Our objective, in the development and implementation of this comprehensive Written

Information Security Plan (WISP), is to create effective administrative, technical, and

physical safeguards for the protection of the Personally Identifiable Information (PII)

retained by Magic Tax and Financial Services, (hereinafter known as the Firm). This

WISP is to comply with obligations under the Gramm-Leach-Bliley Act and Federal Trade

Commission Financial Privacy and Safeguards Rules to which the Firm is subject. The

WISP sets forth our procedure for evaluating our electronic and physical methods of

accessing, collecting, storing, using, transmitting, and protecting PII retained by the Firm.

For purposes of this WISP, PII means information containing the first name and last name

or first initial and last name of a Taxpayer, Spouse, Dependent, or Legal Guardianship

person in combination with any of the following data elements retained by the Firm that

relate to Clients, Business Entities, or Firm Employees:

A. Social Security number, Date of Birth, or Employment data

B. Driver's license number or state-issued identification card number

C. Income data, Tax Filing data, Retirement Plan data, Asset Ownership data,

Investment data

D. Financial account number, credit or debit card number, with or without

security code, access code, personal identification number; or password(s)

that permit access to a client's financial accounts

E. E-mail addresses, non-listed phone numbers, residential or mobile or contact

information