Protecting your business from ID thieves

The COVID-19 pandemic has led to many challenges for small business operators, including a significant escalation in cybersecurity threats.

One of the fastest growing of these threats is identity (ID) crime, with the Australian Competition and Consumer Commission’s (ACCC’s) Scamwatch finding ID theft in Australia increased 234 per cent in 2021.

The scale of the problem is worrying, with a recent survey by the Australian Institute of Criminology finding 19 per cent of respondents had experienced misuse of their personal information.

What identity criminals want

The explosion in ID crime is not just a problem for individuals, it’s a growing headache for businesses. This is due to the increasing amount of personal information they now hold, about their employees, clients and customers.

The ATO has been reminding small businessowners that ID documents are like gold to tax scammers, who can use information such as a driver’s licence, passport and tax file number to steal tax refunds and super.

Cybercriminals can also commit fraud in your name, take over your business and submit amendments to your Business Activity Statements. This makes it vital to protect key information ID thieves target, such as employees’ personal information, business records containing personal information, BAS documents and myGovIDs.

Check your physical records are protected

Worrying about the physical security of your information may seem old-fashioned, but ensuring your business premises and systems are protected is vital.

ID criminals can obtain invaluable business and client details simply by breaking into your premises and photographing business records or employee details.

To combat this, fit physical barriers such as window and door locks, file copies of documents and ID information in lockable storage units, and ensure you install an appropriate alarm system to protect against intruders.

Securing your business online

Strong online security practices are also essential to protect information about your business, employees and clients from ID thieves.

If you hold financial records, confirm the identity of anyone requesting changes to their information and fully verify new payment details. Ensure your employees are trained to identify suspicious requests for personal information, or emails that may link to fake websites built to capture passwords.

It’s also important to secure your email account through multi-factor authentication or a strong, unique passphrase.

Good online security also means changing all the passwords used in the business on a regular basis and ensuring they are not easy for potential thieves to guess. Updated security and anti-virus software needs to be installed on all devices used by the business and by any employees working from home.

When sourcing business software and support (such as payroll services), ask vendors about their system security, including where the data will be stored and their security certification and support services for data breaches.

Reporting cybercrime to the ATO

While your business’s reputation can take a real battering if you don’t have adequate protections for both your own and your clients’ ID information, there are also regulatory requirements when it comes to data breaches.

Businesses have an obligation to report all tax-related security issues to the ATO.

To help you manage your obligations to protect identity information, the ATO has an online security self-assessment questionnaire small businesses can use to check their performance in this area. This can help you identify which online security measures you are getting right as well as potential areas for improvement.

Businesses also have data breach reporting obligations under the Privacy Act. The Office of the Australian Information Commissioner has helpful tips on how to create a solid data breach response plan.

Protect your myGov ID

The government’s push for more online transactions means more and more personal and business information needs to be protected. If you or a key employee accesses the government’s online services on behalf of your business, you will need a myGovID.

This new digital identity key uses encryption technology to protect your identity when interacting with government agencies online. To strengthen protection of your identity and business information online, you can now set up face verification on myGovID.

If you are aware or suspect your myGovID has been inappropriately accessed, you need to report it immediately.

If you need any assistance setting up your myGovID, please get in touch via email drouin@rgmgroup.com.au or contact us on 03 5120 1400.

Material contained in this publication is a summary only and is based on information believed to be reliable and received from sources within the market. It is not the intention of RGM Financial Planners Pty Ltd ABN 36 419 582 Australian Financial Services Licence Number 229471, RGM Accountants & Advisors Pty Ltd ABN 69 528 723 510 that this publication be used as the primary source of readers’ information but as an adjunct to their own resources and training. No representation is given, warranty made or responsibility taken as to the accuracy, timeliness or completeness of any information or recommendation contained in this publication and RGM and its related bodies corporate will not be liable to the reader in contract or tort (including for negligence) or otherwise for any loss or damage arising as a result of the reader relying on any such information or recommendation (except in so far as any statutory liability cannot be excluded).

Liability limited by a scheme approved under Professional Standards Legislation.

5 Signs of a well run business

Every small business owner wants their business to thrive, but it can be tough to keep the money coming in the door while staying on top of all the necessary paperwork.

One way to ensure success is to understand the behaviours that separate a well-managed business from one that’s just muddling through.

Surprising as it may sound, the ATO is keen to help small business owners prosper and to share its insights on running a successful business.

Getting the basics right

Since it’s charged with keeping an eye on almost four million Aussie small businesses, the tax regulator is well placed to know what works and what doesn’t when it comes to keeping the doors open.

According to the ATO, when a small business is operating well, it tends to get the basics right. That means keeping good records and having in place effective tools so you can easily reconcile your business’s income and expenses.

1. Keep informed

The ATO finds business owners who are operating effectively take the time to understand their tax and super obligations and to keep on top of any changes affecting their business’s processes.

2. Know your cash flow

Small businesses that are well managed use a cash flow projection or budget tool, as this is the main reason small businesses fail. If you don’t have clear insights into your cash flow position and are not carefully managing the business’s income and expenses, it can be a recipe for trouble.

If you are using cloud-based accounting software, cashflows and budgets can be easily integrated into your everyday reports. Get in touch with us on our contact page if you need any guidance to assist with the implementation of cash flows and budgets in your software.

3. Declare all income

Well-run businesses declare all their income – including any cash income – in their income tax return. Although it’s the ATO’s job to collect tax, it argues small businesses not declaring all their income are heading for trouble down the track.

4. Split your expenses

It’s important to carefully apportion (or split) your business expenses between private and business use.

5. Keep up to date

The final marker of a well-run business is that all its details are up to date – particularly with the ATO. That means keeping your ABN details, contact information and bank details current and easy to find.

Although many of these indicators are straightforward, it’s surprising how many small businesses don’t take these simple actions.

Behaviours to avoid

Just as there are habits that mark a well-run business, there are behaviours common to operations heading for trouble.

Businesses that omit income by depositing it into private accounts or mortgages, or that don’t declare cash sales or record director’s fees correctly, are not on top of things.

The same goes for failing to account correctly for private use of business assets or funds. If you are claiming an excessive business portion of an expense with both personal and business use, it’s a sign of poor management. As is claiming private expenses as a business expense, or not having the necessary records to substantiate your claims.

Making errors because you don’t understand your tax responsibilities is also a sign that things are not being well-run.

Bring in the professionals

With so many rules and regulations, it’s not surprising that business owners may occasionally overlook some of their obligations. There is an easy solution though.

Well-run small businesses seek professional advice when they need it. We can work with you to improve your business overall, not just to meet your tax obligations.

In fact, the ATO’s 2017-18 research and audit work with around 120,000 small businesses indicated that those who have regular contact with a tax professional are more likely to report correctly.

ATO deputy commissioner for small business, Deborah Jenkins recently gave her top three tips for effectively managing your business: maintain good business records, keep an eye on your competition using the ATO’s Small Business Benchmarks and take care of your mental health because running a small business can be very stressful.

If you think your business could do with a financial tune-up, give us a call today on 03 5120 1400.

Material contained in this publication is a summary only and is based on information believed to be reliable and received from sources within the market. It is not the intention of RGM Financial Planners Pty Ltd ABN 36 419 582 Australian Financial Services Licence Number 229471, RGM Accountants & Advisors Pty Ltd ABN 69 528 723 510 that this publication be used as the primary source of readers’ information but as an adjunct to their own resources and training. No representation is given, warranty made or responsibility taken as to the accuracy, timeliness or completeness of any information or recommendation contained in this publication and RGM and its related bodies corporate will not be liable to the reader in contract or tort (including for negligence) or otherwise for any loss or damage arising as a result of the reader relying on any such information or recommendation (except in so far as any statutory liability cannot be excluded).

Liability limited by a scheme approved under Professional Standards Legislation.




Tax Alert – December 2021

As COVID-19 turbulence starts to settle, the ATO is moving away from its supportive position and returning to its more usual compliance focus.

That means taxpayers need to be aware their financial affairs will come under renewed attention in the year ahead.

Data gathering programs increase

In recent months the ATO has announced programs to gather data on various aspects of Australians’ financial lives to use in its ongoing data-matching projects.

Recent programs include gathering data on property management and rental bonds, cryptocurrency, online selling and novated leases for the upcoming financial year (2022-23). The ATO will also be collecting data on payments made by government agencies such as Comcare, the Department of Health, the NDIA, Department of Veterans’ Affairs and the clean energy regulator.

Taxpayers who buy and insure high-value lifestyle assets will also be under the microscope, with the ATO looking to collect details that will “assist with profiling [to obtain] a holistic view of a taxpayer’s wealth”. Under this program, the taxman will be obtaining information from insurance companies for the period 2020-21 to 2022-23 about assets exceeding certain nominated thresholds.

These high-value assets include boats valued over $100,000, motor vehicles (including caravans) and thoroughbred horses valued over $65,000, fine art worth over $100,000 per item and aircraft valued over $150,000. Data obtained from insurers will include individual client identification and policy details.

Overseas gifts or loans under scrutiny

The ATO has also announced it will be increasing scrutiny of undeclared foreign gifts or loans from related overseas entities, including family and friends.

The regulator says it has encountered many situations where Australian taxpayers are deriving assessable income or capital gains offshore but failing to declare these in their income tax returns. The ATO will be looking at arrangements where taxpayers are attempting to avoid tax on foreign assessable income by disguising amounts as gifts or loans.

Anyone receiving genuine monetary gifts or loans should keep supporting documentation. Inheritances count as gifts, so if you receive an inheritance from overseas, get a certified copy of the person’s will or estate distribution statement.

Focus on working from home deductions

On a positive note, if you are still working from home due to COVID-19, you can continue using the shortcut method for claiming deductions until 30 June 2022.

From 1 July 2022, you will need to use either the traditional fixed rate or actual cost methods and meet their eligibility and recordkeeping requirements.

The ATO says it’s currently reviewing the 52 cents per hour fixed rate method to make it easier and simpler to use, given more people will be working from home in the longer term.

Backpacker tax under fire

Employers paying working holidaymakers will need to keep a close eye on developments in this area following a decision by the High Court that tax rates applied to these employees is discriminatory as it is based on nationality.

The decision could affect the applicability of the backpacker tax for workers from countries with double tax agreements with Australia. According to the ATO, this means working holidaymakers from Chile, Finland, Germany, Japan, Norway, Turkey, UK, Germany or Israel.

The ATO is currently considering the implications of the High Court decision and will provide further guidance for employers. In the meantime, employers should continue using the tax rates in the ATO’s published withholding tables for backpackers.

Self-education expense threshold to go

The government has made good on its May 2021 Budget promise to remove the $250 non-deductible threshold for claiming work-related self-education expenses.

The Treasury Laws Amendment (2021 Measures No.7) Bill 2021 is currently before Parliament. If passed, it will remove the current threshold for taxpayers claiming self-education expenses. It’s also expected to simplify the claims process in your annual tax return.

The start date for the change is likely to be 1 April or 1 July 2022.

Reminder on super stapling

If you are an employer, don’t forget to request super fund details from new employees, now the government’s super stapling rules are in place.

If a new employee doesn’t choose a super fund, you must request their stapled super fund from the ATO if they have one. This fund is linked to them and must be used for your Superannuation Guarantee (SG) contributions unless the employee requests otherwise.

If you would like help getting your tax affairs in order for the new year, contact our office today on 03 5120 1400 and speak to one of our tax accountants or send us a message via our contact page.

Material contained in this publication is a summary only and is based on information believed to be reliable and received from sources within the market. It is not the intention of RGM Financial Planners Pty Ltd ABN 36 419 582 Australian Financial Services Licence Number 229471, RGM Accountants & Advisors Pty Ltd ABN 69 528 723 510 that this publication be used as the primary source of readers’ information but as an adjunct to their own resources and training. No representation is given, warranty made or responsibility taken as to the accuracy, timeliness or completeness of any information or recommendation contained in this publication and RGM and its related bodies corporate will not be liable to the reader in contract or tort (including for negligence) or otherwise for any loss or damage arising as a result of the reader relying on any such information or recommendation (except in so far as any statutory liability cannot be excluded).

Liability limited by a scheme approved under Professional Standards Legislation.