A documented plan for keeping the firm operating through disruptions such as outages, natural disasters, or extended staff absences.
A Business Continuity Plan (BCP) is a documented plan for keeping core firm operations running through disruptions: extended internet outages, office closures, natural disasters, key staff illness, or vendor failures. A BCP typically identifies critical business functions, sets recovery time objectives (RTO) and recovery point objectives (RPO), assigns roles for the response, and lists alternate work arrangements. A BCP is broader than a disaster recovery plan, which focuses on technology recovery.
The FTC Safeguards Rule does not explicitly require a BCP, but the incident response and risk assessment requirements assume firms have thought through continuity. Cyber insurers often require BCP documentation as a condition of coverage. For CPA firms, a tax-season outage with no continuity plan can mean missed deadlines, IRS penalties for clients, and reputational damage that lingers.
The Governance Roadmap module handles this for your firm, personalized to your software, team size, and state requirements.
See plans and pricingA technical plan that restores systems and data after an incident such as ransomware, hardware failure, or cloud outage.
A documented set of procedures your firm follows when a data breach or security incident occurs.
The combination of regular data backups and tested restoration procedures that protect against data loss from any cause.
Buy the WISP yourself if you need the document.
Talk to us if you want the platform.
We use cookies to measure site performance and improve your experience. No data is sold to third parties. Privacy Policy