Categories
Everything Compliance - Shout Outs and Rants

Shout Outs and Rants: Episode 144, Q4 GWIC Edition

In today’s episode, Kristy Grant-Hart hosts Everything Compliance, Shout Outs, and Rants (Q4-GWIC edition). The guest panelists include Karen Moore, Lisa Fine, and Hemma Lomax.

  1. Host Kristy Grant-Hart shouts out to her hometown LA Dodgers for winning the World Series, and she rants about one of her favorite stores, Williams-Sonoma, playing holiday music before Halloween.
  2. Karen Moore raves about United Airlines and their unending stream of communications.
  3. Lisa Fine has a rant and a rave. First, after noting she cannot play Christmas music more than two weeks before Thanksgiving, she rants about vendors pushing compliance officers to use the budget in Q4 and raves about her hometown, the Buffalo Bills.
  4. Hemma Lomax rants about the rush to write AI policies that are very prescriptive and exhaustive lists of approved uses with approved tools only because we have to be realistic about approaching these interests.

The members of this special episode of Everything Compliance are:

  • Karen Woody is one of the top academic experts at the SEC and the co-host of the award-winning podcast The Woody Report.
  • Karen Moore is an Adjunct Law professor at the Fordham School of Law.
  • Lisa Fine is a co-host of the award-winning Great Women in Compliance.
  • Hemma Lomax is a co-host of the award-winning Great Women in Compliance.

The host of this special episode of Everything Compliance is Kristy Grant-Hart, founder of Spark Compliance and co-host of the award-winning podcast 2 Gurus Talk Compliance.

Categories
Daily Compliance News

Daily Compliance News: The VOTE VOTE VOTE Edition

Welcome to the Daily Compliance News. Each day, Tom Fox, the Voice of Compliance, brings you compliance-related stories to start your day. Sit back, enjoy morning coffee, and listen to the Daily Compliance News. All from the Compliance Podcast Network.

Each day, we consider four stories from the business world: compliance, ethics, risk management, leadership, or general interest for the compliance professional.

In today’s edition of Daily Compliance News:

  • Tensions arise over audit quality in the US. (FT)
  • New NIMBY target data centers. (BBC)
  • eBay victims can seek punitive damages.  (Reuters)
  • Cutting China out of your Supply Chain. (WSJ)

Categories
Innovation in Compliance

Innovation in Compliance – Anik Singal on His Journey from Digital Marketer to Compliance Advocate

Innovation comes in many forms, and compliance professionals need to be ready for it and embrace it. Join Tom Fox, the Voice of Compliance, as he visits with top innovative minds, thinkers, and creators in the award-winning Innovation in Compliance podcast. In this episode, Tom Fox sits down with Anik Singal, an expert in digital marketing and compliance.

They discuss the often-overlooked aspects of compliance in direct marketing business. Anik shares his remarkable journey from being an online marketer for over two decades to facing a civil investigative demand from the FTC just as he was about to sell his company. This life-altering experience led him to focus on marketing compliance, creating AI-powered software, a podcast, a book, and an academy aimed at helping businesses market compliantly while still achieving high conversion rates. The episode delves into the complexities of FTC, SEC, and FINRA regulations and provides actionable insights into maintaining compliance to avoid legal pitfalls.

Key highlights:

  • The Turning Point: FTC Investigation
  • Lessons Learned and New Mission
  • Understanding FTC Marketing Compliance
  • The Pentagon of Compliance
  • The Importance of Substantiation in Marketing
  • The ‘Don’t Say That’ Podcast

Resources:

Anik Singal on LinkedIn

Complily

Don’t Say That podcast

Tom Fox

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
Blog

How the 2024 ECCP Changes Compliance Culture Expectations

This 2024 ECCP is groundbreaking for several reasons. Not only does it elevate the role of compliance culture, but it also requires companies to take measurable steps to ensure a strong compliance environment that permeates all levels of the organization. The DOJ’s focus is no longer solely on having a compliance program but on proving its effectiveness through documented, data-backed insights into organizational culture. The  2024 ECCP mandates that companies provide evidence of their compliance culture through specific metrics, signaling a major shift toward greater transparency and accountability. This directive presents both a challenge and an opportunity for compliance professionals to leverage data as a foundation for ethical corporate behavior.

This post will explore the key components of these new expectations and guide how compliance teams can meet the DOJ’s standards for a transparent and robust compliance culture.

New Questions from the DOJ: Shaping the Future of Compliance

The 2024 ECCP introduces specific questions around compliance culture, expanding the factors compliance professionals must consider in evaluating their programs. Gone are the days when culture was seen as an abstract concept that couldn’t be measured. The DOJ now expects organizations to provide data showing that compliance culture is monitored and actively managed. Compliance professionals are asked to answer questions about how often they measure compliance culture, whether they collect employee input from all levels, and how they address feedback from these measurements.

These new questions represent a significant shift, requiring compliance teams to adopt a thorough, transparent approach to understanding and enhancing compliance culture. For example, one of the core questions centers on whether compliance culture is assessed regularly, implying that more than an annual survey is required. Regularly evaluating culture allows companies to detect trends, uncover emerging issues, and demonstrate an ongoing commitment to fostering an ethical environment. This is precisely what the DOJ is looking for: a proactive, continuous approach to compliance that signals a deep-seated commitment to integrity.

Another key element of the DOJ’s inquiries is the inclusivity of compliance culture assessments. Specifically, they want to know if employee input is gathered from all organizational levels, from entry-level staff to senior leadership. By requiring a broad-based approach, the DOJ reinforces the idea that compliance culture cannot simply be driven top-down; it must also be understood from the bottom-up. This holistic approach ensures that compliance is implemented at the highest levels and embedded in employees’ everyday experiences, making it a living part of the corporate environment.

The Importance of Data-Driven Culture Audits

One of the most notable aspects of the DOJ’s new standards is the emphasis on data. Culture audits have been an optional tool for compliance officers for years, but they have become essential with the DOJ’s data mandate. Culture audits offer compliance professionals the tools to gather quantifiable metrics that speak to the health of their organization’s compliance culture. Rather than relying on anecdotal evidence or generic surveys, culture audits provide an in-depth look at engagement levels, trust in leadership, and employee perceptions of compliance practices.

Data-driven culture audits are powerful because they allow compliance teams to track cultural trends over time. This longitudinal approach is vital in demonstrating to the DOJ that the organization isn’t paying lip service to compliance but is actively managing and nurturing its culture. For example, a company may find that year over year, its employees feel increasingly confident in using whistleblower hotlines without fear of retaliation. Such a finding provides concrete evidence to regulators that the company has made meaningful strides in fostering a transparent, safe environment for reporting misconduct.

By conducting regular culture audits, compliance professionals can pinpoint areas where the organization’s culture may fall short and take corrective action. This could mean increasing leadership communication around compliance, improving transparency on investigative outcomes, or enhancing training programs to reinforce the importance of ethical conduct. Culture audits are no longer about taking a “snapshot” of compliance culture—they are about creating a continuous, data-driven narrative that shows the DOJ the organization is committed to an ethical culture over the long term.

Aligning Hiring and Incentives with Compliance Culture

Perhaps one of the most transformative aspects of the 2024 ECCP update is the DOJ’s explicit focus on hiring practices and incentive structures as part of compliance culture. The DOJ now expects organizations to ensure hiring and incentives align with ethical behavior and compliance standards. For compliance professionals, this means developing and implementing hiring practices that emphasize skills, qualifications, and cultural fit, particularly in adherence to the organization’s core values and ethical standards.

When companies prioritize hiring for cultural fit, they signal employees that ethical behavior is valued as much as technical expertise. Compliance teams should work closely with HR to develop interview questions and assessment tools that evaluate candidates’ commitment to integrity and ethics. For example, questions could be geared toward understanding how a candidate has handled ethical dilemmas in past roles or their perspective on accountability and transparency in the workplace. Hiring with an eye toward compliance culture builds a foundation of employees who naturally align with the company’s compliance and ethics standards.

Incentive structures, too, must reflect the organization’s commitment to compliance. The DOJ seeks companies that actively reward compliance-promoting behavior and discourage misconduct through performance reviews and compensation decisions. Incentive programs should incorporate compliance metrics, such as adherence to internal policies, active participation in compliance training, and demonstrated commitment to ethical practices. By linking compensation to compliance, companies reinforce the importance of ethical behavior and send a clear message that integrity is a pathway to advancement.

Aligning incentives with compliance goals also involves accountability measures. For instance, employees who display behavior contrary to the company’s values should face consequences, ranging from performance improvement plans to exclusion from bonuses. Compliance professionals must work with HR and leadership to embed these incentives throughout the organization, demonstrating to the DOJ that the company’s culture promotes ethical behavior and holds individuals accountable when they fall short.

Implementing DOJ’s Updated Compliance Culture Expectations

To meet the DOJ’s heightened expectations, compliance professionals should consider adopting a structured approach to building a data-driven culture of compliance:

  1. Set Clear Metrics for Culture Assessment. Determine the metrics that best reflect your compliance culture’s health, such as trust in leadership, willingness to report, and training completion rates. These metrics will serve as the foundation for demonstrating the effectiveness of your program to the DOJ.
  2. Conduct Regular Culture Audits. Culture audits are now necessary, providing the data required to assess and monitor compliance culture. Regular audits ensure compliance efforts are consistent and responsive to any shifts in organizational dynamics.
  3. Ensure Inclusive Input. Collect feedback from employees at every level, not just senior management. This ensures a comprehensive understanding of the compliance culture across the organization and buy-in from employees who see their voices are valued.
  4. Align Hiring and Incentives with Compliance Goals. Work with HR to integrate compliance and ethical standards into hiring processes and performance evaluations. This alignment strengthens the integrity of your workforce and ensures that ethical behavior is consistently rewarded.
  5. Document and Track Progress. The DOJ wants to see evidence of continuous improvement. Document culture audit findings, responses to feedback, and any corrective actions taken. Tracking and documenting progress allows you to demonstrate a commitment to enhancing compliance culture over time.

Leading Compliance in a New Era of Expectations

The DOJ’s updated ECCP has set a new standard for compliance culture, emphasizing data-driven practices. By requiring companies to measure and manage compliance culture, the DOJ is challenging compliance professionals to go beyond policies and procedures and demonstrate the effectiveness of their programs in real terms. This shift presents a unique opportunity for compliance teams to lead their organizations in a new direction, prioritizing integrity, transparency, and continuous improvement.

Incorporating data-driven culture audits, aligning hiring and incentives with compliance goals, and consistently engaging with employees at all levels will help compliance professionals meet and exceed the DOJ’s expectations. By building an ethical culture that resonates across the organization, compliance teams can create a resilient compliance environment that satisfies regulatory demands and fosters a truly compliant workplace.

Categories
Compliance Tip of the Day

Compliance Tip of the Day – The 2024 ECCP is a Game Changer for Compliance and Culture

Welcome to “Compliance Tip of the Day,” the podcast where we bring you daily insights and practical advice on navigating the ever-evolving landscape of compliance and regulatory requirements. Whether you’re a seasoned compliance professional or just starting your journey, we aim to provide bite-sized, actionable tips to help you stay on top of your compliance game.

Join us as we explore the latest industry trends, share best practices, and demystify complex compliance issues to keep your organization on the right side of the law. Tune in daily for your dose of compliance wisdom, and let’s make compliance a little less daunting, one tip at a time.

 

In the 2024 ECCP, the DOJ mandates around corporate culture and compliance require a data-driven approach to corporate culture.

For more information on the Ethico Toolkit for Middle Managers, available at no charge, click here.

Check out the full 3-book series, The Compliance Kids, on Amazon.com.

Categories
Blog

Why the 2024 ECCP Update is a Game-Changer for Compliance

In the DOJ’s 2024 update to the Evaluation of Corporate Compliance Programs (2024 ECCP), compliance professionals face new expectations that could reshape how we approach compliance programs. In this latest update, the DOJ strongly emphasizes data-driven insights, focusing on compliance culture, employee engagement, and organizational trust. This means that compliance programs must now focus on policies and procedures and prove that these practices are embedded into the company culture and yield measurable outcomes.

The implications of these new standards extend across every aspect of compliance, from audits to employee training and risk assessments. In this post, we’ll explore the key areas of the 2024 ECCP, discussing why the DOJ’s new focus on data and culture is significant and how compliance professionals can adjust their strategies to align with these expectations.

A New Focus on Data: The Backbone of Modern Compliance

One of the most critical shifts in the 2024 ECCP is the DOJ’s call for data-backed evidence of a company’s compliance culture. The DOJ now expects organizations to establish a culture of compliance and document and track its effectiveness over time. Compliance professionals are no longer tasked with simply implementing policies; they must now demonstrate that these policies have a real impact.

For example, it is no longer enough to state that employees are encouraged to report misconduct. Now, organizations must gather data to prove employees feel safe and supported when they report issues. This could include metrics such as hotline usage rates, anonymous survey responses, and feedback on trust in leadership. By collecting data on these and other elements, compliance teams clearly understand how well the compliance culture is functioning.

The DOJ’s new data-driven approach means compliance professionals must focus on metrics that reflect the health of their programs. This might include engagement levels, response times for reports of misconduct, and employee feedback on how accessible and transparent compliance processes are. Tracking these metrics not only helps compliance teams spot trends and identify areas of improvement but also provides concrete evidence of a commitment to compliance that can be shared with regulators.

The Role of Culture Audits: A Window into Organizational Health

With the DOJ’s increased focus on culture, culture audits have become an indispensable tool for compliance professionals. A culture audit goes beyond policy checks and evaluates the organizational attitudes and behaviors that define the company’s ethical framework. This includes measuring employee engagement, trust in leadership, and perceptions around compliance practices. By regularly conducting culture audits, compliance teams can identify weaknesses, reinforce strengths, and monitor shifts in compliance culture over time.

A robust culture audit can answer the DOJ’s fundamental questions: Are employees engaged in compliance efforts? Do they feel comfortable reporting concerns? Do they trust that their leaders are committed to ethical behavior? For instance, if a culture audit reveals that only 60% of employees feel confident using the company’s whistleblower hotline, it clearly indicates that improvements are needed to make employees feel safe in reporting issues.

The data gathered from culture audits provides compliance officers with actionable insights that can be used to enhance training programs, increase communication around compliance expectations, and address gaps in trust or engagement. Additionally, regular culture audits help to create a benchmark, enabling organizations to track changes over time and prove to the DOJ that their compliance culture is consistently improving.

Practical Steps for Compliance Professionals

The 2024 ECCP serves as a roadmap for compliance professionals, outlining practical ways to elevate their compliance programs to meet new expectations. Here are some key steps that can help compliance teams align with these enhanced standards:

  1. Implement Regular Culture Audits. Regular culture audits provide a structured way to assess compliance culture and identify trends in employee engagement, trust, and ethical behavior. Compliance teams can establish a baseline and track improvements over time by conducting these audits at least annually. Regular audits also help identify areas where further training or communication may be necessary, ensuring that compliance culture remains dynamic and responsive.
  2. Prioritize Data Collection and Analysis. In the era of data-driven compliance, tracking and analyzing metrics is essential. Compliance teams should focus on data points that reveal insights into the effectiveness of their programs. This could include metrics on employee trust in reporting mechanisms, hotline usage rates, participation in compliance training, and overall engagement in compliance initiatives. By collecting and analyzing this data, compliance professionals can comprehensively view their program’s impact.
  3. Enhance Transparency and Communication. One of the DOJ’s central themes in the 2024 ECCP is transparency. Compliance professionals should ensure that employees at all levels understand the company’s commitment to ethical behavior and know how to access compliance resources. Regular communication on compliance issues, successes, and updates from leadership reinforces the importance of compliance culture and can help build trust among employees.
  4. Integrate Compliance with Performance and Incentives. Companies should align performance reviews and incentive structures with compliance goals to truly embed compliance into the organizational culture. For instance, recognizing and rewarding employees who demonstrate a commitment to compliance reinforces the message that ethical behavior is valued. This alignment also signals to employees that compliance is part of the path to career advancement and success within the organization.
  5. Document, Document, Document. If there’s one takeaway from the DOJ’s update, it’s the importance of documentation. In the DOJ’s eyes, if it’s not documented, it didn’t happen. Compliance teams should maintain thorough records of all culture audits, data findings, responses to feedback, and improvements over time. This documentation provides a clear data trail demonstrating ongoing efforts to strengthen compliance culture, which can be invaluable in a regulatory review or investigation.

Data Is a Game-Changer for Compliance Programs

The 2024 ECCP update is a milestone for compliance programs, marking a shift toward a more holistic, data-focused approach. By placing emphasis on data, the DOJ effectively requires companies to provide concrete proof of their compliance efforts, making it clear that ethical behavior is no longer just a set of policies—it’s a measurable, evolving part of the corporate culture. This represents a major change for compliance professionals, as they must now develop skills in data analysis, culture assessment, and strategic planning.

The DOJ’s increased focus on compliance culture and data-backed metrics aligns with the broader trend toward accountability and transparency in corporate governance. Compliance professionals who embrace this shift will be able to strengthen their programs, foster a more ethical workplace, and reduce their organization’s risk of regulatory scrutiny. By taking proactive steps to meet these new standards, compliance teams can also build trust with employees, investors, and regulators, creating a foundation of integrity that benefits the entire organization.

Turning Compliance into a Competitive Advantage

The DOJ’s 2024 ECCP update is not simply a set of new requirements but an opportunity for compliance professionals to elevate their programs, demonstrate value, and create a culture where ethical behavior is embedded into the organizational DNA. By focusing on data, conducting regular culture audits, and aligning compliance with incentives, compliance professionals can turn these new standards into a competitive advantage.

For compliance professionals, the ECCP update provides a clear framework for fostering a dynamic, responsive compliance culture that meets and exceeds regulatory expectations. By staying ahead of these changes, compliance professionals protect their organizations and position themselves as strategic leaders who understand the evolving nature of compliance. In an era where regulators demand proof of ethical culture, data is no longer just a tool; it is the future of compliance, and those who embrace it are setting their organizations up for long-term success.

Categories
Adventures in Compliance

The Case-Book of Sherlock Holmes – Unveiling Compliance Lessons in The Problem of Thor Bridge

In this new season of Adventures in Compliance, host Tom Fox takes a deep dive into the Sherlock Holmes collection The Case-Book of Sherlock Holmes  by Arthur Conan Doyle. It is final set of twelve Sherlock Holmes short stories by Arthur Conan Doyle first published in the Strand Magazine between October 1921 and April 1927. In this episode, we consider the story, the The Problem of Thor Bridge. In this story, Sherlock Holmes investigates a case involving a master jewel thief and Holmes investigative techniques. This story provides several valuable for the 21st century compliance professional by drawing parallels between Holmes’ investigative methodologies and contemporary compliance practices.

In this episode of ‘Adventures in Compliance,’ Tom Fox kicks off a new season by delving into the final collection of Sherlock Holmes stories, ‘The Casebook of Sherlock Holmes.’ This episode focuses on the importance of questioning assumptions, meticulous documentation, objectivity in investigations, and the use of data-driven insights. Additionally, Fox emphasizes fostering a culture that encourages employee whistleblowing and continuous improvement in compliance programs. Sponsored by Ethico, the episode also highlights tools and resources available for enhancing compliance leadership.

Highlights Include

  • The Problem of Thor Bridge
  • Investigative Lessons from Sherlock Holmes
  • Key Principles for Compliance Professionals
  • The Importance of Documentation and Technology
  • Fostering a Speak-Up Culture
  • Proactive Compliance and Continuous Learning

Resources

The New Annotated Sherlock Holmes

Sherlock Holmes FAQ by Dave Thompson

For more information on the Ethico Toolkit for Middle Managers, available at no charge by clicking here.

Check out the full 3-book series, The Compliance Kids on Amazon.com.

For an audio/video version of the Compliance Kids book, Speaking Up is AWESOME, contact Tom Fox.

 

Connect with Tom Fox

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
Hidden Traffic Podcast

The Truth Behind Chinese Forced Labor Camps with Nury Turkel

Many of us may not realize the extent to which forced labor and unethical practices can influence the products we rely on every day. In this episode of The Hidden Traffic Podcast, Gwen Hassan and Nury Turkel explore the Uyghur Forced Labor Prevention Act (UFLPA) and the serious loopholes in global trade compliance. Their conversation reveals troubling gaps in the law, especially the de minimis rule, which allows items valued under $800 to bypass inspections when entering the U.S. Originally meant to streamline trade, this exemption has now become a tool for unchecked imports, including forced-labor goods and even illicit substances like fentanyl.

Nury highlights the urgency of corporate accountability, noting that UFLPA compliance is too often seen as a procedural task rather than a meaningful ethical commitment. He emphasizes that corporate leaders have the power to drive change, urging them to advocate for stricter enforcement and proactive measures across their supply chains. Nury’s perspective is clear: this isn’t just about regulatory adherence—it’s about embedding ethical practices that prioritize human rights and transparency in business operations.

Consumers, too, play a vital role in holding companies to higher standards. Increased public awareness and demand for responsibly sourced goods create a ripple effect, encouraging companies to be more transparent. Nury’s closing message to listeners is a reminder that each conscious choice contributes to a global movement against forced labor. By fostering accountability at every level, we can push toward a world where ethical practices are the norm, not the exception.

Resources:

Nury Turkel on the Web | LinkedIn |  X (Twitter) | Hudson Institute Events

No Escape: The True Story of China’s Genocide of the Uyghurs

Categories
Corruption, Crime and Compliance

TD Bank Agrees to Pay Over $3 Billion for Systemic Violations of Bank Secrecy Act and Money Laundering Violations

How does a respected financial institution turn into a criminal operation? In this episode of Corruption, Crime, and Compliance, host Michael Volkov dives into the record-breaking $3 billion settlement between TD Bank and the Department of Justice over pervasive violations of the Bank Secrecy Act (BSA) and Anti-Money Laundering (AML) laws. Highlighting TD Bank’s systemic failures, Michael explores how its compliance and oversight lapses led to criminal conduct within its operations, making it a case study on the dangers of prioritizing growth over legal compliance. From failed AML programs to enabling money laundering on a massive scale, this episode sheds light on the regulatory crackdown TD Bank now faces.

Hear him discuss: 

  • TD Bank’s $3 billion penalty sets a new high for banking compliance cases. In yet another reminder of the scope of Justice Department enforcement powers and an important demonstration of the risks of non-compliance, the Justice Department and relevant banking agencies announced a $3 billion settlement with TD Bank companies to resolve systemic and pervasive Bank Secrecy Act (“BSA”) and money laundering violations.
  • TD Bank’s internal culture sidelined AML compliance, leading to massive oversights, including unmonitored transactions worth $18.3 trillion from 2018 to 2024. 
  • TD Bank enforced a “flat-cost paradigm,” restricting the compliance budget, which prevented updates and adaptations needed to meet new risk levels.
  • TDBUSH pleaded guilty to causing TDBNA to fail to maintain an AML program that complies with the BSA and to file accurate Currency Transaction Reports (“CTRs”).
  • Despite multiple warnings from internal audits and third-party consultants, the bank maintained its flawed AML protocols without significant action.
  • TD Bank earned the ignominious record of being the largest bank in U.S. history to plead guilty to Bank Secrecy Act program failures and the first US bank to plead guilty to conspiracy to commit money laundering.   
  • With this settlement, TD Bank joins a list of high-profile compliance failures alongside companies like Wells Fargo and Wirecard, furthering the call for financial institutions to prioritize ethical compliance in their growth models.

Resources:

Michael Volkov on LinkedIn | Twitter

The Volkov Law Group

Categories
Daily Compliance News

Daily Compliance News: November 4, 2024 – The Shame of it All Edition

Welcome to the Daily Compliance News. Each day, Tom Fox, the Voice of Compliance, brings you compliance-related stories to start your day. Sit back, enjoy a cup of morning coffee, and listen to the Daily Compliance News—all from the Compliance Podcast Network. Each day, we consider four business world stories: compliance, ethics, risk management, leadership, or general interest for the compliance professional.

  • Warren rebukes DOJ over TD Bank settlement.   (WSJ)
  • The Bank of Israel uses shaming to fight money laundering. (TheJerusalemPost)
  • BDO is in hot water for failure to pay an arbitration award for wrongful termination. (FT)
  • Fat Leonard is to be sentenced. (SanDiegoPost)

For more information on the Ethico Toolkit for Middle Managers, available at no charge, click here.

Check out the full 3-book series, The Compliance Kids, on Amazon.com.