Author: Admin

Categories
Blog

Balt’s DOJ Declination: A Case Study in Why Speed, Cooperation, and Remediation Still Matter

The Justice Department’s first publicly announced resolution under its new Department-wide Corporate Enforcement and Voluntary Self-Disclosure Policy (CEP) offers corporate compliance officers a practical roadmap: disclose early, cooperate fully, remediate credibly, and be prepared to help prosecutors hold individuals accountable.

Some enforcement actions feel like one-off events. Then others operate like a flare shot into the compliance sky. The DOJ Declination involving French medical device company Balt SAS and its US subsidiary Balt USA (collectively ‘Balt) falls squarely into the second category.

Why? Because this was not simply another FCPA matter. It was the first publicly announced corporate resolution under the DOJ’s new CEP, and DOJ clearly meant it to send a message to the market. As the Wiley alert noted, the Balt matter demonstrates the benefits available to companies that voluntarily self-disclose, fully cooperate, and timely remediate, while also reinforcing DOJ’s emphasis on individual accountability. For compliance officers, that makes Balt important far beyond the four corners of the case itself.

What happened at Balt?

According to the Declination, Balt paid approximately $602,000 in bribes from around 2017 to 2023 to a physician who held a senior role at a state-owned public hospital in France to obtain or retain business. The payments were routed through a third-party consultant in Belgium, with fake invoices and purported bonus payments used to conceal the true nature of the transaction. The scheme generated roughly $1.68 million in revenue and approximately $1.214 million in profits for Balt. As Matt Kelly reported in Radical Compliance, the scheme involved all the old FCPA classics: sham consulting arrangements, fake invoices, and off-channel communications. That alone would have made the matter notable. But the more important point is what happened after Balt discovered the misconduct.

DOJ declined prosecution because Balt self-disclosed while its internal investigation was still ongoing; provided full and proactive cooperation; engaged in timely and appropriate remediation, including disciplinary measures and termination of tainted business relationships; and presented no aggravating circumstances sufficient to disqualify it from a Part I declination. DOJ also required Balt to disgorge approximately $1.2 million and noted that the company had entered into a parallel resolution in France that included compliance requirements. This is the template. And compliance officers should study it carefully.

The real lesson: self-disclosure means before you know everything

One of the most significant points in the Balt matter is timing. Balt disclosed the issue during an ongoing internal investigation, which strongly suggests the company came in before every fact had been nailed down.

That matters because many companies still hesitate, hoping to finish the investigation, validate every fact, and package the matter neatly before approaching the OJ. Balt is a reminder that DOJ wants speed and credibility, not perfection. The new policy framework still prizes timely self-disclosure as the clearest route to a declination. Wiley put it plainly: voluntary disclosure still provides the clearest path to that outcome, and delay can preclude eligibility for the most favorable result.

For the Chief Compliance Officer (CCO), this is where judgment, preparation, and governance structure come together. If your escalation protocols are weak, if privilege decisions are muddled, if your triage process is slow, or if your board and senior leadership do not understand the declination calculus, you can lose the timing advantage before the real work even begins. The Balt case is not simply a win for self-disclosure. It is a win for pre-existing readiness for investigation.

Cooperation means more than being polite

The second lesson is equally important. Under the CEP, cooperation is not a vague aspiration. It is an operational requirement. The Wiley analysis emphasized that full cooperation includes identifying all individuals involved in or responsible for the misconduct and providing facts and evidence concerning their conduct.

This is where compliance officers need to understand a hard truth. DOJ is not offering declinations because it has become sentimental, or even because this administration does not believe in the FCPA. It is offering incentives because it wants something in return. And one of the most important things it wants to do is help build cases against culpable individuals.

That is precisely what happened here. DOJ paired Balt’s declination with indictments of two individuals allegedly involved in the bribery scheme. Wiley correctly described the sequencing as no coincidence, but rather a reinforcement of the DOJ’s continuing focus on individual accountability. Kelly made the same point in even more direct terms: from DOJ’s perspective, if a company voluntarily self-discloses, coughs up illicit proceeds, and helps prosecutors hold wrongdoers accountable, the company can receive a declination.

For compliance professionals, this means internal investigations must be designed from the outset with evidentiary rigor. You need documentation discipline. You need clear interview protocols. You need a defensible record of who knew what, who approved what, and how the misconduct moved through the system. A half-hearted review that avoids hard questions about executives, consultants, or favored business relationships will not get you where Balt got.

Remediation is not a slide deck

The third lesson is on remediation. Too many organizations still treat remediation as presentation theater. They produce a deck, revise a policy, hold a training session, and call it transformation. The DOJ is looking for something more concrete. In the Balt Declination, remediation included disciplinary action against relevant individuals, termination of business relationships that gave rise to the misconduct, tailored compliance training for senior management, and improvements to the compliance program and internal controls. That list is worth lingering over. The DOJ did not only want a promise. It wanted decisions. It wanted changed relationships. It wanted management-specific training. It wanted better controls.

This is a point I have been making for 15 years. A compliance program is not judged by what sits in the binder; it is judged by what the company does when the pressure hits. Balt has shown DOJ that when misconduct surfaced, the company acted. That is the difference between a paper program and a living program.

For CCOs, the action item is straightforward. Build remediation plans that can be demonstrated, measured, and explained. Who was disciplined? Which third party was terminated? What internal control was changed? How was senior management retrained? What monitoring now exists that did not exist before? If you cannot answer those questions in concrete terms, you are not remediating. You are narrating.

The shadow issue: aggravating circumstances

There is another important dimension here. Balt qualified for a Part I declination, in part, because DOJ found no aggravating circumstances. But as Wiley noted, that assessment can be highly fact-dependent and may not be obvious in the early stages of an internal investigation. The line between Part I and Part II can, in practice, be subjective and outcome-determinative.

That is a crucial warning for compliance officers. Balt should not be read as a guarantee. It should be read as an incentive structure. Companies must still assess whether the misconduct is egregious or pervasive, whether senior management is implicated, whether the harm is severe, and whether the organization has a recidivist history. Those factors can dramatically change the result. So the compliance officer’s job is not to assume declination. The job is to gather facts rapidly, surface aggravating factors honestly, and help leadership make a disciplined disclosure decision.

The new DOJ Declination policy offers more clarity than many companies had before. But it does not eliminate judgment. It raises the premium on disciplined judgment.

Five Key Takeaways for Chief Compliance Officers

  1. Build a rapid disclosure protocol now. Balt’s outcome underscores that early self-disclosure, even during an ongoing investigation, can be decisive. Delay can cost you the best available resolution.
  2. Design investigations to identify individuals from day one. The DOJ expects cooperation to include facts about responsible individuals, not just corporate-level summaries.
  3. Make remediation provable. Discipline wrongdoers, terminate tainted relationships, retrain management, and strengthen controls in ways you can document and explain.
  4. Assess aggravating factors early and honestly. The Part I versus Part II distinction may turn on pervasiveness, seriousness, harm, and recidivism. Do not assume a declination path without a hard-eyed assessment of the facts.
  5. Train leadership that declinations are earned, not granted. Balt is a roadmap, not a safe harbor. The organizations that benefit will be the ones prepared to act with speed, rigor, and credibility.

What Balt means for the compliance profession

The Balt Declination is a policy statement in the form of a case. The DOJ is telling companies: we will reward timely self-disclosure, meaningful cooperation, and real remediation. But we will also pursue individuals. That combination is not new in spirit, but it is now being presented with renewed clarity under the new CEP. For corporate compliance officers, the message is not to wait for an issue and hope for good instincts in the moment. The message is to prepare now.

You need escalation protocols that move fast. You need investigation readiness. You need decision trees for voluntary disclosure. You need board education on what DOJ is rewarding and why. And you need remediation mechanisms that produce evidence, not adjectives.

Balt did not receive a Declination because the misconduct was trivial. It received a Declination because, once the misconduct came to light, the company appears to have done the things the DOJ has been asking companies to do for years. That is the real lesson.

In 2026, compliance officers should read the Balt matter not as an outlier, but as a stress test. If your company found a credible FCPA issue tomorrow, could you move quickly enough, investigate thoroughly enough, cooperate meaningfully enough, and remediate credibly enough to make a Balt-style pitch to DOJ?

That is the question. And the answer should shape your compliance program today.

Categories
TechLaw10

TechLaw10: OpenClaw & Agentic AI Risk

In this film, Punter Southall Law’s Jonathan Armstrong discusses OpenClaw & Agentic AI with Eric Sinrod, an attorney at Duane Morris LLP and a University Professor. This is episode 298 in the popular TechLaw10 series. You can listen to earlier podcasts here, including episode 291, which specifically looked at AgenticAI. You can also watch episode 291 here: Agentic AI – what is it & what are the risks?   The podcast includes top tips to help avoid issues when using Agentic AI. Jonathan & Eric discuss various aspects of the recent investigations into OpenClaw & Orchids, including:

  • OpenClaw’s history and security concerns
  • The concerns over prompt injection
  • The issues with ShadowAI
  • regulatory action against OpenClaw in the Netherlands and in Hong Kong
  • The issues with Orchids
  • The issues with OpenClaw’s connections with social media & LLMs
  • The need to ensure AI literacy
  • The importance of reasonable due diligence
  • the need for a DPIA or AIIA
  • the need to consider other regulatory obligations, e.g., under NIS or DORA

Resources:

There are more details on OpenClaw’s issues here.

Jonathan talked about the EU AI Act; FAQs are available here.

A glossary of AI terms is also available here. The paper Jonathan references by Darren Williams is here. Jonathan also mentions a BBC investigation into Orchids, available here.

Eric Sinrod’s details can be found here, and Jonathan Armstrong’s details are available here.

The TechLaw10 LinkedIn group is here.

Categories
The PfBCon Podcast

The PFBCon Podcast: Turn Your Podcast into a Trackable Growth Engine with Instagram DM Automation with Jeff Dwoskin

Jeff Dwoskin, Co-Founder of Stampede Social and a longtime podcaster, explains how podcasters can turn episodes into measurable growth engines by using Instagram and Facebook DM automation to connect podcast calls to action to trackable engagement and conversions.

Jeff outlines the core problem that podcasts are powerful but opaque—downloads don’t reveal who took action—and proposes a simple attribution path: prompt listeners to comment or DM a keyword, automatically deliver links via DM, and measure clicks and engagement to prove ROI. Jeff emphasizes why Instagram works well for podcasters (two-way conversations, discovery, private/trackable DMs), why “link in bio” adds friction, and how clear CTAs increase response. He highlights additional tactics, including Reels/Shorts/TikTok for discovery, Instagram Live with automation, giveaways, fan tracking, dashboards, social scorecards, and competitive reporting, plus a new YouTube comment automation feature that routes clickable links via YouTube notifications. The conversation closes with a reminder to evolve with audience behavior and formats—using a yacht rock/MTV analogy and a note that younger audiences watch YouTube like TV—along with a Black Friday offer code (indie50) for 50% off the middle and top Stampede Social plans.

Key highlights:

  • Turning Podcasts into Growth
  • The Podcast Attribution Problem
  • DMs Create Trackable ROI
  • Why Instagram Works
  • Calls to Action That Convert
  • Discovery Beyond Followers
  • Lives Giveaways Superfans
  • Case Study 70% Click Rate
  • Frictionless Engagement Rules
  • Dashboards and Social Intel
  • New YouTube Comment Automation
  • Yacht Rock and Evolving Media

Resources:

Follow Jeff Dwoskin on:

Stampede Social

LinkedIn

Instagram

Classic Conversations Podcast

X

Categories
AI Today in 5

AI Today in 5: March 23, 2026, The AI in Legal Edition

Welcome to AI Today in 5, the newest addition to the Compliance Podcast Network. Each day, Tom Fox will bring you 5 stories about AI to start your day. Sit back, enjoy a cup of morning coffee, and listen in to the AI Today In 5. All, from the Compliance Podcast Network. Each day, we consider five stories from the business world, compliance, ethics, risk management, leadership, or general interest about AI.

Top AI stories include:

  1. AI is reshaping the legal industry. (FT)
  2. AI for compliance regulation and enforcement. (McGuireWoods)
  3. Zero trust for AI. (Microsoft)
  4. Responsible AI for legal. (Wolters Kluwer)
  5. Secure Agentic AI end-to-end. (Microsoft)

For more information on the use of AI in Compliance programs, my new book, Upping Your Game, is available. You can purchase a copy of the book on Amazon.com.

Categories
FCPA Compliance Report

FCPA Compliance Report: World’s Most Ethical Companies 2026: The 8.2% Ethics Premium

In this episode, Tom Fox welcomes back Erica Salmon Byrne to talk about Ethisphere’s 20th edition of the World’s Most Ethical Companies.

Erica began by noting that there are 19 first-time honorees across 40 industries and 17 countries in the  2026 World’s Most Ethical Companies awards. They discuss the rigorous 250+ question Ethics Quotient and documentation review. They discuss the Ethics Premium using a five-year lookback (Jan 1, 2021–Dec 31, 2025), which showed 8.2% statistically significant outperformance versus a benchmark, based on index-firm analysis with capped company weighting. Beyond outperformance, the data showed a resiliency pattern during volatility: lower drawdowns, less time at the bottom, and faster recovery, framed as a correlation with practices that protect intangible assets. They highlight common honoree program elements, including transparency on investigations and discipline, more interactive “espresso shot” training, and manager toolkits and expectations to drive culture. They preview the 17th Global Ethics Summit in Atlanta and the WME gala.

Key highlights:

  • How the WME Process Works
  • Record 8.2% Outperformance
  • Resilience and Drawdowns
  • Compliance Protects Value
  • Trust Through Transparency
  • Global Ethics Summit Preview

Resources:

Erica Salmon Byrne on LinkedIn

Inside the Ethics Premium

Solactive GBS Global Markets All Cap USD Index

Ethisphere

Tom Fox

Instagram

Facebook

YouTube

Twitter

LinkedIn

The Ethics Premium on the FCPA Compliance and Ethics blog.

For more information on the use of AI in Compliance programs, my new book, Upping Your Game, is available. You can purchase a copy of the book on Amazon.com.

Categories
Daily Compliance News

Daily Compliance News: March 23, 2026, The All FT Edition

Welcome to the Daily Compliance News. Each day, Tom Fox, the Voice of Compliance, brings you compliance-related stories to start your day. Sit back, enjoy a cup of morning coffee, and listen in to the Daily Compliance News. All, from the Compliance Podcast Network. Each day, we consider four stories from the business world, compliance, ethics, risk management, leadership, or general interest for the compliance professional.

Top stories include:

  • Is China more stable for companies than the US? (FT)
  • JPMorgan to monitor junior bankers’ hours. (FT)
  • Collapsed mortgage lender in the UK given the all clear by the FCA in 2024. (FT)
  • AI is reshaping the business of law. (FT)
Categories
Blog

The Business Case for Compliance: What Ethisphere’s Ethics Premium Means for CCOs and Boards

For years, compliance professionals have argued that ethics matters because it is the right thing to do. That remains true. But the latest data from Ethisphere adds an equally important point for boards, CEOs, and investors: ethics also matter because it is good business.

That is the message from Ethisphere’s “Inside the Ethics Premium,” which examines the performance of the publicly listed 2026 World’s Most Ethical Companies honoree cohort against the Solactive GBS Global Markets All Cap USD Index over five years. Ethisphere is careful to note that this is correlation, not causation. Yet the signal is powerful. Companies recognized for leadership in ethics, compliance, culture, and governance delivered stronger performance and greater resilience than the broader benchmark over a full market cycle.

For the Chief Compliance Officer, this is more than a nice talking point. It is a boardroom argument. It is a management argument. And it is a strategic argument.

The headline number is straightforward: Ethisphere found a five-year ethics premium of +8.2 percentage points from January 1, 2021, through December 31, 2025. But in some ways, the more important story sits beneath that top-line result. The honoree cohort did not simply outperform. It also proved more resilient. Ethisphere reports that these companies experienced a 7.1% smaller maximum drawdown, returned to prior highs 10.1% faster, and spent 14.4% less time below their prior peak than the broader market benchmark. That is the business case for compliance in a nutshell.

When markets are rising, companies want to participate in the upside. When markets are falling, boards want to know two things: how much value was lost and how quickly the company can recover. Ethisphere’s data suggests that ethics-leading organizations can do both. The cohort captured 104% of the market’s upside while experiencing only 97% of the benchmark’s downside in down months. In other words, strong ethics and compliance programs do not merely help companies avoid disaster. They may also position them to compete more effectively across a full economic cycle.

Why might that be? Ethisphere offers a compelling explanation. Strong programs reduce surprises, strengthen decision-making, protect trust, and safeguard intangible assets, all of which support durable performance. That last point is critical. In modern business, enterprise value is increasingly tied to intangibles: trust, culture, reputation, confidential information, and the ability to operate through disruption. Ethisphere cites Ocean Tomo’s estimate that, by the end of 2025, intangible assets will account for approximately 92% of the S&P 500’s market capitalization. That should get every board’s attention.

If intangible assets drive enterprise value, then the systems that protect those assets are no longer peripheral. They are central. Compliance, ethics, culture, reporting channels, investigations, training, third-party risk management, and managerial accountability become part of the company’s value preservation and value creation architecture. Put differently, stock performance is the outcome. The operating system is what management can control.

This is where the Ethisphere report is especially useful for compliance professionals. It does not stop at market outcomes. It also points to the kinds of practices that characterize best-in-class programs. The evaluation for the World’s Most Ethical Companies is built on the Ethics Quotient, a 240-plus-question assessment covering governance, program structure, written standards, training and communication, risk assessment and detection, enforcement and incentives, culture measurement, third-party risk management, and impact assessment and reporting. Those are not abstract ideals. They are operational disciplines. Consider three proof points from the report.

  1. 75% of honorees share investigation and discipline statistics with all employees, which Ethisphere says is a 6 percentage-point gain over the last three years. That is a powerful indicator of transparency. It tells employees that reports are taken seriously, issues are addressed, and misconduct has consequences. In the compliance world, trust in the system is everything. Employees speak up when they believe the organization will listen and act.
  2. Ethisphere notes that a majority of honorees are using more adaptive online training techniques, such as test-out, test-up, or progressive course difficulty. That is important because it reflects a maturity of approach. Training is not treated as a check-the-box exercise. It is treated as an engagement tool, designed to capture attention and improve retention. Effective compliance training should respect the workforce, meet people where they are, and be more relevant. The best programs understand this.
  3. Nearly every honoree equips managers with toolkits, talk tracks, and resources to discuss ethical dilemmas with their teams, and 51% require managers to do so. That may be the most practical lesson of all. Culture does not live in the code of conduct. Culture lives in the daily conversations between managers and employees. If you want an ethical culture, you need ethical middle management. You need managers who can translate corporate values into operational guidance at the point of decision.

There is another point in the Ethisphere data that boards should not miss: this outperformance is not a one-off event or a lucky stretch. Ethisphere found a positive excess return in 65% of rolling 12-month windows, or 31 of 48 periods, over the last five years. Even more striking, Ethisphere says that every year since it began calculating the Ethics Premium, the honoree cohort has outperformed its peer group. That kind of consistency matters because it suggests durability. It suggests that ethics and compliance excellence may be part of a repeatable enterprise capability.

What should compliance professionals do with this information? They should use it. Use it with the board to reframe compliance from overhead to strategic infrastructure. Use it with the CEO and CFO to show that ethics is tied to resilience, recovery, and enterprise value. Use it in budget discussions to explain why investments in reporting systems, investigations, manager enablement, and training are not soft spending. They are hard-edged business investments.

The lesson from Ethisphere is not that every ethical company will outperform, nor that every compliance investment leads directly to share price appreciation. Ethisphere expressly warns against that simplistic conclusion by emphasizing correlation rather than causation. But the lesson is still profound. Companies with stronger ethics, compliance, culture, and governance systems appear better positioned to protect trust, reduce disruption, and recover faster when stress hits.

That is what boards care about. That is what shareholders care about. And that is why the business case for compliance has never been stronger. For the compliance professional, the takeaway is clear: do not undersell your function. Ethics is not merely a guardrail. It is a performance advantage.

Categories
Sunday Book Review

Sunday Book Review: March 22, 2026, The University of Chicago Press Edition

In the Sunday Book Review, Tom Fox considers books that would interest compliance professionals, business executives, or anyone curious. It could be books about business, compliance, history, leadership, current events, or anything else that might interest Tom. In this episode, we look at 4 top books released in March by the University of Chicago Press.

  1. Bicentennial by Marc Stein
  2. The Invention of Infinite Growth by Christopher F. Jones
  3. The Means of Prediction by Maximilian Kasy
  4. Against Innocence by Miriam Ticktin
Categories
AI in Healthcare

AI in Healthcare: Five Healthcare AI Stories You Need to Know This Week – March 20, 2026

Welcome to AI in Healthcare in 5 Stories. This podcast is a Weekly Briefing of the five most important AI developments shaping healthcare, medicine, and life sciences. Each week, Tom Fox breaks down the latest stories on clinical innovation, regulation, privacy, compliance, patient safety, and operational transformation through a practical, business-focused lens. Designed for healthcare compliance professionals, executives, legal teams, clinicians, and industry leaders, the podcast moves beyond headlines to explain what each development means in the real world.

The top five stories for the week ending March 20, 2026, include:

  1. Does healthcare need specialized AI? (Harvard Business Review)
  2. AI opens a new front in the hospitals v. insurers battle. (Reuters)
  3. Where AI can make the biggest impact in healthcare. (Healthcare IT News)
  4. Why healthcare institutions are struggling to implement AI effectively. (Forbes)
  5. Is pharma ready for Agentic AI? (PharmaPhorum)

For more information on the use of AI in Compliance programs, my new book, Upping Your Game, is available. You can purchase a copy of the book on Amazon.com.

Categories
AI in Financial Services in 5 Stories

AI in Financial Services in 5 Stories – Week Ending March 20, 2026

Welcome to AI in Financial Services in 5 Stories. A practical weekly roundup of the five most important AI developments affecting banking, insurance, payments, asset management, and fintech. Each Friday, Tom Fox will break down the top stories that matter most through the lenses of compliance, risk management, governance, and business strategy. Designed for compliance professionals, executives, legal teams, and financial services leaders, it goes beyond headlines to explain why each development matters in a highly regulated industry. The result is a concise weekly briefing that helps listeners stay current on AI innovation while asking sharper questions about oversight, accountability, and trust.

This week’s stories include:

  1. How AI is changing fintech. (Intuit)
  2. GSA AI clause.(Holland & Knight)
  3. Leading through AI transformation in FinTech. (Forbes)
  4. Mastercard unveils AI engine. (FinTechMagazine)
  5. FCA demands explainable decisions. (FinTechGlobal)

For more information on the use of AI in Compliance programs, my new book, Upping Your Game, is available. You can purchase a copy of the book on Amazon.com.