures.

“Our survey findings show that many SMBs feel more secure with the cloud,” said small business expert and researcher Laurie McCabe. “The average small or midsized company doesn’t have a high level of in-house security expertise, while public cloud providers are betting their entire businesses on being secure.” Economies of scale also allow major cloud storage and software providers to maximize security and efficiency at a lower cost than most small businesses can achieve.

How CPAs can limit their liability
Because of the nature of your business, you might always have to retain some amount of sensitive data on-premise, whether it’s printed materials for client meetings or onsite storage of digital backup files.

But where possible, you can shift some of this information to qualified third-party providers, the best of which protect data with more robust security resources and technological capabilities than the average accounting firm can muster. Avoid storing sensitive data on paper or on your computer if you don’t have to, as these locations are especially vulnerable to theft or hacking. By moving this data to third-party storage or software services, you can not only increase data security, but also transfer some of the liability burden for maintaining that data to the third party.

Bear in mind that passing liability on to another vendor doesn’t get you off the hook completely. You still need to take appropriate steps to protect clients’ data before it leaves your possession. “Companies can reduce the damage caused by successful hacks by encrypting their most important information (for example, credit card data for banks or patient records for hospitals),” wrote Nick Huber for ICAS.

So why worry about becoming the next headline or cautionary tale? It’s time to trust your sensitive data to experts who have the experience and bandwidth to protect it. With CPACharge, you never need to take possession of credit card information from clients. Send bills online and let clients enter payment information on their own, knowing that CPACharge’s top-notch security and encryption measures are protecting sensitive data behind the scenes.

Are you ready to offload the burden of maintaining credit card information on-site? Learn more about how CPACharge can help you increase your data security with our secure, online payment technology.

Exclusive Member Discount:

Click on "Go" to see your exclusive member discount.



CPA Charge
3700 N. Capital of Texas Hwy, Suite 420
Austin, TX, 78746

Main office: 844-352-4705
Email Address: experts@cpacharge.com

Help Line if needed: 844-362-2605
Facebook, TwitterLinkedIn


CPACharge is an easy-to-use online payment solution developed specifically for CPA firms, giving you a professional way to accept credit, debit, and ACH payments online or in your office, with or without a swipe. The CPACharge solution lets you give clients the convenient payment options they want, while you get 100 percent of your payments deposited into your bank account, with no fees debited until the following month, for easy, accurate reconciliation.

With PCI Level 1 certification, CPACharge keeps all your payment data safe and private, and handles PCI compliance for your firm, at no extra charge. Their expert in-house team of Certified Payments Professionals is always available. You can trust their experts for a solution that’s used by 50,000 professionals and offered as an MICPA+ member discount—CPACharge. Visit their website to learn more about the payment solution and get started today.