Tag: CCO

Categories
This Week in FCPA

Episode 297 – the Ng Convicted edition


As the NY Mets have the best record in baseball and we prepare for the celebrations of Easter and Passover, Tom and Jay are back to look at some of the week’s top compliance and ethics stories in the Ng Convicted edition.
Stories

    1. Roger Ng was convicted. Tom in the FCPA Compliance and Ethics Blog.
    2. Lessons from DOJ’s first cyber fraud settlement? Annie Hudgins in the FCPA Blog.
    3. Depression as corporate materiality issue. Dick Cassin in the FCPA Blog
    4. Should CCOs be required to certify compliance programs? Mike Volkov in Corruption Crime and Compliance.
    5. CEO fined by SEC for impeding whistleblower. Aaron Nicodemus in Compliance Week. (sub req’d) Matt Kelly in Radical Compliance.
    6. How much BOD oversight of compliance is enough? Jeff Kaplan in Conflict of Interest Blog
    7. Compliance in recessionary times. Jim DeLoach in CCI.
    8. Water and corruption. Rick Messick in GAB.
    9. Why should an organization disclose diversity information? Antinuke Adrian in Harvard Law School Forum on Corporate Governance.  
    10. Data governance best practices. Eray Eliaçik in Data Economy

Podcasts and More

  1. Tom visits with Matt Galvin and Dan Kahn over a 2-part podcast series. In Part 1, they talk about dealing with the DOJ during an FCPA investigation and thereafter. 
  2. Into Star Trek, then join Tom and John Champion, who is on a 15-year mission to do a podcast on every episode of Star Trek, television, movie, and animated show on the podcast MissionLogPodcast.com. In Part 1, from TOS up to the start of TNG. In Part 2, from TNG to today. 
  3. This month on the Compliance Life, I visit with Susan Divers, Director of Thought Leadership at LRN. In Part 1, academic life and early professional career. In Part 2, she moves to the corporate world. 
  4. Why should you attend Compliance Week 2022? Find out on this episode of From the Editor’s Desk. Listeners get a $200 discount to CW 2022 with the code Fox200. More here
  5. Join Tom and Jay at ECI Impact 2022. Listeners to this podcast can save 20% off registration
    by entering discount code: TOM20 at checkout.
  6. Welcome back, Sam Rubenfeld.

Tom Fox is the Voice of Compliance and can be reached at tfox@tfoxlaw.com. Jay Rosen is Mr. Monitor and can be reached at jrosen@affiliatedmonitors.com.

Categories
Creativity and Compliance

A Spoonful of Sugar

Where does creativity fit into compliance? In more places than you think. Problem-solving, accountability, communication, and connection – they all take creativity. Join Tom Fox and Ronnie Feldman on Creativity and Compliance, part of the Compliance Podcast Network. In this episode, Tom and Ronnie begin a short series on provocative statements on compliance training and communications, followed by discussion. In this episode, why does a spoonful of sugar in the form of comedy and entertainment make compliance training and communications more engaging and effective.

Resources:

Ronnie Feldman (LinkedIn)
Learnings & Entertainments (LinkedIn)
Ronnie Feldman (Twitter)

Learnings & Entertainments (Website)

60-Second Communication & Awareness Shorts – A variety of short, customizable, quick-hitter “commercials” including songs & jingles, video shorts, newsletter graphics & Gifs, and more. Promote integrity, compliance, the Code, the helpline and the E&C team as helpful advisors and coaches.

Workplace Tonight Show! Micro-learning – a library of 1-10-minute trainings and communications wrapped in the style of a late-night variety show, that explains corporate risk topics and why employees should care.

Custom Live & Digital Programing – We’ll develop programming that fits your culture and balances the seriousness of the subject matter with a more engaging delivery.

Tales from the Hotline – check out some samples.

Categories
Great Women in Compliance

Ellen Hunt – Organizational Justice


Welcome to the Great Women in Compliance Podcast, co-hosted by Lisa Fine and Mary Shirley.
In today’s episode, Lisa speaks with one of the “OG GWICs,” and one of the first interviewees, Ellen Hunt.  Ellen joined Spark Compliance in 2021, and is always a supporter for women in compliance, and in compliance as a whole.  Today, we follow up on her 2021 podcast, where Lisa and Ellen discussed how the E&C profession is addressing retaliation, and the importance of anti-retaliation as part of speaking up.
The main discussion is about organizational justice, and particularly aspects of procedural justice, as this is one where compliance professionals can have a huge impact.  They discuss the concept of consistent discipline and fairness, and what that can mean.   They also discuss when Will Smith slapped Chris Rock at the Oscars telecast from an organizational justice standpoint, and how similar issues play out in corporations.
You can subscribe to the Great Women in Compliance podcast on any podcast player by searching for it and we welcome new subscribers to our podcast.
Join the Great Women in Compliance community on LinkedIn here.

Categories
Blog

The Slap Seen ‘Round the World and Compliance

It was the slap seen ‘round the world. It happened last Sunday night on the televised presentation of the 94thannual Oscars award ceremonies when Will Smith stormed to the stage after comedian Chris Rock made a joke about Smith’s wife’s lack of a full head of hair and, in front of audiences worldwide, delivered a slap to the face of Rock. Smith was incensed that, according to Emily Stedman, the  comedian’s remark that his wife’s shaved haircut was reminiscent of famous film character G.I. Jane. Smith’s wife, Jada Pinkett Smith, has been openly suffering with the hair loss condition Alopecia since 2018.
Smith later won the Best Actor Oscar for his portrayal of Venus and Serena Williams’ father Richard Smith in the movie King Richard. Smith did not apologize for his actions during his acceptance speech and did not do so until “one day on from the altercation. I would like to publicly apologize to you, Chris,” he wrote. “I was out of line and I was wrong. I’m embarrassed and my actions were not indicative of the man I want to be. There is no place for violence in a world of love and kindness.”” Rock’s only statement on the affair to date, according to Nicole Sperling and Julia Jacobs, writing in the New York Times (NYT), has been “I’m still kind of processing what happened,” Mr. Rock said, briefly addressing the topic everyone was talking about. He promised to discuss it in greater depth later. “It’ll be serious, it’ll be funny, but I’d love to — I’m going to tell some jokes.””
Apparently after the incident, the Academy of Motion Picture Arts and Sciences said, “that the actor Will Smith was asked to leave the Oscars ceremony after he slapped Chris Rock onstage Sunday night, but that the actor refused to go.” The Academy did not take any steps to physically remove Smith from the event. What lessons should every Chief Compliance Officer (CCO) and compliance professional draw from this matter?
Workplace Violence
First and foremost, violence at the workplace is never justified. What if this had happened at your office? What would you do? Would you allow the perpetrator of the violence to remain as your employee? I should certainly hope not. What if you are in a state which allows guns to be carried. Do you risk the perpetrator walking up and shooting a co-worker over a joke, in poor taste or otherwise? Unfortunately, workplace violence happens all too often.
What if the person attacked (Rock) did anything to defend themselves? In watching the clip of the slap, you will see Rock kept his hands behind him. What if he had raised his hands to defend himself and then the perpetrator shot him. In the state of Texas and Florida that would probably bring the ‘Stand Your Ground’ defense into play if the perpetrator said he thought the person he was about to attack was going to hit the perpetrator and the perpetrator actually acted to defend himself. You can see how quickly all this can spiral out of control.
Not only should you make clear that violence will never be tolerated at work, but you should use this opportunity to train about underlying causes and red flags of workplace violence. There is clearly history between Smith and Rock, the slap seen ‘round the world did not come out of nowhere. Metal health at the workplace can be as important as physical health. Every CCO should use this opportunity to reassess your company’s overall programs in these areas.
Institutional Justice
What about the Academy of Motion Picture Arts and Sciences decision not to remove Smith from the theater? The Academy was on actual notice that violence had been perpetrated but (apparently) took no action. Another comedian, Wanda Sykes, one of the hosts of Sunday’s telecast, said in an interview with Ellen DeGeneres “that the moment was “sickening” to her and that she thought Mr. Smith should have been escorted from the building instead of being allowed to stay and accept his Oscar.” She went on to add, “For them to let him stay in that room and enjoy the rest of the show and accept his award — I was like, how gross is this? This is just the wrong message.”
The Department of Justice (DOJ) made clear in the 2020 Update to the Evaluation of Corporate Compliance Programs that it expects a CCO and corporate compliance function to be the keepers of Institutional Justice in an organization. One of the tenets of this concept is that all employees must be treated fairly and equally, literally from the Board room to the shop floor. You can bet your bottom dollar that if an employee at the Dolby Theater in Los Angeles where the event was held had slapped an actor (or even a comedian) that employee would be escorted off the premises forthwith. The Academy certainly had the right and power to escort Smith off but failed to do so. Did their actions put Rock at additional risk? Possibly. What about the other attendees? I will leave that to your imagination.
What about actions by the Academy now to sanction Smith for his conduct? According to the NYT article, “The academy said that it had initiated disciplinary proceedings against Mr. Smith “for violations of the academy’s standards of conduct, including inappropriate physical contact, abusive or threatening behavior, and compromising the integrity of the academy.” It said that Mr. Smith would be given a chance to respond and that at its next board meeting, on April 18, it “may take any disciplinary action, which may include suspension, expulsion, or other sanctions.”” Stern stuff, or perhaps not, particularly if the Academy issues a stern statement to Smith “not to do it again.”

Categories
Compliance Into the Weeds

CCO Certification of Compliance Programs

Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. This week, Matt and Tom take at the recent remarks by DOJ Assistant Attorney General Kenneth Polite on CCO certifications of compliance programs after the conclusion of a DPA. Highlights include:

·      Where did this issue come from?

·      Is its implementation looming?

·      What are the implications for individual CCO liability?

·       What about CEO liability for recidivism?

·      What are the corporate governance implications?
Resources 
Text of Kenneth Polite speech

Categories
Blog

Attributes of a Toxic Corporate Culture

Corporate culture is finally being acknowledged as a key ingredient in a successful business, particularly one which operates ethically and in compliance. The Department of Justice (DOJ) formally recognized the need to assess corporate culture in the speech by Deputy Attorney General Lisa Monaco to the ABA White Collar Conference in October 2021. But what are some indicia of good culture and more importantly what are some indicia of a toxic culture? A recent article in the MIT Sloan Management Review provided some guidance. In Why Every Leader Needs to Worry About Toxic Culture, Donald Sull, Charles Sull, William Cipolli and Caio Brighenti posited that by pinpointing the elements of toxic culture in a company, its leaders focus on addressing the issues that lead employees to disengage and quit. These ideas have significant importance for the compliance function as it navigates corporate culture, both in assessing and improving it.
Moreover, the Chief Compliance Officer (CCO) and corporate compliance function were identified in the 2020 Update to the Evaluation of Corporate Compliance Programs as the keepers of institutional justice and institutional fairness. This mean recognizing and then preventing a toxic culture from spreading and infecting your entire organization is squarely in the compliance wheelhouse. The article lays out key red flags for every CCO and compliance professional to look for in assessing culture. Finally, for any company with a toxic culture, the chances are much greater to be defrauded by its own employees or to defraud others through bribery and corruption by violating such laws as the Foreign Corrupt Practices Act (FCPA).
The authors identify behaviors that they call “the Toxic Five attributes”, being “disrespectful, noninclusive, unethical, cutthroat, and abusive – poison corporate culture in the eyes of employees. While organizational culture can disappoint employees in many ways, these five elements have by far the largest negative impact on how employees rate their corporate culture and have contributed most to employee attrition throughout the Great Resignation.” As a CCO or compliance professional you need to be on the watch for them and take steps to remedy them if you see or hear about them.
Non-inclusive Behavior
This is about whether your employees are “treated fairly, made to feel welcome, and included in key decisions.” It is “the most powerful predictor of whether employees view their organization’s culture as toxic. It applies to all demographic groups; “gender, race, sexual identity and orientation, disability, and age.” It can be outright discrimination to the equally invidious but more subtle conflicts of interests of nepotism and playing favorites. The topic of non-inclusiveness includes “terms like “cliques,” “clubby,” or “in crowd” that indicate that some employees are being excluded without specifying why.”
Disrespectful Behavior
The authors found that “feeling disrespected at work has the largest negative impact on an employee’s overall rating of their corporate culture of any single topic.” Lack of respect can occur in many areas. The most obvious is the lack of a speak up culture where employees understand it is useless to raise issues to management; whether serious matters such as FCPA violations to more straight-forward ideas such as process improvement. It can also be something as simple as whether or not to return to the office on a fulltime basis and whether management listens to employees about their desires to continue working from home or utilize some type of hybrid working arrangement. The authors noted, “whether you analyze culture at the level of the individual employee or aggregate to the organization as a whole, respect toward employees rises to the top of the list of cultural elements that matter most.”
Ethical Behavior
The authors believe that ethics “is a fundamental aspect of culture that matters at both the organizational and individual levels.” Interestingly, there are several different aspects to ‘ethics’ that every CCO needs to consider. Unethical behavior is “about integrity and ethics within an organization.” It also includes dishonesty, which “employees described dishonest behavior in many ways”, from outright lying to making false promises to shading the truth to simply “sugarcoating.” Under regulatory compliance employees talked about failure to comply with applicable regulations, including failure around safety standards.
Cutthroat Behavior
I found this category fascinating as it included both uncooperative co-workers and the lack of harmonization across organizational silos. This was not simply “friction in coordination” but situations where “employees talked about colleagues actively undermining one another.” It included what the authors termed as a “vivid lexicon to describe their workplace, including “dog-eat-dog” and “Darwinian” and talked about coworkers who “throw one another under the bus,” “stab each other in the back,” or “sabotage one another.””
Abusive Behavior
Having worked in law firms long ago, I understand abusive behavior. The authors called it “sustained hostile behavior toward employees” including such actions as “bullying, yelling, or shouting at employees, belittling or demeaning subordinates, verbally abusing people, and condescending or talking down to employees.” While one would hope such behaviors do not exist in the 21st century, they apparently still do. 0.8% of the employees surveyed for the article described their manager as abusive, however, when employees did mention abusive managers, it significantly depressed a corporate culture.
What CCOs and compliance professionals should try to drive forward is a “culture that is inclusive, respectful, ethical, collaborative, and free from abuse by those in positions of power.” But the authors caution that these are really the “baseline elements of a healthy corporate culture.” Employees want more than the basics and other stakeholders in an organization want companies to have strong official core values. In an interview with LRN’s Susan Divers, she called it the ‘value in values’. From the compliance professional’s perspective in means values like integrity, collaboration, respectful, and DEI.

Categories
FCPA Compliance Report

Susan Divers on the LRN Ethics & Compliance Program Effectiveness Report


In this episode of the FCPA Compliance Report, I am joined Susan Divers, Director of Thought Leadership at LRN. We discuss recently released LRN Ethics & Compliance Program Effectiveness Report. Highlights in include:

  • What is the LRN Ethics & Compliance Program Effectiveness Report?
  • What does it measure?
  • How is it generated?
  • Why is culture so critical?
  • What are the values in values?
  • What is LRN’s High Performance Premium?
  • What are the roles of managers and leaders?
  • What are the keys to effective training?
  • What will the new normal for compliance programs look like going forward?
  • The issue of culture and values down the road into 2025 and beyond.

Resources
Susan Divers
LRN Ethics & Compliance Program Effectiveness Report

Categories
This Week in FCPA

Episode 296 – the Seeing Green edition


The SEC releases regulations around climate change as Tom take a solo turn to look at some of the week’s top compliance and ethics stories in the Seeing Green edition.

Stories

1.     SEC comes out with climate change regs. Andrew Ross Sorkin in NYTimes Dealbook. Matt Kelly in Radical Compliance. Tom and Matt in Compliance into the Weeds.
2.     SFO spanked again. Andrew Crowley in MLex.
3.     Getting rid of old data critical. Debevoise lawyers in Compliance and Enforcement.
4.     The ‘S’ in ESG. Mike Volkov in Corruption Crime and Compliance.
5.     FINRA and CCO liability. Matt Kelly in Radical Compliance.
6.     IDB debars construction company. Harry Cassin in the FCPA Blog.
7.     First ZTE monitorship ends. Jaclyn Jaeger in Compliance Week (sub req’d)
8.     DOJ raises stakes. Todd Fishman, Noah Brumfield, Eun Woo Jhang and Elaine Johnston in CCI.
9.     Top 6 ESG issues for 2022. Giles Newman in Risk and Compliance Matters.
10.  A Privacy Shield replacement on the horizon? Neil Hodge in Compliance Week(sub req’d) 

Podcasts and More

11.  In March on The Compliance Life, I visit with Audrey Harris, Managing Director at AMI, formerly CCO at BHP. In Part 1, she discussed her academic background and early professional career. In Episode 2, Audrey moved to the CCO chair at BHP. In Episode 3, she moved back to private practice. In Episode 4, she moves to AMI.
12.  Tom has a two part series with Aly McDevitt on her recent Ransomware case study, on Greetings and Felicitations,  Part 1 and Part 2.
13.  Why should you attend Compliance Week 2022? Find out on this episode of From the Editor’s Desk. Listeners get a $200 discount to CW 2022 with the code Fox200. More here.
14.  Tom visits with Pop Hair Art Salon founder, Michele Van Fossen on The Hill Country Podcast.
15.  An undergrad degree focusing on ESG? Jules Oringel explains on the ESG Compliance Podcast.
Tom Fox is the Voice of Compliance and can be reached at tfox@tfoxlaw.com. Jay Rosen is Mr. Monitor and can be reached at jrosen@affiliatedmonitors.com.

Categories
Blog

Sales incentives and Compliance

Sales incentives continue to be an area where Chief Compliance Officers (CCOs) and compliance professionals work refine their compliance regimes. In the 2020 Update to the Evaluation of Corporate Compliance Programs (Update), Incentives and Disciplinary Measures, the Department of Justice (DOJ) stated:

Incentive System — Has the company considered the implications of its incentives and rewards on compliance? How does the company incentivize compliance and ethical behavior? Have there been specific examples of actions taken (e.g., promotions or awards denied) as a result of compliance and ethics considerations? Who determines the compensation, including bonuses, as well as discipline and promotion of compliance personnel?

When considering how a company could use incentives to further a compliance program, and the role of HR in this process, we should also consider how incentives might lead to the converse, as they did in the now-infamous Wells Fargo fraudulent-accounts scandal. When you misalign these two concepts with a faulty sales strategy it can lead to a catastrophic failure, literally costing the company millions of dollars in fines, loss of business, and depreciation of shareholder value.

The sales incentives under which Wells Fargo came to such grief is a simple, and even benign, story of the cross-selling of products. After all, large banks cross-sell their clients all the time, and nobody seems to blink an eye at the cross-selling McDonalds engages in every time you buy a Big Mac when the representative asks if you would like fries with it. Yet there are other reasons for engaging in this type of business practice. Each and every time a company has a touchpoint, particularly a commercial touchpoint, with a business, it strengthens the relationship.

At Wells Fargo, however, what started off as a legitimate, legal and beneficial business strategy became not only high-risk, but illegal because of the manner in which Wells Fargo administered its approach to cross-selling. As with any sales initiative, if a company wants to push cross-selling, it will set up incentives for encouraging the sales team to engage in such behavior. This can be done by increasing commissions around the service or product being emphasized, such as the bank’s products. Companies can also increase sales by making clear that you will be evaluated on how much you sell a product or service. In other words, whether you receive a bonus, pay raise or even keep your job will be evaluated, in some part, on how much you cross-sell.

You can even have a hybrid of the above, which may be the worst of all worlds. At Wells Fargo, employees were evaluated for continuing employment by supervisors on cross-selling. Yet the employees did not receive the same financial incentives as the supervisors to make such cross-selling. Branch managers and supervisors could receive bonuses of up to $10,000 per month for meeting cross-selling quotas, whereas employees who hit their monthly quotas received, in addition to continued employment, $25 gift cards.

What about variable compensation? That is compensation based on alterable factors such as total sales, sales relative to a region, product line or other group. Some of the questions you might ask are: What does your bonus program consist of? Is it corporate performance based? Is it group performance based? Personal as in “eat what you kill”? Or is it some combination of all of the above?

A variable system can also lead to ethics and compliance failures. One reason could be similar to Wells Fargo—very high goals but no direction for employees on how to get there, coupled with a lack of communication between management and line employees, meaning there was raw fear from employees to inform their immediate supervisor of bad news. Conversely, it could be the supervisors who do not want to hear such bad news—for example, if your company has singular focus on numbers, meaning that is the single judge of your worth as an employee. Answering some of these questions if they arise can help you to understand the design of incentive plans and allow monitoring of incentive plans to identify underlying links that may arise through compliance violations.

Whatever your incentive structure, there will be employees who try to game the system. Some will do it with the tacit or explicit approval of management. You, as the CCO, may be required to act.

Categories
Daily Compliance News

March 21, 2022 the CCO Liability Edition


In today’s edition of Daily Compliance News: