Categories
FCPA Survival Guide

FCPA Survival Guide: Step 5 – Data Analytics

How can you survive an FCPA enforcement action? In this special podcast series, Tom Fox and Nick Gallo lay out the Top 10 things you can do to reduce your overall fine and penalty, perhaps down to a full declination. All of the actions you can take come from recent DOJ prosecutions under the FCPA and speeches from DOJ representatives. This podcast, sponsored by Ethico, is the companion series to the book The FCPA Survival Guide: Surviving and Thriving a Foreign Corrupt Practices Act Enforcement Action. Today, we discuss the importance of data analytics as a key part of any remediation and in today’s compliance regimes.

Tom Fox and Nick Gallo are back to discuss the evolving role of data analytics in compliance, highlighting its transition from a cutting-edge tool to a best practice and soon-to-be table-stakes requirement. They review the SAP and Albemarle FCPA  enforcement actions to illustrate points where data analytics played a pivotal role in remediation efforts. They look at the foundational aspects of data analytics, paralleling personal finance management to underline its fundamental importance in both personal and professional contexts. Some of the key uses of data analytics are risk identification, response, compliance program testing, and reporting, as outlined by Andrew McBride, a recently retired chief ethics and compliance officer. They conclude by stressing the importance of data analytics in demonstrating program effectiveness and underscore the DOJ’s interest in data-driven evidence of compliance program remediation.

Key Highlights and Issues

  • The Evolution and Importance of Data Analytics
  • Understanding Data Analytics Through Everyday Examples
  • Practical Approaches to Implementing Data Analytics
  • The Role of Data Analytics in Compliance Program Testing and Reporting
  • Personalizing Data Analytics for Program Effectiveness

Resources:

Nick Gallo on LinkedIn

Ethico

The FCPA Survival Guide: Surviving and Thriving a Foreign Corrupt Practices Act Enforcement Action

Tom

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
Compliance Into the Weeds

Compliance into the Weeds: Navigating DOJ’s Boeing Dilemma Under DPA Violations

The award-winning Compliance into the Weeds is the only weekly podcast that takes a deep dive into a compliance-related topic, literally going into the weeds to more fully explore a subject.

Looking for some hard-hitting insights on compliance? Look no further than Compliance into the Weeds!

In this episode, Tom Fox and Matt Kelly take a deep dive into the complexities surrounding the Department of Justice’s potential decision to criminally prosecute Boeing under its Deferred Prosecution Agreement (DPA) related to the 737 MAX crashes.

They explore the various facets of corporate justice, including retribution, remediation, and societal interests, as well as the challenges in balancing justice for the victims and the broader implications for public safety and corporate culture.

The discussion also covers the FAA’s role, the potential for new operational limits on Boeing, the impact and structure of compliance monitorships, and what compliance officers can learn from this high-stakes scenario.

Key Highlights:

  • DOJ and Boeing: The 737 MAX Dilemma
  • Corporate Justice: Individuals vs. Corporations
  • Balancing Justice and Corporate Interests
  • Deferred Prosecution Agreements: Compliance Challenges
  • Financial Penalties vs. Operational Limits
  • The Potential of Monitorships
  • FAA’s Role and Challenges
  • Compliance Lessons and Future Considerations

Resources:

Matt on Radical Compliance

 Tom 

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
Blog

The DOJ Boeing Conundrum

The Department of Justice (DOJ) is currently in a conundrum over its Deferred Prosecution Agreement (DPA) for the Boeing 737 Max crashes. Understanding the implications of the DOJ’s upcoming decision on whether to prosecute Boeing under the existing criminal law is crucial. This decision carries significant weight and presents a multifaceted challenge for Boeing and the broader corporate compliance and governance landscape.

The criminal justice system’s fundamental purpose encompasses several key aspects: retribution, justice for victims, and the rehabilitation of offenders. While straightforward when applied to individuals, these principles become more complex in the context of corporate entities. For the families of the 346 victims of the 737 Max crashes, justice might mean seeing Boeing held criminally accountable, literally with senior executives or even Board members facing criminal charges. This desire for justice is understandable and necessary for those who have suffered immeasurable loss.

However, the broader societal interest in maintaining a safe and reliable aviation industry adds complexity. Ensuring that Boeing undergoes a cultural shift towards prioritizing safety over profit is crucial to preventing future tragedies. This balance between justice for the families of the crash victims and ongoing public safety is at the heart of the DOJ’s dilemma.

At the core of this issue is Boeing’s corporate culture. The company’s aggressive pursuit of profit and rapid production schedules has led to significant safety oversights. Incidents such as the recent mid-flight door detachment from a Boeing airliner and allegations of using falsified or contaminated titanium underscore ongoing safety concerns. Addressing these issues necessitates a fundamental shift in Boeing’s approach to safety and governance.

Compliance officers face the daunting task of ensuring that DPAs are effectively implemented. Boeing’s situation raises critical questions about the enforcement of DPAs, the criteria for determining violations, and the appropriate remedies when violations occur. The rarity of formal DPA violations adds to the uncertainty and complexity.

The DOJ’s decision on Boeing involves balancing multiple interests: the victims’ families, Boeing’s employees, the air-traveling public, and the broader economic and national economic and national security implications of Boeing’s operations. As the “People’s Law Firm,” the DOJ must navigate these diverse and often conflicting interests to reach a peaceful resolution.

A key consideration is whether financial penalties alone can drive meaningful corporate reform. Historical evidence suggests that financial penalties, while necessary, may not suffice to instill lasting cultural change. More stringent measures, such as operational limits and enhanced monitoring, may be required.

The concept of a monitorship is particularly relevant. A monitor could provide ongoing oversight and guidance, ensuring Boeing meets stringent compliance standards. Transparency in monitoring, including public disclosure of monitor reports, could enhance accountability and public trust.

The Federal Aviation Administration (FAA) also plays a crucial role. However, the FAA’s past performance overseeing Boeing raises questions about its ability to enforce safety standards effectively. Ensuring that the FAA undergoes its cultural transformation and maintains rigorous oversight is essential for any comprehensive solution.

Boeing’s status as a major aircraft manufacturer has significant implications for national security and the economy, which makes its case unique. Compliance professionals in other industries must recognize that the consequences of non-compliance can vary significantly based on a company’s strategic importance. While some companies might face severe penalties or even closure, critical industries like aviation may require more nuanced solutions to balance justice and operational continuity.

Compliance officers should closely monitor the DOJ’s handling of Boeing’s DPA. The potential introduction of CEO and Chief Compliance Officer (CCO) certifications for compliance program effectiveness in future DPAs is a significant development. These certifications could greatly impact how compliance programs are designed and evaluated, making it crucial for compliance officers to stay informed and prepared.

The Boeing case underscores the complexities of enforcing corporate compliance in industries with significant public safety implications. The DOJ’s decision will likely set important precedents for future DPAs and compliance practices. As we await the DOJ’s final decision, it’s clear that achieving justice and ensuring safety requires a multifaceted approach, balancing financial penalties, operational oversight, and cultural transformation.

For compliance professionals, the key takeaway from this case is the importance of robust compliance programs and the necessity of adapting to new regulatory expectations. The introduction of CCO certifications, the potential for increased transparency in monitorships, and the evolving nature of DPA enforcement are all critical factors to consider in developing and maintaining effective compliance strategies. Compliance officers must remain vigilant and adaptable, drawing lessons from high-profile cases like Boeing’s to enhance compliance programs and contribute to a safer and more accountable corporate landscape.

Categories
FCPA Survival Guide

FCPA Survival Guide: Step 4 – Root Cause Analysis

How can you survive an FCPA enforcement action? In this special podcast series, Tom Fox and Nick Gallo outline the Top 10 things you can do to reduce your overall fine and penalty, perhaps down to a complete declination. All of the actions you can take come from recent DOJ prosecutions under the FCPA and speeches from DOJ representatives. This podcast, sponsored by Ethico, is the companion series to the book The FCPA Survival Guide: Surviving and Thriving a Foreign Corrupt Practices Act Enforcement Action. Today, we discuss the DOJ requirement that your remediation begins with a root cause analysis.

In this episode, host Tom Fox and co-host Nick Gallo discuss the importance of conducting a root cause analysis in compliance programs, particularly in light of the recent FCPA enforcement actions highlighting its significance. They use SAP’s approach to root cause analysis as a prime example of effectively identifying and remedying the underlying causes of compliance failures rather than merely addressing symptoms. They relate the human tendency to stop at superficial answers and the importance of discipline in continually asking ‘why’ to uncover true or ‘root’ causes. This approach satisfies regulatory expectations and builds a robust compliance program to prevent future violations. They underline the importance of storytelling in compliance, framing the root cause analysis and subsequent remediation efforts in a narrative that resonates with internal and external audiences, including regulators.

Key Highlights and Issues:

  • The Importance of Root Cause Analysis in Compliance
  • Human Nature and the Challenge of Deep Analysis
  • DOJ’s Expectations
  • The Art of Storytelling in Compliance

 Resources:

Nick Gallo on LinkedIn

Ethico

The FCPA Survival Guide: Surviving and Thriving a Foreign Corrupt Practices Act Enforcement Action

Tom

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
Daily Compliance News

Daily Compliance News: June 17, 2024 – The Charges Dropped Edition

Welcome to the Daily Compliance News. Each day, Tom Fox, the Voice of Compliance, brings you compliance-related stories to start your day. Sit back, enjoy a cup of morning coffee and listen to the Daily Compliance News. All from the Compliance Podcast Network.

Each day, we consider four stories from the business world: compliance, ethics, risk management, leadership, or general interest for the compliance professional.

In today’s edition of Daily Compliance News:

  • Nigeria drops charges against Binance compliance professional.  (WSJ)
  • Will DOJ charge Boeing under DPA? (WSJ)
  • FAA wants systemic change at Boeing. (BBC)
  • What’s the difference between Singapore and Hong Kong? (Bloomberg)

For more information on the Ethico ROI Calculator and a free White Paper on the ROI of Compliance, click here.

Categories
FCPA Survival Guide

FCPA Survival Guide: Step 3 – Extensive Remediation

How can you survive an FCPA enforcement action? In this special podcast series, Tom Fox and Nick Gallo lay out the Top 10 things you can do to reduce your overall fine and penalty, perhaps down to a full declination. All of the actions you can take come from recent DOJ prosecutions under the FCPA and speeches from DOJ representatives. This podcast, sponsored by Ethico, is the companion series to the book The FCPA Survival Guide: Surviving and Thriving a Foreign Corrupt Practices Act Enforcement Action. Today, we discuss the DOJ requirement for extensive remediation.

Tom Fox and Nick Gallo are back to look at the importance of extensive remediation in compliance, particularly in the context of the FCPA enforcement actions. They highlight three enforcement actions – ABB, Albemarle, and SAP – to demonstrate how companies have implemented effective remediation strategies. ABB’s approach included a comprehensive data analytics program and cultural changes led by Chief Integrity Officer Natalia Shehadeh. The DOJ’s recognition of data analytics in the Albemarle and SAP cases signals a shift from cutting-edge practices to standard expectations in compliance. The episode also delves into the transformation of business models as a form of remediation, with Albemarle and SAP making significant changes to their sales strategies to manage risks better and ensure direct customer relationships. Through these discussions, Tom and Nick emphasize that extraordinary remediation is about authentic efforts to improve compliance and reduce risk, not just fulfilling minimal requirements.

Key Highlights and Issues

  • Exploring ABB’s Compliance Remediation Strategy
  • Beyond Checking the Box: A Deep Dive into Compliance Remediation Mindset
  • The Power of Data Analytics in Compliance Remediation
  • Transforming Business Models for Better Compliance Remediation

Resources:

Nick Gallo on LinkedIn

Ethico

The FCPA Survival Guide: Surviving and Thriving a Foreign Corrupt Practices Act Enforcement Action

Tom

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
FCPA Survival Guide

FCPA Survival Guide: Step 2 – Extraordinary Cooperation

How can you survive an FCPA enforcement action? In this special podcast series, Tom Fox and Nick Gallo outline the Top 10 things you can do to reduce your overall fine and penalty, perhaps down to a full declination. All of the actions you can take come from recent DOJ prosecutions under the FCPA and speeches from DOJ representatives. This podcast, sponsored by Ethico, is the companion series to the book The FCPA Survival Guide: Surviving and Thriving a Foreign Corrupt Practices Act Enforcement Action. Today, we discuss the DOJ requirement of extraordinary cooperation.

This episode highlights the definitions of full cooperation and extraordinary cooperation from a law enforcement perspective, emphasizing the advice from Kenneth Polite and Deputy Attorney General Lisa Monaco on acting ‘swiftly and without delay.’ They explore strategies for accelerating investigations without compromising quality, including leveraging technology, ensuring a well-defined process, and engaging the right people. They emphasize the DOJ’s demand for immediacy, consistency, and impact in investigations, linking efficient, real-time processes with the broader goal of compliance and remediation. The discussion also touches on managing messaging apps and the significance of preparation and proactive processes to meet the Department of Justice’s expectations effectively.

Key Highlights and Issues:

  • Defining Extraordinary Cooperation and Its Challenges
  • The Importance of Real-Time Systems in Investigations
  • Strategies for Efficient and Effective Investigations
  • Leveraging Technology, Process, and People for Speed
  • The DOJ’s Expectations: Immediacy, Consistency, and Impact
  • The Process Nature of Compliance and Investigation

 Resources:

Nick Gallo on LinkedIn

Ethico

The FCPA Survival Guide: Surviving and Thriving a Foreign Corrupt Practices Act Enforcement Action

Tom

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
Blog

The FCPA Survival Guide

Today, I am thrilled to announce my first podcast series based on a book I have written. The book and the podcast series are titled FCPA Survival Guide and Ethico sponsors. The book is available in the Kindle format, and you can purchase it on Amazon.com here. You can listen to the podcast here. In the podcast, I am joined by Nick Gallo, Captain Culture and co-CEO at Ethico, throughout this special 10-part podcast series.

Over the past 18 months, the Department of Justice (DOJ) has clearly and consistently communicated its expectations for any company that finds itself in an FCPA enforcement action. The book and podcast are designed for the compliance professional and business executive who finds themselves in an investigation. It details your steps to obtain the most favorable resolutions possible. Since the advent of the FCPA Corporate Enforcement Policy in 2017 (now Corporate Enforcement Policy), the presumption for any company that self-discloses a potential FCPA violation to the DOJ is declination. Yet even if a company does not self-disclose or there are aggravating factors, a company can take advantage of significant discounts from the DOJ. In the DOJ’s own words, this book and podcast outline what a company can do and its actions to reduce fines and penalties.

The enforcement actions that formed the basis of the book and podcast series involve the following entities: ABB, Albemarle, SAP, and Gunvor. The book includes complete discussions of these enforcement actions and the lessons every compliance professional should take from them. Navigating the complex world of corporate compliance, especially when dealing with the DOJ and Foreign Corrupt Practices Act (FCPA), requires a clear strategy and decisive action. The book and podcast series details the top ten things you should prioritize to ensure your company stays on the right side of the law and minimizes the risks of costly enforcement actions.

1. Self-Disclosure

The DOJ places the highest value on self-disclosure. Companies that voluntarily come forward to report potential violations of the FCPA are more likely to receive favorable treatment. For instance, in the ABB enforcement action, despite the company being unable to disclose its misconduct before the media publicly revealed it, the DOJ still considered ABB’s intent to self-disclose positively. Similarly, in the Albemarle enforcement action, even though the disclosure was delayed by 16 months, the DOJ acknowledged the company’s effort, though it stressed the importance of timely self-disclosure. Kenneth Polite, then Assistant Attorney General, emphasized the importance of self-disclosure by stating that companies that uncover criminal misconduct should voluntarily self-disclose to avoid more severe penalties. The DOJ’s Corporate Enforcement Policy provides significant incentives, such as a presumption against prosecution and reduced penalties, for companies that self-disclose, fully cooperate, and timely remediate.

2. Speed in Reporting

Timely disclosure is critical, but it continues beyond there. The DOJ expects companies to share information with regulators as quickly as they uncover facts, even if they are unsure how this might affect their case. In 2023, Assistant Attorney General Kenneth Polite highlighted the transition from ‘full’ to ‘extraordinary’ cooperation, stressing the importance of immediate and consistent truth-telling and evidence-sharing. The DOJ values collaboration, allowing them to obtain evidence they otherwise could not, such as quickly providing electronic devices or recorded conversations. Companies must be prepared to share information in real time, as seen in the SEC Order against ABB, where the company’s rapid information sharing was crucial.

3. Extensive Remediation

Effective remediation is essential and must be well-documented with data analytics. Companies must invest significantly in compliance personnel, training, and monitoring. ABB, Albemarle, Gunvor, and SAP all demonstrated extensive remediation efforts, including hiring experienced compliance personnel, conducting root cause analyses, and restructuring their compliance programs. Albemarle, for example, strengthened its anti-corruption compliance program by investing in resources, expanding its compliance function, and eliminating the use of sales agents. SAP enhanced its compliance monitoring and audit programs, while ABB continuously tested and monitored.

4. Root Cause, Risk Assessment, and Gap Analysis

Remediation should begin with a root cause analysis, risk assessment, and gap analysis. This approach helps identify the underlying issues and address them effectively. SAP’s Deferred Prosecution Agreement (DPA) emphasized the importance of root cause analysis. The company conducted a thorough analysis, remediated the root causes, performed a gap analysis of internal controls, and conducted a comprehensive risk assessment focusing on high-risk areas and controls around payment processes.

5. Data Analytics

Implementing a data analytics program is now a best compliance practice. It allows for continuous monitoring and measuring of the compliance program’s effectiveness. Albemarle and SAP used data analytics to monitor compliance program effectiveness and identify high-risk transactions. This capability helped them avoid the need for a corporate monitor by demonstrating effective control implementation and testing.

6. Clawbacks and Holdbacks

The DOJ expects companies to include and enforce clawback and holdback provisions in their compensation agreements. These measures ensure that those involved in misconduct do not benefit from their actions. Albemarle and SAP implemented holdbacks, withholding bonuses from employees involved in wrongdoing. This approach penalized the individuals and qualified the companies for additional fine reductions under the DOJ’s Compensation Incentives and Clawbacks Pilot Program.

7. Change in Sales Models

Companies using third-party agents for sales should consider moving to a direct sales model to reduce corruption risks. This change helps ensure better control and compliance oversight. Albemarle eliminated third-party sales agents and switched to a direct sales model. SAP prohibited all sales commissions for public sector contracts in high-risk markets and enhanced its compliance monitoring and audit programs.

8. Enhancement of Compliance Programs

It is crucial to significantly enhance the compliance program, including increasing budget, headcount, and expertise. This enhancement should cover reporting, investigations, and consequence management processes. Albemarle and SAP significantly invested in their compliance programs, restructuring their Offices of Ethics and Compliance, enhancing policies and procedures, and increasing resources devoted to compliance. ABB also invested in compliance testing and monitoring throughout its organization.

9. Internal Controls

Companies must use their internal controls to continuously test, monitor, and improve all aspects of their compliance programs. This approach ensures ongoing effectiveness and adaptability. SAP conducted a gap analysis of its internal controls and enhanced its compliance risk assessment process. ABB invested in controls testing and monitoring, restructuring internal reporting to ensure compliance oversight. Albemarle’s SEC Order highlighted the need for adequate internal controls to prevent and detect improper payments.

10. Investigation Protocol

Having a robust investigation protocol that can quickly triage any claim and escalate decisions. This protocol should facilitate timely self-disclosure and determine the best course of action. A culture of “speak up” encourages employees to report wrongdoing. Effective triage helps prioritize and allocate resources for investigations. Detailed written procedures ensure transparency and responsibility in managing allegations.

These top ten actions provide a roadmap for companies to navigate compliance challenges effectively. These steps, from self-disclosure and rapid information sharing to extensive remediation and robust internal controls, help build a strong compliance program that meets DOJ expectations. Companies can mitigate risks by integrating data analytics, enforcing clawbacks, enhancing compliance efforts, and demonstrating their commitment to ethical conduct.

This is my first pairing of a book and limited podcast series. I hope that however you consume information via written word or audio, I can provide it to you.

Categories
FCPA Survival Guide

FCPA Survival Guide: Step 1 – Self-Disclosure

How can you survive an FCPA enforcement action? In this special podcast series, Tom Fox and Nick Gallo outline the Top 10 things you can do to reduce your overall fine and penalty, perhaps down to a complete declination.

All of the actions you can take come from recent DOJ prosecutions under the FCPA and speeches from DOJ representatives.

This podcast, sponsored by Ethico, is the companion series to the book The FCPA Survival Guide: Surviving and Thriving a Foreign Corrupt Practices Act Enforcement Action.

Today, we discuss the DOJ mandate of timely self-disclosure.

The first lesson in the FCPA Survival Guide is the DOJ’s emphasis on self-disclosure by companies in legal scenarios involving misconduct. Highlighted through the cases of ABB and others, Tom and Nick illustrate the substantial financial leniency the DOJ offers to companies that proactively self-disclose their misconduct versus those that do not.

The DOJ emphasizes the timing of self-disclosure in addition to the self-disclosure itself. Through conversations with experts and analysis of specific cases, Tom and Nick demonstrate the DOJ’s strategy to incentivize self-disclosure and the significant financial implications of either failing to disclose or disclosing in a timely and genuine manner.

Key Highlights and Issues:

  • The Importance of Self-Disclosure in DOJ Cases
  • Analyzing the ABB Case: Lessons on Self-Disclosure
  • DOJ’s Clarity and Intent in Compliance and Self-Disclosure
  • The Critical Timing of Self-Disclosure: The Albemarle Case Study
  • Financial Implications of Failing to Self-Disclose: The SAP Example
  • Conclusion: The DOJ’s Priority on Self-Disclosure

Resources:

Nick Gallo on LinkedIn

Ethico

The FCPA Survival Guide: Surviving and Thriving a Foreign Corrupt Practices Act Enforcement Action

Tom

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
FCPA Compliance Report

FCPA Compliance Report: Kenyen Brown on Preventing DOJ Intervention Through High Policing Standards

Welcome to the award-winning FCPA Compliance Report, the longest running podcast in compliance.

In this special edition of the FCPA Compliance Report, welcome back fan favorite Kenyen Brown, now at his new firm, Thompson Coburn LLP.

Kenyen Brown joins Tom Fox to discuss his experience reviewing the Mobile AL Police Department use of force on behalf of his client, the City of Mobile.

Kenyen Brown is a renowned legal expert with a wealth of experience in investigations and legal work concerning constitutional standards in the use of force. His perspective on this topic is heavily influenced by his extensive background in various roles, such as US Attorney and counsel for Senate and House ethics committees, which has allowed him to deeply understand the intricacies of law enforcement and constitutional standards.

Brown firmly believes that police departments ought to adopt proactive measures, including independent third-party oversight, to align their practices with constitutional standards, particularly in the utilization of force. His experiences, notably his review of the Mobile Police Department’s use of force incidents, have led him to advocate for proactive, independent oversight to improve community relations and prevent deadly force incidents.

He underscores the necessity of reevaluating and enhancing general orders, principles, and training to ensure law enforcement officers’ compliance with constitutional standards, thereby reducing the likelihood of deadly force incidents and potential civil rights violations.

 Highlights in this Episode:

  • Preventing DOJ Intervention Through High Policing Standards
  • Community-Led Oversight: Enhancing Police Department Practices
  • Constitutional Standards for Use of Force
  • Public Involvement in Police Accountability and Transparency
  • Controversial Police Practice: No-Knock Raids

Resources:

Kenyen Brown on LinkedIn

Thompson Coburn LLP

Tom Fox

Instagram

Facebook

YouTube

Twitter

LinkedIn

For more information on the Ethico ROI Calculator and a free White Paper on the ROI of Compliance, click here.