I have a very wealthy client who is the subject of an unusual tax enquiry. He is extremely private.
At the outset of the enquiry, before he engaged me, he dutifully sent wads of information to HMRC, namely bank statements, sources of wealth, EIS investment details and their providers, sources of funding for said EIS investments etc. etc.
Due to previous run-ins with HMRC confidentiality, client wants to put pressure on HMRC to explain how they have maintained confidentiality of his tax papers.
Client knows that if he posts response to, say, specialist Mr X at HMRC Bristol, it may be delivered to HMRC address in, say, Wolverhampton. So he is left scratching his head in the knowledge that some low level employee at Wolverhampton must be scanning in his papers there, and then somehow the scanned copies end up with specialist Mr X at HMRC Bristol, or his understudy.
His main gripe is that if a dishonest employee at HMRC passes client's data to the criminal underworld, some crook will get hold of said confidential data and misuse it.
From prior run-ins with HMRC, it seems that HMRC are not that bothered if private and confidential information gets "lost".
But how do I satisfy client that HMRC must have certain procedures in place to ensure that all 56,000 of their employees are not looking at my client's papers. And yes, my client is that paranoid he really feels that all and sundry at HMRC have access to that data.
The problem I have is that I have no idea at all nowadays how HMRC works, and how it manages to keep wealthy client data from prying eyes. One would assume that as soon as client's envelope is signed for at HMRC (that is if HMRC employee can be bothered to sign for it), then it could be handled by several low-level employees of questionable integrity.
Replies (53)
Please login or register to join the discussion.
Careful, Penny. This guy may well end up accusing innocent little you. (Remember the Hooded Claw....)
Why is he leaving his previous accountant?
And it's not your job to police HMRC or convince your client if the things you say. He is legally obliged to provide the information, and that's the end of the matter as far as you're concerned.
Before you were instructed he sent a load of information to HMRC and now wants it to be specially treated. It's a bit late to start squeaking even if it can be achieved.
Why should his information be treated more confidentially than anyone else's just because he's wealthy?
I wouldn't get involved too much in trying to placate him. You could explain the concerns to the HMRC officer conducting the enquiry - and hope that between you a way of keeping the client happy can be agreed. Ultimately, however, all you can really do it make sure HMRC are only getting data they are entitled to request. If HMRC are requesting items that are within their powers then those items will need to be provided and your client can either like it or lump it.
In all honesty I'd be surprised if whomever is doing the scanning can really be bothered to leaf through your clients papers - and even if they did, they probably wouldn't understand them anyway.
not uncommon for an enquiry to drag on so long that someone else takes it over.
So speak to the current guy if need be. Still doesn’t change the fact that he’s gonna have to stump up the info (as long as it’s correctly requested) anyway, so he may as well stop being so precious about it.
HMRC are still bound by The Official Secrets Act, and internally information is only available on a "need to know" basis (which is sometimes a PITA if you phone up about something).
Of course, there may always be rotten eggs, not just at HMRC, but at his bank(s), financial advisors, doctors etc. Why is he so hung up on HMRC?
You cant do anything about the past.
But for future delivery, it may help to suggest password protected zip files of the data, then at least it would only be the specialist who can open the file initially.
This gets past your "post room" monkey at least.
in practice I find no-one gives a flying toss about other people's income unless they (a) know them personally (b) they are a celeb.
in practice I find no-one gives a flying toss about other people's income unless they (a) know them personally (b) they are a celeb.
Or they are the audit junior:
Step 1 - look up what the internal accountant/FD earns (was always more than me, which seemed like a burning injustice. What do they do with the other three days in a working week?)
Step 2 - look up what the owners earn. Swear about it.
Step 3 - carry out the actual wages section audit work.
My "favourite" was auditing a Nissan dealership around Glasgow circa 1986/1987, I am being paid peanuts as a trainee, the FC in the dealership gets paid a fortune plus a company car etc, yet I am the one ticking through the bank month by month (and this is a business with a turnover in the millions) because he either cannot or will not reconcille the bank- it took me about three days.
To rub salt in the wound it had the standard software all of the Nissan dealerships then had (We audited all of them in the UK), great for those who sell the cars re the info they can extract re individual car costs/ margins etc (replacing T cards) but fails in the basics re the accounts system where the bank report is not even two column debit/credit reporting (so at least each side can be squared more readily) but is instead a white and green dot matrix printout all entries being in one column with the credits having faint "-" signs in front of them to denote they are actually credits- not good fun and given my eyesight these days likely not something I could now do
I feel your pain in terms of motor dealership audits - even those with half decent internal accountants tended to struggle because the sales staff gave them next to no information. Add to that finance companies netting off advances/settlements/manufacturer contributions, part-exchanges listed at one value on the new car sales invoice and another value (adjusted for over-allowance) on the used car platform, and rebates (profit) on new cars not separated from clawbacks or manufacturer backed promotions. Oh and consignment stock (and relevant creditors) never agreeing with the statements because cars had been swapped around dealerships.
I'll also bet the FC either didn't have a company car on his P11D (normally you could spot these as one of half a dozen used cars that had been moved off demo plan and kept 'in stock' for up to two years) or 'officially' drove the tiniest, cheapest, lowest tax demonstrator on plan - along with about five salesmen all 'driving' the same car!
Sounds about right- I could cope with all of that but when you start out with the bank rec adrift by more than you can ignore (actually not convinced you can ignore an adrift bank rec unless you have ticked it through at least once) then it throws everything else in the audit out- as the dealerships were all 51% subsidiaries (so we in Glasgow sent an audit pack and consolidation schedules for each one to our London office) these were audits where there was no room for missed out dots on an i or an uncrossed t.
"The problem I have is that I have no idea at all nowadays how HMRC works, and how it manages to keep wealthy client data from prying eyes."
Inform your client that his wealth entitles him to no more or no less privacy than every other taxpayer. it needs to keep ALL client data from prying eyes and does that, for better or worse, by having sanctions available to it against its employees and its contractors.
Well, there is also jail.
My son writes software, mainly for government entities, I do not know which departments, what software, anything, he is totally tight lipped about it, leaves the house comes home, nothing said, and the reason for this is everything in the role is covered by the OSA.
Oh, just think of all those software programmer anecdotes and jokes you’re missing out on :-)
When I worked at HMRC they took this sort of thing pretty seriously - people in my team were sacked for looking at a record they had no involvement in.
At the same time they are pretty lax in terms of posting things to the wrong person, which has happened to me on more than one occasion.
On the other hand, a former colleague overheard a tax inspector and another officer discussing his client's case in a tube train on the way to the appeal hearing.
On arrival, he reported this to the Commissioners.
The Revenue's evidence was rejected before they could speak and the appeal was allowed.
Data confidentiality is a genuine problem - we don't actually know how companies handle our data in real life. It helps if they have formal accreditation such as ISO 27001 but I've no idea if HMRC does (it should).
When submitting info to HMRC, are you allowed to restrict certain elements e.g. can you cover up account numbers and sort codes, blank out out the last 5 transactions etc? Anything you can do to pepper pot personal data makes it a bit harder for data thieves to do anything useful with your data.
Sounds like his worrying extends beyond 'anyone' in HMRC having a read of his info out of idle curiosity and into information security given the fact he has been erroneously given someone else's information - which is terrible!
We're all giving up info left right and center and hoping for the best. It's just how the world works now. He has to deal with HMRC whether he likes it or not so he's just going to have to suck it up. I do have a lot of empathy for him though.
I'm another that thinks he may have a point. While being wealthy does not entitle to him to special treatment, it does make him a more attractive target. It is unfortunate that much of the documentation HMRC will require to see will also contain most of the necessary information to make a decent attempt at hacking his accounts/identity theft.
HMG would advise to secure this data safely and not disclose to third parties but he obviously cannot refuse to cooperate but I don't doubt that at least some HMRC employees are working under false pretences for exactly this purpose - if they photograph documents on their private phones, who is to know?
Perhaps your very wealthy, extremely private (?) client could employ someone (after vetting, tagging, blindfolding etc) who could shuttle the papers back and forth to the HMRC enquiry officer, each time they are required. That way, none of the dishonest, low level, employees of questionable integrity, will have the opportunity of seeing them (and will sadly have to remain blissfully ignorant of his EIS investments).
Just a thought.
I thought most high wealth individuals were now dealt with by a special unit, presumably to maintain confidentiality? I have certainly dealt with a couple in this situation. PD1 of course deal with armed forces etc and cannot be contacted on the general helplines or by post other than direct to them.
Yeah they are but maybe he's not that wealthy ;) its all relative
We are all wealthy compare to the average salary in India
There is a high wealth management team at HMRC. A few years ago I was given contact details with HMRC officers who were appointed to look after whichever client. Could this be the case with OP?
I rang up the wealthy taxpayer unit in Bradford.
It seems that to qualify for the services of a proper tax office, you have to be worth at least £10 million (or have been fined for deliberate failure to submit correct returns).
Everyone else seems to get the standard pleb's service.
Oh yes, are judges still prohibited from online filing because of security concerns?
I agree with the general opinion on here that you are really on a hiding to nothing. HMRC have the legal powers to demand the information and you have nothing in your armoury to control this.
However, that does not mean you should not take HMRC to task on the issue. I have complained on at least three occasions to HMRC's Data Protection Officer when I have received correspondence for unknown third parties.
It may be small comfort but why not ask the officer dealing with the enquiry for a direct address (or use fax) to send the information on a one to one basis and make it clear that all documents are to be kept secure and to be returned to your client on completion. At least if something did occur which led your client to believe his information had been leaked by HMRC they may have a case to answer.
It is interesting as I too have an HNW individual who is a Chinese national, living in the UK. Her concerns surround the Chinese Government finding out about her affairs as, in her words, they do not play by the same rules, and leaks do find there way through.
The problem that the OP has is that the client has already supplied the information and he is trying to close the stable door
Ok present systems within HMRC result in correspondence and information/ documents ending up - even if addressed direct - ending up in a post room somewhere and then being scanned to the relevant officer. And just to add to the clients paranoia yes HMRC on occasions can issue private and personal information to the wrong person.
Of course you could always ensure that HMRC are only requesting information that is reasonably required and not like the client just give them whatever they ask for as he seems to have done in the past.
Equally of course you could also insist that documents and information are handed over at a meeting - but then of course you have to be able to manage the meeting and not let HMRC dictate.
I know this is probably not something that you want to hear but are you sure that their requests are properly as a result of risks identified at the outset or are they on the proverbial fishing trip. Depends a lot on the type of enquiry and what formal enquiry notices were issued at the outset AND of course if the client knows of anything being wrong whether carelessly or deliberately OR if he is innocent and they’re fishing - especially when they seem to be questioning sources of capital etc. What case have they given for this approach. Of course the client may have realised he’s already sold the biscuit and is trying to put impediments in the way of subsequent enquiry.
Disclosure would be contrary S18(1) Commissioners of Revenue & Customs Act 2005 and as such a criminal act.
Disclosure would be contrary S18(1) Commissioners of Revenue & Customs Act 2005 and as such a criminal act.
Disclosure would be contrary S18(1) Commissioners of Revenue & Customs Act 2005 and as such a criminal act.
Disclosure would be contrary S18(1) Commissioners of Revenue & Customs Act 2005 and as such a criminal act.
If he received someone else's documents from an HMRC office, why not report it to the Information Commissioner's Office as a GDPR breach?
As seems to happen too often on Aweb, there have been 45 posts on this and many have not actually addressed the questions posed. Rather they have gone off at a tangent, speculating about some other problem, for which there is no evidence whatsoever. I would be willing to bet that the OP is no wiser and no more able to placate the client. Still, we have managed to vent a few spleens.
I think you meant to say "we (or a few of us) have vented our spleen".
We are not talking about a medical procedure on individuals organs..
As for placating the client, just tell him that dealing with HMRC these days is like trying to nail jelly to the wall because they are constantly changing their systems, organisation(!), procedures, locations and personnel. You cannot therefore make any guarantees to him.
If he is worth more than £10 million, you can get the Wealthy Unit to look after his affairs. At least he will get the services of a real tax office.
One final thing, if you submit any original documents, make sure that your covering letter includes an explicit request that they are returned intact after HMRC has finished with them. The current default is for correspondence to be destroyed 6 weeks after scanning at the mail handling centre.
Disclosure would be contrary S18(1) Commissioners of Revenue & Customs Act 2005 and as such a criminal act.