Skip to main content
Wolf Academy · Resources & Guides

Wolf Academy: compliance, explained clearly

Plain-English compliance and cybersecurity resources for tax professionals, accounting firms, insurance agencies, and small businesses handling sensitive client data.

FeaturedCompliance

FTC Safeguards Rule WISP Checklist for Tax Preparers (2025)

A complete plain-English checklist of every administrative, technical, physical, vendor, and annual-review control your WISP must address — plus how to auto-verify with Microsoft 365.

11 min readRead guide
Compliance

IRS WISP Requirement for PTIN Holders: What Every Tax Preparer Must Do in 2025

If you hold a PTIN, you're required to have a Written Information Security Plan. Here's what the IRS requires, what your WISP must contain, and what happens if you don't have one.

8 min readRead
Templates

Free WISPWolf Compliance Starter Kit

Download the free WISPWolf Compliance Starter Kit — IRS WISP starter template, FTC Safeguards Rule checklist, GLBA checklist, risk assessment worksheet, cyber insurance guide, and tax preparer compliance checklist. Identify your compliance gaps before PTIN renewal.

14 min readRead
Compliance

WISP Requirements 2026: What Tax Preparers Need to Know

What changed in 2026 across IRS Pub 5708, the FTC Safeguards Rule, and cyber insurance — and the minimum WISP every tax preparer should have.

9 min readRead
Compliance

What IRS Auditors Commonly Look for During a WISP Review

A detailed guide to IRS WISP audit expectations — what auditors request, the evidence they value, common mistakes that trigger findings, and how to prepare your Written Information Security Plan for review.

18 min readRead
Fundamentals

Tax Preparer Security Plan Guide: Building a Compliant WISP

A step-by-step guide to scoping, writing, implementing, and maintaining a Written Information Security Plan for a tax practice.

10 min readRead
Compliance

GLBA Safeguards Rule for Tax Preparers and Small Businesses

The nine required elements of the GLBA Safeguards Rule and how they map to your WISP and IRS Pub 5708.

8 min readRead
Fundamentals

What Is a Written Information Security Plan and Why You Need One

A clear primer on the Written Information Security Plan (WISP): what it covers, who must have one, and why it matters in 2025.

6 min readRead
Strategy

Why a One-Time WISP Template Will Fail Your Next IRS Audit

Static PDFs fail under audit and insurance review. Here's why a Living WISP is now the standard for tax and accounting firms.

6 min readRead
Integrations

How Microsoft 365 Integration Automates Your WISP Compliance

Turn your Microsoft 365 tenant into live WISP evidence — MFA, conditional access, and audit logs verified continuously.

8 min readRead
Checklists

Annual WISP Review Checklist Every CPA Firm Needs

Use this annual WISP review checklist to keep your CPA firm audit-ready, insurer-friendly, and ahead of FTC requirements.

5 min readRead
Cyber Insurance

How to Answer Your Cyber Insurance Questionnaire as a Tax Preparer

What insurers actually look for, how a WISP maps to NetGuard Plus and ransomware supplementals, and how documentation lowers your premium.

8 min readRead
Comparisons

EasyWisp.ai Alternative: A More Affordable Living WISP Platform

Compared EasyWisp.ai? See how WISPWolf delivers a continuously-monitored Living WISP starting at $39/month with live evidence.

7 min readRead
Comparisons

Rightworks WISP vs WISPWolf: One-Time vs Ongoing Compliance

Rightworks bundles a static WISP. WISPWolf is a Living WISP. Here's the side-by-side for tax and accounting firms in 2025.

8 min readRead
Templates

Written Information Security Plan Template (WISP) for Tax Firms

The eleven-section WISP template aligned with IRS Publication 5708, the FTC Safeguards Rule, and GLBA — written for tax preparers, CPAs, EAs, and bookkeepers.

13 min readRead
Templates

WISP Risk Assessment Template for Tax & Accounting Firms

Free six-step risk assessment template aligned with the FTC Safeguards Rule and IRS Pub 5708. Score threats, map safeguards, and document residual risk.

12 min readRead
Templates

Incident Response Plan Template for Tax & Accounting Firms

An eight-section incident response plan template aligned with the FTC Safeguards Rule and IRS Pub 5708 — pre-written for tax preparers, CPAs, and bookkeepers.

12 min readRead
Checklists

Data Breach Response Checklist for Tax Preparers

Hour-by-hour data breach response playbook for tax firms — IRS Stakeholder Liaison, FTC 30-day rule, state AGs, e-file provider, and cyber insurance carrier.

11 min readRead
Compliance

IRS Publication 4557: Safeguarding Taxpayer Data Explained

Plain-English guide to IRS Pub 4557 — what Safeguarding Taxpayer Data requires, how it relates to Pub 5708 and the FTC Safeguards Rule, and how to use it in your WISP.

11 min readRead
Fundamentals

Written Information Security Plan (WISP): The Complete Guide

What a WISP is, who needs one, how IRS Pub 5708, IRS Pub 4557, the FTC Safeguards Rule, and GLBA fit together — with a sample 11-section structure and common mistakes.

14 min readRead
Templates

WISP Template: What a Compliant Plan Should Include

The 11 sections every WISP template must include, why generic templates fail IRS and FTC reviews, and how to pick one for tax preparers, CPAs, EAs, bookkeepers, and small businesses.

12 min readRead
Fundamentals

Written Information Security Program: The Living Version of a WISP

How a written information security program differs from a one-time WISP document and maps to IRS Pub 5708, the FTC Safeguards Rule, and GLBA — with the seven program elements every firm needs.

11 min readRead
Cyber Insurance

Cyber Insurance Application Checklist for Small Firms

The twelve controls underwriters consistently ask about — MFA, EDR, backups, training, encryption, WISP, incident response, and vendor controls — with a pre-application evidence checklist.

13 min readRead
Monthly Compliance Brief

One short email a month. No fluff.

New FTC & IRS guidance, fresh checklists, and lessons from real audits — written for firm owners.