Author: admin

Categories
Compliance Into the Weeds

ABB FCPA Resolution

The award-winning, Compliance into the Weeds is the only weekly podcast that takes a deep dive into a compliance-related topic, literally going into the weeds to explore a subject. In this episode, we consider the ABB Foreign Corrupt Practices Act resolution. We deep dive into the case and ask three key questions: (1) How did ABB obtain such a superior resolution? (2) As a three-time FCPA violator, how did the company avoid a monitor? (3) Why was there no requirement for Chief Compliance Officer (CCO) certification?

Some of the highlights included:

  • The background facts.
  • The corrupt supplier’s ABB used to facilitate their bribery and corruption.
  • The convoluted self-disclosure in this matter. (Should they have used Twitter with the notation #committedbribery?)
  • What constituted extraordinary cooperation during the pendency of the investigation?
  • What are the implications of real-time sharing during an investigation?
  • What were the steps which demonstrated the exception remediation?
  • A root cause analysis is a basic Hallmark of an effective compliance program. Why was it separately called out?
  • Did the DOJ change its policy from mandatory CCO certification to discretionary?

 Resources

Tom has a five-part series in the FCPA Compliance and Ethics Blog

Matt Kelly in Radical Compliance

Categories
Blog

ABB FCPA Resolution: Part 3 – The Bribery Schemes

We continue our exploration of the latest resolution of a Foreign Corruption Practices Act (FCPA) violation involving the Swiss construction giant, ABB Ltd. The most obvious significance is from the fact that ABB is now the first three-time convicted violator of the FCPA, having prior FCPA resolutions in 2004 and 2010. The moniker of a three-time FCPA violator is certainly not one that any corporation wants to claim, yet here we are. The total fine and penalty for the violation was $315 million, with credited amounts going to South Africa, Switzerland, and Germany for ABB’s violations of those country’s anti-corruption laws. There was also a $75 million fine credited to the Securities and Exchange Commission (SEC). In addition to the SEC Order, the DOJ Press Release and Plea Agreement are also available. Conspicuously missing at this point are resolution documents from South Africa, Switzerland, and Germany.

We are exploring this FCPA enforcement action to see what lessons might be garnered from it. While we are doing so, please keep three key questions in mind: (1) How did ABB obtain such a superior resolution? (2) As a three-time FCPA violator, how did the company avoid a monitor? (3) Why was there no requirement for Chief Compliance Officer (CCO) certification? Today, we consider the bribery schemes used by ABB to fund the bribes.

Bribery Pre-Payment

One of the things we rarely see is the pre-payment of a bribe for a contract to be awarded corruptly in the future as usually there is a quid pro quo or payment made after a contract is corruptly awarded. Perhaps the corrupt Eskom official who awarded the contract to ABB saw their actions in passing on internal and confidential information, which ABB used to secure the contract, as worthy of payment, perhaps the Eskom official wanted a show of ‘good-faith’. Whatever the reason, the corrupt Eskom official wanted an upfront, pre-payment for the corruption award of the contract to ABB.

As I detailed previously the corrupt Subcontractor 1 who was the lead bribe facilitator was awarded a contract worth $7.2 million and then paid, according to the Plea Agreement, $798,000 as an ‘advanced payment’ ($720,000 according to the SEC Order) and that money was to be paid to the corrupt Eskom official. However corrupt Subcontractor 1 balked at making the payment and kept the money for themselves. ABB’s answer was to bring in a corrupt Subcontractor 2 to facilitate this pre-payment to the corrupt Eskom official.

Funding Through Variation Orders

Because of the original contract with the corrupt Subcontractor 1, ABB had to come up with another mechanism to fund the bribe payments to the corrupt Eskom official. The solution was elegantly simple, the ‘Variation Order’. Under this, “The scheme was effectuated through the abuse of “variation orders” provided for in the contract between ABB-South Africa and Eskom. These provisions allowed Eskom to make changes to the contract and resulted in ABB-South Africa claiming additional costs from Eskom. Eskom Official and Capture Team Lead agreed upon a target price, which ABB-South Africa would then quote based on proposals that included inflated, unnecessary, or unjustified costs and Eskom would officially approve. An official at Service Provider B then ensured that money was transmitted to Eskom Official and his family members from the payments.”

The Variation Orders were not based on the value of additional work but were costed out by the corrupt Eskom official and ABB jointly. They would figure out how much the bribe needed to be and then would hit on a “target price” for the Variation Order. In less than two years, from 2016-2017, ABB corruptly paid some $37 million in bribes to the corrupt Eskom official. As the SEC Order somewhat dryly noted, “The various payments to Service Provider B, much of which was intended as bribes for Eskom Official, were inaccurately reflected in ABB-South Africa’s books and records as legitimate engineering services and involved the use of false purchase orders and contracts. ABB-South Africa’s books and records were consolidated into ABB’s for purposes of Commission filings.”

While these bribery schemes were not all that sophisticated, they do point out a key issue for compliance professionals. In high-risk jurisdictions, there must be continual monitoring of billings from and payments to government and state-owned entity customers. As previously detailed the mechanisms by which corrupt Subcontractors 1 and 2 were onboarded clearly presented red flags which were not followed up on by ABB compliance. These funding mechanisms also demonstrated significant red flags which should have been more scrupulously reviewed as well. Compliance does not stop when the contract is signed, it must be an ongoing prevention, detection, and remediation program.

In short, there is much to unpack in this matter. Join us tomorrow where we look at the ABB self-disclosure, investigative and remedial responses which led to its superior result.

Categories
Daily Compliance News

December 7, 2022 – The Chief Critical Officer Edition

Welcome to the Daily Compliance News. Each day, Tom Fox, the Voice of Compliance, brings you four compliance-related stories to start your day. Sit back, enjoy a cup of morning coffee and listen to the Daily Compliance News. All from the Compliance Podcast Network.

Stories we are following in today’s edition of Daily Compliance News:

  • Is the German business model broken? (FT)
  • GOP drooling as Indonesia bans sex outside of marriage. (Reuters)
  • Global auto supply chain in Xingjian? (NYT)
  • Do you need a Chief Critical Officer? (Bloomberg)
Categories
The Corruption Files

Episode 14 – Walmart with Tom Fox and Michael DeBernardis

Rapid expansion presents great opportunity and great risk.

Tom Fox and Michael DeBernardis go deep into the Walmart bribery case, why immediate cooperation matters, tips for companies to prevent similar problems, the best course of action when working internationally, and projecting risk regardless of industry.

▶️ The Walmart Enforcement action with Tom Fox and Michael DeBernardis. 

Key points discussed in the episode:

  1. Tom Fox lays out the facts of the Walmart case. Michael points out how prevention could have saved millions of investigation costs.
  2. Rapid expansion presents great opportunity and risk. Tom emphasizes that extensive remediation and cooperation can bring significant credit.
  3. Michael explains Walmart’s underwhelming conduct. Tom brings up the congressional investigation, leader exits, and the business implications of publicizing.
  4. Michael shares his advice to avoid Walmart’s case – setting realistic and proper incentives. He also provides hypothetical counsel if he could work with Walmart when the issue broke out.
  5. Michael highlights the importance of timeliness, engaging with regulators as early as possible, and providing FCPA training when asked.

—————————————————————————-

Do you have a podcast (or do you want to)? Join the only network dedicated to compliance, risk management, and business ethics, the Compliance Podcast Network. For more information, contact Tom Fox at tfox@tfoxlaw.com.

Categories
Innovation in Compliance

The Right Training, for the Right Person at the Right Time with Roxanne Petraeus

Tom Fox’s guest on this week’s show is Roxanne Petraeus. She is the CEO of Ethena, a compliance program for technology companies focusing on engagement and transparency. She and Tom talk about her career journey and what she and Ethena are bringing to the compliance sphere. 

Ethena

The training Ethena offers covers everything related to compliance as a broad topic. The company seeks to answer ‘Why compliance?’ and goes deep on the concept of design. For example, how would you design your compliance solutions to prevent certain issues?  What models would you look at that is similar? Roxanne tells Tom, “We just asked a fundamentally different design question: how do you iterate on the same model and make small tweaks but don’t fundamentally change the way it’s delivered or the key components of it?” 

 

Employee Engagement and Engaging Training 

Tom asks Roxanne how Ethena encourages employee engagement and employee training that is engaging. Employee training across any business has to be able to keep an employee’s attention. “If someone has tuned out, no matter how good your content, they’re not learning,” Roxanne remarks. A way Ethena drives engagement is by implementing feedback. Employees are able to rate training, and this feedback tells the leaders what needs to be improved. “The reason we’ve made really good training is because we’re forced to,” Roxanne says. The employee rating data is tangible evidence of what Ethena is doing right and what it’s doing wrong, so the content team can very quickly respond to that and make training better. 

 

Train To Improve Culture 

Training can’t simply be seen as a part of a company’s culture but also as something to improve a company’s culture. The key to achieving this is to make training a valuable part of the employee experience. Training can help a company create a holistic and healthy workplace environment and show employees that the business is serious about improving. 

 

Resources

Roxanne Petraeus | LinkedIn | Twitter 

Ethena

Categories
Daily Compliance News

December 6, 2022 the Glencore Pays Edition

Welcome to the Daily Compliance News. Each day, Tom Fox, the Voice of Compliance, brings you four compliance-related stories to start your day. Sit back, enjoy a cup of morning coffee and listen to the Daily Compliance News. All from the Compliance Podcast Network.

Stories we are following in today’s edition of Daily Compliance News:

  • Glencore to pay DRC $180MM.(FT)
  • Is IP litigation a fraud in the court? (Reuters)
  • AF retired generals consulting deals blocked due to COIs. (WaPo)
  • Credit Suisse says it is not responsible for ‘rogue employees.’ (Bloomberg)
Categories
Blog

ABB FCPA Resolution: Part 2 – The Corruption Partners

We continue our exploration of the latest resolution of a Foreign Corruption Practices Act (FCPA) violation involving the Swiss construction giant, ABB Ltd. The most obvious significance is from the fact that ABB is now the first three-time convicted violator of the FCPA, having prior FCPA resolutions in 2004 and 2010. The moniker of a three-time FCPA violator is certainly not one that any corporation wants to claim, yet here we are. The total fine and penalty for the violation was $315 million, with credited amounts going to South Africa, Switzerland, and Germany for ABB’s violations of those country’s anti-corruption laws. There was also a $75 million fine credited to the Securities and Exchange Commission (SEC). In addition to the SEC Order, the DOJ Press Release and Plea Agreement are also available. Conspicuously missing at this point are resolution documents from South Africa, Switzerland, and Germany.

We are exploring this FCPA enforcement action to see what lessons might be garnered from it. While we are doing so, please keep three key questions in mind: (1) How did ABB obtain such a superior resolution? (2) As a three-time FCPA violator, how did the company avoid a monitor? (3) Why was there no requirement for Chief Compliance Officer (CCO) certification? Today, we consider the corrupt partners that ABB brought into the deal with Eskom to facilitate the company’s bribery and corruption.

Capture Team and Sales Shark

In reading the resolution documents, one can only wonder at the culture of corruption which permeated ABB in the 2014-2017 timeframe. After finding out a business opportunity existed in South Africa with the national power company Eskom, ABB created a ‘Capture Team’ which was staffed largely by executives in the corporate headquarters as “The capture team did not possess confidence in personnel at ABB-South Africa to get access to the people at Eskom that would be making the decisions in regard to the C&I contract. As a result, Executive B, who had experience with obtaining business from Eskom with a previous employer, became directly involved in coordinating the efforts to win the business.” In other words, the corporate office did not believe the ABB South African operation was corrupt enough to get the job done so they stepped in to do so.

Thereafter, “at the suggestion of Executive B that a ‘sales shark’ was needed in pursuing the C&I contract, the capture team appointed Capture Team Lead, “a highly experienced sales expert” with a reputation for non-transparency about how he went about interactions with clients.” That is exactly what ABB commenced to do as thereafter Capture Team Lead, Executive B, brought in the ABB South Africa, Local Senior Manager to “set up private meetings and sent clandestine communications with Eskom officials to obtain and share confidential information regarding the Kusile C&I tender, including Eskom’s budget price and ABB’s schedule.”

 Corrupt Subcontractor 1 and Bribe Pre-Payment

This led to a business relationship with corrupt Subcontractor 1, whose sole function was to funnel bribe payments to corrupt Eskom executive(s) to facilitate ABB South Africa winning the contract. But there was a problem as the corrupt Subcontractor 1 did not meet the required business criteria to work with ABB. Indeed, “A supply chain manager at ABB-South Africa, who was not aware of the bribery scheme, raised concerns that Service Provider A was unqualified for the work for which it was being considered and that its proposed price was excessive. Given that Executive B and Capture Team Lead were part of the bribe scheme, the concerns went unaddressed by ABB management in South Africa and Switzerland.” Just to demonstrate that Subcontractor 1 was brought in to facilitate the payment of bribes, when Subcontractor 1 joined the bid team, the cost immediately went up by some $9 million. Finally, to top how unusual the arrangement with Subcontract 1 had become “ABB-South Africa signed its subcontract with Service Provider A for approximately $7.2 million which, contrary to internal company policy, was awarded without competitive bidding. The subcontract included a provision for an advanced payment of ten percent, as Eskom Official wanted an upfront payment.”

Corrupt Subcontractor 1 did their job in the corruption scheme by passing on internal and confidential information from their corrupt contact at Eskom, which ABB used to secure the contract. The Eskom official wanted an upfront, pre-payment for the corruption award of the contract to ABB. As odd as all of this was, or perhaps to demonstrate there is no honor among thieves, Subcontractor 1 decided it wanted to keep all the monies to be made as the pre-payment to the corrupt Eskom official. According to the SEC Order, “The bribe scheme nearly came undone when Service Provider A’s chair refused to share the spoils with the Eskom Official due to an apparent falling out between them. In order to save the illicit arrangement, Capture Team Lead attempted to broker a peace between the two, going so far as arranging a face-to-face meeting, but the efforts were unsuccessful.” This put the ABB bid at risk.

Corrupt Subcontractor 2 and a Waiver

The answer was simply to retain another corrupt South African business partner, who was a friend of a close friend of the corrupt Eskom official. (Reminds me of a great line from Dr. No – I like friends who have friends.) Once again, the problem was that corrupt Subcontractor 2 did not meet ABB’s internal requirements to become a business partner. This required an internal ABB waiver. ABB corporate arranged a US ABB employee from a US office, “who specialized in the SCM processes, travel to South Africa to manage the course of obtaining one. During the second week of February 2016, after spending a number of days in South Africa, the American employee was able to secure for [corrupt Subcontractor 2] a formal waiver premised on its working through two specific sub-subcontractors who were qualified for the job.” However, all of this was ruse and sham corrupt Subcontractor 2 was already on the worksite “and the message from ABB-South Africa was that Service Provider B was required to be used by Eskom, the American employee felt he had no choice but to arrange this waiver” corrupt Subcontractor 2.

In short, there is much to unpack in this matter. Join us tomorrow where we look at the bribery schemes.

Categories
Corruption, Crime and Compliance

A Deep Dive into the Oracle FCPA SEC Settlement

Oracle Corporation settled its second FCPA case in ten years. It agreed to pay the SEC $23 million to resolve allegations that its subsidiaries in Turkey, India and the United Arab Emirates maintained slush funds to bribe foreign officials. Ten years ago in 2012, Oracle paid the SEC $2 million for creating millions of dollars in off-the-books accounts at its India subsidiary. Join Michael Volkov as he takes a deep dive in the Oracle case and provides valuable lessons for managing third-party corruption risks.

  • In the SEC’s mind, Oracle is a recidivist, having its second enforcement action case in 10 years.
  • The settlement for $23 million underscored the power of the FCPA provisions, which mandate effective internal controls and accurate books and records, and can be applied to a wide range of conduct beyond foreign bribery, Michael remarks. 
  • The controls that Oracle put in place to prevent improper use of discounts and marketing reimbursements were not effective because there was a lack of compliance culture within the business.
  • The Oracle case is one that should be studied by compliance professionals, Michael believes. It reminds you to look at your own controls that surround discounting and ensure that the necessary documentation is carried out. “No matter what controls you have in place, they still have to be adhered to with a true culture of compliance underneath it as a foundation,” he adds.

 

Resources

SEC Oracle Case

Email Michael: mvolkov@volkovlaw.com

Categories
The ESG Report

The Role of Digital Solutions for ESG with Page Motes

Tom Fox welcomes Page Motes to this episode of the ESG Report. Page is the Head of Global Sustainability at Dell Technologies. In this conversation, Page and Tom talk about sustainability, how Dell oversees it, and where sustainability may go in the future.

The Role of Sustainability 

Tom asks Page to elaborate on what role sustainability plays at Dell. “The way we define the sustainability role and purview at our company is around all things environmental and then an aspect of social, really the human rights piece,” Page says. Human capital management, diversity, equity, and inclusion are also part of how Dell defines sustainability. 

 

Moving from Compliance to Sustainability and ESG 

There are skills that compliance professionals have that individuals in the field of sustainability can develop. Page specifically points to the ability to understand ambiguity, especially when dealing with the ethics side of ESG and sustainability. On the ethics side, there are more gray areas, so you have to have a set form of values and morals to help you navigate them. In sustainability, not everything is regulated, so you have to understand what works. “You’re working on a global scale. You’re having to understand all aspects of the company and the business. You have to understand the balance between what the business needs for business acceleration and growth,” Page stresses. 

 

Sustainability of The Future

Tom asks Page where she sees sustainability going in the corporate world. Page expresses that companies, as well as Dell, are thinking about how the solutions they offer their user and customer base can help them achieve their goals. “How can technology be used to create systems of change? How can we decarbonize our technology?” These are questions companies are thinking about intently. Currently, ESG and sustainability are more focused on structures and programs to meet regulatory requirements, but Page hopes that in the future, they will be more focused on innovation and collaboration.  

 

Resources

Page Motes | LinkedIn 

Dell Technologies

Categories
FCPA Compliance Report

FTX and Risk: Part 1 – Financial Institutions

Welcome to the award-winning FCPA Compliance Report, the most senior podcast in compliance. In this episode, I begin a 2-part series on the subjects of FTX and risk. I am joined by Gilbert Paiz and Andrew Gay, principals in the Texas Hill Country Advisors. In Part 1, we consider risk and risk management through the lens of US domiciled financial institutions and how their risk management protocols help to not only assess risk, but manage risk throughout the life cycle of a banking customer relationship. In Part 2, we will consider individual risk in investing and what type of background information, questions and due diligence individuals should engage in and how these questions and background investigations apply equally to larger investments made by sophisticated investors, hedge funds  and institutional investors; who should have made them before investing in FTX but they all failed to do so.

Some of the highlights include:

·      How do banks think of risk?

·      What internal processes or controls are in place to help a bank manage its risks?

·      What types of oversight do banks and financial institutions use to help manage risk?

·      Why are levels of review so critical?

·      How do banks think about customers in terms of risk?

·      Who decides how much risk to allow a customer to engage in with a banks money, whether through loans or other capital?

·      Do bank employees receive ongoing training on risk management issues?

·      What tech is in place to facilitate the management of risk?

 Resources

Texas Hill Country Advisors