Categories
31 Days to More Effective Compliance Programs

Day 22 | Internal reporting and triaging claims


The call, email or tip comes into your office; an employee reports suspicious activity somewhere across the globe. That activity might well turn into a FCPA issue for your company. As the CCO, it will be up to you to begin the process which will determine, in many instances, how the company will respond going forward.
This scenario was driven home by the SEC in a 2015 FCPA enforcement action involving Mead Johnson Nutrition Company. In this enforcement action, the company performed two internal investigations into allegations that its Chinese business unit was engaged in conduct which violated the FCPA. Unfortunately, the first investigation, performed in 2011, did not turn up any evidence of FCPA violations. It was not until 2013, when the SEC made an inquiry to the company that it performed an adequate internal investigation which uncovered FCPA violations.
Internal reporting. The 2020 FCPA Resource Guide has as clear and concise a statement about hotlines as any other requirement found in Hallmarks of an Effective Compliance Program. It states: “An effective compliance program should include a mechanism for an organization’s employees and others to report suspected or actual misconduct or violations of the company’s policies on a confidential basis and without fear of retaliation.”
Triaging claims. Given the number of ways that information about violations or potential violations can be communicated to the government regulators, having a robust triage system is an important way that a company can determine what resources to bring to bear on a compliance problem.
Jonathan Marks has articulated a five-stage triage process which allows for not only an early assessment of any allegations but also a manner to think through your investigative approach. Marks cautions you must have an experienced investigator or other seasoned professional making these determinations, if not a more well-rounded group or committee. Next, consider what will be the types of evidence to review going forward. Finally, before selecting a triage solution, understand what tools are available, including both forensic and human, to complete the investigation.
Finally, after you ascertain you have an effective reporting mechanism through your hotline and demonstrate you have a robust and properly scoped investigation protocol, you must use the information you receive to remediate any issues which may arise. It is not enough merely to show that a hotline exists, you must present the data it produces.
Three key takeaways:

  1. The DOJ and SEC put special emphasis on internal reporting lines.
  2. Test your hotline on a regular basis to make sure it is working.
  3. Have an investigation protocol in place before the call comes in so you will be ready to go and not required to scramble to create a protocol.
Categories
This Week in FCPA

Episode 236 – the Biden Inauguration edition


As we move from the worst and most corrupt President of all time to the Biden Administration and Jay and Rebecca celebrate their daughters ascension to womanhood, Tom and Jay are back to look at some of the top compliance articles and stories which caught their eye this week.

  1. What does the FinCEN enforcement action against Capital One mean for compliance? Jaclyn Jaeger in Compliance Week. (sub req’d) Matt Kelly explores on Radical Compliance. Tom and Matt take a deep dive on Compliance into the Weeds.
  2. The OFAC year in review. Mike Volkov takes a deep dive in Corruption Crime and Compliance.
  3. The Boeing Fraud enforcement action? Tom take a deep dive in the FCPA Compliance and Ethics Blog. Dylan Tokar in the WSJ Risk and Compliance Journal.
  4. Poaching now legal? Paul Weiss lawyers on NYU’s Compliance and Enforcement Blog.
  5. Wells Fargo ex-GC spanked. Jaclyn Jaeger in Compliance Week. (sub req’d)
  6. UAE to fight money-laundering. Jon Rausch (returns) in Dipping Through Geomotries.
  7. More Caremark claims coming? Kevin LaCroix in the D&O Diary.
  8. Are you an introverted compliance professional? Now may be the time for you. Dick Cassin explores on the FCPA Blog.
  9. A new month is here and a new guest on The Compliance Life. Gwen Hassan- Director of Compliance at CNH Industrial. In this month’s third episode, Gwen explains why every compliance professional needs to stay culturally curious. Check out the episode here.
  10. This month, on 31 Days to a More Effective Compliance Program, I look back over 2020 and set out some of the key enhancements you need to do for your compliance program in 2021. Day 16 | 3Rd Party Risk Management Process; Day 17 | Managing Your 3rd parties; Day 18 | Levels of Due Diligence; Day 19 | The Investigation Protocol; Day 20 | Responding to Investigative Findings; Day 21 | Continuous Improvement; Day 22 | Internal Reporting. Note 31 Days to a More Effective Compliance Program now has its own iTunes channel.
  11. Join K2 Integrity on January 27 to hear Olivia Allison and Joanne Taylor discuss the latest E
    U regulatory developments in whistleblowing programs and investigations. Information and Registration here.
  12. Compliance Week is accepting nominations for its Excellence in Compliance Award. Submit your nominee here.

Tom Fox is the Compliance Evangelist and can be reached at tfox@tfoxlaw.com. Jay Rosen is Mr. Monitor and can be reached at jrosen@affiliatedmonitors.com.

Categories
Daily Compliance News

January 22, 2021, Dump the Regulators edition


In today’s edition of Daily Compliance News:

  • Can the NRA dump its regulators by filing bankruptcy? (NYT)
  • Judge turns Parler down. (NYT)
  • Google threatens to leave Australia. (BBC)
  • Should companies pay workers to get vaccines? (NPR)