WISP Compliance | RIMAM Computer Services

WISP FAQ — Quick & Practical

What is a WISP?
A Written Information Security Plan that spells out how your firm protects client data—required by the IRS (Pub. 4557) and many states.

Do I really need one?
Yes—if you handle taxpayer information, the IRS and most state boards expect a documented plan, even for solo preparers.

What must it cover?
• Data encryption & backups • Employee access controls • Incident-response steps • Ongoing risk assessments

How long does it take to draft?
A small firm can complete a solid first draft in a day using a good template and asset checklist.

How often do I update it?
Review at least annually—or sooner if you add new software, staff, or offices.

What are the penalties for ignoring it?
IRS can revoke your e-file privileges; states may levy fines; insurers may deny a cyber-claim without a WISP on file.

Does remote work change my WISP?
Absolutely. You must document VPN use, device hardening, and how home networks are secured.

How long does it take to draft?
A small firm can complete a solid first draft in a day using a good template and asset checklist.

Where should I store the plan?
Keep a signed PDF in your client-data vault and a printed copy on-site; regulators can ask for it without notice.

Fast-Track Checklist

Inventory devices & data locations (laptops, cloud drives, USBs).

Assign a security officer—even if it’s you.

Adopt baseline controls: MFA, encrypted backups, patch management.

Write incident steps: who calls clients, who files IR-202-S.

Train staff yearly on phishing and safe data handling.

Review + sign the plan every 12 months.

‍

What's new?

Frequently asked questions

Everything you need to know about the product and company.

Why does the RIMAM logo look different? Has anything else changed?

We’ve refreshed our logo to match our new, remote-first focus and give the brand a cleaner, more modern look. You’ll notice the same four signature colors—they represent continuity with our history and values.

Has anything changed in how RIMAM supports my business?

Our commitment to reliable, secure IT solutions—and the same ownership and support standards—remains unchanged.
What has evolved is how we deliver those services. Rest assured, the quality of our response, expertise, and dedication is still every bit as high as you expect.

How do I request remote support?

Call our help-desk or submit a ticket on the Client Portal. You’ll receive a six-digit code to start a secure screen-sharing session.

Do you repair hardware for individual consumers?

We’ve phased out retail hardware repairs. Our focus is managed IT, cloud, and cybersecurity services for businesses

Which operating systems do you support remotely?

Windows 10/11, macOS 13+, popular Linux distros (Ubuntu, Mint), plus iOS and Android for email/account setups.

How do I pay for remote services?

We bill per incident or via monthly managed-service plans. Invoices are emailed and payable online via Check, Credit Card, Zelle or ACH.

Do you still accept walk-in computer repairs?

No. We’ve moved to an online-only model. All troubleshooting is now handled through secure remote sessions.

Can I drop off my laptop or desktop at your office?

We no longer accept consumer drop-offs. On-site hardware work is reserved for contracted business clients.

What if my issue can’t be fixed remotely?

For business customers under a service agreement we dispatch an on-site technician. Home users will receive guidance on third-party repair options.

What are your business hours for remote support?

Monday–Friday 9 AM – 5 PM PT, with extended hours (8 AM – 10 PM) during tax season.

Is the remote session secure?

Yes. Sessions use end-to-end encryption; we can’t reconnect without your permission, and activity logs are stored for audit compliance (WISP, HIPAA).

Can my company get on-site visits?

Absolutely. Businesses with a support contract receive scheduled on-site maintenance and emergency call-outs as part of their SLA