A new year, a better firm.

• Author: Walker, April

Now that a new year is approaching, you may have already started thinking about personal resolutions. Here are a few resolutions to consider for your firm in the upcoming year as well.

Develop/improve your firm's information security plan

How to best secure client data is likely top of mind. In fact, according to the Federal Trade Commission's (FTC's) Safeguards Rule, available at tinyurl. com/j5pp4er, tax practitioners must have a security plan that addresses how client data is protected. But just having a plan that meets the criteria of the rule is not enough. Although this can seem overwhelming, here are a few resources.

* The IRS launched an awareness campaign titled "Protect Your Clients; Protect Yourself: Tax Security 101." As part of this campaign, the Service has outlined six basic safeguards for tax professionals' computers and emails:

* Anti-virus software;

* Firewalls;

* Two-factor authentication;

* Backup software/services;

* Drive encryption; and

* Data security plan.

* As mentioned above, to comply with the FTC's Safeguards Rule, a written security plan must be implemented. Members of the AICPA Tax Section can use a template available at tinyurl.com/yxv8p5pr to help create a plan.

* IRS Publications 4557, Safeguarding Taxpayer Data: A Guide for Your Business, and 5293, Protect Your Clients; Protect Yourself can help develop and/or improve the current information security policies of your firm. Once your information security plan is complete, it is crucial to educate all staff on the current policies and incorporate this information into the training of new employees.

Implement information security training for staff

Many times, a breach of information is a people problem. Employees may be the weakest point in an information security plan. To mitigate this issue, consider implementing information security training for staff. It may be a good idea to outsource this training. As part of some training services, it is possible to "phish" your staff with sham emails and provide feedback on whether anyone "took the bait." The upcoming busy season could be a good time to "test" staff, as their guard is more likely to be down when they are busy and tired.

Establish a social media presence/refresh your company website

We are in the age when digital presence is a fact of life. Does your company have Facebook, Instagram, and LinkedIn presences? Is the firm website updated and user-friendly? Your potential customers and future employees...