Tag: aggravating factors

Categories
Blog

Balt’s DOJ Declination: A Case Study in Why Speed, Cooperation, and Remediation Still Matter

The Justice Department’s first publicly announced resolution under its new Department-wide Corporate Enforcement and Voluntary Self-Disclosure Policy (CEP) offers corporate compliance officers a practical roadmap: disclose early, cooperate fully, remediate credibly, and be prepared to help prosecutors hold individuals accountable.

Some enforcement actions feel like one-off events. Then others operate like a flare shot into the compliance sky. The DOJ Declination involving French medical device company Balt SAS and its US subsidiary Balt USA (collectively ‘Balt) falls squarely into the second category.

Why? Because this was not simply another FCPA matter. It was the first publicly announced corporate resolution under the DOJ’s new CEP, and DOJ clearly meant it to send a message to the market. As the Wiley alert noted, the Balt matter demonstrates the benefits available to companies that voluntarily self-disclose, fully cooperate, and timely remediate, while also reinforcing DOJ’s emphasis on individual accountability. For compliance officers, that makes Balt important far beyond the four corners of the case itself.

What happened at Balt?

According to the Declination, Balt paid approximately $602,000 in bribes from around 2017 to 2023 to a physician who held a senior role at a state-owned public hospital in France to obtain or retain business. The payments were routed through a third-party consultant in Belgium, with fake invoices and purported bonus payments used to conceal the true nature of the transaction. The scheme generated roughly $1.68 million in revenue and approximately $1.214 million in profits for Balt. As Matt Kelly reported in Radical Compliance, the scheme involved all the old FCPA classics: sham consulting arrangements, fake invoices, and off-channel communications. That alone would have made the matter notable. But the more important point is what happened after Balt discovered the misconduct.

DOJ declined prosecution because Balt self-disclosed while its internal investigation was still ongoing; provided full and proactive cooperation; engaged in timely and appropriate remediation, including disciplinary measures and termination of tainted business relationships; and presented no aggravating circumstances sufficient to disqualify it from a Part I declination. DOJ also required Balt to disgorge approximately $1.2 million and noted that the company had entered into a parallel resolution in France that included compliance requirements. This is the template. And compliance officers should study it carefully.

The real lesson: self-disclosure means before you know everything

One of the most significant points in the Balt matter is timing. Balt disclosed the issue during an ongoing internal investigation, which strongly suggests the company came in before every fact had been nailed down.

That matters because many companies still hesitate, hoping to finish the investigation, validate every fact, and package the matter neatly before approaching the OJ. Balt is a reminder that DOJ wants speed and credibility, not perfection. The new policy framework still prizes timely self-disclosure as the clearest route to a declination. Wiley put it plainly: voluntary disclosure still provides the clearest path to that outcome, and delay can preclude eligibility for the most favorable result.

For the Chief Compliance Officer (CCO), this is where judgment, preparation, and governance structure come together. If your escalation protocols are weak, if privilege decisions are muddled, if your triage process is slow, or if your board and senior leadership do not understand the declination calculus, you can lose the timing advantage before the real work even begins. The Balt case is not simply a win for self-disclosure. It is a win for pre-existing readiness for investigation.

Cooperation means more than being polite

The second lesson is equally important. Under the CEP, cooperation is not a vague aspiration. It is an operational requirement. The Wiley analysis emphasized that full cooperation includes identifying all individuals involved in or responsible for the misconduct and providing facts and evidence concerning their conduct.

This is where compliance officers need to understand a hard truth. DOJ is not offering declinations because it has become sentimental, or even because this administration does not believe in the FCPA. It is offering incentives because it wants something in return. And one of the most important things it wants to do is help build cases against culpable individuals.

That is precisely what happened here. DOJ paired Balt’s declination with indictments of two individuals allegedly involved in the bribery scheme. Wiley correctly described the sequencing as no coincidence, but rather a reinforcement of the DOJ’s continuing focus on individual accountability. Kelly made the same point in even more direct terms: from DOJ’s perspective, if a company voluntarily self-discloses, coughs up illicit proceeds, and helps prosecutors hold wrongdoers accountable, the company can receive a declination.

For compliance professionals, this means internal investigations must be designed from the outset with evidentiary rigor. You need documentation discipline. You need clear interview protocols. You need a defensible record of who knew what, who approved what, and how the misconduct moved through the system. A half-hearted review that avoids hard questions about executives, consultants, or favored business relationships will not get you where Balt got.

Remediation is not a slide deck

The third lesson is on remediation. Too many organizations still treat remediation as presentation theater. They produce a deck, revise a policy, hold a training session, and call it transformation. The DOJ is looking for something more concrete. In the Balt Declination, remediation included disciplinary action against relevant individuals, termination of business relationships that gave rise to the misconduct, tailored compliance training for senior management, and improvements to the compliance program and internal controls. That list is worth lingering over. The DOJ did not only want a promise. It wanted decisions. It wanted changed relationships. It wanted management-specific training. It wanted better controls.

This is a point I have been making for 15 years. A compliance program is not judged by what sits in the binder; it is judged by what the company does when the pressure hits. Balt has shown DOJ that when misconduct surfaced, the company acted. That is the difference between a paper program and a living program.

For CCOs, the action item is straightforward. Build remediation plans that can be demonstrated, measured, and explained. Who was disciplined? Which third party was terminated? What internal control was changed? How was senior management retrained? What monitoring now exists that did not exist before? If you cannot answer those questions in concrete terms, you are not remediating. You are narrating.

The shadow issue: aggravating circumstances

There is another important dimension here. Balt qualified for a Part I declination, in part, because DOJ found no aggravating circumstances. But as Wiley noted, that assessment can be highly fact-dependent and may not be obvious in the early stages of an internal investigation. The line between Part I and Part II can, in practice, be subjective and outcome-determinative.

That is a crucial warning for compliance officers. Balt should not be read as a guarantee. It should be read as an incentive structure. Companies must still assess whether the misconduct is egregious or pervasive, whether senior management is implicated, whether the harm is severe, and whether the organization has a recidivist history. Those factors can dramatically change the result. So the compliance officer’s job is not to assume declination. The job is to gather facts rapidly, surface aggravating factors honestly, and help leadership make a disciplined disclosure decision.

The new DOJ Declination policy offers more clarity than many companies had before. But it does not eliminate judgment. It raises the premium on disciplined judgment.

Five Key Takeaways for Chief Compliance Officers

  1. Build a rapid disclosure protocol now. Balt’s outcome underscores that early self-disclosure, even during an ongoing investigation, can be decisive. Delay can cost you the best available resolution.
  2. Design investigations to identify individuals from day one. The DOJ expects cooperation to include facts about responsible individuals, not just corporate-level summaries.
  3. Make remediation provable. Discipline wrongdoers, terminate tainted relationships, retrain management, and strengthen controls in ways you can document and explain.
  4. Assess aggravating factors early and honestly. The Part I versus Part II distinction may turn on pervasiveness, seriousness, harm, and recidivism. Do not assume a declination path without a hard-eyed assessment of the facts.
  5. Train leadership that declinations are earned, not granted. Balt is a roadmap, not a safe harbor. The organizations that benefit will be the ones prepared to act with speed, rigor, and credibility.

What Balt means for the compliance profession

The Balt Declination is a policy statement in the form of a case. The DOJ is telling companies: we will reward timely self-disclosure, meaningful cooperation, and real remediation. But we will also pursue individuals. That combination is not new in spirit, but it is now being presented with renewed clarity under the new CEP. For corporate compliance officers, the message is not to wait for an issue and hope for good instincts in the moment. The message is to prepare now.

You need escalation protocols that move fast. You need investigation readiness. You need decision trees for voluntary disclosure. You need board education on what DOJ is rewarding and why. And you need remediation mechanisms that produce evidence, not adjectives.

Balt did not receive a Declination because the misconduct was trivial. It received a Declination because, once the misconduct came to light, the company appears to have done the things the DOJ has been asking companies to do for years. That is the real lesson.

In 2026, compliance officers should read the Balt matter not as an outlier, but as a stress test. If your company found a credible FCPA issue tomorrow, could you move quickly enough, investigate thoroughly enough, cooperate meaningfully enough, and remediate credibly enough to make a Balt-style pitch to DOJ?

That is the question. And the answer should shape your compliance program today.

Categories
Blog

SDNY Just Raised the Stakes on Self-Disclosure: What Compliance Leaders Must Do in the First 14 Days

For years, compliance leaders have worked under a simple reality: if the government learns about a problem from someone else first, you have already lost leverage. The Southern District of New York (SDNY) just sharpened that reality into a clear, public framework. Its Corporate Enforcement and Voluntary Self-Disclosure Program for Financial Crimes, effective February 24, 2026, is not subtle. It is designed to force an earlier decision and reward companies that make it; this means making it fast, transparent, and with meaningful remediation and restitution.

This is not just a fraud prevention or reporting program. It reaches conduct that can show up in any company: accounting games, deceptive disclosures, market-facing misconduct, and the broader universe of financial crime risks that sit adjacent to bribery-and-corruption controls. If you are running a compliance program, you should read this initiative as a warning: even when the underlying misconduct is not charged as “bribery,” the financial-crimes hook is often where prosecutors live. You may think you are managing “corruption risk.” SDNY is telling you it is also “market integrity” and “victim harm” risk.

And SDNY is pairing that message with something rare in enforcement policy: speed. SDNY says qualifying companies “can expect to receive a conditional declination letter within two to three weeks of self-reporting”. That is a flashing sign for CCOs: the window for decision-making just got smaller.

The SDNY is pushing fiduciary duty and stewardship.

Business executives usually talk about self-disclosure as a tactical choice. Compliance professionals have long known better, and now the SDNY frames it as something deeper: governance and duty. The program states that corporate leaders are “fiduciaries” with a “fundamental duty” to ensure integrity and transparency, and it positions voluntary self-disclosure as a core act of good corporate citizenship and stewardship. It will be interesting to see whether this “fundamental duty” to ensure integrity and transparency, and the corporate leaders as ‘fiduciaries’, bring a new level of Caremark scrutiny to Delaware.

That language matters. It is not only prosecutors describing a pathway to leniency. It is prosecutors telling boards and executives what they believe ethical leadership requires when the company discovers misconduct that harms markets, counterparties, customers, or investors. In other words, SDNY is trying to turn self-disclosure into a leadership test.

The Carrot is Real and Designed to Change Behavior

SDNY’s incentives are intentionally strong. If a company meets the program requirements, including timely voluntary self-disclosure, full cooperation, and timely remediation, the SDNY says it will issue a declination and will not prosecute the company. It also states that there will be no criminal fine and that, if the company pays appropriate restitution to victims, SDNY will not require forfeiture. Even more significant for compliance leaders is the following: SDNY says it “generally will not require” an independent compliance monitor for a qualifying company.

Those are meaningful benefits. They are the kind of benefits that can change what a board is willing to authorize in the first two weeks of a crisis. But the benefits only matter if you can move fast enough, gather credible facts, and maintain control of the narrative.

The First 14 Days: what compliance leaders should do now, not later

If SDNY is telling you it can issue a conditional declination letter in “two to three weeks”, then your internal process cannot take three weeks to decide whether you even have a problem. The ethical governance move is to treat the first 14 days as a disciplined sprint, one that protects truth, protects victims, and protects the integrity of your program.

Days 1–2: Triage without spinning

Your first obligation is to stop the bleeding and preserve facts. That means:

  • immediate escalation into a controlled response team (Compliance, Legal, Finance, Internal Audit, IT/security, and, if needed, HR),
  • an evidence preservation hold that includes chat platforms, mobile devices, third-party messaging, deal rooms, and personal email, where permitted, and
  • a decision to ring-fence relevant individuals, accounts, and transactions so you do not create new harm.

Ethically, this is where senior leadership proves it wants the truth, not just a version of it.

Days 3–5: Board notice and decision rights

If you are waiting for “certainty” before you brief the board or a board committee, you are already behind the SDNY clock. The goal is not to accuse. The goal is to establish governance: decision rights, cadence, and oversight. SDNY’s fiduciary framing means this cannot be treated as a management-only event. The board must be positioned to make an informed decision on disclosure, remediation, and restitution as facts develop.

Days 6–10: Outside counsel, scoped investigation, and credibility building

This is when you decide whether to engage outside counsel and forensic support to ensure independence and speed. For SDNY purposes, credibility is currency. The company needs to show it can:

  • Identify the misconduct,
  • identify who was involved,
  • quantify harm, including victims and losses,
  • explain control failures, and
  • demonstrate remediation beyond “we are reviewing policies.”

Remember: SDNY’s program is built around concrete action, self-reporting, cooperation, remediation, and restitution. If your internal processes create delays and ambiguity, you are squandering the very benefits SDNY offers.

Days 11–14: Regulator strategy and the self-disclosure decision

This is the moment of ethical leadership. You will not know everything. You will know enough to determine whether misconduct occurred and whether it falls into a category SDNY will view as market-harming or integrity-compromising. SDNY is offering a structured benefit for early self-reporting, but it is also signaling that waiting for a subpoena is not a strategy.

Five Lessons for the Compliance Professional

Lesson 1: SDNY is reframing self-disclosure as a fiduciary duty rather than optional crisis PR.

The program’s emphasis on leaders as “fiduciaries” with a “fundamental duty” of integrity and transparency is a direct ethical challenge to boards and executives. If your organization treats disclosure solely as a legal risk calculation, SDNY is telling you that you have already missed the governance point.

Lesson 2: Speed is now a moral and operational requirement.

The “two to three weeks” commitment to a conditional declination letter is SDNY saying: “Do not slow-walk the truth.” In compliance terms, timeliness is not merely a matter of efficiency. It is ethical stewardship. Delay increases harm, increases victim loss, and increases the chance that someone else tells your story first.

Lesson 3: Restitution is not a side issue; it is a core ethical outcome.

SDNY’s program explicitly states that paying “appropriate restitution to victims” is central, and it links that to the decision not to pursue forfeiture. Compliance leaders should read this as a directional signal: the government is measuring corporate ethics by whether the company makes harmed parties whole, not merely by whether it updates a policy.

Lesson 4: The benefits are real, but they are earned through cooperation and remediation that changes behavior.

No prosecution, no fine, and generally no monitor are extraordinary incentives. But SDNY is also telling you what it values: companies that step forward, cooperate fully, remediate quickly, and do not play games with facts. Ethically, this is “clean hands” enforcement: if you want mercy, show you deserve it.

Lesson 5: Some conduct is simply disqualifying, and compliance must stop pretending every risk is manageable with process.

SDNY calls out aggravating circumstances that can make a company ineligible for a declination under the program. The list includes conduct tied to terrorism, sanctions evasion, foreign corruption, trafficking, cartels, forced labor, violence, and related financing or laundering. That matters because it draws an ethical boundary: there are categories of wrongdoing so corrosive that the “cooperate and remediate” story is not enough. For CCOs, the lesson is to build escalation protocols that treat these risks as existential and non-negotiable.

A Blunt Wake-up Call: The Cost of Not Self-Reporting is Going Up

SDNY is trying to end the era of corporate hesitation. The program signals that a company’s decision not to self-report will weigh heavily against it when prosecutors later assess resolutions. This is the part compliance leaders must say out loud internally: the old playbook of “let us wait and see” is increasingly incompatible with how prosecutors say they will exercise discretion. If your organization has not pre-built a rapid disclosure decision tree, you are asking to miss the window SDNY is dangling in front of you. You will not get the benefit of a program you were not prepared to use.

Conclusion: Compliance and Ethics that Move at Prosecutorial Speed

The SDNY initiative is not merely a new memo. It is a redefinition of what “responsible corporate conduct” looks like in real time. It asks boards and senior executives to behave like fiduciaries: to choose integrity and transparency early, to protect victims through restitution, and to treat cooperation and remediation as proof that the company is worthy of trust. For the compliance professional, the message is simple and uncomfortable: your program will not be judged by the elegance of your policies. It will be judged by whether your leadership can tell the truth quickly, act with stewardship, and make hard decisions when the facts are incomplete but the duty is clear.