In today’s edition of Daily Compliance News:
Author: admin
Last week, Credit Suisse Group AG settled a massive fraud action involving a non-existent Mozambiquan tuna boat fleet. While Texans have long had a fond place in their hearts for our convicted con man Billy Sol Estes, who defrauded the US federal government out of millions with his tales of nonexistent fertilizer tanks, faked mortgages and bogus cotton-acreage allotments; Billy Sol Estes was a piker compared to the bankers at Credit Suisse, the bank itself and the thoroughly corrupt politician running the country of Mozambique in creating and selling a loan package eventually totaling some $850 million for tuna boats that never existed. Over the next few blogs, I will be looking at the Credit Suisse enforcement action which involved the Department of Justice (DOJ), Securities and Exchange Commission (SEC) and UK Financial Conduct Authority (FCA).
US Attorney Breon Peace for the Eastern District of New York, noted, in the DOJ Press Release, “Over the course of several years, Credit Suisse, through its subsidiary in the United Kingdom, engaged in a global criminal conspiracy to defraud investors, including investors in the United States, by failing to disclose material information to investors, including millions of dollars in kickbacks to its bankers and a high risk of corruption, in connection with an $850 million fraudulent loan to a Mozambique state-owned entity.” According to Anita B. Bandy, Associate Director of the SEC’s Division of Enforcement, speaking in the SEC Press Release, “Credit Suisse provided investors with incomplete and misleading disclosures despite being uniquely positioned to understand the full extent of Mozambique’s mounting debt and serious risk of default based on its prior lending arrangements. Fraud was also a consequence of the bank’s significant lapses in internal accounting controls and repeated failure to respond to corruption risks.”
This enforcement action scorched the tattered reputation of the Swiss banking giant. Three Credit Suisse employees had previously pled guilty to receiving kickbacks as a part of the fraud. The FCA noted in its Press Release, “The contractor secretly paid significant kickbacks, estimated at over US$50 million, to members of Credit Suisse’s deal team, including two Managing Directors, in order to secure the loans at more favourable terms. While those Credit Suisse employees took steps to deliberately conceal the kickbacks, warning signs of potential corruption should have been clear to Credit Suisse’s control functions and senior committees. Time and again there was insufficient challenge within Credit Suisse, or scrutiny and inquiry in the face of important risk factors and warnings. The Republic of Mozambique has subsequently claimed that the minimum total of bribes paid in respect of the two loans is around US$137 million.”
The overall settlement was for a total of $475 million paid to the DOJ, SEC and FCA and an additional forgiveness of $200 million in debt held by Credit Suisse against the country of Mozambique, which the FCA took into account in determining its financial penalty. The Bank also agreed to a methodology to calculate proximate fraud loss for victims of its criminal conduct; the amount of restitution payable to victims will be determined at a future proceeding. The DOJ Press Release also noted that “Switzerland’s Financial Market Supervisory Authority (FINMA) also engaged in an enforcement action, which includes the appointment of an independent third-party to review the implementation and effectiveness of compliance measures for business conducted in financially weak and high-risk countries, subject to FINMA’s administrative process.” This means the bank will be up for a very high-profile monitorship.
Relatedly, the SEC Order stated the monies paid to the SEC under its profit disgorgement penalty “will be distributed to harmed investors, if feasible through a Fair Fund. The Commission will hold funds paid pursuant to paragraph IV.B [in the Order] in an account at the United States Treasury pending a decision whether the Commission in its discretion will seek to distribute funds. If a distribution is determined feasible and the Commission makes a distribution, upon approval of the distribution final accounting by the Commission, any amounts remaining that are infeasible to return to investors.”
Credit Suisse also agreed to resolve its case with the FCA, qualifying it for a 30% discount in the overall penalty. Without the debt relief and this discount, the FCA would have imposed a significantly larger financial penalty.” However, the conduct of Credit Suisse with the US enforcement agencies was certainly suboptimal. The DOJ noted that the bank failed to voluntarily disclose the conduct to the department, the overall the nature and seriousness of the offense, which included the involvement of bankers up to the Managing Director level. Moreover, “Credit Suisse received only partial credit for its cooperation with the department’s investigation because it significantly delayed producing relevant evidence. Accordingly, the total penalty reflects a 15% reduction off the bottom of the applicable U.S. Sentencing Guidelines range.”
There is a lot to unpack in this matter and I will be doing so in the next several blogs. Moreover, there is much for the compliance practitioner to digest from the case. From some of the basics like due diligence, to internal controls, the lines of defense and an overall risk management protocol, this case has quite a bit to offer. All I can say is that if Billy Sol Estes were around, he sure would be looking at Credit Suisse and its toxic culture as a way to defraud an entire new set of investors out of a pile of money.
Join us tomorrow as we look at due diligence in international deal making.
In today’s edition of Sunday Book Review:
- The Death of Jane Lawrence by Caitlan Starlin
- Pearl by Josh Malerman
- Reprieve by James Mattson
- Nothing but Blackened Teeth by Cassandra Khawi
- Summer Sons by Lee Mandelo
- My Heart is a Chainsaw by Stephen Graham Jones
The Kitchen takes a look at the newly published OFAC guidance for the virtual currency industry. Stop by to get the scoop.
In today’s edition of Daily Compliance News:
- Facebook oversight committee lowers the hammer.(NPR)
- CFTC awards $200MM whistleblower bounty. (WSJ)
- Total accused of downplaying climate risk. (BBC)
- Texas whistleblower suit against AG can proceed. (Texas Tribune)
Either the Astros or Red Sox are headed to the World Series. Flashing lights in Fenway? What will the baseball gods decree? Tom and Jay reflect as they are back to review some of the top compliance and ethics stories on the Headed to the WS edition.
Stories
- Credit Suisse and Tuna boats equals nearly $500 MM in fines. Harry Cassin in the FCPA Blog. Matt Kelly in Radical Compliance. Jaclyn Jaeger in Compliance Week (sub req’d)
- CCOs as problem solvers. Mike Volkov in Corruption Crime and Compliance.
- Testing compliance. Brandon Garrett in Compliance and Enforcement.
- 3rd party risk management and SOC 2. Eva Pittas in CCI.
- Activision promises compliance upgrades. Should we believe them? Jaclyn Jaeger in Compliance Week. (sub req’d)
- Is ESG reporting risky? Mike Munro explores in the FCPA Blog.
- Facebook fined for changing CCOs without reporting to the CMA. CMA Press Release.
- The intersection of compliance and IT. Kyle Martin in Risk and Compliance Matters.
- What does the oldest COI tell us about professional misconduct? Jeff Kaplan in the COI Blog.
- Contesting the narrative of compliance failures. Robert Barrington in GAB.
Podcasts and Events
- Compliance Week is going ‘Inside the Mind of the CCO’. Participate in the survey here.
- Ethisphere’s World Most Ethical Company awards for 2022 are open for submission. For more information on the Application Process, click here.
- Are you exasperated? Then check, F*ing Argentina. In this podcast series co-hosts Tom Fox and Gregg Greenberg, author of F*ing Argentina explore the current American psyche of being overworked, over leveraged, overtired and overwhelmed. Find out about modern America’s exasperation with well…exasperation. In Episode 6, Billy Joel and exasperation.
- This month on The Compliance Month, I visit with John Melican, Managing Director at Exiger on his journey to and from the CCO chair. In Episode 1, college and early professional career at NY County DA’s Office. In Episode 2, Melican moved into the corporate world and into compliance. In Episode 3, John moves into the CCO chair.
- Why is the Texas Hill Country one of the most special places on earth? Check out the newest edition to the CPN, as Tom Fox celebrates the people, places and things of the Hill County. In Episode 1, he visits with Camp Stewart for Boys matriarch, Kathy Ragsdale.
- How does a Compliance Bible become a best-seller? Check out Tom’s appearance on the C-Suite Network’s Best Seller TV to find out. Purchase The Compliance Handbook, 2nd edition here.
Tom Fox is the Voice of Compliance and can be reached at tfox@tfoxlaw.com. Jay Rosen is Mr. Monitor and can be reached at jrosen@affiliatedmonitors.com.
The final case on the Board’s expanding obligations regarding compliance oversight is Boeing, which was decided earlier this year. This action is yet more from the continuing fallout of the Boeing MAX 737 disaster. As Mike Volkov has noted “The Boeing 737 MAX scandal is a troublesome and disturbing case where corporate board oversight and responsibility was lacking. The implications of the board’s failure resulted in the killing of innocent passengers and the grounding of Boeing’s 737 MAX. Add to that a $2.5 billion settlement, a criminal case against a Chief Technical Pilot, and continuing safety and technical problems, and you have recipe for continuing disaster at Boeing.”
In this case, shareholders sued Boeing’s board, seeking to recover costs and economic losses associated with the crash of two 737 MAX jetliners. The allegations were that the directors failed to monitor aircraft safety before the crashes and then failed to respond to known safety risks after the first crash. The lawsuit seeks to hold the directors liable for the resulting loss of “billions of dollars in value.”
Here there were not allegations that the Board did not take compliance seriously or did not provide oversight of compliance but that the Board did not react swiftly and forcefully enough when the first MAX 737 crash occurred. The decision from the Court (the Court of Chancery not the Delaware Supreme Court) framed the question before it as follows, “The narrow question before this Court today is whether Boeing’s stockholders have alleged that a majority of the Company’s directors face a substantial likelihood of liability for Boeing’s losses. This may be based on the directors’ complete failure to establish a reporting system for airplane safety, or on their turning a blind eye to a red flag representing airplane safety problems.”
The Court noted that from 2011 until August 2019, the Board had five standing Committees to monitor and oversee specific aspects of the Company’s business: (1) Audit, (2) Finance, (3) Compensation, (4) Special Programs, and (5) Governance, Organization and Nominating. The Audit Committee was Boeing’s primary arbiter for risk and compliance. Specifically, it “evaluat[ed] overall risk assessment and risk management practices”; “perform[ed a] central oversight role with respect to financial statement, disclosure, and compliance risks”; and “receiv[ed] regular reports from [Boeing’s] Senior Vice President, Office of Internal Governance and Administration with respect to compliance with our ethics and risk management policies.” The Court went on to delineate a list of areas the Audit Committee covered, specifically including robust oversight over compliance.
However what the Boeing Board did not do was “implement or prioritize safety oversight at the highest level of the corporate pyramid. None of Boeing’s Board committees were specifically tasked with overseeing airplane safety, and every committee charter was silent as to airplane safety. The Board recognized as much: former director John H. Briggs, who retired in 2011, observed that the “board doesn’t have any tools to oversee” safety.” [emphasis supplied] The Court rather ominously then said “This stood in contrast to many other companies in the aviation space whose business relies on the safety and flightworthiness of airplanes.”
The Court went into a detailed discussion about what the Board did and more importantly did not do after the first MAX 737 crash (Lion Air crash). The Board did not initiate contact with management, did not do initiate any type of independent investigation or apparent do anything more than ‘Shirk Responsibility’. That final phrase comes from a section title from the Court’s opinion and reads “The Board Continues To Shirk Safety Oversight”. [bold in original opinion] (Recovering trial lawyer insight-when a court writes something like that as a section heading, it is very ‘not good’ for the defendant). The Court was equally critical about the Board’s response after the second MAX 737 crash (the Ethiopian Airlines crash). Finally the Court found “The Board publicly lied about if and how it monitored the 737 MAX’s safety.” It really does not get any worse than that for a Board.
The Court’s opinion found that under Marchand, a Board must assess the risk profile of the company and manage the most critical risks all the way up to the Board level. At Blue Bell Ice Cream, it was food safety. At Boeing it is airline safety. At the Boeing Board, there was “no committee charged with direct responsibility to monitor airplane safety. While the Audit Committee was charged with “risk oversight,” safety does not appear in its charter. Rather, its oversight function was primarily geared toward monitoring Boeing’s financial risks.” This lack provided the basis for a Caremark claim as further refined by Marchand, et al.
Moreover, there was no Board monitoring system in place for safety. There was no mechanism to get whistleblower complaints about safety to the Board. Finally there was no independent evaluation by the Board on safety, “when safety was mentioned to the Board, it did not press for further information, but rather passively accepted management’s assurances and opinions.”
Some commentators see this as a decision based upon a new category of risk called “corporate trauma”. Herlihy and Savitt said, “The harsh decision reflects the court’s obligation to accept all the plaintiffs’ allegations as true in considering defendants’ motion to dismiss. Indeed, the court reaffirmed that failure-of-oversight claims remain “the most difficult theory in corporation law upon which a plaintiff might hope to win a judgment.” But the ruling nevertheless reconfirms the courts’ increasing willingness to subject directors to suit for corporate trauma.” Mike Volkov was more succinct noting, “At bottom, the Chancery Court is raising the stakes on board member accountability.”
The Hughes Court further delineated a Board’s obligations under Caremark. It cannot simply have the trappings of oversight, it must do the serious work required and have evidence of that work (Document, Document, and Document). Marchand required Boards to manage the risks their organizations face. Clovis Oncology requires ongoing monitoring by the Board. Hughes stands for the proposition that have the structures, policies and procedures in place is not enough. The Board must fully engage in oversight of a compliance program. The decision in Boeing is yet a further expansion of Caremark, once again through Marchand. It stands for the proposition that a company must assess its risks and then manage those risks right up through the Board level.
In this episode, we look at what went into the making of a BIS administrative settlement with VTA Telecom Corporation, due to EAR violations.
Bob Mascola is a global legal and compliance executive and educator. He is Senior Director of the Program on Corporate Ethics and Compliance at Fordham University School of Law, as well as Senior Counsel at Compliance Systems Legal Group. He joins Vince Walden to discuss compliance from an academic perspective.
Fordham University’s program on Corporate Ethics and Compliance is a 30 credit Master’s degree program full of students from different professional backgrounds. Most of the students are working professionals, so they bring real-life experience and insights to enrich classroom discussions. The curriculum is designed to meet the needs of each student, regardless of how diverse their specialties are.
The program is helpful in equipping students to add value to the organizations that they’re with. In addition to acquiring knowledge about different regulatory frameworks, it teaches skills like legal research, risk assessment, technology training, communications memo writing, and how to conduct investigations.
Being familiar enough with data to work with it is essential for future success in compliance. The DOJ and other enforcement authorities are raising their expectations of companies regarding the use of data analytics. If you want to show that you are leading industry expectations, you’ve got to be the best in data analytics.
Resources
Bob Mascola on LinkedIn | Twitter