With each passing year, as networked technology becomes more and more integral to how companies do business, a simple yet grim reality comes further into focus: The cyberattacks will continue.

In fact, many experts are now urging business owners and their leadership teams to view malicious cyber activity as more of a certainty than a possibility. Why? Because it seems to be happening to just about every company in one way or another.

A 2023 study by U.K.-based software and hardware company Sophos found that, of 3,000 business leaders surveyed across 14 countries (including 500 in the United States), a whopping 94% reported experiencing a cyberattack within the preceding year.

Creating a comprehensive strategy

What can your small-to-midsize business do to protect itself? First and foremost, you need a comprehensive cybersecurity strategy that accounts for not only your technology, but also your people, processes and as many known external threats as possible. Some of the primary elements of a comprehensive cybersecurity strategy are:

• Clearly written and widely distributed cybersecurity policies,

• A cybersecurity program framework that lays out how your company: 1) identifies risks, 2) implements safeguards, 3) monitors its systems to detect incidents, 4) responds to incidents, and 5) recovers data and restores operations after incidents,

• Employee training, upskilling, testing and regular reminders about cybersecurity,

• Cyber insurance suited to your company’s size, operations and risk level, and

• A business continuity plan that addresses what you’ll do if you’re hit by a major cyberattack.

That last point should include deciding, in consultation with an attorney, how you’ll communicate with customers and vendors about incidents.

Getting help

All of that may sound a bit overwhelming if you’re starting from scratch or working off a largely improvised set of cybersecurity practices developed over time. The good news is there’s plenty of help available.

For businesses looking for cost-effective starting points, cybersecurity policy templates are available from organizations such as the SANS Institute. Meanwhile, there are established, widely accessible cybersecurity program frameworks such as the:

• National Institute of Standards and Technology’s Cybersecurity Framework,

• Center for Internet Security’s Critical Security Controls, and

• Information Systems Audit and Control Association’s Control Objectives for Information and Related Technologies.

Plug any of those terms into your favorite search engine and you should be able to get started.

Of course, free help will only get you so far. For customized assistance, businesses always have the option of engaging a cybersecurity consultant for an assessment and help implementing any elements of a comprehensive cybersecurity strategy. Naturally, you’ll need to vet providers carefully, set a feasible budget, and be prepared to dedicate the time and resources to get the most out of the relationship.

Investing in safety

If your business decides to invest further in cybersecurity, you won’t be alone. Tech researcher Gartner has projected global spending on cybersecurity and risk management to reach $210 billion this year, a 13% increase from last year. It may be a competitive necessity to allocate more dollars to keeping your company safe. For help organizing, analyzing and budgeting for all your technology costs, including for cybersecurity, contact us.

© 2024

For many years, conservation easements have been a powerful estate planning tool that enable taxpayers to receive income and estate tax benefits while continuing to own and enjoy the properties. So it’s no surprise that the IRS has been scrutinizing easements to ensure they meet tax code requirements. The tax agency has even issued a warning that some of the transactions are “bogus tax avoidance strategies.”

Curbing abusive arrangements

A conservation easement is a restriction on the use of real property. It involves an arrangement to permanently restrict some or all of the development rights associated with a property. The easement is granted to a conservation organization — usually a government agency or qualified charity — by executing a deed and recording it in the appropriate public records office. The organization is responsible for monitoring the property’s use and enforcing the easement.

In a legitimate transaction, a taxpayer can claim a charitable contribution deduction for the fair market value of a conservation easement transferred to a charity if the transfer meets tax code requirements. The IRS explains that “in abusive arrangements, promoters are syndicating conservation easement transactions that purport to give an investor the opportunity to claim charitable contribution deductions and corresponding tax savings that significantly exceed the amount the investor invested.” The tax agency added “these abusive arrangements, which generate high fees for promoters, attempt to game the tax system with grossly inflated tax deductions.”

As part of recent legislation, an easement-related provision changed the tax code to curb certain abusive conservation easement transactions. The IRS announced it “is committed to ensuring compliance with the conservation easement deduction law as amended and will continue to keep an eye on transactions that are ‘too good to be true.’”

A guide for auditors

To assist auditors examining tax returns, the IRS has a Conservation Easement Audit Technique Guide (ATG). The fact that the ATG is more than 100 pages demonstrates how complex the transactions are and how serious the IRS is about uncovering abusive arrangements.

The ATG explains that to qualify for tax benefits, an easement must be granted exclusively for one of the following purposes:

1. To preserve land for public recreation or education,

2. To protect a relatively natural habitat of fish, wildlife or plants,

3. To preserve open spaces, either for the public’s “scenic enjoyment” or according to a governmental conservation policy that yields a “significant public benefit,” or

4. To preserve a historically important land area or a certified historic structure.

It’s critical for an easement to be carefully drafted so there’s no confusion about which land uses are given up and which are retained.

Tax benefits

For estate tax purposes, a percentage of the land’s value (up to certain limits) can be excluded from a gross estate (in addition to any reduction in value resulting from the easement). Certain other limitations apply.

For income tax purposes, a qualified transaction entitles a taxpayer to deduct the easement’s value (defined as the difference between the property’s fair market value before and after the easement is granted) as a charitable gift. The deduction is subject to the same limitations that apply to other charitable donations. Conservation easements valued over $5,000 must be supported by a qualified appraisal.

Common errors

The ATG identifies common mistakes when making donations. They include:

• Use of improper appraisal methodologies and overvalued easements,

• Failure to comply with substantiation requirements, and

• Failure to restrict development of the land in perpetuity, allowing the easement to be abandoned or terminated.

If you’re contemplating a conservation easement, know that the IRS is scrutinizing them. Work with tax, legal and valuation professionals to stay out of IRS trouble and avoid losing valuable tax benefits.

© 2024

No matter how carefully and congenially you run your business, customer disputes will likely happen from time to time.

Some of the complaints may be people looking to negotiate a discount, “game the system” or even outright defraud you. But others could be legitimate complaints arising from mistakes on your company’s part, technological glitches or, perhaps worst of all, fraudulent actions by a third party.

Whatever the case may be, you can protect your business’s reputation and even strengthen its brand by creating and maintaining an effective customer dispute resolution process that includes eight key features:

1. Easily accessible channels of communication. Post easy-to-find and clearly written directions on your website, social media accounts and other channels detailing how customers can report problems, suspected errors and fraud on their accounts. The directions should include up-to-date contact info for your company and identify any forms or documentation required. Also provide a succinct description of your dispute resolution process, so customers know what to expect.

2. An efficient timeline. Naturally, it’s imperative to respond as quickly as possible to customer concerns or complaints. Today’s technology allows businesses to immediately send automated replies confirming receipt of the customer’s message and assuring the sender that you’re investigating. If the matter appears legitimate, you can follow up with a resolution timeline stating the next steps in the process.

3. Empathy and understanding. Train employees to listen patiently and acknowledge to customers the inconvenience of potential errors or fraud on their accounts. Remind customer-facing staff to keep open minds and not automatically assume any customer is making a false report.

4. Rigorous investigatory techniques. Thoroughly investigate disputes to ascertain root causes. Precisely how you should do so will depend on the nature of your industry and operations, as well as the specifics of the complaint.

To ensure consistency and build a robust document trail, however, require employees performing investigations to first gather all available account information and transaction records. Investigators should also carefully preserve emails and other electronic messages, as well as record or transcribe phone conversations with complaining customers and, if applicable, other involved parties.

5. Strong data protection. Your business should already have up-to-date cybersecurity safeguards in place to prevent data breaches and identity theft. But your customer dispute resolution process should include additional layers of protection. For example, apply “the principle of least privilege,” which means, in this case, only authorized employees directly involved in investigations have access to pertinent data.

6. Transparency and proactive follow-ups. Keep customers informed throughout the entire process. Don’t “leave them hanging” and wait for them to follow up with you. Provide them with regular updates on investigations and inform them of outcomes as soon as they’re available.

7. Timely resolution. If a dispute is found to be in the customer’s favor, quickly make the necessary corrections — such as refunds or account adjustments. Also consider providing a temporary discount, free replacement items or complementary services. Many companies also issue an apology, though you may want to consult your attorney on the language.

If you deny a claim, provide a detailed explanation of the evidence and your reasoning. Consider allowing some customers to appeal decisions not in their favor by submitting supplemental information.

8. Documentation and analysis with an eye on continuous improvement. Last, be sure to continually learn from incidents. Retain records of all customer disputes and fraud claims to identify patterns and trends. Use this data to improve your internal controls and investigatory processes, make decisions on technology upgrades, and train customer-facing teams. By doing so, you may be able to prevent disputes in the future or at least lessen their frequency.

© 2024

One of the most effective ways to provide for your children in your estate plan is to set up trusts for them. Trusts offer many benefits, including the flexibility of when and how to make distributions, protection of assets from beneficiaries’ creditors and protection of assets from being divided as part of a beneficiary’s divorce. They may also help protect the funds from depletion by a beneficiary with a substance abuse problem, a gambling addiction or bad spending habits.

Many parents’ estate plans call for their assets to be split into equal shares and used to fund a separate trust for each child. But, depending on your circumstances, it may be preferable to pool your assets into a single “pot” trust.

Fair isn’t necessarily equal

Parents generally want to avoid “playing favorites,” so separate trusts appeal to their sense of fairness. But “fair” and “equal” aren’t necessarily the same thing. Think about how you use your funds now. If one of your children has a specific need — whether it’s college tuition, medical care or something else — it’s likely that you’ll pay for it without feeling any pressure to spend the same amount on your other children.

View your estate plan in the same light: Fairness means providing for your children’s needs, regardless of whether you distribute your assets equally.

For example, suppose you have two children, Stella and Lucy, ages 23 and 18, respectively. Stella recently graduated from college and Lucy is about to start. You’ve already spent more than $200,000 on Stella’s tuition and other college expenses. If you were to die tomorrow, and your estate plan divides your wealth equally between Stella and Lucy, Stella will come out ahead. That’s because she already received the benefit of $200,000 in college expenses. Lucy, on the other hand, will need to tap her trust fund to pay for college.

Consider a pot trust

A pot trust can be a great way to continue meeting your children’s individual needs and avoid giving one child a windfall, like Stella received in the example above. As the name suggests, you pool assets into a single trust and give the trustee full discretionary authority to distribute the funds among your children according to their needs.

Essentially, a pot trust allows the trustee to spend your money the way you would if you were alive. If one of your children has substantial education expenses or medical bills, the trustee has the authority to cover them, even at the expense of your other children’s inheritances.

For many families, a pot trust makes sense when children are relatively young and are likely to have differing needs that can change dramatically over time. If appropriate, your plan can call for the pot trust to be divided into separate trusts for each child at some point in the future — for example, when the youngest child reaches age 21, 25 or some other milestone.

Choose your trustee carefully

For a pot trust to be effective, it’s critical to choose your trustee — as well as a backup trustee — carefully. As with any type of trust, your trustee should be trustworthy and impartial and have the skills necessary to manage the trust assets. But for a pot trust, it’s particularly important for the trustee to have the ability to communicate effectively with the beneficiaries.

Because distributions depend on each beneficiary’s unique needs, the trustee must understand those needs, as well as your objectives for the trust, and be able to explain the reasoning behind his or her decisions to all the beneficiaries. Contact us with questions regarding a pot trust.

© 2024

If your company operates in the business-to-business (B2B) marketplace, you’ve probably experienced some collections challenges.

Every company, whether buyer or seller, is trying to manage cash flow. That means customers will often push off payments as long as possible to retain those dollars. Meanwhile, your business, as the seller, needs the money to meet its revenue and cash flow goals.

There’s no easy solution, of course. But you can “grease the wheels,” so to speak, by strategically devising and continuously improving a methodical collections process.

Payment terms

Getting paid promptly depends, at least in part, on the terms you set forth and customers agree to. Be sure payment terms for your company’s products or services are written in unambiguous language that includes specific due dates, payment methods and late-payment penalties. To the extent feasible, use contracts or signed payment agreements to ensure both parties understand their obligations.

If your business operates on a project basis, try to negotiate installment payments for completion of specific stages of the work. This approach may not be necessary for shorter jobs but, for longer ones, it helps assure you’ll at least receive some revenue if the customer runs into financial trouble or a dispute arises before completion.

Effective invoicing 

Invoice promptly and accurately. This may seem obvious, but invoicing procedures can break down gradually over time, or even suddenly, when a company gets very busy or goes through staffing changes. Monitor relevant metrics such as days sales outstanding, revenue leakage and average days delinquent. Act immediately when collections fall below acceptable levels.

Also, don’t let the essential details of invoicing fall by the wayside. Ensure that you’re sending invoices to the right people at the right addresses. If a customer requires a purchase order number to issue payment, be sure that this requirement is built into your invoicing process.

In today’s world of high-tech money transfers, offering multiple payment options on invoices is critical as well. Customers may pay more quickly when they can use their optimal method.

Reminders and follow-ups

Once you’ve sent an invoice, your company should have a step-by-step process for reminders and follow-ups. A simple “Thank you for your business!” email sent before payment is due can reiterate the due date with customers. From there, automated reminders sent via accounts receivable (AR) or customer relationship management (CRM) software can be helpful.

If you notice that a payment is late, contact the customer right away. Again, you can now automate this to begin with texts or emails or even prerecorded phone calls. Should the problem persist, the next logical step would be a call from someone on your staff. If that person is unable to get a satisfactory response, elevate the matter to a manager.

These steps should all occur according to an established timeline. What’s more, each step should be documented in your AR or CRM software so you can measure and improve your company’s late-payment collections efforts.

Typically, the absolute last step is to send an outstanding invoice to a collection agency or a law firm that handles debt collection. However, doing so will usually lower the amount you’re able to collect and typically ends the business relationship. So, it’s best viewed as a last resort.

What works for you

If your B2B company has been operational for a while, you no doubt know that collections aren’t always as simple as “send invoice, receive payment.” It often involves interpersonal relationships with customers and being able to exercise flexibility at times and assertiveness at others. For help analyzing your collections process, identifying key metrics and measuring all the costs involved, contact us.

© 2024

For the third consecutive year, the IRS has published guidance that offers some relief to taxpayers covered by the “10-year rule” for required minimum distributions (RMDs) from inherited IRAs or other defined contribution plans. But the IRS also indicated in Notice 2024-35 that forthcoming final regulations for the rule will apply for the purposes of determining RMDs from such accounts in 2025.

Beneficiaries face RMD rule changes

The need for the latest guidance traces back to the 2019 enactment of the Setting Every Community Up for Retirement Enhancement (SECURE) Act. Among other changes, the law eliminated so-called “stretch IRAs.”

Pre-SECURE Act, all beneficiaries of inherited IRAs were allowed to stretch the RMDs on the accounts over their entire life expectancies. For younger heirs, this meant they could take smaller distributions for decades, deferring taxes while the accounts grew. They also had the option to pass on the IRAs to later generations, which deferred the taxes for even longer.

To avoid this extended tax deferral, the SECURE Act imposed limitations on which heirs can stretch IRAs. Specifically, for IRA owners or defined contribution plan participants who died in 2020 or later, only “eligible designated beneficiaries” (EDB) may stretch payments over their life expectancies. The following heirs are EDBs:

• Surviving spouses,

• Children younger than the “age of majority,”

• Individuals with disabilities,

• Chronically ill individuals, and

• Individuals who are no more than 10 years younger than the account owner.

All other heirs (“designated beneficiaries”) must take the entire balance of the account within 10 years of the death, regardless of whether the deceased died before, on or after the required beginning date (RBD) for RMDs. (In 2023, the age at which account owners must start taking RMDs rose from age 72 to age 73, pushing the RBD date to April 1 of the year after account owners turn 73.)

In February 2022, the IRS issued proposed regs that came with an unwelcome surprise for many affected heirs. They provide that, if the deceased dies on or after the RBD, designated beneficiaries must take their taxable RMDs in years one through nine after death (based on their life expectancies), receiving the balance in the tenth year. In other words, they aren’t permitted to wait until the end of 10 years to take a lump-sum distribution. This annual RMD requirement gives beneficiaries much less tax planning flexibility and could push them into higher tax brackets during those years.

Confusion reigns

It didn’t take long for the IRS to receive feedback from confused taxpayers who had recently inherited IRAs or defined contribution plans and were unclear about when they were required to start taking RMDs on the accounts. The uncertainty put both beneficiaries and defined contribution plans at risk. How? Beneficiaries could have been dinged with excise tax equal to 25% of the amounts that should have been distributed but weren’t (reduced to 10% if the RMD failure is corrected in a timely manner). The plans could have been disqualified for failure to make RMDs.

In response to the concerns, only six months after the proposed regs were published, the IRS waived enforcement against taxpayers subject to the 10-year rule who missed 2021 and 2022 RMDs if the plan participant died in 2020 on or after the RBD. It also excused missed 2022 RMDs if the participant died in 2021 on or after the RBD.

The waiver guidance indicated that the IRS would issue final regs that would apply no earlier than 2023. But then 2023 rolled around — and the IRS extended the waiver relief to excuse 2023 missed RMDs if the participant died in 2020, 2021 or 2022 on or after the RBD.

Now the IRS has again extended the relief, this time for RMDs in 2024 from an IRA or defined contribution plan when the deceased passed away during the years 2020 through 2023 on or after the RBD. If certain requirements are met, beneficiaries won’t be assessed a penalty on missed RMDs, and plans won’t be disqualified based solely on such missed RMDs.

Delayed distributions aren’t always best

In a nutshell, the succession of IRS waivers means that designated beneficiaries who inherited IRAs or defined contributions plans after 2019 aren’t required to take annual RMDs until at least 2025. But some individuals may be better off beginning to take withdrawals now, rather than deferring them. The reason? Tax rates could be higher beginning in 2026 and beyond. Indeed, many provisions of the Tax Cuts and Jobs Act, including reduced individual income tax rates, are scheduled to sunset after 2025. The highest rate will increase from 37% to 39.6%, absent congressional action.

What if the IRS reverses course on the 10-year rule, allowing a lump sum distribution in the tenth year rather than requiring annual RMDs? Even then, it could prove worthwhile to take distributions throughout the 10-year period to avoid a hefty one-time tax bill at the end.

On the other hand, beneficiaries nearing retirement likely will benefit by delaying distributions. If they wait until they’re no longer working, they may be in a lower tax bracket.

Stay tuned

The IRS stated in its recent guidance that final regs “are anticipated” to apply for determining RMDs for 2025. However, based on the tax agency’s actions in the past few years, skepticism about that is understandable. We’ll continue to monitor future IRS guidance and keep you informed of any new developments.

© 2024