Tag: compliance

Categories
Blog

The Ultimate Computer: Five Essential AI Governance Lessons from Star Trek

One of Star Trek’s enduring gifts to corporate compliance professionals is its willingness to ask: What happens when innovation runs ahead of governance? Nowhere is this question more provocatively posed than in the classic episode “The Ultimate Computer.” As Captain Kirk and the Enterprise crew test the revolutionary M-5 computer—a prototype artificial intelligence designed to automate starship operations—they find themselves on a collision course with the ethical, operational, and human dilemmas of entrusting machines with decisions without proper oversight.

As we enter an era where artificial intelligence is no longer science fiction but a business reality, “The Ultimate Computer” is required viewing for every compliance officer and governance professional. The episode’s hard lessons about control, accountability, and the limits of machine logic remain as relevant in today’s boardrooms as they were on Gene Roddenberry’s bridge.

Today, we explore five AI governance lessons, each grounded in unforgettable moments from “The Ultimate Computer” that every compliance team should consider as they guide their organizations through the brave new world of AI.

Lesson 1: Human Oversight Is Irreplaceable—AI Needs Accountable Stewards

Illustrated By: Dr. Richard Daystrom, the M-5’s creator, insists that his AI can run the Enterprise more efficiently than its human crew. He disables manual controls, leaving the starship and its fate entirely in M-5’s digital hands. When things go wrong, Kirk and his crew struggle to regain control as M-5 begins to operate independently, with catastrophic results.

Compliance Lesson: Too often, organizations are tempted to turn complex decisions over to AI, assuming that algorithms can “do it all.” But “The Ultimate Computer” makes one fact clear: even the smartest AI requires ongoing, independent human oversight. Without it, errors go unchecked and responsibility becomes dangerously diffuse.

Corporate boards, executives, and compliance officers must ensure that all AI systems, especially those with critical business or safety functions, are subject to robust oversight. This includes clearly defined roles for monitoring, intervention, and (crucially) the ability to override the machine. Establish an AI governance framework that requires periodic human review, real-time tracking, and escalation procedures for intervention. Always preserve the “off switch.”

Lesson 2: Understand Your AI—Transparency and Explainability Are Non-Negotiable

Illustrated By: As M-5 takes control, it makes a series of decisions that the crew can’t understand. When the computer begins attacking other ships during a training exercise, killing crew members in the process, no one knows why, because M-5’s reasoning is a black box even to its creator, Daystrom.

Compliance Lesson: AI systems, especially those built with deep learning or complex algorithms, can be notoriously opaque. If even your developers can’t explain how decisions are made, you’re courting disaster. “The Ultimate Computer” demonstrates the dangers of unexplainable AI: when the stakes are high, opacity erodes trust and prevents timely intervention.

Modern AI governance must demand explainability and transparency, particularly for systems that make or recommend decisions in compliance, risk, HR, or other regulated domains. You must be able to audit, understand, and document how your AI reaches its conclusions. Mandate that all critical AI deployments include documentation of model logic, data sources, and decision-making pathways. Require “explainable AI” solutions for high-risk use cases, and build audit trails for regulatory scrutiny.

Lesson 3: Build in Ethics from the Start—Programming Without Principles is Perilous

Illustrated by Daystrom, who uploads his engrams—his personality and values—into M-5, believing that this will imbue the AI with human ethics. But he fails to account for his unresolved traumas and emotional instability, which are replicated and magnified by M-5, leading to dangerous, unethical decisions.

Compliance Lesson: AI reflects not just the data it’s trained on, but the biases and blind spots of its creators. If you fail to embed clear ethical guidelines, guardrails, and values into your systems from the beginning, you risk unleashing “rogue AI” that optimizes for the wrong outcomes or perpetuates bias at scale.

AI governance is not just a technical challenge; rather, it is an ethical mandate. Involve compliance, legal, DEI, and other stakeholders in the design phase to ensure your systems align with your organization’s values and regulatory obligations. Establish cross-functional AI ethics committees to review training data, test for bias, and define the acceptable uses and limitations of AI. Document decisions and revisit them regularly as your business and regulatory landscape evolve.

Lesson 4: Test and Validate Continuously—Don’t Assume, Verify

Illustrated By: Before full deployment, M-5 is tested only in limited scenarios. When exposed to the complexity and unpredictability of real-space maneuvers, the system’s flaws become evident only after it’s too late. The lack of ongoing testing and validation costs lives and nearly destroys the Enterprise.

Compliance Lesson: No AI system should be considered “finished” on launch day. The real world is infinitely complex and ever-changing, and AI systems can degrade, drift, or encounter unanticipated circumstances. “Set it and forget it” is not an option in AI governance.

Organizations must commit to ongoing validation, testing, and recalibration of all critical AI systems to ensure their reliability and effectiveness. This includes stress-testing under simulated “edge cases” and periodic audits against evolving compliance and risk standards. Develop a continuous monitoring and testing protocol for AI, including regular scenario-based drills, compliance checks, and real-world audits to ensure adequate oversight. Implement “red team” exercises to identify vulnerabilities and unintended consequences.

Lesson 5: Assign Clear Responsibility—Accountability Can’t Be Delegated to a Machine

Illustrated By: As M-5’s rampage escalates, command responsibility is unclear. Daystrom blames the system, the system blames its programming, and the Starfleet brass threatens to destroy the Enterprise. Ultimately, it falls to Kirk to reassert human command and take responsibility for the ship’s fate.

Compliance Lesson: AI is a tool, not a scapegoat. Assigning accountability to a system erodes trust and undermines compliance. In the end, someone must always be responsible for decisions made “by the computer.” Regulators, investors, and the public will not accept “the algorithm did it” as a defense.

Every AI deployment must have designated human owners—individuals or teams empowered (and required) to monitor, question, and take responsibility for outcomes. Define roles and responsibilities for AI oversight in policies and procedures. Assign an accountable executive (“AI owner”) for each critical system and ensure they have the necessary authority and training to perform their duties effectively.

Final ComplianceLog Reflections

The Ultimate Computer” ends with Kirk reclaiming command, but not before costly lessons are learned. For today’s compliance and governance professionals, the message is clear: you can’t outsource accountability, ethics, or oversight to a machine. As AI reshapes our organizations, we must lead with principles and prepare for the unexpected.

AI may be the “ultimate computer,” but governance remains the ultimate human challenge. As you chart your course through this new frontier, let the lessons of Star Trek remind you: the best technology serves humanity, not the other way around.

Resources:

Excruciatingly Detailed Plot Summary by Eric W. Weisstein

MissionLogPodcast.com

Memory Alpha

Categories
Blog

Rethinking Compliance: Practical Steps for Adapting to the UK’s New Failure to Prevent Fraud Legislation

The introduction of the Economic Crime and Corporate Transparency Act 2023, specifically the offense of failure to prevent fraud (FTPF), takes effect on 1 September 2025. Every US company doing business in the UK or with UK companies must be aware of this law and its implications for them. The jurisdiction is as broad as or even broader than the US Foreign Corrupt Practices Act (FCPA). Corporate compliance professionals are finding themselves in uncharted territory with this new legal framework, requiring a thorough understanding of how this legislation applies and how it can potentially reshape their compliance strategies. Fortunately, the UK government has put out a document entitled “Economic Crime and Corporate Transparency Act 2023: Guidance to organisations on the offence of failure to prevent fraud.” (The Guidance) Over the next several blog posts, I will explore the Guidance and its implications for US-based compliance professionals.

The FTPF introduces corporate criminal liability for large organizations where an associated individual commits fraud, intending to benefit the organization or its clients. This represents a seismic shift for corporate compliance programs because senior management does not need to have ordered or even been aware of the fraud for liability to attach. The very act itself, if proven to benefit the organization or its clients, triggers organizational accountability.

Which companies exactly fall under this statute? The scope applies specifically to large organizations, defined as incorporated entities or partnerships that meet at least two of the following criteria: having more than 250 employees, a turnover exceeding £36 million, or total assets exceeding £18 million. This definition intentionally includes subsidiaries and partnerships within its ambit, casting a wide net for compliance oversight.

The Guidance clearly defines the types of fraud included under the new offense. These base fraud offenses include fraud by false representation, failing to disclose information, abuse of position, false accounting, cheating the public revenue, and fraudulent trading. Organizations must now look beyond mere regulatory adherence to proactive fraud detection and prevention strategies, given the broad spectrum of fraud covered.

The term “associated person” is critical. It extends beyond employees and explicitly includes agents, subsidiaries, or any other persons providing services for or on behalf of the organization. The Guidance notably excludes those merely supplying goods, emphasizing service relationships as the core focus. Understanding the depth and breadth of these associations will require enhanced due diligence processes, rigorous vetting of service providers, and a fundamental re-evaluation of contractual relationships.

Territoriality is another aspect that compliance professionals must closely evaluate. The offense holds a distinct UK nexus; thus, fraud committed by associated persons must either occur in the UK or involve gains or losses realized within UK boundaries. This global perspective on compliance places significant responsibility on UK-based operations with international associations and activities.

Notably, the Guidance outlines scenarios to clarify ambiguities. Consider, for instance, the fraud committed by the payroll department, which diverted employee pension funds to support other internal projects. Here, the payroll head abuses their position of trust to commit fraud intended to benefit the company’s operations. Even if no senior manager or director was aware of the fraud, the company could still face prosecution under this legislation unless it has demonstrably reasonable procedures in place to prevent such fraud.

In terms of defensive mechanisms, the guidance emphasizes the implementation of “reasonable fraud prevention procedures.” This implies that corporations must adopt tailored compliance systems that consider the specific risks associated with their industry, size, and operational territories. Simply having generic fraud detection tools will likely fall short of satisfying this legal standard. Instead, robust, proactive, risk-specific compliance measures, supported by ongoing training and review, become non-negotiable.

The Serious Fraud Office will lead investigations into the FTPF, and the Crown Prosecution Service will handle any courtroom work. An interesting aspect here is the possibility of Deferred Prosecution Agreements (DPAs) in England and Wales, suggesting that organizations may negotiate terms if fraud prevention measures were deemed insufficient initially but have since been significantly improved.

The Guidance emphasizes the importance of corporate cooperation with enforcement authorities. Organizations that demonstrate transparent reporting, proactive fraud detection efforts, and comprehensive preventive frameworks are likely to receive more favorable prosecutorial discretion and may be eligible for DPAs.

From a compliance perspective, understanding intent to benefit is crucial. The Guidance explicitly notes that even indirect or unrealized benefits to the organization, such as a failed attempt to attract investors through false accounting, could trigger liability. The intent to benefit need not be the primary motivation; any incidental or indirect benefit, financial or otherwise, places the organization at risk. Compliance programs must thus anticipate, monitor, and mitigate even seemingly remote risks.

This guidance represents not only a legal shift but also a call for a cultural transformation within corporations. Compliance professionals must foster an environment where ethical practices are embedded, whistleblowers are supported, and robust prevention frameworks are continuously evaluated and strengthened.

Key Highlights for Corporate Compliance Professionals:

  1. Understand the expanded scope of corporate liability and who qualifies as an associated person.
  2. Clearly identify the specific types of fraud covered under the Act.
  3. Implement tailored and robust fraud prevention procedures.
  4. Recognize the importance of territorial considerations for global operations.
  5. Foster a proactive and ethical organizational culture, supported by strong whistleblowing protocols.

The Economic Crime and Corporate Transparency Act 2023 mandates a higher degree of vigilance, proactive risk management, and cultural alignment with anti-fraud values. Organizations failing to adapt swiftly to this evolving compliance landscape risk severe financial penalties, reputational damage, and operational disruption. Forward-looking compliance professionals will seize this moment to reinforce corporate integrity, safeguard organizational reputation, and ensure lasting resilience against fraud.

The Guidance provides an entire section on compliance with the FTPF. Join us tomorrow as we take a deep dive into its prescripts.

Categories
Compliance Tip of the Day

Compliance Tip of the Day – Compliance Responses to Design Intelligence

Welcome to “Compliance Tip of the Day,” the podcast that brings you daily insights and practical advice on navigating the ever-evolving landscape of compliance and regulatory requirements. Whether you’re a seasoned compliance professional or just starting your journey, our goal is to provide you with bite-sized, actionable tips to help you stay ahead in your compliance efforts. Join us as we explore the latest industry trends, share best practices, and demystify complex compliance issues to keep your organization on the right side of the law. Tune in daily for your dose of compliance wisdom, and let’s make compliance a little less daunting, one tip at a time.

Today, we consider how CCOs and compliance programs need to respond to design intelligence.

For more information on this topic, refer to The Compliance Handbook: A Guide to Operationalizing Your Compliance Program, 6th edition, recently released by LexisNexis. It is available here.

Categories
Great Women in Compliance

Great Women in Compliance – The Compliance Pre-Mortem: Together We Can Do Hard Things Well with Jonathan Aronie

This GWIC episode features a “Great Gentleman in Compliance,” Jonathan Aronie, a leading expert in government investigations and organizational integrity at Sheppard Mullin. Jonathan joins GWIC co-host Hemma Lomax to discuss his career journey, the innovative compliance tool known as the compliance pre-mortem, and the importance of proactive measures in compliance and governance. He also emphasizes the significance of active bystander intervention programs, derived from law enforcement, as highly effective tools for preventing misconduct in organizations. Additionally, Jonathan offers insights into the challenges and benefits of compliance programs, highlighting the need for continuous improvement and strategic empathy in these efforts.

  • The Psychology of Preventative Compliance
  • The ROI of Compliance and Integrity
  • The Concept of Pre-Mortem in Compliance
  • Common Risks and Blind Spots in Compliance
  • Active Bystander Programs vs. Compliance Hotlines
  • Lessons in Compliance and Culture from Policing
  • Building Continuous Improvement Frameworks
 

Biography

Jonathan Aronie is a partner in and the former leader of the firm’s Governmental Practice, resident in Washington, DC. Jonathan is also a founding member and current leader of the firm’s Organizational Integrity Group, a cross-disciplinary team of litigators, regulatory specialists, federal monitors, and ex-prosecutors with extensive experience helping organizations prevent and defend against challenges to their organizational integrity. 

Areas of Practice

Jonathan counsels and represents large and small businesses in some of the country’s most prominent classified and unclassified government contract matters, including bid protests, claims, self-disclosures, internal investigations, Department of Justice investigations, and False Claims Act investigations. As the leader of the firm’s Organizational Integrity Group, Jonathan also dedicates significant time to working with clients to identify and mitigate known and unknown risks before they become problems.

Jonathan’s experience includes litigating under the qui tam provisions of the False Claims Act, conducting early risk-based “legal pre-mortems,” developing and implementing corporate compliance programs, conducting internal investigations (proactive and defensive), and providing advice on the FAR Mandatory Disclosure Rule as well as a variety of federal regulatory and statutory matters. He frequently represents clients before the DOJ, the Government Accountability Office, the General Services Administration, and other defense and civilian agencies. Additionally, Jonathan is cleared at the highest levels and counsels and defends clients in classified matters.

Jonathan has authored more than 100 articles and co-authored what is regarded by many as the leading treatise on the GSA Multiple Award Schedule Program, published by Thomson Reuters. He is a regular speaker at national and international forums, as well as CLE programs, including government-sponsored symposia. He is a regular presenter at Coalition for Government Contracting programs and served on the ABA Task Force that drafted guidance regarding the FAR Mandatory Disclosure Rule.

https://www.sheppardmullin.com/jaronie

Resources

Sheppard Mullin’s Organizational Integrity Group

Active Bystandership for Law Enforcement

Everyone Benefits When An Ethics & Compliance Program Is Integrated Throughout An Organization. By: Jonathan Aronie,

Jonathan Aronie on LinkedIn

Categories
Trekking Through Compliance

Trekking Through Compliance: Episode 52 – Five Cross-Cultural Compliance Lessons from “The Omega Glory”

As compliance professionals, we often talk about global organizations “boldly going” where few have gone before, into new markets, unfamiliar territories, and diverse cultures. But what happens when the culture you find is fundamentally different, yet disturbingly familiar? Star Trek’s “The Omega Glory” is one of the original series’ most controversial and fascinating explorations of cross-cultural misunderstanding, bias, and the search for common ground.

For the modern compliance officer, “The Omega Glory” is more than just a Star Trek curiosity. It’s a primer on the perils and potential of cross-cultural communication and a reminder that misunderstanding and ethnocentrism can undermine even the most well-intentioned mission.

Lesson 1: Don’t Assume Your Culture’s Symbols or Values Are Universal

Illustrated By: The Yangs hold these objects sacred but have lost the original meaning, reciting “freedom” and “justice” without understanding them.

Compliance Lesson: In global business, it is all too easy to assume that your organization’s symbols, policies, and values are understood the same way everywhere. What feels like common sense or “best practice” at headquarters may mean something entirely different or nothing across cultures.

Lesson 2: Recognize and Overcome Ethnocentrism—Your Way Is Not the Only Way

Illustrated By: Captain Tracey rationalizes his betrayal by viewing the Comms through his biased lens and refuses to see value in the Yangs’ ways.

Compliance Lesson: Ethnocentrism, the belief that one’s own culture is superior or “normal,” is a common barrier to cross-cultural compliance. Like Tracey, corporate leaders may favor one culture’s approach to ethics, risk, or problem-solving, dismissing others as backward or inefficient.

Lesson 3: Find the Universal, but Honor the Local

Illustrated by: Kirk translates a seemingly parochial value into a universal principle, bridging the cultural gap.

Compliance Lesson: While symbols, language, and rituals may differ across cultures, there are often shared ethical aspirations—fairness, trust, respect, and justice—that can unite global teams. The challenge is to articulate these universals in a way that honors local realities.

Lesson 4: Listen Actively and Engage with Curiosity

Illustrated By: Kirk doesn’t just lecture; he listens, observes, and asks questions—even when the answers are uncomfortable or surprising.

Compliance Lesson: Effective cross-cultural communication begins with active listening and curiosity, rather than assumptions or pronouncements.

Lesson 5: Bridge Divides with Shared Purpose, Not Just Rules

Illustrated By: In the episode’s climax, Kirk reframes the “rules” as a call to unity and understanding.

Compliance Lesson: Policies and procedures are essential, but they’re not enough to build absolute alignment across cultures. What endures is shared purpose: a vision that transcends division and speaks to the aspirations of every group in your organization.

To Truly Go Boldly, Build Cross-Cultural Bridges

The Omega Glory” is a sometimes messy, always provocative meditation on the risks and rewards of cross-cultural engagement. For compliance professionals, it serves as a reminder that communication isn’t just about translation or policy deployment; it is about building bridges.

Resources:

Excruciatingly Detailed Plot Summary by Eric W. Weisstein

MissionLogPodcast.com

Memory Alpha

Categories
Blog

The Compliance Guide to Designed Intelligence: Part 2 – Rethinking Governance for the Age of AI

Yesterday, I began a two-part review of the article “What Is a Designed Intelligence Environment?” in which authors Michael Schrage and David Kiron examine how enterprises must rethink their intelligence and compliance strategies to survive and thrive in the new world of AI-rich operations. I found their insights for compliance professionals both practical and transformative. Previously, we considered what is Designed Intelligence. Tomorrow, we take a deeper dive into what it means for compliance.

For decades, we have approached compliance through policies, procedures, and periodic reviews, trusting that careful planning and diligent oversight would guide us through the challenges of regulatory change and operational risk. However, the rise of artificial intelligence has forever altered this equation. Now, the decisions that shape our organizations are made not just by people, but by increasingly autonomous machines and systems that learn, adapt, and interact in ways that can outpace human comprehension.

This new reality demands a new approach to compliance, one that goes beyond enforcing existing rules and begins to architect the very environments in which human and machine intelligence operate. The article “What Is a Designed Intelligence Environment? ” offers a timely and robust framework for this challenge. Rather than treat AI as just another tool in the compliance toolbox, it urges us to rethink how knowledge, reasoning, and governance are structured across the enterprise. For the compliance professional, this shift is as profound as it is practical: our mission is no longer to control risk but to orchestrate intelligence itself.

Five Key Takeaways for the Compliance Professional

1. Observability Over Prediction: Embrace Real-Time Monitoring

Traditional compliance programs often rely on the classic cycle of predict, plan, execute, and measure. However, as the article emphasizes, Stephen Wolfram’s principle of computational irreducibility suggests that in highly complex, AI-rich environments, outcomes cannot be predicted; they must be observed as they occur. This is not a theoretical point; rather, it is a practical call to action for compliance.

In a world where both human and machine agents make critical decisions, compliance leaders need to build systems that provide real-time visibility into these interactions. The case of the pharmaceutical R&D pipeline illustrates this vividly: instead of forcing premature rankings of drug candidates, the company built a computational observatory, allowing emergent patterns to drive decision-making. For compliance, this means investing in tools and processes that enable continuous monitoring, immediate detection of anomalies, and dynamic feedback loops, moving from static after-the-fact audits to active, ongoing oversight.

2. Semantic Formalization: Make Compliance Computable

If your compliance program still relies on lengthy policy manuals and inconsistent training, it’s time to elevate it. The article introduces the concept of semantic formalization, defining key business and compliance concepts in a manner that enables both humans and machines to execute and reason with them. This isn’t just data management; it’s about ensuring every stakeholder and system shares a common, computable language for compliance.

For example, a multinational retailer struggling with customer experience (CX) consistency turned things around by building a semantic kernel, a shared ontology for complaints, resolutions, and metrics. Compliance teams must similarly formalize definitions for key terms, including risk, conflict of interest, and reporting obligations. This creates a foundation where both human and AI agents can interpret and act on compliance requirements, ensuring consistency, auditability, and scalability.

3. Translate Between Multiple Realities

Every department, human expert, and AI system in your organization “computes” reality differently. Financial models assess risk through simulations, operations utilize failure analysis, and AI identifies statistical correlations. The article’s exploration of real space, the idea that these are not just different perspectives but fundamentally different computational rule sets, changes the compliance game.

Instead of forcing alignment through top-down mandates, compliance officers must become expert translators and orchestrators of change. The aerospace design review case proves the point: rather than punishing disagreement between engineers and AI, leadership created a real mediator, mapping and reconciling the underlying rules of each party. Compliance professionals should develop frameworks and protocols to make these internal logics explicit, resolve conflicts, and coordinate decision-making without imposing artificial consensus.

4. Do Not Simply Deploy Smarter Tools, But Architect Intelligence Environments

Throwing advanced AI or analytics at compliance problems is not enough. The article argues forcefully that intelligence, whether human or machine, must be designed into the very infrastructure of the enterprise. Most organizations still treat intelligence as an emergent property of tools, rather than an intentional product of environment design.

For compliance, this means working proactively with IT, legal, and operational leaders to design systems where intelligence (learning, reasoning, and adaptation) is orchestrated by default. Real-time observability, semantic formalization, and rule-based mediation must be built into the core of your compliance framework, not added as afterthoughts. This approach enables faster, higher-quality decisions, reduces systemic risk, and enhances organizational agility.

5. From Enforcer to Orchestrator: Redefine the Compliance Role

The most important takeaway is the redefinition of what it means to be a compliance professional in the era of AI. The future of compliance is not just about enforcing standards and conducting audits; it is about orchestrating intelligence across human and machine systems. This means guiding the translation between different rules and perspectives, architecting environments for safe collaboration, and ensuring ethical execution in a world of real-time, adaptive agents.

Compliance officers must expand their skill sets by learning the basics of AI, systems engineering, and data science, developing fluency in semantic modeling, and building cross-functional relationships with technology and business leaders. By leading the design of intelligence environments, compliance professionals can become strategic partners in innovation, not just gatekeepers of risk.

As we enter a new era defined by AI, the compliance profession finds itself at a crossroads. The systems we govern are no longer straightforward, linear, or purely human—they are dynamic, adaptive, and built from the collaboration between people and machines. The article “What Is a Designed Intelligence Environment? ” makes clear that our old tools—checklists, policy manuals, and after-the-fact audits—are no longer sufficient for the task ahead. Instead, we must build environments where intelligence itself is orchestrated, monitored, and governed by design.

This transformation is not about abandoning the core values of compliance, integrity, transparency, and accountability; it is about embracing new methods to uphold them in a complex world. We must shift from prediction to observability, from description to formalization, and from enforcement to orchestration. We must learn to translate and mediate between diverse ways of thinking and design infrastructures that enable human and machine intelligence to flourish safely and ethically.

Categories
Compliance Tip of the Day

Compliance Tip of the Day – Rethinking Corporate AI Governance Through Design Intelligence

Welcome to “Compliance Tip of the Day,” the podcast where we bring you daily insights and practical advice on navigating the ever-evolving landscape of compliance and regulatory requirements. Whether you’re a seasoned compliance professional or just starting your journey, our aim is to provide you with bite-sized, actionable tips to help you stay on top of your compliance game. Join us as we explore the latest industry trends, share best practices, and demystify complex compliance issues to keep your organization on the right side of the law. Tune in daily for your dose of compliance wisdom, and let’s make compliance a little less daunting, one tip at a time.

Today we consider how enterprises must rethink their compliance strategies to survive and thrive in the new world of AI-rich operations.

For more on this topic, check out The Compliance Handbook, a Guide to Operationalizing your Compliance Program, 6th edition which was recently released by LexisNexis. It is available here.

Categories
Trekking Through Compliance

Trekking Trough Compliance: Episode 51 – Breaking Barriers: Five Compliance Communication Strategies from ‘By Any Other Name’

There may be no better pop culture exploration of compliance communication under pressure than Star Trek’s “By Any Other Name.” This episode, from Star Trek: The Original Series, places the crew of the Enterprise under the control of the Kelvans, alien beings with immense power, cold logic, and a total misunderstanding of what it means to be human. To survive, Kirk and his crew must out-communicate and outwit their captors, relying on every tool in their communication toolkit.

For the compliance professional, “By Any Other Name” offers a master class in the nuances of compliance communications, what works, what fails, and why the human element can never be discounted. Today, we explore five compliance communication lessons from this Star Trek classic.

Lesson 1: Know Your Audience—Tailor Your Message

Illustrated By: The Kelvans initially communicate only through blunt, logical directives. Their attempts at control falter because they don’t understand human motivation.

Compliance Lesson: Compliance messages cannot be one-size-fits-all. The Kelvans’ failure to adapt to their audience is a mistake compliance professionals should avoid.

Lesson 2: Use Storytelling and Emotion—Facts Alone Don’t Move People

Illustrated By: Kirk and his crew realize the Kelvans, now in human form, are struggling with unfamiliar emotions and senses.

Compliance Lesson: Compliance is not just about rules and policies; it is rather about influencing behavior.

Lesson 3: Active Listening and Feedback Loops—It’s Not Just About Talking

Illustrated By: While under Kelvan control, the Enterprise crew quietly listens, observes, and learns. They pay attention to subtle cues, the Kelvans’ confusion, discomfort, and shifting attitudes.

Compliance Takeaway:

Too often, compliance communication is a one-way street: policies are announced, emails are sent, training is assigned. But honest communication is two-way. Kirk’s ability to adapt is rooted in active listening, a skill compliance teams must master.

Lesson 4: Adapt Communication Styles Under Pressure—Agility Matters

Illustrated By: Kirk and company adapt rapidly, sometimes using humor, occasionally confrontation, sometimes empathy, to keep lines of communication open and exploit cracks in Kelvan unity.

Compliance Lesson: The best compliance communicators are agile: they adjust tone, content, and delivery to fit the moment.

Lesson 5: Build Trust and Relationships—Compliance is Ultimately Human

Illustrated By: In the end, the crew’s success comes not from outgunning or outwitting the Kelvans through brute force, but from forging relationships.

Compliance Takeaway:

All the policies and training in the world are ineffective without trust.

Final ComplianceLog Reflections

By Any Other Name” is a Star Trek episode about boundaries—between worlds, cultures, and even species. For the compliance professional, it’s a reminder that communication is our own Universal Translator: it connects people, overcomes obstacles, and paves the way for shared understanding.

Resources:

Excruciatingly Detailed Plot Summary by Eric W. Weisstein

MissionLogPodcast.com

Memory Alpha

Categories
Blog

Universal Translators: Compliance Communication Lessons from ‘By Any Other Name’

If you have been around the compliance world long enough, you have heard the refrain: “It all comes down to communication.” Whether you are launching a new code of conduct, rolling out an anti-bribery initiative, or navigating the choppy waters of a compliance investigation, your message, how it is crafted, delivered, and received, often determines your success.

There may be no better pop culture exploration of communication under pressure than Star Trek’s “By Any Other Name.” This episode, from Star Trek: The Original Series, places the crew of the Enterprise under the control of the Kelvans, alien beings with immense power, cold logic, and a total misunderstanding of what it means to be human. To survive, Kirk and his crew must out-communicate and outwit their captors, relying on every tool in their communication toolkit.

For the compliance professional, “By Any Other Name” offers a master class in the nuances of compliance communications, what works, what fails, and why the human element can never be discounted. Today, we explore five compliance communication lessons from this Star Trek classic.

Lesson 1: Know Your Audience—Tailor Your Message

Illustrated By: The Kelvans, led by Rojan, initially communicate only through blunt, logical directives. They expect total obedience from the Enterprise crew, failing to appreciate the crew’s emotional and cultural complexity. Their attempts at control falter because they don’t understand (or even attempt to understand) human motivation.

Compliance Lesson: Compliance messages cannot be one-size-fits-all. The Kelvans’ failure to adapt to their audience is a mistake compliance professionals should avoid. Employees come from diverse backgrounds, cultures, and generations; each absorbs messages differently. What motivates a finance executive in London may not resonate with a front-line worker in Houston or a vendor in Mumbai.

Effective compliance communication requires deep knowledge of your audience, their roles, their pressures, and their “language.” Avoid legalese and boilerplate. Instead, translate compliance requirements into practical, relevant, and relatable guidance. Segment your compliance communications. Use examples, languages, and platforms tailored for different employee groups and geographies. Regularly solicit feedback to ensure your message is landing as intended.

Lesson 2: Use Storytelling and Emotion—Facts Alone Don’t Move People

Illustrated By: Kirk and his crew realize the Kelvans, now in human form, are struggling with unfamiliar emotions and senses. Scotty, McCoy, and Kirk use humor, stories, and emotional appeals—not just facts—to disrupt the Kelvans’ cold logic. Scotty, famously, distracts one by sharing stories over drinks; McCoy pushes another to experience irritability and frustration.

Compliance Lesson: Compliance isn’t just about rules and policies; it’s about influencing behavior. Facts and regulations are essential, but they rarely inspire change on their own. Human beings respond to stories, emotions, and narratives. Scotty doesn’t just explain; he engages. Kirk doesn’t just threaten; he empathizes.

For compliance professionals, this means using storytelling, scenarios, and case studies in your communications. Connect compliance to employees’ values, experiences, and aspirations.

Incorporate real-world examples, ethical dilemmas, and stories, successes, and failures into your training and communications. Show how compliance makes a positive impact, not just what rules to follow.

Lesson 3: Active Listening and Feedback Loops—It’s Not Just About Talking

Illustrated By: While under Kelvan control, the Enterprise crew quietly listens, observes, and learns. They pay attention to subtle cues—the Kelvans’ confusion, discomfort, and shifting attitudes. Kirk’s plan only succeeds because he listens actively and adapts his approach based on feedback and changes in the Kelvans’ behavior.

Compliance Lesson: Too often, compliance communication is a one-way street, where policies are announced, emails are sent, and training is assigned without follow-up. But honest communication is two-way. Kirk’s ability to adapt is rooted in active listening, a skill compliance teams must master.

Effective compliance programs create channels for feedback and respond to what they learn. This can be achieved through hotlines, surveys, focus groups, or informal conversations when employees see that their input leads to change, they become more engaged and are more likely to trust the compliance function. Establishing feedback loops for every major compliance communication is also crucial. Track participation, collect questions, and respond publicly to common concerns. Use what you learn to refine your message and program continually.

Lesson 4: Adapt Communication Styles Under Pressure—Agility Matters

Illustrated By: Throughout the episode, the crew is under intense stress. Their regular routines are disrupted, and the stakes are existential. Yet Kirk and company adapt rapidly, sometimes using humor, occasionally confrontation, sometimes empathy, to keep lines of communication open and exploit cracks in Kelvan unity.

Compliance Lesson: In crises, such as investigations, enforcement actions, or cyber incidents, your standard communications playbook may not be practical. Employees will be anxious, distracted, or fearful. The best compliance communicators are agile: they adjust tone, content, and delivery to fit the moment.

This may involve more frequent updates, simpler language, or a more empathetic tone. It may also require new channels such as video messages from leadership, town halls, or direct conversations with affected teams. Develop a crisis communication plan as part of your compliance program. Practice scenario planning: How will you communicate if the unexpected happens? Build templates and train your team in flexible, adaptive messaging.

Lesson 5: Build Trust and Relationships—Compliance is Ultimately Human

Illustrated By: In the end, the crew’s success comes not from outgunning or outwitting the Kelvans through brute force, but from forging relationships. They appeal to the Kelvans’ newly awakened humanity, earning trust, and ultimately persuading Rojan to abandon conquest in favor of collaboration.

Compliance Takeaway:

All the policies and training in the world are ineffective without trust. Compliance communication is not just about transmitting information; it’s about building relationships, credibility, and psychological safety. Employees must believe that compliance is there to help them succeed, not to police or punish.

Trust is built over time, through transparency, consistency, and authenticity. It is maintained by owning up to mistakes, sharing “the why” behind decisions, and treating employees as partners in compliance. Empower compliance champions in every business unit. Provide them with the tools and support they need to model ethical behavior, answer questions, and cultivate a culture of trust. Regularly spotlight these champions and celebrate examples of “doing the right thing.”

Final ComplianceLog Reflections

By Any Other Name” is a Star Trek episode that explores boundaries between worlds, cultures, and even species. For the compliance professional, it’s a reminder that communication is our own Universal Translator: it connects people, overcomes obstacles, and paves the way for shared understanding.

In our world, the stakes are just as high. The “aliens” we face may not come from Andromeda, but from new markets, new regulations, or emerging technologies. To navigate these challenges, compliance professionals must master the art and science of communication.

So, as you chart your course through your organization’s next compliance initiative, remember that it is not just what you say, but also how you say it, who you say it to, and how you listen, that makes all the difference.

Resources:

Excruciatingly Detailed Plot Summary by Eric W. Weisstein

MissionLogPodcast.com

Memory Alpha

Categories
Innovation in Compliance

Innovation in Compliance – The Power of Accountability and Team Culture with Gina Cotner

Innovation comes in many areas, and compliance professionals need to be ready for it and embrace it. Join Tom Fox, the Voice of Compliance, as he visits with top innovative minds, thinkers, and creators in the award-winning Innovation in Compliance podcast. In this engaging episode, Tom Fox sits down with Gina Cotner, the founder and CEO & Founder of Athena Executive Services, to explore the importance of team culture and accountability in corporate settings.

Cotner delves into her professional background and the organic development of a strong team culture at Athena. She emphasizes the critical role of accountability as a cultural standard and provides actionable insights for leaders on how to instill this within their organizations. Key takeaways include the significance of consistency, the balance between compassion and accountability, and the role of follow-up as a leadership tool. With real-world examples and practical advice, Cotner provides a comprehensive guide to building and maintaining a high-performing, accountable team.

Key highlights:

  • Gina Cotner’s Professional Background
  • The Importance of Team Culture
  • Accountability in High-Performing Teams
  • Misunderstandings About Accountability
  • Building a Culture of Accountability
  • Consistency and Psychological Safety
  • Follow-Up as a Leadership Tool
  • Compassion in Leadership

Resources:

Follow Athena Executive Services on:

Company’s Website

LinkedIn

Instagram

Tom Fox

Instagram

Facebook

YouTube

Twitter

LinkedIn