Data Privacy and Protection

CPAs collect a lot of sensitive data. So, it's incumbent on firms and businesses to protect that data and comply with state, federal and international data privacy laws. Use these resources and articles as a guide to inform your cybersecurity procedures and compliance strategies.

Resources

GDPR compliance checklist

Evaluate your organization's data privacy policies and procedures against the European Union's GDPR requirements with this tool, and discover if you have any gaps to address.
MNCPA member login required

CCPA vs GDPR infographic

If the EU's GDPR and US-based California Consumer Privacy Act (CCPA) have your head spinning, you're not alone. This infographic outlines the differences between the two so you know if you need to comply with either (or both) of them.

Articles

The impact of new data privacy laws on CPAs

Footnote
Data privacy regulations are particularly relevant to CPAs because of the sensitive data you maintain. Read up on how GDPR and other state regulations could affect your work.

Eight steps for crisis communications planning

Footnote
Follow these communication guidelines when you suffer a data breach or any situation where your professional reputation is at risk.

A data breach: What (you have) to do when the worst happens

Footnote
Understand what federal and Minnesota law requires you to do when you're the subject of a data breach.

Cybersecurity threats to your clients, firm

Footnote
Breakdown the risks within five areas of your business to help establish procedures and policies to better protect your data.