Tag: compliance

Categories
Blog

Netflix Acquisition of Warner Brothers: Part 4 – Antitrust, Competition, and the New Regulatory Perimeter

The announcement that Netflix will acquire Warner Bros has ignited debate across the entertainment, technology, and regulatory communities. Some see a natural evolution of the media landscape. Others see a consolidation that will reshape creative, economic, and competitive dynamics for years to come. Regardless of the viewpoint, one truth stands out for compliance professionals: this transaction sits squarely within the new regulatory perimeter. Antitrust and competition authorities worldwide are sharpening their focus on digital ecosystems, algorithmic influence, data concentration, and content distribution power. The Netflix–Warner Brothers combination touches each of these vectors.

Gone are the days when antitrust analysis centered solely on price impacts and market share. Today’s regulators look at ecosystems, not industries. They assess information asymmetries, data leverage, vertical integration, control of distribution channels, and the ability to shape consumer behavior through algorithms. The Netflix acquisition of Warner Bros. will therefore invite scrutiny not only from United States authorities but also from European, Latin American, and Asia-Pacific regulators. For compliance professionals, the real work begins long before the first regulator issues a request for information.

Today, in Part 4, we explore how compliance must support the enterprise in anticipating these questions, preparing robust documentation, and maintaining clarity across all aspects of competition risk.

The Modern Antitrust Landscape Has Changed

For decades, antitrust enforcement was largely predictable. Regulators assessed whether consumers would face higher prices or fewer choices. Digital transformation has rendered that approach insufficient. Several trends shape today’s enforcement environment:

  • Concerns over digital gatekeepers and platform dominance;
  • Data accumulation is viewed as a competitive barrier.
  • Algorithmic influence over consumer decision-making;
  • Transparency expectations for recommendation engines; and
  • Vertical integration across content, distribution, and technology.

Netflix already commands a massive global distribution footprint. Warner Bros. brings world-class content, deep intellectual property reserves, and historical influence. The merger unites distribution power with content scale in a way that few competitors can replicate. Regulators will see this as a significant shift in industry structure.

For compliance professionals, the question is not whether regulators will scrutinize the deal. They absolutely will. The question is how prepared the enterprise will be to demonstrate that it understands and is mitigating competition risks.

Vertical and Horizontal Consolidation Risks

This acquisition presents both vertical and horizontal integration considerations. From a horizontal perspective, Netflix expands its content portfolio by acquiring an iconic studio. From a vertical perspective, Netflix gains control over additional production pipelines, licensing pathways, and distribution relationships.

Regulators increasingly evaluate whether vertical integration enables a company to foreclose competitors. The compliance team must be prepared to articulate why the transaction does not restrict access, inflate licensing costs, or distort downstream markets. Key questions regulators will ask include:

  • Will Netflix prioritize its own platforms to the detriment of competitors?
  • Will Warner Bros. content become less accessible to independent distributors?
  • Will competitors face higher licensing fees?
  • Will Netflix’s data advantage expand in a way that harms competition?

These questions demand more than strategic talking points. They require data, analysis, and ongoing monitoring. Compliance must work hand in hand with legal, antitrust counsel, and business partners to ensure responses are consistent, well-documented, and supported by evidence.

Data Concentration and Algorithmic Reach

One of the most significant competitive issues in the digital era is data concentration. Netflix already possesses deep insights into viewer behavior, content preferences, engagement patterns, and global demand signals. Warner Bros. adds decades of production data, marketing intelligence, performance histories, and talent analytics.

Regulators understand that data is a competitive asset that can create significant barriers to entry. With more data, a company can refine its algorithms, improve personalization, and strengthen its market position in ways that rivals may find difficult to counter. Compliance must therefore help prepare a comprehensive narrative around:

  • How the combined company will safeguard data privacy.
  • How algorithmic decisions will be documented and monitored;
  • How data from both entities will be integrated ethically, and
  • How the company will prevent anti-competitive uses of combined datasets.

A robust data governance program is no longer solely a privacy requirement. It is a competition requirement. Regulators expect companies to demonstrate not only compliant data use but also responsible data stewardship that avoids market distortion.

Obligations for Document Preservation, Monitoring, and Engagement

Antitrust investigations can span years. Regulators typically issue extensive documents and information requests, conduct interviews and depositions, and request economic modeling. Compliance professionals must ensure that the company is ready for this level of scrutiny.

That preparation includes:

  • Document preservation protocols;
  • Centralized communication tracking;
  • Strict guidance on executive communications;
  • Coordination across internal and external counsel; and
  • Clear training for employees on antitrust communication risks.

Failure to preserve documents, even inadvertently, can create major regulatory problems. Compliance must be proactive rather than reactive. Regulators also reward transparency. Early engagement, clear responses, and a willingness to address concerns directly can reduce both the duration and severity of regulatory inquiries. Compliance plays a crucial role in framing the company’s narrative and ensuring consistency.

The Need for a Multijurisdictional Strategy

A single regulator will not review this deal. Netflix and Warner Bros. operate globally, and every major jurisdiction has its own competition laws, unique priorities, and investigative styles. Compliance must support a multijurisdictional engagement strategy by:

  • Mapping regulatory timelines across regions;
  • Ensuring consistency in global responses;
  • Understanding local documentation and reporting requirements;
  • Managing translation, disclosure, and data-sharing protocols; and
  • Monitoring regulatory developments in real time.

The complexity of these interactions requires disciplined internal coordination. Compliance professionals are uniquely positioned to ensure that the enterprise stays aligned, audit-ready, and clear in its messaging.

Preparing for New Regulatory Expectations

Antitrust regulators are expanding their expectations beyond traditional competition analysis. They now examine:

  • Labor market effects;
  • Creative industry concentration
  • Media plurality;
  • Platform neutrality; and
  • Long-term ecosystem impacts

For the entertainment industry, issues such as creator rights, content diversity, and access to distribution channels are becoming increasingly relevant. Compliance must guide senior leadership through these evolving expectations and ensure that integration plans demonstrate responsible stewardship of market influence.

The Compliance Lesson

The Netflix acquisition of Warner Bros. highlights a central truth of modern compliance: the regulatory perimeter expands as corporate influence grows. Antitrust and competition concerns are no longer the exclusive domain of legal or economic experts. They are multidisciplinary issues that intersect with data governance, algorithmic transparency, content distribution, and ecosystem integrity.

Compliance professionals play a critical role in shaping the company’s readiness for regulatory scrutiny, building robust documentation practices, strengthening oversight channels, and ensuring that the enterprise can defend its decisions with clarity and confidence.

The merger of these two storytelling giants is as much a regulatory story as a strategic one. For compliance leaders, this is an opportunity to elevate competition governance, anticipate risk, and demonstrate the value of compliance as both a strategic partner and a regulatory safeguard.

Join us tomorrow, where we bring it all together for Part 5.

Categories
Great Women in Compliance

Great Women in Compliance – Global Corruption Prevention: A View from France

In this episode of Great Women in Compliance, Lisa sits down with Valentina Lana, a Paris-based attorney and ethics & compliance leader who bridges industry and academia.

Valentina shares how an early-career opportunity sparked her passion for anti-corruption work and led her to where she is today.  She has helped build major compliance programs and teaches at Sciences Po.  She worked with Michael Sapin on the Sapin II law and breaks down its core elements for the GWIC audience.  She discusses the requirement for companies to prevent corruption through formal compliance programs—and highlights why risk mapping and third-party due diligence remain the biggest practical challenges for organizations.

Valentina also discusses the evolution of cross-border cooperation between France and the U.S., how trust was built after years of tension, and why she believes that the partnership remains stable despite shifting global priorities. 

She shares her view on AI’s growing role in compliance, emphasizing that AI is a powerful assistant, not a replacement for human judgment, nuance, and interpersonal insight, which remain the core of what we do.

Categories
Blog

Netflix Acquisition of Warner Brothers: Part 3 – Intellectual Property Risk, The Hidden Compliance Battlefield

The Netflix acquisition of Warner Bros brings together two of the largest content ecosystems in the world. The deal has enormous strategic implications, but for compliance professionals, the deeper story lies in the immense web of intellectual property that now shifts under a single roof. Intellectual property is often viewed through a legal or commercial lens, yet it is increasingly a core compliance risk area. When two content giants merge, the IP battlefield becomes larger, more complex, and more consequential for regulatory exposure, operational continuity, and corporate integrity.

In the entertainment industry, intellectual property is not an abstract asset. It is the core of the business model. Every film, series, character, distribution right, piece of music, and residual obligation sits on a foundation of contracts, permissions, and time-bound commitments. These rights govern who may exploit a property, where, for how long, in what format, and under which financial arrangements. A merger like this does more than combine two content catalogues. It overlays two entirely different IP architectures, each with its own legacy practices, risk profiles, and global obligations.

In Part 3, we consider intellectual property risks and compliance risks. Compliance professionals must treat IP integration as a top post-transaction priority. The risks are real. They are operational, regulatory, financial, reputational, and strategic. They are also deeply intertwined with the organization’s ability to distribute content, monetize assets, and avoid disputes that can stall growth and trigger regulatory interest. In the modern entertainment ecosystem, IP governance is compliance governance.

Why IP is a Compliance Issue, Not Just a Legal One

Intellectual property sits at the intersection of law, business strategy, ethics, and risk management. Compliance teams cannot assume that IP risk will be contained within the legal department because the greatest vulnerabilities emerge during operational execution. When teams touch content without a clear understanding of rights limitations, compliance exposure grows quickly.

Several forces make IP a compliance battlefield:

  1. Legacy contracts contain obligations that may conflict with modern distribution models.
  2. Digital rights evolve faster than contracts can be renegotiated.
  3. Cross-border distribution requires alignment with dozens of regulatory frameworks.
  4. Residuals, royalties, and talent agreements require precise reporting and transparency; and
  5. AI-generated content introduces new concerns around derivative rights and authenticity.

Compliance professionals must help bridge the gap between legal interpretation and operational execution, ensuring that content is exploited within the boundaries of contractual and regulatory obligations.

The Merger Magnifies IP Complexity

Netflix brings a vast library of digital-native content governed by modern rights frameworks. Warner Bros brings nearly a century of IP governed by old studio contracts, union agreements, guild rules, and legacy licensing arrangements. When these systems merge, friction is inevitable. For example:

  • Streaming rights for classic properties may be fragmented across multiple regions
  • Some Warner properties may have exclusivity commitments that conflict with Netflix’s global release model
  • Distribution rights may vary by medium: theatrical, linear TV, streaming, DVD, gaming, or merchandising
  • Regional licensing arrangements may prevent automatic global rollout
  • Musical compositions and soundtracks may have rights administered separately from visual content

Each of these scenarios carries compliance implications, particularly when the combined company seeks to monetize its expanded library at speed. Compliance leaders must ensure that content decisions do not inadvertently violate distribution restrictions or contractual limitations. The volume of content makes manual oversight unrealistic. IP governance must therefore become systematic, data-driven, and documented.

Legacy Contracts: The Underestimated Risk

Some Warner Bros. contracts were written in an era long before streaming existed. Terms like “broadcast,” “home video,” or “syndication” may not map cleanly to digital or global distribution.

Compliance professionals must ask:

  • Do legacy contracts implicitly or explicitly cover streaming?
  • Are residual obligations triggered differently under new business models?
  • Do union or guild agreements change with new modes of distribution?
  • Have rights expired or reverted to creators without internal teams realizing it?

Each misinterpretation carries financial and reputational risk. Lawsuits over misused IP are costly, public, and damaging to stakeholder trust. A disciplined compliance approach involves creating a unified contract repository, conducting rights audits, and establishing escalation protocols for ambiguous terms.

The Rise of AI and Deepfakes: A New IP Threat Vector

The integration of two content libraries also raises a newer frontier of IP risk: AI-generated content and deepfake technologies. Netflix and Warner Bros both operate in a world where audiences expect cutting-edge innovation. However, AI-generated content requires strict governance to ensure:

  • It does not violate publicity rights
  • It does not reproduce copyrighted elements without authorization
  • It does not misrepresent actors, characters, or brand assets
  • It does not create derivative works that violate existing licensing arrangements

Regulators are increasingly attentive to the misuse of identity, likeness, and creative assets. Compliance must therefore play a leading role in defining ethical and legal boundaries for AI-assisted content creation.

The combined enterprise will possess one of the largest libraries of visual and audio material in the world, making it a prime target for misuse. Strong controls, watermarking strategies, and documentation of content provenance will be essential.

Auditability Challenges Inside Massive Content Repositories

When content libraries expand to millions of assets, visibility becomes an operational challenge. Compliance leaders must ensure that systems exist to track:

  • Rights ownership
  • Expiration dates
  • Restrictions by territory, language, and platform
  • Licensing limitations
  • Partners and counterparties
  • Historical distribution patterns

Without centralized auditability, well-intentioned teams may release content under the mistaken belief that the company owns full rights.

IP governance systems should include:

  • Digital rights management modules;
  • Automated alerts for expiring rights;
  • A central repository for contract metadata.
  • Integration with project management and release workflows; and
  • Role-based access controls.

Compliance must work alongside legal and technology teams to build infrastructure that prevents inadvertent misuse.

The Compliance Playbook for IP Governance During Integration

To navigate the IP battlefield successfully, compliance professionals should implement a structured approach:

  1. Conduct a comprehensive rights and obligations inventory
  2. Identify gaps, inconsistencies, and high-risk obligations across both legacy portfolios.
  3. Create a unified IP governance framework
  4. Standardize how decisions are documented, escalated, and reviewed.
  5. Align cross-functional teams
  6. Legal, compliance, content development, marketing, and distribution must share a common view of rights limitations.
  7. Train operational teams on rights awareness
  8. Editors, producers, marketers, and technologists need clarity on what they can and cannot use.
  9. Integrate IP governance into strategic decision-making
  10. New productions, remasters, spinoffs, and distribution initiatives should begin with rights verification.
  11. Strengthen third-party oversight
  12. Vendors, contractors, and partners must comply with rights limitations, especially when working with sensitive IP.
  13. Document interpretation decisions
  14. Regulators expect clear evidence that the company acted in good faith and applied consistent judgment.

The Compliance Lesson

The Netflix acquisition of Warner Bros shows why intellectual property is no longer simply a legal or creative asset. It is a compliance domain that carries operational, financial, regulatory, and reputational implications. When two vast content libraries merge, the risk landscape expands dramatically. Compliance professionals must embrace a proactive, system-driven approach to IP governance.

Content becomes an asset only when ownership, permissions, and obligations are fully understood. In a deal of this magnitude, IP governance is not only a hidden battlefield. It is the battlefield that will determine whether the combined enterprise achieves its strategic goals or stumbles under the weight of unanticipated risk. For compliance professionals, this is a moment to elevate IP risk management, strengthen oversight systems, and ensure that creativity and compliance move forward together.

Join us tomorrow for Part 4 as we examine antitrust, competition, and the new regulatory perimeter.

Categories
Blog

Netflix Acquisition of Warner Brothers: Part 2, Culture Clash and Culture Opportunity

When Netflix announced its acquisition of Warner Brothers, some industry observers immediately reached for superlatives. It is rare to witness the merging of two companies that so powerfully define the past and future of entertainment. Netflix represents the digital era’s relentless velocity. Warner Brothers represents a century-long tradition of filmmaking, artistry, and institutional memory. Many analysts have framed this transaction as a battle between new and old Hollywood. For compliance professionals, the more important reality is that culture will determine whether the combined enterprise thrives or falters.

Every acquisition carries cultural implications, but few present such a stark contrast. Netflix’s culture has long been described as radical transparency, high accountability, and a willingness to experiment without fear of failure. Warner Brothers has its own culture, marked by legacy practices, powerful creative guilds, long-standing production hierarchies, and a deep reverence for the studio system. When two creative ecosystems operating on fundamentally different rhythms are forced together, cultural friction is inevitable. The question is not whether tensions will emerge. The question is whether compliance, ethics, and governance leaders recognize the early signals and guide the organization through them.

Today, in Part 2, we explore whether the acquisition will be a clash of cultures or a cultural opportunity. Culture is not a soft concept. It is a compliance risk vector. Culture shapes decision-making, reporting behavior, ethical judgment, and employees’ willingness to raise concerns. Culture determines whether a problem surfaces early or metastasizes quietly. A transaction of this magnitude requires compliance professionals to approach culture not as a slogan to harmonize, but as an operational system that requires disciplined stewardship.

Why Culture Drives Compliance Outcomes in Creative Enterprises

Entertainment companies operate differently from many corporate environments. The creative process is inherently subjective. Decision-making is distributed across talent, producers, executives, and technical teams. Informal norms often guide behavior more powerfully than written policies. In this context, culture determines not only how work gets done but also how risks are managed.

Netflix has built a culture that embraces candid feedback, open decision frameworks, and data-driven experimentation. This environment reduces the risk that ethical concerns remain unspoken because communication channels are normalized around transparency. Warner Brothers, in contrast, operates in a world where relationships, tradition, and lineage carry weight. Legacy contracts, industry customs, and the tacit expectations between studios and talent can influence decisions.

Both cultures have strengths. Both cultures have vulnerabilities. Compliance professionals must understand that the goal of integration is not to erase one culture and impose another. The goal is to create a culture aligned with the company’s values that supports ethical decision-making and enables employees to speak up without hesitation. This is particularly important during a merger, when uncertainty heightens risk.

Two Different Operating Systems

Culture is an operating system. Netflix’s operating system prizes agility and real-time feedback loops. Warner Brothers’ operating system prizes craft, tradition, and continuity. When these systems converge, the risk is not that one replaces the other. The risk is that both weaken simultaneously without strong governance.

Netflix’s rapid decision cycles may clash with Warner Brothers’ structured production processes, where approvals, guild rules, and contractual obligations often slow the pace by design. If Netflix attempts to accelerate processes without a deep understanding of these obligations, compliance risks can emerge quickly, including breached talent contracts, overlooked union requirements, or misaligned production timelines.

Conversely, if Warner Brothers imposes its legacy processes without adapting to the digital and data-driven environment in which Netflix operates, it may undermine the transparent decision-making practices that help identify ethical and operational risks early.

Compliance leaders must act as interpreters between these operating systems. They must help leadership understand where flexibility is an asset and where structure is indispensable. Compliance must also ensure that employees across both organizations understand not only what the combined culture aspires to be, but also why certain controls exist and how they protect both the enterprise and the creative process.

Ethical Decision Frameworks Across Two Creative Ecosystems

Another challenge in cultural integration is aligning ethical decision frameworks. Netflix’s culture is rooted in accountability to metrics and performance outcomes. Warner Brothers’ culture is rooted in long-term relationships with talent, creative guilds, and industry stakeholders. This means the two companies differ in how they make decisions, escalate concerns, and evaluate the risks associated with innovative choices.

Compliance professionals must provide an ethical framework that is consistent, intuitive, and accessible across the enterprise. Employees should know how to evaluate potential conflicts of interest, report concerns, document decisions, and align risk-taking with corporate values.

When a company operates across multiple jurisdictions, creative functions, and regulatory environments, ethical consistency becomes essential. The compliance function must clearly articulate expectations repeatedly, using training, leadership engagement, and storytelling to reinforce behaviors that support integrity.

Early Indicators of Cultural Strain

Cultural tension is predictable in a transaction of this scale. The key is not to prevent tension but to identify it early. Compliance professionals should monitor indicators such as:

  • Decreased willingness to speak up;
  • Increased turnover in specific departments;
  • Divergent interpretations of policies between legacy teams.
  • Informal decision-making that bypasses established controls; and
  • Escalation patterns that shift without explanation.

These signals are rarely obvious to senior leadership unless compliance highlights them. Regular cultural risk assessments, pulse surveys, and qualitative interviews help the compliance function stay ahead of emerging conflict zones. Culture is dynamic, and risk velocity increases when expectations are unclear.

Building a Unified Culture Through Transparency and Accountability

Culture integration must be intentional. It cannot be delegated to internal communications or left to evolve without direction. Compliance leaders should work alongside HR, legal, and integration management to define the key elements of a unified culture.

This may include:

  • A consolidated code of conduct that reflects both creativity and accountability;
  • Standardized reporting channels that work across all business units;
  • Leadership models that bring together Netflix’s transparency and Warner Brothers’ collaborative ethos;
  • Clear explanations of why controls exist and how they support the creative process; and
  • Renewed emphasis on ethics as a competitive advantage.

Transparent communication is essential. Employees need to know why the organization is making certain cultural choices, what is expected of them, and how they can raise questions without fear.

The Compliance Lesson

The Netflix acquisition of Warner Brothers reveals a timeless truth: culture determines compliance outcomes. When two creative powerhouses join forces, the opportunity is immense, but the risk is equally significant. Compliance professionals must approach cultural integration with the same rigor they apply to regulatory integration or third-party risk management. Culture is not ornamental. It is operational. It is the foundation upon which speak-up behavior, ethical judgment, and internal trust are built.

If governance is the anchor of a merger, culture is the current that either carries the organization forward or pulls it off course. For compliance leaders, this is the moment to step forward, shape expectations, and ensure that the convergence of two storytelling giants becomes a model of ethical integration rather than a cautionary tale.

Join us tomorrow in Part 3, where we will consider the intellectual property risk, which could well be the hidden compliance battlefield going forward.

Categories
10 For 10

10 For 10: Top Compliance Stories For the Week Ending December 6, 2025

Welcome to 10 For 10, the podcast that brings you the week’s Top 10 compliance stories in one podcast each week. Tom Fox, the Voice of Compliance, brings you the compliance stories you need to know to end your busy week. Sit back, and in 10 minutes, hear about the stories every compliance professional should be aware of from the prior week. Every Saturday, 10 For 10 highlights the most important news, insights, and analysis for the compliance professional, all curated by the Voice of Compliance, Tom Fox. Get your weekly filling of compliance stories with 10 for 10, a podcast produced by the Compliance Podcast Network. 

This week’s stories include:

  • The US lost over $29bn to fraud, waste, and abuse in Afghanistan. ⁠(USA Today⁠)
  • Does AI portend the end of the law/consulting firm pyramid? ⁠(FT⁠)
  • Will a Civility Oath make lawyers more civil?  ⁠(Reuters)⁠
  • What is the environmental cost of corruption? ⁠(BBC)⁠
  • Lane Kiffin should be nowhere near Ole Miss football. ⁠(WSJ⁠)
  • Police detain former EU top diplomat. ⁠(FT)⁠
  • Massive fraud in aircraft parts uncovered in the UK. ⁠(The Times⁠)
  • Switzerland charges Credit Suisse over Tuna Bond fraud. ⁠(ACAMS)⁠
  • Corruption scandals impact the Chinese Army.  ⁠(Reuters)⁠
  • Former Labour PM convicted of corruption in Bangladesh. ⁠(Independent)⁠

You can check out the Daily Compliance News for four curated compliance and ethics-related stories each day, ⁠here⁠.

Connect with Tom 

⁠Instagram⁠

⁠Facebook⁠

⁠YouTube⁠

⁠Twitter⁠

⁠LinkedIn⁠

You can purchase a copy of my new book, Upping Your Game, on ⁠Amazon.com.⁠

Categories
Compliance Tip of the Day

Compliance Tip of the Day – M&A-Pre-Acquisition: Final Lessons

Welcome to “Compliance Tip of the Day,” the podcast that brings you daily insights and practical advice for navigating the ever-evolving landscape of compliance and regulatory requirements. Whether you’re a seasoned compliance professional or just starting your journey, we aim to provide you with bite-sized, actionable tips to help you stay on top of your compliance game. Join us as we explore the latest industry trends, share best practices, and demystify complex compliance issues to keep your organization on the right side of the law. Tune in daily for your dose of compliance wisdom, and let’s make compliance a little less daunting, one tip at a time.

This week, we looked at the role of compliance in the pre-acquisition phase of a merger and acquisition. We wrap it all up for you.

For more on this topic, check out The Compliance Handbook: A Guide to Operationalizing your Compliance Program, 6th edition, which LexisNexis recently released. It is available here.

Categories
Compliance and AI

Compliance and AI: Navigating the Challenges and Opportunities of Agentic AI in Compliance

What is the intersection of AI and compliance? What about Machine Learning? Are you using ChatGPT? These questions are just three of the many we will explore in this cutting-edge podcast series, Compliance and AI, hosted by Tom Fox, the award-winning Voice of Compliance. Today, the Everything Compliance gang, led by Dr. Hemma Lomax, is considering how to navigate the challenges and opportunities of agentic AI in compliance.

In this episode, we explore the rapidly evolving landscape of Agentic AI and its implications for compliance professionals. Agentic AI, defined as AI that acts autonomously rather than just responding to prompts, presents both significant opportunities and challenges. The technology can optimize risk management and compliance workflows, but it also introduces complexities around accountability, transparency, and oversight. We discuss recent real-world examples of Agentic AI in use, such as in banks and tax agencies, and highlight potential risks, including autonomous collusion and AI agents making unethical decisions. The episode emphasizes the need for compliance teams to shift from monitoring human activities to overseeing intelligent systems, ensuring the establishment of proper guardrails. We also delve into new roles emerging in this landscape, such as AI ethics coaches and agent supervisors, and the importance of human intervention to verify AI decisions. Join the discussion to understand how to navigate this transformative technology responsibly and effectively.

Key highlights:

  • Defining Agent AI
  • Implications for Compliance and Ethics
  • Challenges and Risks of Agent AI
  • Real-Time Compliance and Risk Management
  • Human Oversight and AI Governance

Resources:

Tom Fox

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
Compliance Tip of the Day

Compliance Tip of the Day – M&A-Pre-Acquisition: Reviewing Financial and Operational Data

Welcome to “Compliance Tip of the Day,” the podcast that brings you daily insights and practical advice for navigating the ever-evolving landscape of compliance and regulatory requirements. Whether you’re a seasoned compliance professional or just starting your journey, we aim to provide you with bite-sized, actionable tips to help you stay on top of your compliance game. Join us as we explore the latest industry trends, share best practices, and demystify complex compliance issues to keep your organization on the right side of the law. Tune in daily for your dose of compliance wisdom, and let’s make compliance a little less daunting, one tip at a time.

We continue our look at the role of compliance in the pre-acquisition phase of a merger and acquisition. Today, we consider how to look for red flags in financial and operational data.

For more on this topic, check out The Compliance Handbook: A Guide to Operationalizing your Compliance Program, 6th edition, which LexisNexis recently released. It is available here.

Categories
Blog

Millicom Cellular, Part 2: Lessons Learned on Cartels, Cash, and Control Failures

The Millicom Cellular FCPA enforcement action is not just another FCPA case. It is a case that signals a new frontier for compliance risk. It blends classic corrupt-payment schemes with organized crime, narcotrafficking proceeds, obstructed governance, and aggressive legislative capture. It is a wake-up call for compliance officers that the threat landscape is expanding in ways that require deeper operational controls, broader due diligence frameworks, and more sophisticated cross-functional collaboration.

In Part 1, we considered the underlying facts and FCPA violations of this matter. In Part 2, we examine what compliance professionals must take away from the case.

Lesson 1: Joint-Venture Governance Failures Are Not a Defense

Millicom Cellular held a 55 percent ownership stake in TIGO Guatemala, but the local partner exercised operational control and blocked Millicom Cellular from information and cooperation. The DOJ notes that Millicom Cellular voluntarily disclosed early concerns in 2015 but was unable to compel cooperation from local executives or obtain complete data. The result is a clear message:

Ownership without operational control equals enormous FCPA exposure.

Compliance professionals must:

  • Implement JV governance protocols that require access rights, audit rights, and cooperation language in shareholder agreements. Try to place your company’s representative as the CFO of the joint venture.
  • Establish escalation pathways if a partner obstructs investigations.
  • Treat “majority ownership without control” as a high-risk structure in compliance risk assessments.

Yet notwithstanding the foregoing, DOJ has made clear it will not accept a lack of control as an excuse for failing to detect corruption, especially when red flags are visible.

Lesson 2: Cash-Based Bribery Ecosystems Require a Different Kind of Monitoring

The bribery scheme ran almost entirely on cash: cash in duffel bags delivered by helicopter, cash laundered through drug traffickers, cash moved through shell companies, and cash withdrawn from banks in plastic bags. Traditional financial controls are almost useless in the face of an off-books cash economy. Compliance must be enhanced:

  • Controls around cash withdrawals
  • Monitoring of cash-intensive vendors
  • Patterns of invoicing irregularities
  • Real-time analytics on deviations in expense and procurement behavior

This is not a theoretical exercise. It is an operational reality for companies in high-risk jurisdictions.

Lesson 3: Cartel Exposure Is Emerging as a Corporate Compliance Obligation

This case represents one of the most explicit linkages between FCPA violations and narco-trafficking cash flows. The scheme not only involved bribes; it also involved bribes financed by organized crime. Compliance officers must now assume that criminal networks may view legitimate multinationals as conduits for illicit financial flows. This demands:

  • Enhanced beneficial-ownership checks
  • Screening for cartel-linked financial intermediaries
  • Deeper diligence on bankers, lawyers, and consultants
  • Country-level threat mapping that includes cartel and organized crime indicators

The DOJ has increasingly emphasized convergence risk between corruption, money laundering, and organized crime. The Millicom Cellular enforcement action is a prime example.

Lesson 4: “Influencing Legislation” Is a Red Flag, Not a Business Strategy

TIGO Guatemala sought legislative outcomes that would alter the national telecom law. That in itself is not illegal. What is unlawful is tying legislative outcomes to cash bribes, helicopter deliveries, and cartel-funded transactions. Compliance teams must scrutinize:

  • Payments to lobbyists, political consultants, and intermediaries
  • Relationships with legislators and political parties
  • Sponsorships, charitable donations, and community programs with political beneficiaries

Any effort to “shape legislation” must come with strict controls.

Lesson 5: Data Gaps Are Compliance Gaps

Millicom’s inability to obtain information access within its own joint venture delayed detection and undermined the credibility of its initial self-disclosure. Compliance professionals must demand:

  • Rights to data
  • Rights to conduct investigations
  • Rights to interview employees
  • The right to require cooperation from partners

A partner who denies access creates liability.

Lesson 6: Remediation Must Be Conducted Like a Corporate Transformation

Millicom’s remediation was extensive. It included:

  • Replacing senior personnel
  • Centralizing compliance oversight
  • Enhancing third-party onboarding and continuous monitoring
  • Adding data analytics
  • Conducting control testing across more than 250 transactions
  • Creating an ephemeral-messaging retention policy
  • Increasing compliance headcount by 800 percent (pages 5–6)

The DOJ’s description reads less like remediation and more like organizational reinvention. That is the expectation now. Compliance must treat remediation as a fully integrated operational overhaul.

Lesson 7: The DOJ Will Reopen Cases When New Evidence Emerges

The DOJ initially closed the investigation in 2018. It reopened the case in 2020 after uncovering new evidence from outside sources, including cartel-linked transactions. The message is clear:

  • Self-disclosure is not a shield when the company lacks visibility into misconduct.
  • Failure to detect ongoing wrongdoing can undermine trust and credit for cooperation.
  • Compliance must ensure continuous monitoring even after perceived risk has been reduced.

Conclusion: The New Compliance Mandate

The Millicom Cellular enforcement action demonstrates that compliance risk is no longer confined to corrupt payments. It now involves organized crime, cash-based bribery systems, cross-border laundering, political capture, and governance obstructions. Compliance professionals must operate with a broader risk lens, encompassing cartel risk, cash-economy vulnerabilities, high-risk political interactions, and joint-venture control structures. This is a key enforcement effort of the Trump Administration.

The future of compliance is not about preventing bribery alone. It is about defending the corporation from becoming an unwitting partner in a criminal enterprise.

Categories
Compliance Tip of the Day

Compliance Tip of the Day – M&A-Pre-Acquisition: Evaluating Compliance Program and Culture

Welcome to “Compliance Tip of the Day,” the podcast that brings you daily insights and practical advice for navigating the ever-evolving landscape of compliance and regulatory requirements. Whether you’re a seasoned compliance professional or just starting your journey, we aim to provide you with bite-sized, actionable tips to help you stay on top of your compliance game. Join us as we explore the latest industry trends, share best practices, and demystify complex compliance issues to keep your organization on the right side of the law. Tune in daily for your dose of compliance wisdom, and let’s make compliance a little less daunting, one tip at a time.

We continue our look at the role of compliance in the pre-acquisition phase of a merger and acquisition. Today, we consider why and how to evaluate a target’s program and culture.

For more on this topic, check out The Compliance Handbook: A Guide to Operationalizing your Compliance Program, 6th edition, which LexisNexis recently released. It is available here.