In today’s edition of Daily Compliance News:
Author: admin
Deputy Attorney General (DAG) Lisa O. Monaco gave a Keynote Address at ABA’s 36th National Institute on White Collar Crime last week (Monaco Speech). Her remarks were noted by many commentators, including on Compliance Into the Weeds where Matt Kelly and myself took a deep dive into her speech in a rare emergency podcast. Her remarks reframed a discussion about this Department of Justice’s (DOJ) priorities on white collar criminal enforcement, including under the Foreign Corrupt Practices (FCPA). Her remarks should be studied by every compliance professional as they portend a very large change in the way the DOJ and potentially other agencies enforce the FCPA. This has significant implications for every Chief Compliance Officer (CCO), compliance professional and corporate compliance programs.
The key changes announced in the Monaco Speech were as follows: (1) “today I am directing the department to restore prior guidance making clear that to be eligible for any cooperation credit, companies must provide the department with all non-privileged information about individuals involved in or responsible for the misconduct at issue. To be clear, a company must identify all individuals involved in the misconduct, regardless of their position, status or seniority.” This portends a return to the strictures of the Yates Memo. (2) “The second change I am announcing today deals with the issue of a company’s prior misconduct and how that affects our decisions about the appropriate corporate resolution. (3) The final change I am announcing today deals with the use of corporate monitors.” This final change is a rejection of the strictures laid out in the Benczkowski Memo regarding the DOJ use of corporate monitorships.
Today, I am going to take up the first change, a reinstitution of the Yates Memo requirement that companies turn over information and evidence of any and all employees involved in the illegal conduct. In her speech, then DAG Sally Yates said the following, “Effective immediately, we have revised our policy guidance to require that if a company wants any credit for cooperation, any credit at all, it must identify all individuals involved in the wrongdoing, regardless of their position, status or seniority in the company and provide all relevant facts about their misconduct. It’s all or nothing. No more picking and choosing what gets disclosed. No more partial credit for cooperation that doesn’t include information about individuals.” This statement ties directly into the first point of the Yates Memo, which has the title “To be eligible for any cooperation credit, corporations must provide to the Department all relevant facts about the individuals involved in corporate misconduct.” The Trump Administration DOJ had relaxed this requirement to those ‘substantially involved”. Monaco said some of the reasons for the change included:
- Such distinctions are confusing in practice and afford companies too much discretion in deciding who should and should not be disclosed to the government.
- Such a limitation also ignores the fact that individuals with a peripheral involvement in misconduct may nonetheless have important information to provide to agents and prosecutors.
- The department’s investigative team is often better situated than company counsel to determine the relevance and culpability of individuals involved in misconduct, even for individuals who may be deemed by a corporation to be less than substantially involved in misconduct.
- To aid this assessment, cooperating companies will now be required to provide the government with all non-privileged information about individual wrongdoing.
What this means in practice is that an internal investigation must focus on individuals from the start of an investigation, regardless of whether the investigation begins civilly or criminally. Moreover, once a case is underway, the inquiry into individual misconduct can and should proceed in tandem with the broader corporate investigation. Delays in the corporate case will no longer suffice as a reason to delay pursuit of the individuals involved. For the CCO or compliance practitioner, this means the entire focus of your investigative protocol must now change. Previously an investigation was to determine how conduct that might have violated the FCPA occurred and then focus on how to remedy it. The first step a CCO or compliance practitioner would take when sufficient evidence was developed would be to fix the problem so that it did not occur going forward. If there were compliance program or internal control weaknesses, they would be immediately fixed so that neither the original perpetrators could continue the conduct but also so others could not take advantage of any such structural weakness.
The reinstitution of this requirement by DAG Monaco demonstrates that the DOJ expects you to bring them information about all individuals who can be prosecuted going forward. Monaco’s remarks also demonstrate the DOJ expects you to turn over your own employees. This means DOJ want companies to give up senior executives involved in illegal conduct. As Yates said back in 2015 “We’re not going to be accepting a company’s cooperation when they just offer up the vice president in charge of going to jail.” One of the difficulties around the FCPA requirement for a criminal prosecution or intent. How do you determine intent in a manner where senior executives may never have been involved directly in a transaction? Does this mean insufficient tone at the top will somehow morph into intent for a FCPA prosecution? It appears that the DOJ is either no longer comfortable in companies and their counsel making this decision or wants to take over this assessment.
In addition to these prongs, I found point three from Monaco very interesting. The DOJ has been criticized by commentators and even the bench for the turning over of the internal investigation process to companies and their hired law firms. This prong 3 may be a way for the DOJ to respond to these critiques. It should be the DOJ which makes the assessment of potential culpability and potential enforcement, not internal investigators. It bears reiterating Monaco on this point, “The department’s investigative team is often better situated than company counsel to determine the relevance and culpability of individuals involved in misconduct, even for individuals who may be deemed by a corporation to be less than substantially involved in misconduct.”
Whatever the reason for the change, the Biden Administration is rejecting the light touch of the prior administration as led by former DAG Rod Rosenstein and later Brian Benczkowski. It appears this could be the first step to try and beef up FCPA individual enforcement and drive home the message that this administration is serious about the fight against international corruption. There were other developments from the Monaco Speech that I will take up in subsequent blogs this week.
Where I end up this week in this series, I do not yet know. Every time I read the speech, I see new angles for exploration. However, I promise that next up I will look at the rejection of the Benczkowski Memo’s default position that no monitorship would be used in FCPA enforcement actions or settlements.
In today’s edition of Sunday Book Review:
- The Haunting of Hill House by Shirley Jackson
- Dracula by Bram Stoker
- Frankenstein by Mary Shelley
- The Once and Future Witches by Alix Harrow
In today’s edition of Daily Compliance News:
- When a dysfunctional culture turns deadly.(WSJ)
- DOJ changes enforcement posture. (Compliance into the Weeds)
- More trouble for the SFO. (Ethixbase)
- Did Trump SPAC deal skirt laws? (NYT)
Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. Today, Matt and Tom have a rare emergency podcast on DAG Lisa Monaco’s speech to the ABA White Collar Institute on some very significant change to white collar, including FCPA enforcement. Some of the issues we consider are:
- Return to the Yates Memo.
- Disavowal of the Benczkowski Memo.
- Change in the FCPA Corporate Enforcement Policy?
- Whither recidivists?
- New enforcement tools coming?
- New review of DPAs and NPAs?
Resources
Matt in Radical Compliance, Justice Dept. Unveils Big Compliance Shifts
Text of DAG Monaco Speech
Categories
Credit Suisse and Tuna Boats
Credit Suisse resolves a Mozambique loan case for $547M. Listen in for more on this international investigation and enforcement effort.
Categories
October in Compliance Week
Welcome to From the Editor’s Desk, a podcast where co-hosts Tom Fox and Dave Lefort, Editor in Chief at Compliance Week unpack some of the top stories which have appeared in Compliance Week over the past month, look at top compliance stories, talk some sports and generally try to solve the world’s problems.
In this month’s episode, we look back at top stories in CW from October including the academic research into whistleblowing that went awry and raised significant ethical issues. Dave reports on some of the preliminary results from the CW survey ‘Inside the Mind of the CCO’. We discuss the Compliance Week 2022 Conference scheduled for May in DC. We conclude with a look at some of the highlights from the first few weeks of the 2021 NFL season, with a comparison of Tom Brady and Patrick Mahomes, the Astros and Red Sox series and the World Series.
Take the CW survey ‘Inside the Mind of the CCO’ by clicking here.
Early register for CW 2022 Conference here.
As we head to Halloween, Tom and Jay reflect on some of the top compliance and ethics stories on the Happy Halloween edition.
Stories
1. More on Credit Suisse and Tuna bonds. Mike Volkov in Corruption Crime and Compliance. Tom in the FCPA Compliance and Ethics Blog. Tom and Matt Kelly in Compliance into the Weeds.
2. What is FARA. Jamie Rosenberg starts a 2-part series in Grand Jury Target.
3. Digital innovation and continuous improvement. Jim Deloach in CCI.
4. Banks and FinTech. Davis Polk lawyers in Compliance and Enforcement Blog.
5. What will happen to exec clawbacks? Aaron Nicodemus in Compliance Week. (sub req’d)
6. SARs and appalling inaction. Martin Kenney in the FCPA Blog.
7. Board readiness for shareholder activism. Paul DeNicola in Harvard Law School Forum on Corporate Governance.
8. Scrutiny of the Arts and Antiquities market. Linklaters client alert.
9. Hiding evidence from regulations costs KPMG in UK. Risk and Compliance Platform Europe.
10. The SEC on auditor independence. Matt Kelly in Radical Compliance.
Podcasts and Events
11. Compliance Week 2022 opens for registration. Sign up here.
12. Ethisphere’s World Most Ethical Company awards for 2022 are open for submission. For more information on the Application Process, click here.
13. Are you exasperated? Then check, F*ing Argentina. In this podcast series co-hosts Tom Fox and Gregg Greenberg, author of F*ing Argentina explore the current American psyche of being overworked, over leveraged, overtired and overwhelmed. Find out about modern America’s exasperation with well…exasperation. In Episode 7, a Malodor on the Subway.
14. This month on The Compliance Month, I visit with John Melican, Managing Director at Exiger on his journey to and from the CCO chair. In Episode 1, college and early professional career at NY County DA’s Office. In Episode 2, Melican moved into the corporate world and into compliance. In Episode 3, John moves into the CCO chair. In Episode 4, John talks about what he learned and how he uses that knowledge.
15. How does a Compliance Bible become a best-seller? Check out Tom’s appearance on the C-Suite Network’s Best Seller TV to find out. Purchase The Compliance Handbook, 2nd edition here.
Tom Fox is the Voice of Compliance and can be reached at tfox@tfoxlaw.com. Jay Rosen is Mr. Monitor and can be reached at jrosen@affiliatedmonitors.com.
Halloween is almost upon us and we celebrate the greatest Halloween cartoon in the history of the world, ever, “It’s the Great Pumpkin, Charlie Brown”, which premiered in 1966. As usual, the story revolves around the Peanuts gang, who are preparing for Halloween, Linus writes his annual letter to the Great Pumpkin, despite Charlie Brown’s disbelief, Snoopy’s laughter, Patty’s assurance that the Great Pumpkin is a fake, and even his own sister Lucy’s violent threat to make her brother stop. On Halloween night, the gang goes trick-or-treating. On the way, they stop at the pumpkin patch to ridicule Linus missing the festivities, just as he has done every year. Undeterred, Linus is convinced that the Great Pumpkin will come, and even persuades Charlie Brown’s little sister, Sally, to remain with him to wait. At 4:00 AM the next morning, Lucy awakes up and notices that Linus is not in his bed. She finds her brother asleep in the pumpkin patch, shivering. She brings him home and puts him to bed. Later, Charlie Brown and Linus are at a rock wall, commiserating about the previous night’s disappointments. Although Charlie Brown attempts to console his friend, admitting that he himself has done stupid things in his life also, Linus angrily vows to him that the Great Pumpkin will come to the pumpkin patch next year.
The compliance lesson from Linus’ adventure; it is process validation. Unlike Santa Claus, who we have been repeatedly told “Yes, Virginia there is a Santa Claus”; there has been no process validation for the Great Pumpkin. Linus faints when he thinks he sees the Great Pumpkin rising from his pumpkin patch; unfortunately it is only Snoopy. In the compliance world, process validation comes through oversight. Two of the seven compliance elements in the 1992 US Sentencing Guidelines call for companies to monitor, audit and respond quickly to allegations of misconduct. In the 2012 FCPA Guidance, in Hallmark IX of the Ten Hallmarks of an Effective Compliance Program, it mandated ongoing monitoring to continually update and improve your compliance program. The Department of Justice’s Evaluation of Corporate Compliance Program, 2019 Guidance, made clear that monitoring of your compliance program through reviewing data and looping it back into your system that is a bare minimum for an effective compliance program.
Many companies fall short on effective monitoring. This can sometimes be attributed to confusion about the differences between monitoring and auditing. Monitoring is a commitment to reviewing and detecting compliance programs in real time and then reacting quickly to remediate them. A primary goal of monitoring is to identify and address gaps in your program on a regular and consistent basis. Auditing is a more limited review that targets a specific business component, region or market sector during a particular timeframe in order to uncover and/or evaluate certain risks, particularly as seen in financial records. However, you should not assume that because your company conducts audits that it is effectively monitoring. A robust program should include separate functions for auditing and monitoring. While unique in protocol, the two functions are related and can operate in tandem. Monitoring activities can sometimes lead to audits. For instance if you notice a trend of suspicious payments in recent monitoring reports from Indonesia, it may be time to conduct an audit of those operations to further investigate the issue.
Your company should establish a regular monitoring system to spot issues and address them. Effective monitoring means applying a consistent set of protocols, checks and controls tailored to your company’s risks to detect and remediate compliance problems on an ongoing basis. To address this, your compliance team should be checking in routinely with local finance departments in your foreign offices to ask if they’ve noticed recent accounting irregularities. Regional directors should be required to keep tabs on potential improper activity in the countries they manage. Additionally the global compliance committee should meet or communicate as often as every month to discuss issues as they arise. These ongoing efforts demonstrate your company is serious about compliance.
I hope that you have the chance to watch It’s the Great Pumpkin, Charlie Brown again this year. I did. When you watch, think about the compliance implications. Will anyone ever set a ‘second set of eyes’ on the Great Pumpkin? If not, will it ever be validated? I hope that if you are trick-or-treating tonight, you will be safe and dry.
Doug Cornelius Responds:
Are you trying to say that the Great Pumpkin is not real?
Just wait ’til next year, Tom Fox. You’ll see!
Next year at this same time, I’ll find a pumpkin patch that is real sincere! And I’ll sit in that pumpkin patch until the Great Pumpkin appears. He’ll rise out of that pumpkin patch and he’ll fly through the air with his bag of toys.
The Great Pumpkin will appear! And I’ll be waiting for him!
I’ll be there! I’ll be sitting there in that pumpkin patch… and I’ll see the Great Pumpkin. Just wait and see, Tom Fox. I’ll see that Great Pumpkin.
I’ll SEE the Great Pumpkin!
Just you wait, Tom Fox.