Author: admin

Categories
The Hill Country Podcast

Alex Huddleston – Stretch Zone Kerrville


Welcome to The Hill Country Podcast. The Texas Hill Country is one of the most beautiful places on earth. In this podcast, recent Hill Country resident Tom Fox visits with the people and organizations that make this the most unique areas of Texas. Join Tom as he explores the people, places and their activities of the Texas Hill Country.  In this I visit with Alex Huddleston from the Stretch Zone Kerrville.
Some of the highlights include:

  1. Huddleston’s professional background?
  2. What led him to Stretch Zone Kerrville?
  3. What is it like to open a business during the pandemic?
  4. How did the pandemic change people’s attitudes about health and fitness?

Resources
Stretch Zone Kerrville

Categories
Daily Compliance News

January 6, 2022 the Deportation Edition


In today’s edition of Daily Compliance News:

  • BMW employee charged with corruption. (Automotive News Europe)
  • Novak Djokovic faces deportation from Australia. (ESPN)
  • Is your company ready for the next climate disaster? (Bloomberg)
  • SEC probing banks over disclosures on guns, fossil fuels. (Reuters)
Categories
Blog

Due Diligence Lessons from Elizabeth Holmes and Theranos

Elizabeth Holmes was found guilty this week on 4 of 11 charges against her. The jury was unable to reach agreement on the remaining seven charges against her. Multiple media outlets have reported on the verdict. They include the Verdict itself in the Wall Street Journal (WSJ); what the verdict means for Silicon Valley, in the New York Times (NYT); questions on the victims of the Theranos fraud in Bloomberg and, of course, the lingering questions or how or even will Holmes serve any time, as reported in Fortune. Others have questioned whether the guilty verdict is an indictment of the entire Silicon Valley “fake it ‘til you make it” culture, as reported in The Verge.
I had two recent podcasts on the trial, Holmes and Theranos. The first, with white collar defense lawyer Kevin O’Brien, looked at the trial itself, the prosecution and defense cases as well as whether Holmes testimony hurt or helped her defense. The second, with Exiger President Brandon Daniels, considered the types of due diligence which you should engage in when considering a major investment. Both episodes were well received, pointing to the ongoing fascination with this major fraudster and how to parse out some lessons learned for the compliance professional.
From the testimony it was clear that Holmes knew exactly what she was doing all along. As reported by The Verge, “When it came to the investors, prosecutors had Holmes dead to rights. Unlike with the patients, she was in the room. There were emails and recordings. Holmes’ ties were clearer, and what she knew was clearer, too. The easiest part of this case to prove was about money, and that was where the prosecution spent the bulk of its time. Did Holmes lie to investors? The jury thought so on three counts”. In other words, the Theranos blood testing scam never did work.
But what are the lessons for the compliance professional? Daniels made clear in his podcast there were several lessons not only for companies looking to invest but in multiple business relationships such as potential joint venture partners, funded development partners and other types of business partnerships and ventures. He pointed out one thing to look at is your potential partner’s supply chain purchases; check it and challenge it. With Theranos, if someone saw the supply chain relationships with traditional blood testing equipment, it would lead him/her to ask, “Why is that occurring?” So why would Theranos be purchasing a competitor’s equipment?
If the answer came back the equipment is for testing and development comparison, why were those purchases at scale? Why did Theranos need so much of its competitor’s testing equipment. We now know it was because Theranos was testing blood samples on the Siemens blood testing equipment and claiming it was done on Theranos equipment.  If it was for comparison purposes, you would not have expected Siemens’s equipment to have been purchased in such large numbers.
Another area for due diligence is whether the potential partner has the production capacity to build the units that they intend to achieve. This is critical when you are moving from protype to a commercial enterprise, as Theranos did with Walgreens. Of course, Walgreens not only failed to do the basic due diligence required on the Theranos blood testing machine but actually removed experts from its pre-acquisition due diligence team who raised such questions.
Another difficult area in investment due diligence is how to evaluate the founder(s) of a startup as potential post-acquisition or post-merger leadership candidates. Many startups have a leader who has a vision. Holmes did have a vision. I am firmly convinced that Holmes had a vision of a bloodless draw for testing. But often visionaries are not really execution people. They may not even be operational people, but they are visionaries.
Daniels noted, “maverick leaders, who have a unique vision, a unique idea, and then tap into a fundamental, almost primal need in a market are always going to get a lot of attention. Especially ones that are cult to personality which Elizabeth Holmes rightly has in place.” But even here, you need to ask some direct questions. Does the company really have the expertise at the very top to understand that what they are attempting to do is possible? Moreover, do they have the capacity, the expertise, the fundamental understanding of the component of the device, or the innovation that would be necessary to know if full scale production is even possible
A key step in the production process is a prototype. Is there a minimum viable product (MVP) that can be built and tested? This would help inform if key management personnel have “a fundamental understanding of how the core parts of the process work? Do they have an understanding how they lived the market need? Finally, have they prototyped the product to the point where you could actually demonstrate that it will work, even if you’re eons away from it being productized and scaling?” From there you should move on the to having a “seasoned medical professional, a seasoned medical device expert either in-house or as a company partner and the right management team to assess whether or not what they were doing is viable is so important.”
Theranos also serves as an excellent example of the mandates from the Department of Justice (DOJ) in Mergers and Acquisitions (M&A) in a best practices compliance program. You must start with pre-acquisition due diligence but that is only the starting point. The data you glean in pre-acquisition due diligence should serve as your baseline for ongoing monitoring of any company you acquire in the post-acquisition phase. It is this coupling of pre-acquisition due diligence with the post-acquisition phase in a best practices compliance program which is another key lesson from Theranos.
In investment due diligence, due diligence tends to be a point-in-time which looks at the dynamics of the business, but you need to couple due diligence on an ongoing basis because the risks you assess today may well change tomorrow. Daniels noted, “you have to continuously monitor the issues to make sure that your investments decisions in terms of production, your decisions in terms of your capabilities are sound and there is continuous monitoring.”
The Holmes verdict will be studied as a part of the overall story of Theranos. There are many lessons to be learned from Theranos for the compliance professional. But perhaps we should start with one of the most basic forms of due diligence. If it sounds too good to be true, it probably isn’t true. Or if you want to channel your inner Ronnie Reagan, “Trust but verify” even in due diligence.

Categories
The Wirecard Saga

Season 2 – Episode 2 – The Vagabond Rapping At Your Door

Welcome to Season 2 of Lies, Spies & Corporate Crimes: The Wirecard Saga. The Wirecard Saga, has become of the world’s leading sources on all things Wirecard. In Lies, Spies & Corporate Crimes: The Wirecard Saga; Mikhail Reider-Gordon, Managing Director of Institutional Ethics & Integrity at Affiliated Monitors looks at the biggest financial scandal in post-war Germany from a variety of angles.  In this Episode 2 of Season 2, The Vagabond Rapping At Your Door, she continues her exploration of those persons, entities and governments who have been damaged, some beyond repair, by Wirecard and the nuclear fallout from its scandal.

Some of the highlights include:

  • Braun’s Christmas in the clink
  • Braun admits to fraud
  • TPAs were always a mirage
  • Shopping at Toys R Us
  • Jaffe blames everyone
  • 40,000 peeved and aggrieved
  • Austrian court says fire away
  • Achleitner manages expectations
  • Early Wirecard investor also owns Braun
  • Damning report uneasy read for EY
  • German higher court says try again
  • EY Law counsels audit client
Categories
Innovation in Compliance

Integrity Matters – Fraud Trends in 2022

Welcome to this special podcast series, Integrity Matters sponsored by K2 Integrity. For this series, I visit with Koby Bambilia, Managing Director, and Olivia Allison, Senior Managing Director. Over the series, we look some issues and trends going forward into 2022. In Part 1, I am joined by Olivia Allison who looks at fraud trends going into 2022. Highlights include:

  1. WFH and RTO will continue to present evolving challenges for fraud prevention.
  2. Controls must be assessed and enhanced based upon changed working environments.
  3. Impact of the Great Resignation and workforce mobility.
  4. Multi-vector crisis and fraud prevention.
  5. Use of fraud dashboards.

For more information, check out K2 Integrity.

Categories
Compliance Into the Weeds

Issue and Trends for 2022, Part 1


Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. This week, Matt and Tom begin a special two-part podcast series of several topics they will be following in 2022. Today in Part 1, we consider

  • The Biden Administration’s Strategy on Countering Corruption, specifically around FinCEN and AML enforcement and how it may impact FCPA enforcement.
  • The PCAOB was long dysfunctional before the Trump Administration eviscerated it. How will it change under the Biden Administration?
  • The SEC plans for the regulation of and reporting on ESG.
  • FCPA enforcement for recidivist corporations after DAG Lisa Monaco’s speech in October 2021.

Resources
Matt in Radical Compliance

Categories
Daily Compliance News

January 5, 2022 the Holmes Guilty Edition


In today’s edition of Daily Compliance News:
We dedicate today’s entire episode to the conviction of Elizabeth Holmes. Stories include:
·      The Verdict (WSJ)
·      What does it mean for Silicon Valley? (NYT)
·      What about the victims? (Bloomberg)
·      Will Holmes serve any time? (Fortune)

Categories
Blog

Fraud Trends for 2022

I recently had the chance to visit with Olivia Allison, Senior Managing Director at K2 Integrity. We looked at some key fraud trends in 2021 and how they might influence fraud investigation, prevention and enforcement going forward into 2022. We began with a discussion of general fraud trends from 2021, particularly around Covid-19 issues, such as personal protective equipment (PPE), and monies distributed by governments to bolster national economies, such as Paycheck Protection Program (PPP) in the United States. Allison added that supply chain issues were also a contributing factor to these issues. She found that during investigations related to COVID procurement and healthcare procurement specifically in relation to the pandemic there were supply chains issues regarding fraud.
She believes going forward there will continue to be fraud investigations as more allegations are put forward about fraud in both COVID procurement and public procurement. Of course, the government is interested in these categories because fraudsters are trying to defraud the government out of funds. Interestingly, she found issues around fraud and data security, particularly in the heyday of working from home (WFH). This may well change in 2022 when we have a Return to the Office (RTO) but with the surge of the Omicron variant many companies are shelving RTO plans until the spring 2022.
WFH led to wider fraud inside of companies because employees were “bypassing controls, sometimes maliciously, sometimes it’s not fraudulent, but they just think that the controls are inconvenient.” This was coupled with the troubling phenomenon that Allison has seen reported recently that millennials “just think that some controls are inconvenient and they just try to work around them.” This obviously puts organizations at risk and from a culture perspective can be very damaging.
Allison noted that another risk factor for fraud she is following in 2022 are two related phenomena. They are the mobility of the work force coupled with the Great Resignation. These have led to people moving around a lot more in the labor market. With folks changing jobs and working remotely;  it is very difficult to have the same level of connection with your employer. Companies must work much  harder to build some kind of consistent culture. One of the prongs of the Fraud Triangle is Rationalization, that “the company owes me a bit more or something like that and if you do not have that level of loyalty, there is a kind of widespread risk that people may be justifying certain actions to themselves.” Allison believes that there are “a lot of things brewing that are difficult for companies, whether it’s supply chain or data, or employee loyalty, that may cause problems in the future.”
We then turned to what Allison characterized as “multi-vector crisis” which is when multiple crises coming from many different directions. As a compliance officer or fraud examiner, you are not simply responding to one threat or even one threat vector but several at the same time. Allison believes are some steps an organization can take to manage such risks. The first is “you need to make sure that your protocols, data security, policies and procedures are clear and manageable. Then train when onboarding your staff so employee understand your procedures and monitor that they are actually following them.” Finally, ensure “what is written on paper is also what happens in practice.” I would also add Document Document Document.
Additionally, companies are building dashboards of different fraud indicators. But that is only a starting point as they then must use the data to prevent fraud. She added, “I think that is a trend and also something that companies need to be looking at as they are using data. It is more than just gathering data, its actually using the data to drive decisions.” Finally, if you have not done so since the pandemic shut down the country in March 2020, you should “refresh your training.” From the training perspective, Allison believes that more frequent, yet shorter messaging is better. You can certainly have a longer annual targeted training but here she agrees with Tina Rampino that an “espresso shot” of training can be more effective.
From the controls perspective, you need to determine if different types of frauds are happening within your organization or if the situation is simply that controls are being bypassed. If there is a control bypass or override, this needs to be closed off or the bypass needs to be approved by senior management with an appropriate business justification. Of course, controls issues need to be considered when thinking about different working practices and where your employees work; whether that is WFH, RTO, work outside the physical office or a hybrid situation.
We concluded by looking at whistleblowers and the recently implemented EU Whistleblower Directive, which came into force in December 2021. In at least the last four or five ACFE Reports to the Nations, one of the consistent themes is that fraud is almost always detected internally and either reported internally or picked up through internal audit or internal controls or some other mechanism. With the EU Whistleblower Directive and the governmental monies being poured into the economies to rebuild infrastructure and other projects, Allison expects to see an increase in whistleblowers reporting fraud. This includes internal reporting and reporting to the government where a potential bounty is in play. But Allison also cautioned that the “media is a sort of third line of whistleblowing” which we saw in 2021 with the Facebook whistleblower, Francis Haugen.
All of these factors lead Allison to believe that the risk of fraud and fraud reporting will increase in 2022. Companies need to train their front-line employees to prevent fraud before it happens. Controls need to be assessed in light of the evolving work locations. Of course, the government is very interested in both fraud prevention but also fraud detection and prosecution so 2022 could well be a more significant year than 2021.

Categories
The Compliance Life

Valerie Charles – Academic Journey and Early Professional Career


The Compliance Life details the journey to and in the role of a Chief Compliance Officer. How does one come to sit in the CCO chair? What are some of the skills a CCO needs to success navigate the compliance waters in any company? What are some of the top challenges CCOs have faced and how did they meet them? These questions and many others will be explored in this new podcast series. Over four episodes each month on The Compliance Life, I visit with one current or former CCO to explore their journey to the CCO chair. This month, my guest is Valerie Charles, partner at StoneTurn. We discuss Valerie’s journey to the CCO chair, then to a ComTech start up, to her current role at StoneTurn and look down the road at where ComTech and compliance will be in 2025 and beyond.
Valerie was a dancer from a young age and this passion helped inform her early academic career. Her civil rights work out of college lead to her to law school and that led to work in Big Law in white collar defense. From there she moved in-house, heading up a corporate compliance function. In this role she saw the need for an integrated tech solution for the corporate compliance function.
Resources
Valerie Charles LinkedIn Profile
Valerie Charles at StoneTurn

Categories
Innovation in Compliance

Why People Don’t Whistleblow with Ian Foxley


Tom Fox welcomes Ian Foxley to this week’s episode of the Innovation in Compliance Podcast. Ian is well-known for his work as a whistleblower in the Airbus GPT corruption scandal in Saudi Arabia, and is now the founder and CEO of Parrhesia Inc. In this episode, Tom and Ian talk about why individuals have a hard time speaking up, what needs to change within organizations, and what needs to be done to protect whistleblowers.  

Parrhesia 
Parrhesia is the principle of affording protection by the powerful to the vulnerable in exchange for vital information. It is this principle that Ian founded his company on. It is also a principle that Ian finds to be absent from the modern business world. “If you don’t allow people to question what rulers are doing you end up with autocracy,” he tells Tom. People need to be allowed to ask questions, and if the situation demands it, whistleblow, so that individuals in charge can take stock of their behaviour and change accordingly. Parrhesia is a social contract between an organization and an individual. 
Why The Whistle Isn’t Blown
Whistleblowing is about two things: declaring the information, and guarding the corporate/individual reputation. The number one root cause as to why individuals don’t come forward when they have knowledge of corruption is fear. They are scared of losing their jobs, their homes, their health and in some cases their families. Ian lists four other reasons why whistleblowing doesn’t occur:

  • Individuals fear that speaking up is not going to be effective.
  • Guilt because of complicity, and fear of possible legal action against themselves.
  • They’re not brave enough to, but assuage their guilt by hindering or delaying processes within the organizations.
  • They believe their actions are for the greater good.

Change The Culture
Tom asks Ian what companies can do to alleviate the fear whistleblowers feel so that they can be comfortable with speaking out. “Unless you can change the culture across a number of companies and organizations, the fear will always be present,” Ian stresses. There needs to be more positive examples of whistleblowers retaining their careers, their sense of identity, and their sense of worth to society after disclosing wrongdoing, or the culture will never change. The fear will always exist. The education has to change and the organizational mindset has to change. 
To The Future
“In order to change the world, you have to lose your ego,” Ian says in response to Tom’s question on the future of whistleblowing. In the next phase of corporate existence, whistleblowers have to spread their message. They have to bring people with them and show them that they can fight, and more importantly, win.
Resources
Ian Foxley | LinkedIn | Twitter
Parrhesia Inc