Categories
Blog

Navigating the DOJ’s Complex Whistleblower Landscape: Key Insights for Compliance Professionals

The Department of Justice (DOJ) recently launched its Corporate Whistleblower Awards Pilot Program to tackle corporate misconduct under various laws. However, unlike the structured and familiar whistleblower frameworks of the SEC and CFTC, the DOJ’s approach has introduced a more fragmented system. Compliance professionals and company executives must prepare for the unique challenges and opportunities this evolving regulatory landscape presents. In a recent Law360 article, Navigating DOJ’s Patchwork Whistleblower Regime authors Patrick Campbell, Jonathan New, and Jimmy Nguyen explored these frameworks. Based on their article, I want to explore what compliance professionals need to know about the DOJ’s new whistleblower regime, the associated pilot programs, and practical steps to bolster your compliance program in light of this shift.

DOJ’s New Whistleblower Programs: A Patchwork Approach

Over the last year, the DOJ’s Criminal Division and several U.S. Attorney’s Offices have introduced several pilot programs, each designed to encourage individuals to report corporate misconduct in exchange for monetary rewards, Deferred Prosecution Agreements (DPAs) or Non-Prosecution Agreements (NPAs). These initiatives build on DOJ’s previous decade-long efforts to foster self-reporting and corporate accountability through clear compliance guidelines and structured voluntary disclosure policies. But this time, the DOJ has opted for a diverse, patchwork system of whistleblower programs instead of a unified framework.

The DOJ’s new whistleblower regime is primarily split into two types of programs:

  1. Monetary Awards Program. Launched on August 1, the Main Justice Pilot Program offers financial rewards for whistleblowers who come forward with information about specific types of corporate misconduct. The program focuses on financial crimes, foreign and domestic corruption, and healthcare fraud targeting private insurers.
  2. NPA Programs. Several U.S. Attorney’s Offices are more focused on granting leniency to whistleblowers who disclose information, even if they had a role in the misconduct. However, the specifics vary across different U.S. Attorney’s Offices, making it difficult for individuals and companies to anticipate how these programs will apply in practice.

Key Components of the DOJ’s Monetary Awards Program

The Pilot Program, which closely resembles the whistleblower programs of the SEC and CFTC, is designed to reward whistleblowers with up to 30% of forfeited proceeds for the first $100 million and 5% for amounts up to $500 million. To qualify, the information provided must:

  • This led to a successful enforcement action with over $1 million in net forfeiture proceeds.
  • Involve original information—meaning information independently obtained and not derived from public sources.
  • Be reported voluntarily and without a preexisting legal obligation to report.

To further incentivize individuals, the DOJ has clarified that any company retaliating against whistleblowers risks losing its cooperation credit and could face additional charges for obstruction of justice. Moreover, the DOJ amended its corporate enforcement policy, giving companies a 120-day window to self-report misconduct raised by an internal whistleblower before DOJ intervention.

U.S. Attorney’s Offices’ Programs: Encouraging Cooperation from Insiders

The U.S. Attorney’s Office’s whistleblower programs are aimed at insiders who may be involved in misconduct, providing them with an opportunity for leniency in exchange for cooperation. However, these programs vary significantly by jurisdiction. For instance, some offices exclude Foreign Corrupt Practices Act (FCPA) violations, while others include specific offenses relevant to their dockets, like intellectual property theft in Northern California and healthcare provider crimes in New Jersey.

This variation means that companies and whistleblowers need to understand the specific requirements of each U.S. attorney’s office program to maximize their eligibility and cooperation credit potential. While individuals can gain leniency for cooperating, the program’s qualifying factors—such as whether the whistleblower’s actions were voluntary and original—make it essential for companies to encourage internal reporting systems.

Implications of a Fragmented Whistleblower Framework

Unlike the SEC’s uniform and straightforward whistleblower program, the DOJ’s approach brings potential confusion. The variability across the DOJ and U.S. attorney’s offices creates a complex decision-making process for whistleblowers and their counsel, particularly when determining which office to approach and under which program. This lack of clarity may impact the quality and volume of tips the DOJ receives, as potential whistleblowers may hesitate due to perceived ambiguity in eligibility criteria, confidentiality protections, and financial award guarantees.

What This Means for Companies and Compliance Programs

While the DOJ’s whistleblower regime may seem daunting, it also significantly emphasizes voluntary disclosure and corporate accountability. Companies would be wise to address the DOJ’s renewed focus on whistleblowers proactively.

Here are several practical steps that compliance professionals should consider:

  1. Strengthen Internal Reporting Channels. Ensure that employees feel comfortable reporting potential misconduct internally without fear of retaliation. Employees should know they have a safe, reliable method for voicing concerns and that their reports will be taken seriously. Develop clear policies and protections for whistleblowers, as retaliation can cost a company valuable cooperation credit.
  2. Promptly Investigate Reports. DOJ’s policy now includes a 120-day grace period for self-reporting misconduct discovered through internal whistleblower channels. This means companies must prioritize timely investigations and decisions on whether to self-report to the DOJ, especially for conduct that could fall under the whistleblower programs’ target areas.
  3. Update Compliance Training Programs. Employees should be informed of their role in supporting the company’s compliance framework, particularly regarding ethical reporting. Conduct regular training on your whistleblower policies, emphasizing the importance of truthfulness, internal reporting channels, and the protections against retaliation. Training should be targeted, effective, and engaging.
  4. Incentivize Ethical Behavior. Compliance should be more than just an annual checkbox exercise. Companies must incentivize employees to uphold ethical standards by incorporating compliance criteria into performance reviews, compensation structures, and promotion decisions. This strongly conveys that ethical conduct is a priority and will be rewarded.
  5. Establish a Self-Disclosure Protocol. Given the DOJ’s new initiatives, companies need a clear process for evaluating whether and when to self-disclose misconduct to qualify for leniency. Ensure your compliance team is equipped to make quick assessments, especially for serious misconduct that may lead to forfeiture or prosecution.
  6. Align with DOJ Expectations on Compliance Programs. The DOJ’s 2024 Update to the Evaluation of Corporate Compliance Programs stressed the importance of having robust, responsive compliance structures that support a culture of ethical behavior. Companies should benchmark the number and nature of internal reports received, the speed of investigations, and corrective actions against publicly available data to assess their program’s effectiveness.

Looking Ahead: The DOJ’s Expanding Whistleblower Framework

The DOJ’s whistleblower regime is still evolving, with many current programs designated “pilots.” However, with U.S. attorney’s offices adopting new programs rapidly, we’ll likely see further developments, including more offices launching their versions of whistleblower awards and NPA initiatives. For companies, this means a sustained focus on compliance practices that support transparency, encourage reporting, and prioritize swift, decisive responses to misconduct.

Principal Deputy Assistant Attorney General Nicole Argentieri recently noted that the DOJ’s “tip line is open,” a clear message to compliance leaders that the agency is leveraging every available tool to uncover corporate misconduct. This heightened regulatory scrutiny means companies must ensure compliance programs meet DOJ standards and actively encourage a speak-up culture.

Final Thoughts: Navigating the New Whistleblower Regime

The DOJ’s fragmented whistleblower framework challenges companies, whistleblowers, and compliance teams. Nevertheless, these programs underscore the DOJ’s commitment to rooting out corporate misconduct through increased reliance on whistleblowers and internal disclosures. Compliance professionals play a critical role in this environment, as companies must have the right systems in place to respond promptly to reports of misconduct, protect whistleblowers, and, when necessary, self-report to the DOJ within the stipulated timeframe.

In this evolving regulatory landscape, companies must remain vigilant, ensuring that their compliance programs are robust, responsive, and capable of supporting a culture that values ethical conduct. By aligning internal practices with the DOJ’s expectations, companies can better navigate the complexities of the new whistleblower regime and position themselves for success in an increasingly scrutinized business environment.

Categories
Great Women in Compliance

Great Women in Compliance: Mary Inman and Jane Norberg on Current Developments in Whistleblower Laws and Practice

Welcome to the Great Women in Compliance podcast with Hemma Lomax and Lisa Fine, sponsored by Corporate Compliance Insights.  Over the past few months, the Department of Justice put forth the Whistleblower Pilot Program, and the update to the Evaluation of Corporate Compliance Programs.  It was the perfect time to focus on how these impact whistleblower laws. Jane Norberg, who is a partner at Arnold & Porter and the former Chief of the Office of the Whistleblower and Mary Inman, who is a founding partner of Whistleblower Partners. Mary is also an advocate for the power of whistleblowers and is known for representing Facebook Files whistleblower Frances Haugen and Theranos whistleblower Tyler Shultz.

They provide insight into what makes a credible and legitimate whistleblower, how the SEC reviews tips from whistleblowers and what we as compliance professionals can do to build effective programs. All focused on the review of all concerns that are raised, regardless of the source. They provide some thoughts about how to handle different situations before, during, and after an investigation, providing practical advice.

The group discusses the new DOJ Whistleblower Pilot program and where it follows the past programs like the SEC program and where it is filling new gaps. One part of the program includes the 120-day requirement for reporting an issue, and they focused on what that would mean for organizations. Mary and Jane share their views on the requirements and the best practices and reference how most compliance professionals are using the DOJ Evaluation of Corporate Compliance to develop their programs, which means that an issue is investigated. In practical terms, following the ECCP requirement to investigate, and the pilot program has a “race to report,” is a challenge, and this is discussed in depth.

Mary and Jane both provided “one thing you should know” to conclude the discussion. Both points are significant ones for anyone who is dealing with any point of the whistleblower or building a strong speak up/anti-retaliation culture.

Join the Great Women in Compliance community on LinkedIn here.

Categories
Blog

Argentieri Speech: 6 Key Takeaways for Compliance Programs

On Monday, Principal Deputy Assistant Attorney General Nicole M. Argentieri spoke at the Society of Corporate Compliance and Ethics 23rd Annual Compliance & Ethics Institute. ( A copy of her remarks can be found here.) She reiterated the long-stated policy that compliance professionals play a critical role in ensuring companies comply with the law and foster a culture of ethics and integrity. She noted that the Department of Justice (DOJ) has made it clear that companies are the first line of defense against corporate crime, and compliance officers are on the front lines of this defense. The 2024 update to the DOJ’s Evaluation of Corporate Compliance Programs (ECCP) and the introduction of new pilot programs in 2024 underscore the increasing importance of the roles of compliance professionals. This blog post will review the highlights from her speech, the key lessons from this 2024 update to the ECCP, and how they should shape our approach to compliance programs in our organizations.

Lesson 1: Embrace Continuous Improvement in Compliance Programs

The DOJ’s emphasis on continuous improvement in compliance programs is a call to action for all of us. The updated ECCP highlights the need for companies to regularly review and update their compliance programs to account for emerging risks, such as those posed by disruptive technologies like artificial intelligence (AI). As the pace of technological advancement is rapid, and with it come new risks. AI, for example, can be a double-edged sword—while it offers efficiency and insights, it can also be exploited for fraudulent purposes, such as generating false documentation or approvals. The DOJ now explicitly expects companies to assess and manage these risks, which means we must stay ahead of the curve in understanding and mitigating the potential pitfalls of new technologies.

Action Steps for the Compliance Professional:

  • Conduct regular risk assessments that include emerging technologies.
  • Implement controls that address the risks associated with AI and other disruptive technologies.
  • Ensure your compliance program evolves alongside technological advancements with continuous testing and monitoring.

Lesson 2: Foster a “Speak Up” Culture

The DOJ’s updates to the ECCP also emphasize encouraging a culture where employees feel comfortable reporting misconduct. The newly integrated questions into the ECCP regarding whistleblower protection reflect the DOJ’s serious stance on this issue. A “speak up” culture is foundational to a strong compliance program. Employees on the ground are often the first to spot potential issues, and creating an environment where they feel safe to report without fear of retaliation is crucial. The DOJ will scrutinize how well companies protect whistleblowers, so we must ensure our organizations have robust policies and training.

Action Steps for the Compliance Professional:

  • Review and strengthen whistleblower protection policies.
  • Regularly train employees on reporting misconduct and reassuring them about the protections in place.
  • Monitor the effectiveness of your whistleblower program and make necessary adjustments to enhance reporting mechanisms.

Lesson 3: Data Access is Key to Compliance Effectiveness

Another critical area highlighted in the DOJ’s ECCP updates is the importance of data access for compliance personnel. The DOJ will now evaluate whether compliance teams have adequate access to the necessary data to assess the effectiveness of their programs.

Over the past 18 months, the DOJ has made it clear that accessing and analyzing relevant data is crucial for identifying risks and monitoring compliance. If compliance teams are siloed or cut off from important data sources, it hampers their ability to do their jobs effectively, and the DOJ will take notice.

Action Steps for the Compliance Professional:

  • Ensure that compliance personnel have access to all relevant data sources.
  • Invest in the necessary technology and resources for effective data analysis and monitoring.
  • Work closely with IT and other departments to break down silos and facilitate seamless data access.

Lesson 4: Leverage Compensation to Drive Compliance

The DOJ’s Compensation Incentives and Clawbacks Pilot Program introduced a new dimension to compliance—aligning compensation with ethical behavior. This initiative requires companies to include compliance-related criteria in their compensation and bonus systems. While it is certainly not new to align compensation with compliance goals, it sends a powerful message to employees and management that ethical behavior is non-negotiable, and the new emphasis on consequences in the form of clawbacks and holdbacks must be considered. The DOJ views this leveraging of positive incentives and negative outcomes as a tangible link between individual performance and the company’s commitment to integrity.

Action Steps for the Compliance Professional:

  • Integrate compliance metrics into performance evaluations and compensation structures.
  • Regularly assess the effectiveness of these incentives and make adjustments as needed.
  • Make sure you have the contractual right to clawback incentive awards or holdback bonuses for executives who are culpable or have buried their collective heads in the sand while corruption surrounds them.

Lesson 5: The Importance of Cooperation and Remediation

The DOJ’s approach to corporate resolutions underscores the importance of timely and effective cooperation and remediation. Companies that act quickly to cooperate with the DOJ and take meaningful steps to remediate misconduct are rewarded with significant penalty reductions. How a company responds can significantly affect the outcome in the unfortunate event of misconduct. The DOJ’s recent resolutions show that companies that move swiftly and decisively to address issues are viewed more favorably.

Action Steps for the Compliance Professional:

  • Develop a clear protocol for responding to potential misconduct, including timely self-disclosure to the DOJ.
  • Ensure that your company is prepared to cooperate fully with any investigation.
  • Focus on meaningful remediation efforts that address the root causes of misconduct and prevent future occurrences.

Lesson 6: Whistleblower Programs as a Strategic Tool

Launching the DOJ’s Corporate Whistleblower Awards Pilot Program (CWA) is a significant development for compliance professionals. This program incentivizes internal reporting and substantially rewards companies that self-disclose misconduct. Given the number of reports the DOJ received in its first month (100), the CWA adds a new layer of urgency for companies to establish strong internal reporting mechanisms. Companies that encourage and protect whistleblowers can benefit from the CWA, while those that fail to do so may face harsher penalties.

Action Steps for the Compliance Professional:

  • Strengthen your internal reporting systems and ensure they are well-publicized within the company.
  • Make sure that your whistleblower policies are aligned with the DOJ’s expectations.
  • Actively monitor and protect whistleblowers, ensuring there is no retaliation against those who report misconduct.

Now is the Time to Act

The DOJ’s updated policies and programs signal that corporate compliance expectations are higher than ever. Compliance professionals must take these developments seriously and use them as a roadmap to strengthen our programs. Do not wait. Whether embracing new technologies, fostering a “speak up” culture, or aligning compensation with ethical behavior, now is the time to make the necessary investments in compliance.

Remember, when misconduct does occur, it’s better to be proactive and call the DOJ before they call you. By taking these lessons to heart and implementing them in our organizations, we can meet the DOJ’s expectations and contribute to building a culture of integrity and accountability that will serve our companies well in the long run.