Rentec Direct Blog

Into The Breach! Protecting Your Data During Tax Season

data protection during tax season

With cyber attacks hammering away at caches of protected data worldwide at a record-breaking pace in 2017 (791 breaches in the first half of the year), and often succeeding even against banks of information containing hundreds of millions of names, how is the “small business” possibly expected to protect its data?

This is one of many questions touched upon in late 2017 as the IRS hosted National Tax Security Awareness Week, which focused on tax preparers and the protection of taxpayer filing information.

As a property manager, you’re entrusted not only with employee personal data, but that of your clients and tenants as well. This is the precise type of information necessary for identity theft, which increases your responsibility to protect that information.

The following observations and recommendations are taken from the findings and information stemming from the service announcements and research provided by the IRS and can be applied to small businesses and individual taxpayers, as well as businesses responsible for others’ personal information.

Scope of the Problem

Every day, data thefts of all sizes put personal and financial information at risk. That record-setting first half of 2017 resulted in data breaches increasing by 29%, according to IRS sources. Already at this record-setting pace, the problem worsened significantly with the theft of 145,000,000 persons’ information from a major credit-reporting agency (Equifax).

One common tactic for illicitly gathering this information is through the use of “phishing.” Most have heard of phishing by now, a process where the perpetrator issues an email pretending to be the IRS or another authoritative source requesting that you “confirm” your information. They then direct you to another page and collect any information provided – to be used for filing phony tax claims, opening credit accounts, or a myriad of other malicious motivations.

Generally, thieves try to use the stolen data as quickly as possible before there is time to report it and freeze any affected accounts. That may mean selling the data on the Dark Web to other shady operations or attempting to access financial accounts for withdrawals or credit cards for charges, even a possible fraudulent tax return in victims’ names for a refund.

Note: The holiday online shopping season and tax seasons are two of the most popular periods for cyber theft.

Prevention and Correction

There are steps that can be taken to guard against cyber attacks as well as to remedy the issue if it’s already happened. The following series of recommended prophylactic steps and post-breach fixes look at the issue from several angles including:

Prevention Measures for Individuals and Small Businesses

Small Business Breach: Preventing and Rehabilitating

Signs that your business might have been breached include:

Steps Small Businesses Can Take to Protect Data

There are a number of steps that can be taken by and for small businesses in addition to those that protect the individuals (listed above). These include:

Action for Individuals after a Breach

There are steps that both individuals and small businesses can take AFTER a breach has occurred which can mitigate the harm caused by the breach. Actions that can be taken by the individual or the small business include:


This is just a starting point for the small business and individual to work from. Guarding data is a full-time endeavor, one that falls a little more heavily on property managers than many other small businesses because of the type of information that property managers are entrusted with. For more ideas on how to avoid data breaches and identity theft, see the IRS Security Summit webpage.


About the Author

Brian Murphy, TaxCE.com

Brian Murphy is a technical writer for www.TaxCE.com, which provides continuing professional education for tax preparers and enrolled agents. Brian has degrees in political science, journalism, and law, a real estate license, extensive experience working for both private and public agencies, and a deep personal interest in sharing information that makes people’s’ lives a little easier.


Related Reading For You:

Exit mobile version