Sample Security Policy for CPA Firms

Having an official security policy is important to running a secure, PCI-compliant firm and is now required by the IRS as part of Form W-12. If you haven’t documented your firm’s security policy yet, this will help you get it done. Download and adapt this sample security policy template to meet your firm's specific needs. This template includes:

  • Ethics and acceptable use
  • Protecting stored data
  • Restricting access to data
  • Security awareness and procedures
  • Incident response plan, and more

Download the Sample Security Policy