I have been — and continue to be– hyper-focused on the proper role and responsibilities of Chief Compliance Officers. Not that I see any cause for alarm, but it is easy to lose focus in the sea of so-called hot issues — ESG, Diversity, Climate Change, Threats to Democracy, Cybersecurity and Data Privacy, each of which is an important component and focus for organizations. All of these issues intersect, are interdependent and should be addressed through organizational commitment. But I want to take a step back and return to an issue of importance — the proper role of CCOs. To do so, we need to remind everyone about basic requirements, lessons learned and ways forward to meet the fast-changing times. CCOs have to maintain and then advance their positions. In my view, given the interdependence of all the important issues mentioned above, the role of the CCO has become even more critical. In this episode, Michael Volkov reviews the standards applicable to the CCOs function in an effective compliance program.
Day: July 29, 2022
Decision making is a critical skill for any Chief Compliance Officer (CCO) or compliance professional. Continuous monitoring and continuous improvement are now accepted as standard components of any table stakes compliance program. The Department of Justice (DOJ), in the 2020 Update to the Evaluation of Corporate Compliance Programs, made clear the need for continuous improvement in any compliance program. It stated quite succinctly, “One hallmark of an effective compliance program is its capacity to improve and evolve. The actual implementation of controls in practice will necessarily reveal areas of risk and potential adjustment. A company’s business changes over time, as do the environments in which it operates, the nature of its customers, the laws that govern its actions, and the applicable industry standards. Accordingly, prosecutors should consider whether the company has engaged in meaningful efforts to review its compliance program and ensure that it is not stale.”
Indeed, the 2020 Update posed the following questions that the DOJ might ask a company under a Foreign Corrupt Practices Act (FCPA) investigation, “How often has the company updated its risk assessments and reviewed its compliance policies, procedures, and practices? Has the company undertaken a gap analysis to determine if particular areas of risk are not sufficiently addressed in its policies, controls, or training? What steps has the company taken to determine whether policies/procedures/practices make sense for particular business segments/subsidiaries? Does the company review and adapt its compliance program based upon lessons learned from its own misconduct and/or that of other companies facing similar risks?”But one question not posed is around your decision-making process in when to move from continuous monitoring to continuous improvement. I was therefore interested in a recent FastCompany.com article, entitled “3 Steps Navy SEALs Use to Make Decisions”, by Stephanie Vozza. Vozza quotes former Navy SEAL and Chief Executive Officer (CEO) of ADS, Inc., Ryan Angold who said, “With so much information out there, a lot of people get analysis paralysis. You want to do your research and you want to access all the resources you have so you can make the right decision. But you can’t sit in analysis paralysis forever. Ultimately, there’s no 100% perfect decision.”
For her piece she also interviewed former Navy and current VMWare Chief Digital Transformation Officer Mike Hayes and author of the book, Never Enough: A Navy SEAL Commander on Living a Life of Excellence, Agility, and Meaning, who laid out a framework he used as an active SEAL for decision making.
- Gather Input
When you are a CCO or compliance professional in a corporate compliance function, you most probably have created experiences from which you can draw. Angold noted, “The requirement in SEAL teams is that you have you’ve gone through multiple different scenarios, you’ve trained for the most extreme environment, the most challenging environment, the worst-case scenarios. These reference points are helpful. You can say, ‘Okay, we’ve seen something like this before.’ Maybe this isn’t the exact scenario—it never is. But you’ve learned how the team works and can make quick decisions.”
Both Jonathan’s from the award-winning Everything Compliance gang, Jonathan Armstrong and Jonathan Marks, talk about not simply crisis and scenario planning but practice as well. Such practice not only gives you the muscle memory of what to do when a true crisis appears but also provide the types of experiences that Angold references that the SEALs then use in missions.
Hayes added that you should listen to difference voices or inputs, noting, “Too often, we tend to seek out like-minded input. Artists tend to hire artists and engineers hire engineers. By getting input from people who don’t think like us and by having a culture that celebrates differences and raising other ideas, you help people be comfortable saying things like, ‘Hey, sir, I don’t think that’s a great idea. Here’s how I would do it.’ That framework enables the best possible decisions.” Note that Hayes’ remarks also illuminate the importance and benefits of a true “Speak-Up Culture”.
- Decide When to Decide
Most interestingly, the first thing you have to determine is when to make your decision. Hayes said, “The first decision is when to make your decision. That’s the thing that most people get wrong.” Obviously in combat your decision-making window can be quite short, but the same principle applies in the corporate world. Here Hayes noted, “At some point, the value of those extra inputs in your input streams costs more than the time associated with getting more inputs. At that inflection point is when you want to make your decision. You start losing value by waiting longer.”
But this point is where experience can become more paramount. In the corporate compliance world, you will likely get information, which is both quantitative and qualitative, particularly through continuous monitoring. Do not become paralyzed at this point, and you can rely on your gut or, as Hayes said, “there are other times where you need to operate in instinct. Instinct is really a set of experiences that you can’t quite crystallize, but that you extract logic from.”
- Be Willing (and ready) to Course Correct
Here a key CCO and compliance professional soft skill, that of humility, both “intellectual and real will help you get to the right decision.” Do not let your ego get in the way or start considering your sunk costs. You may garner new information which gives new input. Even John Maynard Keynes said, “When my information changes, I alter my conclusions. What do you do, sir?”
Hayes said this is “the ultimate sign of leadership because it’s a sign of comfort in your own skin and not needing to look good in front of an organization. Instead, you’re putting the organization before self and doing the right thing.” Angold phrased it as “It takes a lot of humility for someone to be able to recognize it was the wrong call,” he says. “That’s where the communication is important and having that transparency with your team. You can gain a lot of additional trust from your team, when you acknowledge a wrong decision.”
Continuous improvement through continuous monitoring or other similar techniques will help keep your compliance program abreast of any changes in your business model’s compliance risks and allow growth based upon new and updated best practices specified by regulators. A compliance program is in many ways a continuously evolving organism, just as your company is. You need to build in a way to keep pace with both market and regulatory changes to have a truly effective anti-corruption compliance program. By using this three-step approach, you can best determine how to move from the monitoring to the improvement phase.
Welcome to From the Editor’s Desk, a podcast where co-hosts Tom Fox and Kyle Brasseur, EIC at Compliance Week, unpack some of the top stories which have appeared in Compliance Week over the past month, look at top compliance stories upcoming for the next month, talk some sports and generally try to solve the world’s problems.
In this month’s episode, we look back at top stories in CW from July around the EY cheating exam enforcement action and a discussion of a potential CCO liability framework. Kyle previewed some of the topics Compliance Week will report in August, including how technology innovation is causing heartburn for regulators and current issues in crypto enforcement. We previewed some upcoming CW events, including the ESG virtual event, CW 2022 in Europe, which will be held in Scotland and the 3rd Party Risk conference, scheduled for December. Kyle also discussed the upcoming Inside the Mind of the CCO survey in October.
We conclude with a look at some of the top sports stories, including the induction of David Ortiz into the Baseball Hall of Fame. Kyle talked about what Big Papi meant and continues to mean for Boston, and Tom spoke about him on the national stage. We touched on the new LIV pro golf tour.
Where does creativity fit into compliance? In more places than you think. Problem-solving, accountability, communication, and connection – they all take creativity. Join Tom Fox and Ronnie Feldman on Creativity and Compliance, part of the award-winning Compliance Podcast Network. In this episode, Tom and Ronnie continue their shorts series on provocative statements on compliance training and communications, followed by discussion. In this episode, Ronnie riffs on the question is it OK to laugh at work? Highlights include:
o Common excuses for not doing things creatively.
§ we’re a conservative company
§ we take the issues very seriously
§ it doesn’t fit our culture
§ my boss doesn’t have a sense of humor
§ we’re global
o How to build a business case because entertainment and learning is more effective.
§ emotional connections
§ memory and recall
§ stands out in a noisy environment
§ It open people up
§ It helps increase airtime and exposure
o The Fun Theory
o Other examples in life
Resources:
Ronnie Feldman (LinkedIn)
Learnings & Entertainments (LinkedIn)
Ronnie Feldman (Twitter)
Learnings & Entertainments (Website)
60-Second Communication & Awareness Shorts – A variety of short, customizable, quick-hitter “commercials” including songs & jingles, video shorts, newsletter graphics & Gifs, and more. Promote integrity, compliance, the Code, the helpline and the E&C team as helpful advisors and coaches.
Workplace Tonight Show! Micro-learning – a library of 1-10-minute trainings and communications wrapped in the style of a late-night variety show, that explains corporate risk topics and why employees should care.
Custom Live & Digital Programing – We’ll develop programming that fits your culture and balances the seriousness of the subject matter with a more engaging delivery.
Tales from the Hotline – check out some samples.
The first 100 days. Franklin D Roosevelt’s first term is the standard by which all other Presidents are measured for their first days in office. Why? It is because not only did FDR hit the ground going full speed but also passed legislation, which changed the shape of America for years to come. While the first thing he did was declare a Bank Holiday to save the nation’s banking system, he also passed significant legislation to try to stem the effects of the Great Depression. These bills included the Agricultural Adjustment Act, the Federal Emergency Relief Administration, the Civilian Conservation Corps, and, finally, the National Industrial Recovery Act. He also enacted the Truth-in-Lending and Glass-Steagall Acts to help regulate the stock market, whose collapse had heralded the economic downturn. Even if these acts did not turn the tide of the Great Depression, it gave people hope because at least it appeared FDR was doing something to fight the economic calamity.
Now imagine that you finally have been able to secure a new position as Chief Compliance Officer in the compliance field. Every company believes that they are ethical and that they certainly do business ethically but what are some of the things that you can do in your first 100 days? Hopefully you will not be dropped into a corporate situation as dire as the one FDR faced for the US in 1933 but the reality is that many new heads are still judged on these mythical first 100 days.
One obvious thing to generate success in the corporate world is to have a good relationship with your boss. You should have important conversations around expectations, working style, resources and your personal development. To facilitate these discussions the following points are posited:
- There is no value in trashing the existing compliance program.
- You need to drive the discussions with your boss.
- Your boss is looking for solutions, not problems.
- Your boss is not interested in running through your checklist of things to do.
- Make sure that you connect with the people that your boss values and admires, such as their mentor.
- Set expectations.
These first 100 days will be a time of very high stress. This may well be compounded by your travel schedule and working very long hours to try and fulfill the concepts. The right advice-and-counsel network is an indispensable resource. Use your outside network of mentors, coaches and friends which you have developed over the years, to discuss your part at the company and what you have been experiencing. The key is to use whatever resources are available to you during your first 100 days.
Just as FDR accelerated his actions during his first 100 days, a large part of his success was that he accelerated those around him. You should take this key component of FDR’s success to heart in your new role. Get your direct reports, bosses, and peers to accelerate their own transitions. The fact that you are in transition means they are too. The quicker you can get your new direct reports up to speed, the more you will help your own performance.
It is difficult to imagine today a harder situation than the country faced when FDR came to power in 1933. The task must have seemed overwhelming. Starting a new compliance leadership position at a new company can seem equally daunting. You need to not only think through your steps going forward but also how to execute them for maximum performance in this early part of your corporate career.
Categories
On Being a Citizen
Each person who becomes a naturalized citizen of these United States is required to swear the following Oath:
“I hereby declare, on oath, that I absolutely and entirely renounce and abjure all allegiance and fidelity to any foreign prince, potentate, state, or sovereignty, of whom or which I have heretofore been a subject or citizen; that I will support and defend the Constitution and laws of the United States of America against all enemies, foreign and domestic; that I will bear true faith and allegiance to the same; that I will bear arms on behalf of the United States when required by the law; that I will perform noncombatant service in the Armed Forces of the United States when required by the law; that I will perform work of national importance under civilian direction when required by the law; and that I take this obligation freely, without any mental reservation or purpose of evasion; so help me God.”
The principles embodied in the Oath are codified in Section 337(a) in the Immigration and Nationality Act (INA), which provides that all applicants shall take an oath that incorporates the substance of the following:
- Support the Constitution;
- Renounce and abjure absolutely and entirely all allegiance and fidelity to any foreign prince, potentate, state, or sovereignty of whom or which the applicant was before a subject or citizen;
- Support and defend the Constitution and laws of the United States against all enemies, foreign and domestic;
- Bear true faith and allegiance to the same; and
- A. Bear arms on behalf of the United States when required by the law; or B. Perform noncombatant service in the Armed Forces of the United States when required by the law; or C. Perform work of national importance under civilian direction when required by the law.
The language of the current Oath is found in the Code of Federal Regulations Section 337.1 and is closely based upon the statutory elements in Section 337(a) of the INA.
I know all this because my wife recently became a US citizen this month and I could not be more proud of her for this accomplishment. Reading the Oath she swore did give me some pause to think about what does it really mean to be a citizen of these United States.
First and foremost, I have never been required to swear this Oath, as a natural born citizen of the United States. Now I wish I had done so because the Oath makes clear that as citizens, we all have obligations to our country. Right about now the language “Support and defend the Constitution and laws of the United States against all enemies, foreign and domestic” is as important as it has ever been, given the events of January 6, 2021 and the involvement of the highest levels of former administration.
But I also reflected on Clause Five quite a bit as well. Although I am far past the age where I might reasonably be expected to be drafted, if there was a total war and the existence of our country was in such grave danger, I could be called on to bears arms in support of the US. If I am too old or infirm to bear arms in support of this country. I still be could called on to “Perform noncombatant service in the Armed Forces of the United States when required by the law”. Finally, I can be called upon to “Perform work of national importance under civilian direction when required by the law.” There have been few true national emergencies in my lifetime. Perhaps the Cuban Missile Crisis and the Covid-19 pandemic are the only true national emergencies during my lifetime. I was too young to understand much about the Cuban Missile Crisis other than my father was called to active duty over a weekend.
But the language does not specify you can be called only in a military emergency. It can be to perform work of national importance. Certainly, following the government’s directions during the pandemic was such an instance of performing work under the direction of civilian authority.
John Lee Dumas, in his concluding remarks when I asked him to reflect on 9/11 and the intervening 20 years in the award-winning podcast series, Looking Back on 9/11 said that America is the Land of the Free because we are the Home of the Brave. Re-reading this Oath drove home to me that we are all obligated to be and act as citizens of these United States. Even if you are like me and never been required to take this Oath or like my wife, who had to swear this Oath to become a US citizen, and everyone in between.
According to Juan Toribio, writing in MLB.com, Blake Grice waited patiently with his right hand raised for about two minutes to hear his name called inside the Dodgers’ interview room. When he was finally noticed, LA Dodgers star pitcher Clayton Kershaw asked “Whatcha got?” The 10-year-old related that his dying grandfather, Graham, had created a bucket list of things he still wanted to do, one of which was to meet Kershaw. Blake was credentialed by MLB to attend the Post-Game Press Conference and when he did, he dedicated the moment to his now deceased grandfather.
As reported by Toribio, Blake told Kershaw ““My grandpa loved you. He watched the 1988 [World] Series and he wanted to meet you and Vin Scully one day. So this moment is important to me because I’m meeting you for him.” Before he finished telling Kershaw the story, Blake began to cry” and Kershaw responded by going over to Blake and consoling him with a hug. Kershaw the said to him, “Come here, dude, great to meet you. Thanks for telling me. That took a lot of courage to tell me that. Great to meet you. Your granddad sounded like an awesome guy. Thanks for coming up.””
With a nod of the (St. Louis Cardinals) hat to Tim Erblich for sending me this story, I thought it was a very good way to introduce Part 2 of my series on advancing ethical culture through psychological safety. This series is based on a recent article in the MIT Sloan Management Review, Summer edition, entitled “Fostering Ethical Conduct Through Psychological Safety” by Antoine Ferrère, Chris Rider, Baiba Renerte, and Amy Edmondson. The authors believe “there are a number of things organizations can do to make it more likely that people will speak up when they observe unethical behaviors.” But one key is psychological safety, defined by co-author Edmondson as “a shared belief held by members of a team that the team is safe for interpersonal risk-taking” — or, put another way, that “we can say what we think” or “be ourselves around here.” Today, we look at how to determine the state of psychological safety in your organization.
The authors’ research concluded that while many employees “said that they spoke up after witnessing perceived unethical behavior, a substantial minority said that they did not speak up.” The authors found that “those who felt less psychologically safe were significantly less likely to report those behaviors via channels where organizational leaders might act on them.” Conversely, employees “who felt the most psychologically safe were most likely to have reported the misconduct they observed. This held true even after taking into account a range of other psychological factors that could influence incident reporting, such as perceived levels of organizational justice, fairness, and trust. Psychological safety is therefore important for more than just team effectiveness and well-being; it may also be critical for forming strong ethical cultures where employees feel comfortable speaking up.”
Interestingly, the authors realize the non-siloed nature of psychologically safety at the workplace. They note that ethics, risk management, legal and compliance functions, plus Human Resources (HR) all share an interest in fostering such an environment. This mandates a cross-functional approach as an essential requirement of molding an organization’s culture to include psychological safety. The authors believe, “Managers throughout a company must become aware of the blind spots created by a psychologically unsafe environment, along with the associated risk of underreported misconduct.” They also caution that a formal program such as a reporting hotline “may capture only a fraction of the problematic behaviors that occur.” This leads the authors to posit that gauging psychological safety “may help companies determine whether misconduct is being reported and, in turn, enhance the effectiveness of their formal speak-up programs.”
After 15 years of the Department of Justice (DOJ) and other regulators talking about “tone at the top”; the authors credit that most organizations appear to have senior leadership that talks about ethics positively. They believe “CEOs emphasize that integrity is a core value of their organizations, and that point is reiterated in calls with shareholders and during employee town hall meetings.” Unfortunately, while this messaging is important, the research indicated “it is not sufficient to prevent the derailers of ethical conduct that occur deep within an organization.”
The authors recognize what compliance professionals have known for some time, that it is middle managers, and “not just official speak-up channels are often on the front lines when it comes to hearing about unethical behavior.” They found that 80% of employees who did report internally, went to their direct managers, who are almost always in middle management. This is because middle managers are the company leaders play who play the critical role in ensuring that an employee speaking up feels supported and heard. The authors noted, “Our data shows that how line managers act has a disproportionate impact on the way potentially unethical behavior is addressed within organizations.”
Unfortunately, simply because a middle manager may feel psychologically safe you must not assume that their direct reports feel the same way. Confirming the findings from the ECI Report of its 2021 Global Business Ethics Survey, “managers and senior leaders tend to feel more psychologically safe than their employees and have a more positive perception of their organization’s ethical climate than the rest of the workforce. When you put these two findings together it makes clear that the higher up in the organization you go, there may well be “an ethical blind spot. That makes the role of team managers even more important when it comes to fostering an environment conducive to both engaging in ethical behavior and talking about ethics in an open, constructive way.”
The authors also confirmed a greater problem which is that “in a global context, psychological safety is not uniform across nations.” Survey respondents from “the Americas and Europe tended to score higher on psychological safety than respondents from Asia.” This suggests to the authors that “the potential effectiveness of tailoring interventions that promote speaking up in order to address the specific circumstances of different groups of employees.” Moreover, “global organizations that seek to build psychological safety must assess its various region-specific drivers and derailers to adjust their activities to specific seniorities and cultures.”
Join us tomorrow in Part 3 where we consider why a company that does not have psychological safety throughout it can not only be so toxic but in serious danger as well.
Bill J. Allen died last week. Not familiar with the name? Then check out his New York Times (NYT) obituary. Perhaps outside of Illinois or Ohio, he ran one of the most brazen state legislature corruption schemes around, in the state of Alaska. His power and influence were so great that he was the cooperating witness who brought down a sitting Senator, Ted Stevens, although the Indictment was withdrawn after conviction but before sentencing due to prosecutorial misconduct.
Allen held court at a suite at the Westmark Baranof, a luxury Art Deco hotel four blocks from the State Capitol in Juneau, where he and his cronies “dished out money and told their visitors what they wanted in return. Mr. Allen and his circle seemed to revel in their shamelessness. He and Mr. Smith always booked Suite 604, and Mr. Allen always sat in the same chair. He bragged that he kept $100 bills in his front pocket, the easier to dole them out to friendly politicians. The girlfriend of one politician even had hats embroidered with the letters CBC, for “Corrupt Bastards Club.””
Allen and his brazen corruption schemes seem like a good way to introduce the concluding Part 3 of my series on fostering an ethical culture through psychological safety. This series is based on a recent article in the MIT Sloan Management Review, Summer edition, entitled “Fostering Ethical Conduct Through Psychological Safety” by Antoine Ferrère, Chris Rider, Baiba Renerte, and Amy Edmondson. In Part 1 we introduced the concept of psychological safety and why it is so important to creating an ethical culture in a business. In Part 2, we considered how to determine the state of psychological safety in your organization. Today in Part 3 we consider what happens in an organization where psychological safety is lacking and steps an organization can take to remedy this deficiency.
The authors believe that “when psychological safety is lacking, it may be a consequence of the employee having witnessed unethical behavior.” Moreover, the inversion of psychological safety “correlated to the quantity of unethical behavior noticed. Put simply, the more unethical behavior a person saw, the more likely they were to feel psychologically unsafe. This suggests that the experience of seeing more unethical behavior may diminish the psychological safety experienced by an employee.” Simply put if your bosses engage not only in corrupt behavior but simply unethical behavior, it will send a message throughout the organization that reporting unethical behavior will not be favored. One only need think of Jes Staley, former Chief Executive Officer (CEO) of Barclay’s who engaged in illegal behavior in attempting to unmask an internal whistleblower. In November 2021, Staley resigned amid a regulatory probe into whether he mischaracterized his relationship with the financier and sex offender Jeffrey Epstein. In many ways Barclays has never recovered.
The authors basically state the obvious when they write, “it makes intuitive sense that being in a work environment where unethical behavior is prevalent might diminish psychological safety.” Put another way “people are most reluctant to speak up in ethically troubled environments, where we most need them to do so.” This is an important issue for every Chief Compliance Officer (CCO) and business leader. To overcome such a deficiency, they found that “several other factors correlated with strong speak-up behavior, keeping everything else constant: moral engagement, moral attentiveness, and organizational justice combined with clarity of expectations.”
Moral engagement. As a CCO you should endeavor to create an atmosphere where ethical conduct matters, “so that when employees recognize a potentially unethical situation, they will be motivated to do what’s right.” At Novartis International AG, the authors noted the company “created a decision-making framework called the Decision Explorer to support associates in making ethical decisions. Rooted in the company’s code of ethics, the tool helps employees work through a situation to surface ethical considerations.”
Moral attentiveness. You can educate employees to recognize the ethical dimensions of situations. They point to the example at Novartis who “runs practical ethics training sessions that immerse employees in hypothetical scenarios where they must practice ethical decision-making. Another approach is to have managers highlight examples of ethical and unethical behavior with their teams and encourage dialogue on workplace ethics. Such grassroots employee contributions build trust and commitment by giving employees a role in strengthening the code of behavior by which they are expected to live.”
Organizational justice. Obviously talk is cheap and it is actions, not deeds, that matter. The Department of Justice (DOJ) has made clear in the Update to the Evaluation of Corporate Compliance Programs that the keeper and responsibility of institutional justice sits with the CCO and the authors find that this same concept “is vital to building a reputation of organizational justice.”
Clarity of expectations. CCOs must communicate a clear message to employees so that employees will have “an understanding of organizational standards and are clear about expectations.” Second, CCOs must act decisively in response to employee reports of misconduct to show that there are consequences for unethical behavior. To foster greater psychological safety, coach and empower line managers to create safe spaces for discussing ethical concerns, and help them react appropriately when such issues are raised.
The siloed nature of this issue must also be addressed. As previously noted, this issue touches multiple corporate disciplines including HR, ethics and integrity, risk management, legal and compliance. There must be a cross-functional approach in building a culture of ethics and performance. For example, Novartis created a cross-functional working group focused on the notion of ethical leadership.
The authors concluded, “Building a psychologically safe environment to facilitate speaking up about ethical conduct is relevant to both company reputation and long-term business performance. Unethical conduct can remain hidden for a time but is likely to be discovered eventually, causing far more harm than if it were caught and corrected early. Psychological safety thus can help organizations respond and improve quickly instead of allowing misconduct and unethical behavior to fester and further degrade workplace psychological safety, thus triggering a vicious cycle.” Every compliance professional should use the research from the authors study to craft a program to create or improve the psychological safety at your organization. The authors frankly state that organizations which have relied on speak-up channels or ombudspersons as mechanisms for reporting unethical behavior is no longer sufficient. “They need to be complemented by efforts to actively shape and promote an ethical climate in which managers are equipped to support employees’ ability to say what they think and react appropriately to what they hear.”
We have not had a This Day in History opening for the FCPA Compliance and Ethics Blog for some time. So not only is one long overdue but a shipwreck which occurred some 66 years ago makes a great opening for today’s start of a multi-part blog post series on a Federal Anti-Kickback enforcement action which was announced last week, involving the Oregon based medical device manufacturer Biotronik Inc. (Biotronik).
The shipwreck of course was the catastrophe involving the Italian passenger liner the Andrea Doria and the Swedish passenger liner, the Stockholm off the coast of New York on this date in 1956. According to This Day in History, at approximately, 10:45 pm, the Stockholm showed up on the Andrea Doria’s radar screens, at a distance of about 17 nautical miles. Next Andrea Doria showed up on the Stockholm’s radar, at 12 miles away. The Andrea Doria Captain then “exacerbated a dangerous situation by making a turn to port for an unconventional starboard-to-starboard passing, which he wrongly thought the other ship was attempting.” Third Officer Johan-Ernst Bogislaus Carstens, commanding the bridge of the Stockholm, then made a conventional turn to starboard. Andrea Doria Captain Calami realized he was on a collision course with the Stockholm and turned hard to the left, hoping to race past the bow of the Swedish ship but it was too late. Five were killed on the Stockholm and 46 persons on the Andrea Doria died but over 1,600 were rescued. It was one of the final great nautical disasters involving the collision of passenger ships.
According to the Department of Justice (DOJ) Press Release, “the Federal Anti-Kickback Statute prohibits offering or paying anything of value to induce referrals of items or services covered by Medicare and other federally funded programs. The statute is intended to ensure that medical providers’ judgments are not compromised by improper financial incentives.” Principal Deputy Assistant Attorney General Brian M. Boynton, head of the Justice Department’s Civil Division, said, “Paying kickbacks to doctors to influence their selection of medical devices undermines the integrity of federal healthcare programs. When medical devices are used in surgical procedures, patients deserve to know that their device was selected based on quality of care considerations and not on improper payments from manufacturers.”
Biotronik is a company which manufactures and sells cardiac rhythm management (CRM) devices, including pacemakers, defibrillators, and cardiac resynchronization therapy (CRT) devices throughout the United States. The company engaged in bribery and corruption inside the US rather than outside of the US as we see in cases involving the Foreign Corrupt Practices Act (FCPA). The Press Release claims that the company engaged in a “kickback scheme to pay certain favored physicians to induce and reward their use of Biotronik’s pacemakers, defibrillators and other cardiac devices. In particular, Biotronik allegedly abused a new employee training program by paying physicians for an excessive number of trainings and, in some cases, for training events that either never occurred or were of little or no value to trainees.”
Biotronik was on actual knowledge that these payments were illegal as the corporate compliance function “warned that salespeople had too much influence in selecting physicians to conduct new employee training and that the training payments were being over-utilized.” The Press Release also noted, “the settlement also resolves allegations that Biotronik violated the Anti-Kickback Statute when it paid for physicians’ holiday parties, winery tours, lavish meals with no legitimate business purpose and international business class airfare and honoraria in exchange for making brief appearances at international conferences.”
Interestingly, this matter involved two whistleblowers. The civil settlement included the resolution of claims brought under the qui tam or whistleblower provisions of the False Claims Act (FCA), which, under those provisions, a private party can file an action on behalf of the United States and receive a portion of any recovery. The whistleblowers were Jeffrey Bell and Andrew Schmid, both of whom had been employed as independent sales representatives for Biotronik. They brought suit against the company, alleging, as stated in the Settlement Agreement, that Biotronik “knowingly caused the submission of false claims for payment to federal healthcare programs by providing remuneration to physicians to induce them to use Biotronik’s CRM devices in violation of the Anti-Kickback Statute, 42 U.S.C. § 1320a-7b(b). The United States intervened in the Civil Action on June 21, 2021.” Bell and Schmid received approximately $2.1 million as their share of the recovery in this case.
Biotronik agreed to pay $12.95 million to resolve these allegations “by causing the submission of false claims to Medicare and Medicaid by paying kickbacks to physicians to induce their use of Biotronik’s implantable cardiac devices, such as pacemakers and defibrillators.” There were multiple US enforcement authorities involved in this case. The Press Release noted, “the resolution obtained in this matter was the result of a coordinated effort between the Justice Department’s Civil Division, Commercial Litigation Branch, Fraud Section and the U.S. Attorney’s Office for the Central District of California. HHS-OIG assisted in the investigation.”
Join us tomorrow when we consider the bribery schemes allegedly used by Biotronik and the lessons learned for the compliance professional.
Today we conclude our series on a Federal Anti-Kickback enforcement action which was announced last week, involving the Oregon based medical device manufacturer Biotronik Inc. (Biotronik). Today, I want to consider the corruption schemes and the lessons learned for the compliance professional. As stated in the Settlement Agreement, Biotronik “knowingly caused the submission of false claims for payment to federal healthcare programs by providing remuneration to physicians to induce them to use Biotronik’s CRM devices in violation of the Anti-Kickback Statute, 42 U.S.C. § 1320a-7b(b).”
I. The Bribery Schemes
a. Abuse of Training Programs
The Settlement Agreement alleges “Biotronik knowingly paid excessive payments to physicians with a purpose of inducing and rewarding their use of Biotronik’s pacemakers, defibrillators, and other cardiac devices. One of ways the company did so was through “its new employee training program (“Training Program”) by knowingly paying some of its physician customers (“Training Physicians”) to provide excessive employee trainings.” Under this scheme, the Training Physicians were to be paid a fixed fee of approximately $400.00 each time a Biotronik employee trainee received training during one of the Training Physician’s CRM implant procedures. For instance, under the Training Program implant procedure, the “Training Physician was supposed to educate the employee trainee on Biotronik’s devices and teach how to assist a physician during an implant procedure.”
However, it was the sales team which set up these training programs. Biotronik’s compliance and training functions warned that “Biotronik’s salespeople had too much influence in the selection of Training Physicians, that the Training program and resulting payments were being over- utilized, and that the goal of educating Biotronik employees could be achieved without paying Training Physicians.” However, “Biotronik permitted trainees to attend an excessive number of training procedures for which Training Physicians received payment from Biotronik without first conducting an adequate assessment of the trainee’s need for additional training.”
To further line the pockets of the Training Physicians, “salespeople, including managers, intentionally prevented otherwise qualified trainees from successfully completing the Training Program, not because they needed additional training, but rather as a means of ensuring that the trainee could attend more trainings, thereby purportedly justifying additional payments to Training Physicians.” Biotronik also knowingly paid Training Physicians for some trainings that either never occurred or was of little or no value to trainees. This included paying one “Training Physician for certain trainings for which there was no trainee physically present to observe the implant procedure.”
b. Lavish Entertainment
The Settlement Agreement also alleged that “Biotronik knowingly paid for lavish meals, entertainment, and travel for certain physicians who are known to Biotronik and the United States (hereinafter the “Subject Physicians”) with a purpose of inducing and rewarding their use of Biotronik’s pacemakers, defibrillators, and other cardiac devices.” The company “did not require sign in sheets for lavish meals with physicians and did not use adequate methods to verify the number or identity of attendees or to confirm whether the meals were for a legitimate business purpose.”
This led to some Biotronik employees falsifying “receipts and participant lists, making it possible to exceed the company’s compliance spending limit per attendee.” These meals and outings often included little or no legitimate business discussion. There was also the amount of the entertainment expense, which included “winery tours, annual office holiday parties, and lavish meals with certain Subject Physicians and their guests at high-end restaurants.” Yet another example of spending far too much on entertainment was “one Subject Physician’s international business class airfare and honoraria in the thousands of dollars for a short, 30-minute talk at an international conference.”
II. Biotronik Remediation
No doubt one of the reasons Biotronik did receive the settlement amount was that, at some point, it recognized the issues and instituted remediation. With the training programs “beginning in 2017, Biotronik added new compliance measures and oversight of the Training Program, limited the number of Training Program events, and reduced payments made in connection with such Training Program events.” In April 2021, Biotronik hired a new Vice President of Compliance and was able to get the lavish entertainment under control by adding “new compliance measures related to the provision of meals and travel to healthcare providers which provided additional employee training, imposed new restrictions, and improved oversight to identify and prevent meal and travel policy violations.”
III. Lessons Learned
There are multiple lessons here for the compliance professional outside the laws under which Biotronik ran afoul. Perhaps the clearest and foremost is that compliance not only needs visibility into areas of risk about also some modicum of control. In the area of Physician Training, the Settlement Agreement specifically noted that the Biotronik compliance function “warned that Biotronik’s salespeople had too much influence in the selection of Training Physicians, that the Training program and resulting payments were being over-utilized, and that the goal of educating Biotronik employees could be achieved without paying Training Physicians.” Here a control should have been put in place which required compliance approval before payments and reimbursements were made for the training. This is similar to a compliance oversight and control of expenses paid or reimbursed to foreign government officials in a Foreign Corrupt Practices Act (FCPA) compliance program.
Interestingly, the Department of Justice (DOJ) also discussed a more nuanced approach to determining if the Physician’s Training is both initially warranted and then continues to be warranted. This is ongoing monitoring. Obviously for Biotronik, one of their risks was when the company paid for training provided by doctors who could also prescribe the company’s products and services. The risk to the company is similar to the risk of an internationally focused company doing business with foreign governments or state-owned enterprises, under the FCPA. If you are paying out monies for training and that puts you in a high-risk category, you need to make sure those receiving the training are required to receive it or even need it.
Under the lavish spending on entertainment and travel, the same type of analysis can apply. The key is both “reasonable spending and business purpose.” The amount spent must be reasonable for the time, locale and participants. There should also be an articulated business purpose for the dinner or other event.
Under the FCPA, there is no threshold that a Company can establish a value for business entertainment. However, I believe there are clear guidelines which should be incorporated into your business expenditure policy, which should include the following:
- A reasonable balance must exist for bona fide business entertainment during an official business trip.
- All business entertainment expenses must be reasonable.
- The business entertainment expense must be commensurate with local custom and practice.
- The business entertainment expense must avoid the appearance of impropriety.
- The business entertainment expense must be supported by appropriate documentation and properly recorded on the company’s book and records.
The incorporation of these concepts into a compliance policy is a good first step towards preventing potential violations from arising, but it must be emphasized that they are only a first step. There must be procedures to implement these policies. At a minimum, you must require a business justification from the business representative requesting to provide the gift or business entertainment. Next it should be reviewed and approved by a front-line compliance professional. Then, depending on the amount and nature of the request, it may need Chief Compliance Officer (CCO) approval. Finally, if there is a Compliance Committee it should go to that Committee for a final check to make sure everything is in order.
These guidelines must be coupled with active training of all personnel, not only on a company’s compliance policy, but also on the corporate and individual consequences for violation of the policy. Lastly, it is imperative that all such business entertainment be properly recorded, as required by the books and records component of the FCPA.
And, as always, do not forget the gut check test.
