Categories
FCPA Compliance Report

Mike Huneke on The General Counsel Role in CCO Certification

In this episode, I visit Mike Huneke, a partner at Hughes Hubbard. We look at the role of the GC in the CCO certification requirement as first announced by Assistant Attorney General Kenneth Polite and confirmed by Deputy Attorney General Lisa Monaco.

Key areas we discuss on this podcast are:

  • What is the new CCO certification policy?
  • Why did the DOJ create the policy?
  • How has the DOJ’s thinking around recidivists evolved?
  • Reasonableness is not a factual basis.
  • Companies with full transparency are unlikely to have conflicts due to the recent changes in CCO certification.
  • What is the role of the monitor going forward?

Resources

Mike Huneke on Hughes Hubbard

What is the General Counsel’s role in CEO and CCO compliance certifications? On the FCPA Blog

Categories
Blog

Oracle: FCPA Recidivist Part 1 – Background

Oracle Corporation now joins the ignominious group of Foreign Corrupt Practices Act (FCPA) recidivists. Last week, in a Press Release, the Securities and Exchange Commission (SEC) announced an enforcement action which required Oracle to pay more than $23 million to resolve charges that it violated the FCPA when “subsidiaries in Turkey, the United Arab Emirates (UAE), and India created and used slush funds to bribe foreign officials in return for business between 2016 and 2019.” The recidivist label comes from the sad fact that the SEC “sanctioned Oracle in connection with the creation of slush funds. In 2012, Oracle resolved charges relating to the creation of millions of dollars of side funds by Oracle India, which created the risk that those funds could be used for illicit purposes.”

 As reported in the FCPA Blog, Oracle is now one of 15 FCPA recidivists out of a total of 246 FCPA enforcement cases. This gives a recidivism rate of 6.1%. Clearly recidivism is also on the mind of the Department of Justice (DOJ) in the announcement of the Monaco Doctrine and release of the Monaco Memo. Given the overall tenor of the Oracle SEC Order, it is not clear if the SEC has the same level of concern as the DOJ on repeat offenders.

According to the Order, from at least 2014 through 2019, “employees of Oracle subsidiaries based in India, Turkey, and the United Arab Emirates (collectively, the “Subsidiaries”) used discount schemes and sham marketing reimbursement payments to finance slush funds held at Oracle’s channel partners in those markets. The slush funds were used both to (i) bribe foreign officials, and/or (ii) provide other benefits such as paying for foreign officials to attend technology conferences around the world in violation of Oracle’s internal policies.” I guess those employees at the subsidiaries, and specifically those in India, did not receive the Memo about Oracle’s 2012 FCPA settlement, where they promised to institute a series of internal controls to clean up the problem.

During the period in question, Oracle used two sales models, direct and indirect. Under the direct model, Oracle transacted directly with customers who paid Oracle directly. Under the indirect method, Oracle transacted through various types of third parties including straight distributor models, value added distributors (VADs) and value added resellers (VARs). While Oracle used the indirect sales model for a variety of legitimate business reasons, such as local law requirements or to satisfy payment terms, it recognized since at least 2012 that the indirect model also presented certain risks of abuse – including the creation of improper slush funds.

Learning one lesson from the 2012 enforcement action, “Oracle utilized a global on-boarding and due diligence process for these channel partners that Oracle implemented at the regional and country levels. Oracle only permitted its subsidiaries to work with VADs or VARs who were accepted to its Oracle Partner Network (“OPN”). Similarly, Oracle prohibited its subsidiaries from conducting business with companies removed from the OPN.”

Distributor Discounts

According to its policies regarding distributors, a valid and  legitimate business reason was required to provide a discount to a distributor. Oracle used a three-tier system for approving discount requests above designated amounts, depending on the product. In the first level, Oracle at times allowed subsidiary employees to obtain approval from an approver in a subsidiary other than that of the employee seeking the discount. At the next level and for higher level of discounts, Oracle required the subsidiary employee to obtain approval from Oracle corporate headquarters. The final level was a committee which had to approve the highest levels of discount.

The weakness in the Oracle distributor discount policy was that “while Oracle policy mandated that all discount requests be supported by accurate information and Oracle reviewers could request documentary support, Oracle policy did not require documentary support for the requested discounts – even at the highest level.” The standard requests for discounts were those previously seen in the Microsoft FCPA enforcement action, including “budgetary caps at end customers or competition from other original equipment manufacturers.” As the Order noted, “Oracle Subsidiary employees were able to implement a scheme whereby larger discounts than required for legitimate business reasons were used in order to create slush funds with complicit VADs or VARs.” Naturally it allowed distributors which “profited from the scheme by keeping a portion of the excess deal margin” to create a pot of money to pay a bribe.

Marketing Reimbursements

Distributor policies also allowed Oracle sales employees at the Subsidiaries to “request purchase orders meant to reimburse VADs and VARs for certain expenses associated with marketing Oracle’s products.” Once again there was a multi-pronged approval process in place. For marketing reimbursements “under $5,000, first-level supervisors at the Subsidiaries could approve the purchase order requests without any corroborating documentation indicating that the marketing activity actually took place.” Above this $5,000 threshold, additional approvals were required with additional requirements for business justification and documentation.

With these clear and glaring internal control gaps, you can see where it all went wrong for Oracle, the Order noted that “Oracle Turkey sales employees opened purchase orders totaling approximately $115,200 to VADs and VARs in 2018 that were ostensibly for marketing purposes and were individually under this $5,000 threshold.” Yet even when the $5,000 threshold was breached and supervisory approval was required in Turkey and the UAE, “The direct supervisors of these sales employees, who were complicit in the scheme, approved the fraudulent requests.” It is not clear if Oracle compliance had visibility into marketing reimbursement protocols. Of course, the “Oracle subsidiary employees in Turkey and the United Arab Emirates requested sham marketing reimbursements to VADs and VARs as a way to increase the amount of money available in the slush funds held at certain channel partners.” These slush funds were then used to pay bribes.

Please join me tomorrow where I look at the bribery schemes in action and how Oracle was able to obtain such an outstanding resolution and their extensive and aggressive remedial actions.

Categories
Sunday Book Review

October 2, 2022 the Frankenstein edition

In today’s edition of Sunday Book Review:

Frankenstein by Mary Shelley

The Gloem by Avram Davidson

The Casebook of Victor Frankenstein by Peter Ackroyd

The Strange Case of Dr. Jekyll and Mr. Hyde by Robert Louis Stephenson

Categories
Popcorn and Compliance

Leadership Lessons from Dr. Frankenstein

I have always loved the classic Universal monster movies from the 1930s. I am exploring one movie each week to mine it for leadership and compliance lessons this month. For this first entry in this short series on Popcorn and Compliance, I look at the original 1931 version of Mary Shelley’s seminal work, Frankenstein, which starred Boris Karloff as the Monster. Karloff embued the Monster with great pathos, but in this podcast, I want to consider the leadership lessons of Dr. Victor Frankenstein or the lack of leadership by the good doctor, which led to the deaths of a small child, his brother, and the rape of his wife-to-be on her wedding day. Of course, it also led to the unleashing of his Monster, technically called Frankenstein’s Monster, upon the movie-going world for years to come.

Categories
Daily Compliance News

October 1, 2022 the Simply Staggering Edition

In today’s edition of Daily Compliance News:

  • FINRA spells out AML penalties. (WSJ)
  • McKinsey and ex-partner added to the corruption case in South Africa. (Bloomberg)
  • Somebody needs to be fired. (ESPN)
  • Barclay’s fined (yet again). This time $361MM. (Reuters)
Categories
Corruption, Crime and Compliance

Episode 248 – Deep Dive into the GOL Brazil FCPA Settlement

The Department of Justice and the Securities and Exchange Commission reached a $41 million settlement with GOL Linhas Aéreas Inteligentes S.A. (“GOL”) to resolve criminal and civil foreign bribery charges. GOL entered into a three-year deferred prosecution agreement (“DPA”) with the DOJ in exchange for payment of a $17 million criminal penalty. DOJ credited $1.7 million of that penalty against a $3.4 million fine that GOL agreed to pay law enforcement authorities in Brazil to resolve charges in Brazil. In a separate resolution, GOL agreed to pay the SEC $24.5 million over two years. The SEC’s initial settlement calculation was for $70 million, but it was reduced to $24.5 million based on GOL’s financial condition. Michael Volkov reviews the DOJ and SEC FCPA settlement actions in this episode.

Categories
FCPA Compliance Report

The EC Gang on the Monaco Doctrine

In this special 5 part podcast series, I am deeply diving into the Monaco Memo and analyzing it from various angles. In this episode of the FCPA Compliance Report, we have the Award-Winning Everything Compliance quartet of Jonathan Marks, Jonathan Armstrong, Karen Woody, and Tom Fox on the Monaco Memo.

1. Tom Fox looks at the Monaco Memo through the monitorship language and answers a listener’s questions about compliance programs under the Monaco Memo.

2. Karen Woody reviews the Monaco Memo, the self-disclosure angle, and investigatory considerations and ponders the role of defense counsel going forward.

3. Jonathan Marks also looks at investigatory issues under the Monaco Memo, the role of the Board of Directors, and the role of the forensic auditor under the Monaco Memo.

4. Jonathan Armstrong’s self-disclosure from a UK angle joins Karen Woody in questioning how defense counsel should move forward.

Resources

Tom 5-Part blog post series in the FCPA Compliance and Ethics Blog

1.     A Jolt for Compliance

2.     Timely Self-Disclosure

3.     Corporate Compliance Programs

4.     Monitors

5.     The Heat is On

Monaco Memo

Categories
Because That's What Heroes Do

WandaVision, Episode 8 – Previously On

In this podcast series, two complete MCU fans, Tom Fox, founder of the Compliance Podcast Network, and Megan Dougherty, co-founder of One Stone Creative, indulge in a passion for all things in the Marvel Cinematic Universe. We previously reviewed all the movies, and now we have a series on WandaVision. If you want to indulge in your love for the MCU with two fans passionate about all things MCU, this is the podcast series for you. For this offering, we continue with Episode 8, Previously On.

Some of the highlights include:

Ø The story synopsis.

Ø What are the key plot points?

Ø What were some of our favorite cookies?

Next up in our series WandaVision, Episode 9 Series Finale.

Categories
Career Can D0

The World of Virtual Assistance with Molly Rose Speed

 

In this episode of Career Can Do, Mary Ann Faremouth chats with Molly Rose Speed, owner and Director of Operations at CoPilot Consulting. Molly Rose is a talented strategic thinker with cultivated skills in online tech solutions, systems, and processes that improve company efficiencies. She went from a “corporate cubicle dweller” to becoming an entrepreneur and creator of the Virtual Assistant Academy. Molly Rose shares her story and gives insight into the virtual assistance industry.

 

 

Ten years ago, Molly Rose quit her corporate job cold-turkey when she realized that it was not how she wanted to live her life. She delved into virtual assistance, despite not quite knowing everything it entailed – but she quickly learned. Virtual assistants provide the professional support online business owners need to stay in their zone of genius.

 

The Virtual Assistant Academy founded by Molly Rose trains and certifies people to start virtual businesses. It’s a very flexible career path, especially for mothers. On the flip side, the Academy also provides virtual services for business owners or even stay-at-home mothers looking to outsource certain tasks. 

 

Resources

Faremouth.com

 

Categories
Daily Compliance News

September 30, 2022 the Conflict of Interest Edition

In today’s edition of Daily Compliance News:

  • Tyson Foods names the son of the Board Chair as CFO. (WSJ)
  • McKinsey-a force for not good? (NYT)
  • Big Fund corruption in China. (FT)
  • Elon Musk tries to get out of his SEC settlement yet again. (Reuters)