Categories
Compliance Tip of the Day

Compliance Tip of the Day: The Importance of Having a Hotline

Welcome to “Compliance Tip of the Day,” the podcast where we bring you daily insights and practical advice on navigating the ever-evolving landscape of compliance and regulatory requirements.

Whether you’re a seasoned compliance professional or just starting your journey, our aim is to provide you with bite-sized, actionable tips to help you stay on top of your compliance game.

Join us as we explore the latest industry trends, share best practices, and demystify complex compliance issues to keep your organization on the right side of the law.

Tune in daily for your dose of compliance wisdom, and let’s make compliance a little less daunting, one tip at a time.

Today, we consider the importance of an organization creating a hotline from the legal and regulatory perspectives.

Categories
FCPA Compliance Report

FCPA Compliance Report: Jag Lamba on Integrating AI with Existing Compliance Systems

Welcome to the award-winning FCPA Compliance Report, the longest running podcast in compliance. In this edition of the FCPA Compliance Report, Tom Fox welcomes back Jag Lamba from Certa AI, the sponsor of this podcast, to consider the integration of AI into your overall compliance framework.

Our discussion emphasizes the importance of using great software to effectively integrate AI into existing processes, systems, and teams. For successful implementation, the software should be both flexible and scalable to suit different organizational needs and volumes. Moreover, the incorporation of guardrails is crucial in areas like third-party compliance due to AI being a relatively new technology. These guardrails function as a framework to prevent excessive autonomy, similar to the limitations set on a new coworker. It is fascinating to look at the cutting-edge use of AI in compliance.

 

Highlights in this Episode:

  • Integrating AI with Existing Systems
  • The Human in the Loop
  • Flexibility and Scalability in Software
  • Key Elements: Guardrails in AI

Resources:

Jag Lamba on LinkedIn

Certa.AI

Tom Fox

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
Blog

Deere’s FCPA Case: Lessons on Gifts, Travel and Entertainment

We recently had a Foreign Corrupt Practices Act (FCPA) enforcement action that reminded me that everything old is new again in anti-corruption compliance. The Securities and Exchange Commission (SEC) FCPA enforcement action involving Deere has bribery schemes that were torn literally from the first decade of the 21st century as they involved gifts, travel, and entertainment. In other words, it was about a low set of hanging fruit that any compliance officer would see. Yesterday, I laid out the broad strokes of the Deere enforcement action. Today, I want to take a multipart look at the case and see what lessons the enforcement action can provide to the 2024 compliance professional.

Between 2017 and 2020, Wirtgen Thailand engaged in a series of corrupt practices aimed at securing government tenders from key agencies, including the Royal Thai Air Force (RTAF), the Department of Highways (DOH), and the Department of Rural Roads (DRR). These practices, including bribery, improper entertainment, and falsifying company records, clearly violated Wirtgen Group’s Code of Business Conduct. The total value of the tenders awarded due to these corrupt practices exceeded $6 million. Below is a detailed account of the amounts paid and the benefits conferred through these illicit activities.

Massage Parlors

Any expense reimbursement request submitted that references a ‘massage parlor’ would immediately raise a Red Flag and be set aside for additional investigation. (And you would be correct.) But in the Deere enforcement action, we had multiple trips for foreign government officials sent to massage parlors.

From late 2017 through 2020, Wirtgen Thailand routinely entertained government officials from RTAF, DOH, and DRR at various massage parlors in Thailand. These expenses were falsely documented as legitimate business costs and often rounded to appear less suspicious. Wirtgen’s Managing Director for Southeast Asia and the Managing Director of Wirtgen Thailand approved these expenses despite company policies that expressly forbid bribery or improper influence.

  1. RTAF. In November 2019 and March 2020, Wirtgen Thailand incurred expenses at massage parlors to entertain high-ranking RTAF officers involved in tender processes. A high-level RTAF officer responsible for drafting and awarding tenders was entertained on multiple occasions, resulting in Wirtgen Thailand winning two tenders in March and April 2020, valued at approximately $665,000.
  2. DOH. Wirtgen Thailand also engaged in similar activities to influence DOH officials. For example, in March 2017, a $15,000 expense was recorded for entertaining 15 members of a DOH tender committee at a massage parlor. Subsequent entertainment expenses, including those in July 2018 and December 2018, continued this pattern. As a result, Wirtgen Thailand secured multiple tenders, including a $2,303,294 tender in December 2018, a $498,567 tender in October 2019, and a $1,451,432 tender in November 2019.
  3. In December 2019, Wirtgen Thailand entertained DRR officials at massage parlors, incurring expenses of approximately $10,000. This effort paid off when DRR awarded Wirtgen Thailand a $1,283,905 tender in April 2020. Notably, two of the four DRR signatories on this tender had received entertainment from Wirtgen Thailand during the December 2019 visit.

In total, Wirtgen Thailand spent over $58,000 on improper massage parlor entertainment for government officials. These expenses were falsely recorded on the company’s books and records, often listed in round numbers with vague descriptions such as “entertainment.” This widespread bribery directly influenced the outcome of several tenders, leading to the award of contracts worth millions of dollars.

Bribery Through a Sightseeing Trip Disguised as a “Factory Visit”

In another scheme, Wirtgen Thailand paid for an elaborate eight-day sightseeing trip for four DOH officials and two of their spouses under the pretense of a “factory visit” to its facilities in Germany. However, the itinerary consisted of luxury sightseeing in Switzerland, with visits to Interlaken, Zermatt, and Lake Lucerne, shopping excursions, and stays in high-end hotels. The total cost of this trip was approximately $47,500.

During this period, Wirtgen Thailand submitted a bid on a DOH tender. After the trip concluded, Wirtgen Thailand was awarded a tender on October 16, 2019, valued at $498,567. A month later, on November 20, 2019, Wirtgen secured another tender worth $1,451,432. The trip and the subsequent awards were orchestrated without following Deere’s internal compliance procedures, which required detailed documentation and prior approval for such visits. The Managing Director for Southeast Asia knowingly approved these expenses, citing the need to “gain information and build rapport” with government customers.

What was wrong with these trips? Basically, everything. What makes all of this even more egregious is that the rules around gifts, travel, and entertainment for clients have long been known since at least 2007, when the Department of Justice (DOJ) issued Opinion Releases 07-01 and 07-02, which detailed the DOJ’s expectations for GTE going forward.

The key elements are:

  1. The purpose of the visit is to familiarize the delegates with the nature and extent of the requestor’s operations and capabilities and to help establish the requestor’s business credibility.
  2. The visit will last four days and will be limited to domestic economy class travel to only one U.S. operations site.
  3. The requestor also intends to pay for the six officials’ domestic lodging, local transport, and meals.
  4. The foreign government plans to pay the costs of the international airfare.
  5. The company did not select the delegates who would participate in the visit.
  6. The company will pay all costs directly to the providers; no funds will be paid directly to the foreign government or the delegates.
  7. The company will not pay any expenses for spouses, family, or other officials’ guests.
  8. Any souvenirs the requestor may provide to the delegates would reflect the requestor’s name and/or logo and be of nominal value.
  9. The Company will not fund, organize, or host any entertainment or leisure activities for the officials, nor will it provide the officials with any stipend or spending money.

Falsification of Records

The expenses related to both the massage parlor entertainment and the sightseeing trip were improperly recorded as legitimate business expenses in Wirtgen Thailand’s books. None of these activities complied with the company’s policies and procedures regarding interactions with government officials. Senior management routinely approved these expenses without adequate scrutiny, bypassing the company’s compliance framework.

As noted above in Opinion Release 07-01, “All costs and expenses incurred by the requestor in connection with the visit will be properly and accurately recorded in the requestor’s books and records.” This means that not only is it a requirement for companies to accurately record their legitimate travel expenses in their books and records, but it is also a separate violation when there is a failure to do so. Deere did not meet this standard.

The total value of the corrupt payments and benefits provided to RTAF, DOH, and DRR officials through these schemes amounted to over $105,500, while the total value of the tenders awarded to Wirtgen Thailand because of these illicit practices exceeded $6 million.

Wirtgen Thailand’s actions highlight a significant breakdown in compliance oversight and internal controls. The deliberate falsification of records and the use of bribery to secure government contracts violated the company’s own Code of Business Conduct and exposed it to severe legal and reputational risks. These events serve as a stark reminder to compliance professionals of the critical importance of robust compliance monitoring and the need for stringent enforcement of anti-bribery policies.

To prevent such violations, companies must ensure that their compliance programs are well-designed and actively enforced, with continuous monitoring to detect and address potential breaches. This case underscores the necessity of a proactive approach to compliance, where ethics and integrity are prioritized at every level of the organization.

Categories
Creativity and Compliance

Creativity and Compliance: Engaging Compliance – From Training to Values

Where does creativity fit into compliance? In more places than you think. Problem-solving, accountability, communication, and connection – they all take creativity. Join Tom Fox and Ronnie Feldman on Creativity and Compliance, part of the award-winning Compliance Podcast Network.

Ronnie’s company, Learnings and Entertainment, utilizes the entertainment devices that people use to consume information in their everyday, non-work lives, and apply it to important topics around compliance and ethics. It is not only about being funny. It is about changing the tone of your compliance communications and messaging to make your compliance program, policies and resources more accessible.

In this episode of ‘Creativity and Compliance,’ Tom and Ronnie discusses recent updates to the Evaluation of Corporate Compliance Programs (ECCP). The focus is on enhancing the effectiveness of compliance training and communication. Key insights include the importance of tailoring training to employees’ needs, interests, and values, and the necessity of frequent, targeted communication to keep employees engaged. The discussion highlights the shift from rule-based to values-based training and explores innovative ways to present content, such as using real-world events or creating engaging dialogues. Additionally, the podcast emphasizes the need for qualitative measures to assess training engagement and underscores the DOJ’s evolving standards that align with effective compliance practices.

Key Highlights:

  • Engaging Compliance Training with Personalized Content
  • Engaging Compliance Training through Real Scenarios
  • Enthusiastic Commitment to Ongoing Dialogue
  • Engaging Human-centric Communication and Training Methods

Resources:

Ronnie

Tom

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
Compliance Tip of the Day

Compliance Tip of the Day: Leveraging Compensation to Drive Compliance

Welcome to “Compliance Tip of the Day,” the podcast where we bring you daily insights and practical advice on navigating the ever-evolving landscape of compliance and regulatory requirements.

Whether you’re a seasoned compliance professional or just starting your journey, our aim is to provide you with bite-sized, actionable tips to help you stay on top of your compliance game.

Join us as we explore the latest industry trends, share best practices, and demystify complex compliance issues to keep your organization on the right side of the law.

Tune in daily for your dose of compliance wisdom, and let’s make compliance a little less daunting, one tip at a time.

Today, your compliance program must fully incentivize compliance and impose consequences for negative actions by senior management.

 

Categories
Blog

2024 ECCP – Embracing Continuous Improvement

In her recent speech at the Society of Corporate Compliance and Ethics 23rd Annual Compliance & Ethics Institute, Principal Deputy Assistant Attorney General Nicole M. Argentieri discussed the Evaluation of Corporate Compliance Programs (2024 ECCP). (A copy of her remarks can be found here.) Today, I want to consider her remarks and the 2024 ECCP on continuous improvement.

Continuous Improvement: A Foundational Pillar

The ability to adapt and evolve is at the heart of any successful compliance program. Deputy Attorney General Lanny Breuer said that in 2009, which is still true today. Continuous improvement ensures compliance programs remain agile and responsive to internal and external pressures. The DOJ’s 2024 ECCP clarified that there is no one-size-fits-all approach to compliance. Instead, companies must tailor their programs to reflect their specific risk profiles, industries, and operational footprints. The three key questions the DOJ asks when evaluating a company’s compliance program are pivotal:

  1. Is the program well-designed?
  2. Is it applied in good faith and adequately resourced?
  3. Does it work in practice?

The answers to these questions must evolve as the company grows, its risk environment changes and new technologies or regulatory frameworks emerge. In other words, continuous improvement should be ingrained in the DNA of the compliance function.

Focus on Emerging Risks and Technology

A critical aspect of the 2024 ECCP update is its emphasis on emerging risks, particularly those related to artificial intelligence (AI) and other disruptive technologies. The DOJ has clarified that prosecutors will closely examine how companies assess and mitigate risks associated with AI and technology-enabled schemes. In an age where AI is increasingly used in business operations, compliance professionals must ensure that their companies are leveraging these technologies ethically and implementing robust controls to monitor for potential misuse.

For instance, as AI systems are deployed in decision-making processes—such as approving financial transactions or conducting due diligence—companies must have mechanisms to validate AI-generated data’s accuracy and reliability. This includes periodic testing, ongoing monitoring, and ensuring that human oversight remains an integral part of the compliance process.

Moreover, continuous improvement in this area involves staying ahead of technological trends. Compliance professionals must regularly update risk assessments for new technological developments, ensuring their controls and policies remain relevant. The ability to proactively manage these emerging risks is a hallmark of a forward-thinking compliance program.

Encouraging a Speak-Up Culture

Another critical update to the ECCP addresses the importance of fostering a “speak-up” culture within organizations. The DOJ’s increased scrutiny of whistleblower protections underscores the need for companies to encourage internal reporting of misconduct without fear of retaliation. Compliance programs must be designed to detect wrongdoing and provide employees with the tools and confidence to report issues when they arise.

Continuous improvement in this area means regularly testing and refining internal reporting mechanisms. Companies should ask themselves: Are our employees aware of how to report misconduct? Do they trust the process? Are we doing enough to protect whistleblowers? The ECCP now explicitly evaluates whether companies have anti-retaliation policies and whether they promote a culture encouraging employees to come forward.

It is also worth noting that companies can earn significant benefits by prioritizing internal reporting. Under the DOJ’s whistleblower pilot program, companies that receive an internal report and then self-disclose misconduct to the DOJ within 120 days can qualify for a presumption of a declination of prosecution. This sends a powerful message that promoting a speak-up culture is the right thing to do and strategically advantageous.

Leveraging Data for Compliance Effectiveness

The 2024 ECCP also strongly emphasizes the role of data in compliance programs. Companies are expected to use data to identify misconduct and assess the effectiveness of their compliance programs. Compliance professionals must ensure adequate access to relevant data sources and the resources to analyze that data effectively.

Continuous improvement in data management involves regularly auditing the sources and quality of data used in the compliance program. Are compliance personnel receiving timely and relevant data? Are there gaps in data collection that could hinder the detection of misconduct? By addressing these questions and implementing the necessary improvements, companies can ensure that their compliance programs function efficiently.

The Power of Adaptation

One of the most insightful aspects of the 2024 ECCP is its focus on learning from past mistakes—whether those mistakes occurred within the company or elsewhere in the industry. The DOJ encourages companies to conduct thorough root cause analyses after incidents of misconduct, using those insights to inform and improve compliance policies and procedures

Incorporating lessons learned into a compliance program is key to continuous improvement. Companies should routinely review their own experiences and external enforcement actions to identify weaknesses and strengthen their controls. For example, a company that uncovers a gap in its third-party due diligence process should take immediate action to address it and prevent similar issues.

Compensation and Clawbacks: A Shift Toward Accountability

Finally, the DOJ’s Compensation Incentives and Clawbacks Pilot Program is another area where continuous improvement can drive compliance excellence. By aligning compensation structures with ethical behavior, companies can incentivize employees to prioritize compliance. The DOJ now requires that compensation systems include criteria for promoting compliance and deterring misconduct, and early indications suggest that this positively impacts corporate behavior.

Continuous improvement in this area means regularly assessing whether the metrics used to evaluate employee performance are aligned with compliance objectives. Companies should also ensure that their compensation structures provide clear consequences for misconduct, such as clawing back bonuses or withholding future compensation from culpable employees.

In 2024 and as we move to 2025, continuous improvement is not a luxury but a necessity. Compliance professionals must remain vigilant, regularly evaluating and updating their programs to address new risks, leverage emerging technologies, and promote a strong culture of ethics. The DOJ’s 2024 ECCP provides a roadmap for how companies can achieve these goals, but the responsibility ultimately falls on compliance professionals to ensure that their programs are well-designed and effective in practice.

As we progress, the key to success lies in our ability to embrace continuous improvement. We must make the necessary investments in compliance to prevent, detect, and remediate misconduct. By doing so, we protect our organizations from legal and financial risk and foster a corporate culture that values integrity and ethical leadership.

Categories
Compliance Tip of the Day

Compliance Tip of the Day: Why Data Access is Key to Compliance Effectiveness

Welcome to “Compliance Tip of the Day,” the podcast where we bring you daily insights and practical advice on navigating the ever-evolving landscape of compliance and regulatory requirements.

Whether you’re a seasoned compliance professional or just starting your journey, our aim is to provide you with bite-sized, actionable tips to help you stay on top of your compliance game.

Join us as we explore the latest industry trends, share best practices, and demystify complex compliance issues to keep your organization on the right side of the law.

Tune in daily for your dose of compliance wisdom, and let’s make compliance a little less daunting, one tip at a time.

Today, we explore why the DOJ will now evaluate whether compliance teams have adequate access to the necessary data to assess the effectiveness of their programs.

Categories
Compliance Tip of the Day

Compliance Tip of the Day: Fostering a Culture of Speak Up

Welcome to “Compliance Tip of the Day,” the podcast where we bring you daily insights and practical advice on navigating the ever-evolving landscape of compliance and regulatory requirements.

Whether you’re a seasoned compliance professional or just starting your journey, our aim is to provide you with bite-sized, actionable tips to help you stay on top of your compliance game.

Join us as we explore the latest industry trends, share best practices, and demystify complex compliance issues to keep your organization on the right side of the law.

Tune in daily for your dose of compliance wisdom, and let’s make compliance a little less daunting, one tip at a time.

Today, we explore how the DOJ has placed significant emphasis on encouraging a culture where employees feel comfortable reporting misconduct.

Categories
Compliance Tip of the Day

Compliance tip of the Day: Embracing Continuous Improvement in Compliance Programs

Welcome to “Compliance Tip of the Day,” the podcast where we bring you daily insights and practical advice on navigating the ever-evolving landscape of compliance and regulatory requirements.

Whether you’re a seasoned compliance professional or just starting your journey, our aim is to provide you with bite-sized, actionable tips to help you stay on top of your compliance game.

Join us as we explore the latest industry trends, share best practices, and demystify complex compliance issues to keep your organization on the right side of the law.

Tune in daily for your dose of compliance wisdom, and let’s make compliance a little less daunting, one tip at a time.

Today, we explore why the DOJ’s emphasis on continuous improvement in compliance programs is a call to action for all of us.

Categories
Innovation in Compliance

Innovation in Compliance: Evie Wentink on Rethinking Compliance

Innovation comes in many areas and compliance professionals need to not only be ready for it but embrace it. Join Tom Fox, the Voice of Compliance, as he visits with top innovative minds, thinkers, and creators in the award-winning Innovation in Compliance podcast.

In this episode, Tom welcomes back Evie Wentink to discuss the importance of rethinking ethics and compliance practices.

Evie shares insights from her recent LinkedIn articles on best practices for ethics hotlines and the importance of finding creative ways to engage employees in compliance topics. She reads a whimsical Dr. Seuss-inspired piece on reaching ethics hotlines and emphasizes the need for compliance messaging to be approachable and engaging. Additionally, Evie discusses the challenges compliance professionals face with limited budgets and offers practical solutions such as leveraging LinkedIn for networking and creating low-cost, effective compliance awareness tools.

The conversation also touches on the significance of changing the narrative around ethics and compliance for younger generations. Evie shares her experiences discussing compliance with her children and highlights the need for better education in schools to prepare future employees. She concludes by mentioning her new website, Ethical Edge Experts, and various platforms she’s using to spread compliance awareness. Tom and Evie agree on the necessity of continuous dialogue and innovation in the compliance field.

Key Highlights:

  • Rethinking Compliance Practices
  • Creative Messaging for Ethics Hotlines
  • Leveraging Low-Cost Resources
  • Engaging Managers in Compliance

Resources:
Evie Wentink on LinkedIn

Evie’s Top 10 Compliance Back to Basics

Tom Fox

Instagram

Facebook

YouTube

Twitter

LinkedIn