Information, Articles, Tools, and Useful LinksCommittee Listings, Member Forums, and Find a CITPInformation on AICPA Tech. Conference, Seminars, Webcasts, and ConferencesIT Section Membership Information, CITP Credential Information, Members Only Tools and Communications, and MorePublications, CPE, Conferences, and Webcasts
 
Search
 

Search Options
Infotech Home > Resources > Privacy / Data Protection > Privacy Services

Privacy Services

The American Institute of Certified Public Accountants (AICPA) has developed a series of assurance and advisory services. These services are focused on building trust and confidence in businesses and are a natural extension of the CPA's auditing and information technology consulting functions. One of the services is focused on privacy of personal information. The AICPA and the Canadian Institute of Chartered Accountants (CICA) have formed the AICPA/CICA Privacy Task Force, which has developed privacy best practices and related services to help organizations manage privacy risk and implement good privacy practices.

Building a Privacy Practice in Small and Medium Sized CPA Firms
This guide serves as the first step for practitioners reviewing or considering investing time and resources in Privacy Advisory Services. Learn More>>

How to Profit by Safeguarding Privacy
This article shows CPAs in industry or in public practice how they can help businesses achieve their privacy compliance goals. It also summarizes provisions of the major federal privacy laws. Learn More>>

Frequently Asked Questions About Privacy Services
This article presents a series of frequently asked questions regarding privacy and privacy services. Learn More>>

 

GTAG 5: Managing and Auditing Privacy Risks

Posted with permission by The Institute of Internal Auditors, their guide, GTAG 5: Managing and Auditing Privacy Risks is intended to provide audit practitioners with guidance on the key issues that should be addressed to mitigate privacy risk in the collection, use, retention and disclosure of personal information. Learn More>>

 

Relevance of Generally Accepted Privacy Principles
David M. Cieslak, CPA.CITP, GSEC, and Chairman of the AICPA's Information Technology Executive Committee discusses, in this video, the relevance of Generally Accepted Privacy Principles (GAPP). Learn More>>

 

Solving Privacy Issues with a Privacy Framework: A Case Study

The recently launched AICPA/CICA Privacy Framework can help CPA firms and their clients ensure compliance with privacy laws and regulations. In the following case study, an experienced consultant describes the issues faced by one company and how it dealt with them. Learn More>>

Sample Employee Privacy Notice
IT Section Member
CPAs will find it helpful to refer to this sample customer privacy notice when reviewing or assisting with the preparation of a privacy policy. Learn More>>
Sample Customer Privacy Notice
IT Section Member
CPAs will find it helpful to refer to this sample customer privacy notice when reviewing or assisting with the preparation of a privacy policy. Learn More>>
Privacy Services Prospect Checklist
A checklist aimed at assisting practitioners in small and medium-sized firms in focusing their marketing efforts by identifying characteristics of existing and prospective clients that will experience the greatest benefit by investing in privacy services. Learn More>>
Privacy Risk Assessment Questionnaire
This questionnaire highlights key questions businesses should ask with the aim of understanding privacy risk, implementing sound privacy policies and practices, managing privacy risk, and obtaining privacy assurance. Learn More>>
Understanding Privacy
This article defines privacy and explains the importance of protecting personal information. It identifies concerns over inadequate privacy protection and highlights the benefits of good privacy practices. Learn More>>
Implementing a Privacy Program
This article presents an overview of privacy laws, explains why information privacy is a risk management issue, and discusses how to design a privacy program based on international principles of fair information practices. Learn More>>
Incident Response Plan
This Incident Response Plan template can be used to help you design, develop, or adapt your own plan and better prepare you for handling a breach of personal information within your organization. Learn More>>
Managing Privacy Risk
This article presents fair information practices and the role they play in managing privacy risk—on and off the Internet. Also explains the AICPA/CICA Privacy Task Force initiatives to provide business solutions to today’s privacy issues. Learn More>>
Privacy Checklist for CPA Firms
This checklist provides CPA firms with practical illustration of selected Generally Accepted Privacy Principles (GAPP) in order to maintain privacy best practices within organizations. Learn More>>
Privacy Responsibilities of Businesses
This booklet highlights key questions a business should ask with the aim of understanding privacy risk, implementing a privacy program, managing privacy risk and obtaining privacy assurance. Learn More>>
AICPA/CICA Privacy Assessment Tool Beta
The Privacy Assessment Tool is designed to assist CPAs/CAs, management, owners and other privacy professionals in assessing privacy risks within their or their clients organization. The tool uses the ten principles and 66 criteria from the AICPA/CICA Generally Accepted Privacy Principles (GAPP) and provides the organization with principles and criteria that is contained in many privacy laws and regulations worldwide including good privacy practices to benchmark against. Learn More>>