Categories
The ESG Report

Proposed SEC Rules on Reporting Climate Risk Disclosure with Matt Kelly


 
Matt Kelly and Tom Fox take a look at the recent rule proposed by the Securities and Exchange Commission regarding climate management risk and ESG.
 

 
Climate Change Risk Disclosure 
Finally, there’s a proposed rule from the SEC to require climate change risk disclosure. Should this rule be implemented, there are a few categories of data that would be required of companies, such as the impact of climate-related events, greenhouse gas emissions, and any transition activities to a net-zero future. For example, if it is possible to tie specific financial losses to specific climate risk events, this information should be included in the 10K/10Q. 
In agreement with Jonathan Armstrong, Matt says, “If you’re telling the public, ‘We’re gonna be net-zero by 2035!’ you’re going to have to back that up with real data.”
 
Compliance Questions Associated with This Proposal  
Matt discusses some of the questions that compliance professionals tend to raise in relation to this proposed rule, including: 

  1. Would greenhouse gas emissions disclosures be subject to internal control? 
  2. How would the audit requirement for greenhouse gas emissions work? 
  3. How would these climate risk disclosures in the 10K/10Q compare to what is published in corporate sustainability reports? 

 
Aspirational or Actionable? 
With all the promises of net-zero, a regulator to watch out for is the Federal Trade Commission; they have been known to crack down on corporations who make claims of being ‘great and green’ without making any substantive moves. Matt comments on the FTC’s actions, stating, “It’s not easy being green, but it’s not easy to simply say you’re green, either.”
 
RESOURCES 
Tom Fox’s email
Matt Kelly | LinkedIn | Twitter
 

Categories
FCPA Compliance Report

Gordon Graham-A Whistleblower’s Story


In this episode of the FCPA Compliance Report I visit with Gordon Graham. Gordon is a successful whistleblower who told his tale in the book The Intrepid Brotherhood. In this book, Graham discusses how corruption threatened to ruin jobs and harm lives. The leadership at the top of the organization used intimidation, distrust, and secrecy to control the Chelan County Public Utility District showing that control and power can corrupt even the most ethical organization’s integrity—unless someone speaks up. Which Gordon Graham did. In this podcast, he tells his story.
Resources
website: www.intrepidbrotherhood.com
LinkedIn: linkedin.com/in/gordon-graham-57385319a
Facebook Author Page: In Search Of Aristotle | Facebook

Categories
Daily Compliance News

April 25, 2022 the Culture is King Edition


In today’s edition of Daily Compliance News:

  • Testing your culture is critical. (WSJ)
  • Bain & Co in hot water over South African work. (NYT)
  • End of CNN. (NYT)
  • Howard Schultz and Starbucks. (WSJ)
Categories
Blog

Cookies, Chocolates and IP: The Stericycle FCPA Enforcement Action – Part III

Last week, the Department of Justice (DOJ) and Securities and Exchange Commission (SEC) announced a Foreign Corrupt Practices Act (FCPA) enforcement action, involving the waste management company, Stericycle, Inc. (Stericycle). According to the Information and Deferred Prosecution Agreement (DPA), Stericycle entered into a three-year DPA. The company was charged with two counts of conspiracy to violate (1) the anti-bribery provision of the FCPA, and (2) the FCPA’s books and records provision. Under the DPA, Stericycle agreed to a criminal penalty of $52.5 million of which the DOJ agreed to credit up to one-third of the criminal penalty against fines the company pays to authorities in Brazil in related proceedings. According to the SEC Cease and Desist Order (Order), Stericycle violated the anti-bribery, books and records, and internal accounting controls provisions of the FCPA and agreed to pay approximately $28.2 million in disgorgement and prejudgment interest. The SEC Order also provided for an offset of up to approximately $4.2 million of any disgorgement paid to Brazilian authorities. In today’s post we consider the fallout to the company, the comeback made during the pendency of the investigation and the monitor.
The Fallout
The fallout for Stericycle could not have been more dramatic or more disastrous. The company had to basically shut down a large part of its Latin American business. According to the DPA, Stericycle divested itself from its subsidiaries in Mexico and Argentina and taking steps to address its risks in Brazil. Consider that for a moment, the corruption is so endemic within your business unit, that you actually cannot remediate, you must divest yourself of it. According to Stericycle’s own estimates it would lose millions of dollars in business if it was required to leave these countries and the amounts of monies generated through bribery and corruption was equally high, according to the DPA.
The Comeback
The Stericycle enforcement action once again demonstrates how the FCPA Corporate Enforcement Policy can benefit even the most corrupt organization and allow a significant reduction of the overall fine and penalty under the US Sentencing Guidelines. According to the DPA, Stericycle received a 25% discount off the bottom of the applicable Sentencing Guidelines fine range for its cooperation during the pendency of the investigation and the extensive remediation. The former conduct was identified as “proactively disclosing certain evidence of which the United States was previously unaware; providing information obtained through its internal investigation, which allowed the government to preserve and obtain evidence as part of its own independent investigation; making detailed factual presentations to the Fraud Section; voluntarily facilitating interviews in the United States of foreign-based employees; and collecting and producing voluminous relevant documents to the Fraud Section, including documents located outside the United States, accompanied by translations of documents.”
The extensive remediation was even more revealing as the DPA stated that although the company had not self-disclosed, it began its internal investigation prior to being contacted by the DOJ. The company amped up its game regarding corporate governance by “appointing numerous new individuals to senior management and Board of Directors positions and establishing a Safety, Operations, and Environmental Committee to enhance Board oversight.” It enhanced its “compliance organization by hiring additional compliance personnel, including an experienced new Chief Ethics and Compliance Officer who reports directly to Stericycle’s Chief Executive Officer and Chair of the Audit Committee of the Board of Directors”. It updated the backbone of its compliance program; by updating its code of conduct, policies, procedures and internal controls.” It enhanced (or perhaps even created) its internal reporting, investigations and risk assessment processes and improved its compliance training and communications. Discipline was levied against certain employees, “including terminating certain employees including senior managers” and the aforementioned divestitures.
I have previously estimated Stericycle saved between $25 million to $30 million from their final criminal fine. That is certainly a significant amount and one every Chief Compliance Officer (CCO) needs to have ready to submit to your CEO to demonstrate the power of committing time and resources to both internal investigations and remediation during the pendency of the investigation.
 The Monitor
The is first FCPA enforcement action to show the full impact of the change in DOJ enforcement priorities after the Lisa Monaco speech of October 2021; in a variety of ways. The first is the imposition of a monitor. It was required under both the DPA and the Order. Interestingly, even though the company was long aware of its compliance and ethical failures and even though it had been investigating this matter since at least 2016; the company could not seem to get its collective act together enough to fully implement and test the new compliance regime set out in the DPA. The DPA stated, “the Company has enhanced and has committed to continuing to enhance its compliance program and internal controls, including ensuring that its compliance program satisfies the minimum elements set forth in Attachment C to this Agreement (Corporate Compliance Program) but, despite its extensive remedial measures described above, the Company to date has not fully implemented or tested its enhanced compliance program, and thus the imposition of an independent compliance monitor for a term of two years, as described more fully below and in Attachment D, is necessary to prevent the recurrence of misconduct.” [Emphasis supplied] Clearly there was something missing from the company’s overall approach over these past six years.
According to the Order, the Monitor is mandated to review and evaluate the effectiveness of the Company’s policies, procedures, practices, internal accounting controls, recordkeeping, SOX controls, and financial reporting processes tying them to the FCPA and other applicable anti-corruption laws, and “make recommendations reasonably designed to improve the effectiveness of the Company’s Policies and Procedures and FCPA corporate compliance program (the “Mandate”). This Mandate shall include an assessment of the Board of Directors’ and Executive Leadership Team’s [ELT] commitment to, and effective implementation of, the Policies and Procedures and FCPA corporate compliance program.” Note this exacting requirement on the Board and ELT. Obviously, the SEC found their conduct wanting and needed to specifically call it out. It could also be a nod of the hat to the Delaware Supreme Court and its expansion of the Caremark Doctrine. Of additional interest was that the Monitor “should use a risk-based approach” and not necessarily “conduct a comprehensive review of all business lines, all business activities, and all markets.” Even with this anti-boil the ocean language, it is quite a bit of work for the company and the monitor.
Join us tomorrow where we look some lessons learned.

Categories
Sunday Book Review

April 24, 2022 the Innovation edition


In today’s edition of Sunday Book Review:

Categories
Popcorn and Compliance

MCU Series – Black Panther


In this podcast series, two complete MCU fans, Tom Fox, founder of the Compliance Podcast Network, and Megan Dougherty, co-founder of One Stone Creative, indulge in a passion for all things in the Marvel Cinematic Universe by re-watching each movie and then podcasting on every movie in the MCU. If you want to indulge in your love for the MCU with two fans passionate about all things MCU, this is the podcast series for you. For this offering, we consider MCU Series – Black Panther.
Some of the highlights include:
Ø  The story synopsis.
Ø  What are the key plot points?
Ø  What were some of our favorite cookies?
Ø  How does this movie fit into the overall MCU?
Ø  How is this movie an homage to prior non-MCU movies?
**Next up in our series Spiderman-Homecoming**

Categories
Daily Compliance News

April 23, 2022 the Poison Pill Edition


In today’s edition of Daily Compliance News:

  • When business imitates James Bond. (WSJ)
  • France issues an arrest warrant for Ghosn. (NYT)
  • Sweden (finally) opens an investigation into Ericsson’s corruption in Iraq. (ICIJ)
  • Is Infowars bankruptcy abuse of the system? (Reuters)
Categories
Corruption, Crime and Compliance

Episode 231 – SEC Update: Proposed Climate Change and Cyber Incident Rules


The SEC is a very busy agency. While promising more aggressive enforcement of securities rules, the SEC has issued two sets of comprehensive rule amendments. The first proposes new rules governing cyber incident reporting, disclosures, and governance. The SEC issued its long-awaited rules governing climate change and greenhouse gas emissions in the second major policy action. In this episode, Michael Volkov reviews the two proposals.

Categories
Creativity and Compliance

Lawyers, Guns & Money


Where does creativity fit into compliance? In more places than you think. Problem-solving, accountability, communication, and connection – they all take creativity. Join Tom Fox and Ronnie Feldman on Creativity and Compliance, part of the Compliance Podcast Network. In this episode, Tom and Ronnie begin a short series on provocative statements on compliance training and communications, followed by discussion. In this episode, Tom channels his inner Warren Zevon to explore lawyers, guns and money as an introduction to targeted, focused training using real stories.
Resources:
Ronnie Feldman (LinkedIn)
Learnings & Entertainments (LinkedIn)
Ronnie Feldman (Twitter)
Learnings & Entertainments (Website)
60-Second Communication & Awareness Shorts – A variety of short, customizable, quick-hitter “commercials” including songs & jingles, video shorts, newsletter graphics & Gifs, and more. Promote integrity, compliance, the Code, the helpline and the E&C team as helpful advisors and coaches.
Workplace Tonight Show! Micro-learning – a library of 1-10-minute trainings and communications wrapped in the style of a late-night variety show, that explains corporate risk topics and why employees should care.
Custom Live & Digital Programing – We’ll develop programming that fits your culture and balances the seriousness of the subject matter with a more engaging delivery.
Tales from the Hotline – check out some samples.

Categories
This Week in FCPA

Episode 298 – the NBA Playoffs Are Here edition


As the Celtics win Game One with a buzzer beater, Tom and Jay are back to look at some of the week’s top compliance and ethics stories in the NBA playoffs are here edition.
 Stories

  1. Mike Volkov takes a deep dive into the recent DOJ trial record. In a 3-part series on Corruption Crime and Compliance.
  2. Sexual harassment case too implausible for Hollywood? Adam Manno in the Daily Mail.
  3. KT Corp FCPA enforcement action analysis. Lawyers from Debevoise in Compliance and Enforcement.
  4. Stericycle FCPA settlement. DOJ Press Release. Harry Cassin the FCPA Blog. Tom begins a 3-part series on the FCPA Compliance Report.
  5. Data analytics informs SEC enforcement action. Jaclyn Jaeger in Compliance Week.
  6. SEC Chair Gensler reflects on 1st year of Chairmanship? Ephrat Livny in NYT.
  7. Into the crystal ball on climate disclosures. Mai-Khoi Nguyen-Thanh and Taylor Wirthin CCI.
  8. Should Elon Musk have been stopped long ago? Francine McKenna in Time.
  9. What should be on your audit committee agenda for 2022? Maureen Bujno, Krista Parsons and Kimia Clemente in Harvard Law School Forum on Corporate Governance.
  10. Putting the ‘G’ first in ESG. Lawrence Heim in practicalESG

 Podcasts and More

  1. Tom visits with Matt Galvin and Dan Kahn over a 2-part podcast series. In Part 1, they talk about dealing with the DOJ during a FCPA investigation and thereafter. In Part 2 we took a deep dive into the Lisa Monaco speech and what it means for compliance professionals.
  2. What is the only podcast dedicated to the intersection of Compliance and ESG? It’s the Compliance ESG Podcaston the CPN. Check out this week’s episode with Erika Peters of Exiger on the ESG Standards. For your added viewing pleasure check out the video pod on YouTube.
  3. This month on the Compliance Life, I visit with Susan Divers, Director of Thought Leadership at LRN. In Part 1, academic life and early professional career. In Part 2, she moves to the corporate world. In Part 3, Susan moves into the CCO chairs at AECOM.
  4. Are you a MCU fan? If so check out the latest 2 episodes of Popcorn and Compliance-the MCU Series as Tom and Megan Dougherty are going through the full MCU in chronological, not release date order. The latest two episodes are Black Widow and Black Panther.
  5. Why should you attend Compliance Week 2022? Find out on this episode of From the Editor’s Desk. Listeners get a $200 discount to CW 2022 with the discount code TFLAW $200 OFF. More here.

Tom Fox is the Voice of Compliance and can be reached at tfox@tfoxlaw.com. Jay Rosen is Mr. Monitor and can be reached at jrosen@affiliatedmonitors.com.