Categories
Compliance Into the Weeds

CCO Certification of Compliance Programs

Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. This week, Matt and Tom take at the recent remarks by DOJ Assistant Attorney General Kenneth Polite on CCO certifications of compliance programs after the conclusion of a DPA. Highlights include:

·      Where did this issue come from?

·      Is its implementation looming?

·      What are the implications for individual CCO liability?

·       What about CEO liability for recidivism?

·      What are the corporate governance implications?
Resources 
Text of Kenneth Polite speech

Categories
Blog

Attributes of a Toxic Corporate Culture

Corporate culture is finally being acknowledged as a key ingredient in a successful business, particularly one which operates ethically and in compliance. The Department of Justice (DOJ) formally recognized the need to assess corporate culture in the speech by Deputy Attorney General Lisa Monaco to the ABA White Collar Conference in October 2021. But what are some indicia of good culture and more importantly what are some indicia of a toxic culture? A recent article in the MIT Sloan Management Review provided some guidance. In Why Every Leader Needs to Worry About Toxic Culture, Donald Sull, Charles Sull, William Cipolli and Caio Brighenti posited that by pinpointing the elements of toxic culture in a company, its leaders focus on addressing the issues that lead employees to disengage and quit. These ideas have significant importance for the compliance function as it navigates corporate culture, both in assessing and improving it.
Moreover, the Chief Compliance Officer (CCO) and corporate compliance function were identified in the 2020 Update to the Evaluation of Corporate Compliance Programs as the keepers of institutional justice and institutional fairness. This mean recognizing and then preventing a toxic culture from spreading and infecting your entire organization is squarely in the compliance wheelhouse. The article lays out key red flags for every CCO and compliance professional to look for in assessing culture. Finally, for any company with a toxic culture, the chances are much greater to be defrauded by its own employees or to defraud others through bribery and corruption by violating such laws as the Foreign Corrupt Practices Act (FCPA).
The authors identify behaviors that they call “the Toxic Five attributes”, being “disrespectful, noninclusive, unethical, cutthroat, and abusive – poison corporate culture in the eyes of employees. While organizational culture can disappoint employees in many ways, these five elements have by far the largest negative impact on how employees rate their corporate culture and have contributed most to employee attrition throughout the Great Resignation.” As a CCO or compliance professional you need to be on the watch for them and take steps to remedy them if you see or hear about them.
Non-inclusive Behavior
This is about whether your employees are “treated fairly, made to feel welcome, and included in key decisions.” It is “the most powerful predictor of whether employees view their organization’s culture as toxic. It applies to all demographic groups; “gender, race, sexual identity and orientation, disability, and age.” It can be outright discrimination to the equally invidious but more subtle conflicts of interests of nepotism and playing favorites. The topic of non-inclusiveness includes “terms like “cliques,” “clubby,” or “in crowd” that indicate that some employees are being excluded without specifying why.”
Disrespectful Behavior
The authors found that “feeling disrespected at work has the largest negative impact on an employee’s overall rating of their corporate culture of any single topic.” Lack of respect can occur in many areas. The most obvious is the lack of a speak up culture where employees understand it is useless to raise issues to management; whether serious matters such as FCPA violations to more straight-forward ideas such as process improvement. It can also be something as simple as whether or not to return to the office on a fulltime basis and whether management listens to employees about their desires to continue working from home or utilize some type of hybrid working arrangement. The authors noted, “whether you analyze culture at the level of the individual employee or aggregate to the organization as a whole, respect toward employees rises to the top of the list of cultural elements that matter most.”
Ethical Behavior
The authors believe that ethics “is a fundamental aspect of culture that matters at both the organizational and individual levels.” Interestingly, there are several different aspects to ‘ethics’ that every CCO needs to consider. Unethical behavior is “about integrity and ethics within an organization.” It also includes dishonesty, which “employees described dishonest behavior in many ways”, from outright lying to making false promises to shading the truth to simply “sugarcoating.” Under regulatory compliance employees talked about failure to comply with applicable regulations, including failure around safety standards.
Cutthroat Behavior
I found this category fascinating as it included both uncooperative co-workers and the lack of harmonization across organizational silos. This was not simply “friction in coordination” but situations where “employees talked about colleagues actively undermining one another.” It included what the authors termed as a “vivid lexicon to describe their workplace, including “dog-eat-dog” and “Darwinian” and talked about coworkers who “throw one another under the bus,” “stab each other in the back,” or “sabotage one another.””
Abusive Behavior
Having worked in law firms long ago, I understand abusive behavior. The authors called it “sustained hostile behavior toward employees” including such actions as “bullying, yelling, or shouting at employees, belittling or demeaning subordinates, verbally abusing people, and condescending or talking down to employees.” While one would hope such behaviors do not exist in the 21st century, they apparently still do. 0.8% of the employees surveyed for the article described their manager as abusive, however, when employees did mention abusive managers, it significantly depressed a corporate culture.
What CCOs and compliance professionals should try to drive forward is a “culture that is inclusive, respectful, ethical, collaborative, and free from abuse by those in positions of power.” But the authors caution that these are really the “baseline elements of a healthy corporate culture.” Employees want more than the basics and other stakeholders in an organization want companies to have strong official core values. In an interview with LRN’s Susan Divers, she called it the ‘value in values’. From the compliance professional’s perspective in means values like integrity, collaboration, respectful, and DEI.

Categories
Compliance Kitchen

Oligarch Task Force

The Kitchen reviews the Department of Treasury, DOJ announcement of a multilateral Russian Elites, Proxies, and Oligarchs (REPO) task force.

Categories
Blog

Will Roger Ng Walk?

One of the most interesting Foreign Corrupt Practices Act (FCPA) criminal trials in sometime is ongoing in New York, that of Roger Ng. The lead up to the trial and in trial reporting efforts have been led by Law360and its lead reporter Stewart Bishop and most of information in this post comes from that site. Unfortunately, it is behind a paywall so if you want to follow it going forward you will have to subscribe. According to Bishop, Ng was charged with conspiring to violate the FCPA and money laundering conspiracy along with his employer Goldman Sachs Group, Inc., its former Southeast Asia chairman Tim Leissner and financier Jho Low. The charges were bribery of “Malaysian and Emirati officials and to circumvent the internal accounting controls of Goldman, which underwrote more than $6 billion in bonds issued by 1MDB in three offerings in 2012 and 2013. Leissner pled guilty over his role in the alleged scheme, while Low has remained abroad, out of reach of U.S. authorities for now.”
The prosecution’s case turns almost exclusively on the testimony of Leissner, one of the most pathological liars ever to grace the witness stand. Indeed, Matthew Goldstein, writing in the New York Times, reported this question by Ng’s defense counsel to Leissner, “Do you think you are good at lying?” Leissner demurred on this question but did admit he had “lied a lot”. Goldstein cited to Rebecca Roiphe, a former prosecutor and a professor at New York Law School who specializes in legal ethics, who related “it could be tricky to rely on such a witness, but “it isn’t a fatal blow.”” She said a prosecutor can argue that a witness is “a horrible person” and “a serial liar” who has had “a come-to-Jesus moment. That can work when you have really bad people who have lied a lot,” she said.””
What do Leissner’s admitted lies consist of? Leissner admitted under cross-examination that he had presented “a bogus divorce decree to his now-estranged wife, the model and fashion designer Kimora Lee Simmons, so that she would marry him eight years ago.” Defense counsel also got Leissner to “recount the many ways he deceived his wives, particularly Ms. Simmons. Mr. Leissner admitted that he had used an email account in the name of his second wife, Judy Chan, to communicate with Ms. Simmons while dating her, and that he was still married to Ms. Chan when he and Ms. Simmons were wed. (Mr. Leissner was also legally married to another woman when he married Ms. Chan.)” Leissner also admitted that some $10MM of his ill-gotten gain from 1MDB was used to “buy a $10 million house for one of his girlfriends (while married) so she would not go to the authorities.”
Of course, Leissner now maintains he is “telling the truth about Mr. Ng, who prosecutors say helped line the pockets of officials in Abu Dhabi and powerful Malaysians close to then Prime Minister Najib Razak.” Leissner testified “Mr. Ng was his primary contact at Goldman, which earned roughly $600 million in fees to arrange the $6.5 billion in bond deals for the fund. “Roger made him one of his clients,” Mr. Leissner said. He testified that Mr. Ng had set up many of the meetings to plan the scheme, including one at Mr. Low’s London apartment during which Mr. Low drew boxes on a piece of paper with the names of all the officials that would get bribes and gifts. For helping arrange the payments, Mr. Leissner said, he raked in more than $80 million. Prosecutors contend that Mr. Ng’s share was $35 million.” Leissner tried to paint Ng as someone very close to Low, even placing Ng “at a star-studded 31st birthday party that Mr. Low arranged for himself in Las Vegas in 2012, although Mr. Ng was not on the guest list.”
But here’s problem No. 1 with this testimony, Ng always worked for and under Leissner during the 1MDB scandal and not the other way round. Leissner admitted under cross that “he — not Mr. Ng — oversaw the payment of most of the bribe money.” As Roiphe later told Goldman, “In a case like this, you hope to avoid a situation where you have a cooperator testifying against someone who is a subordinate.”
Then there is problem No. 2 for the prosecution, which is the government’s claim that Ng received some $35 million in ill-gotten gains from the 1MDB scandal. Ng’s lawyers have responded that any money Ng received, was repayment of a debt one of Leissner’s wives owed Ng’s wife. The prosecution has to show Ng received this money.
As further reported by Bishop, the prosecution concluded its direct case with “An FBI agent on Tuesday outlined how kickbacks allegedly flowed from Malaysian sovereign wealth fund 1MDB to former Goldman Sachs managing director Roger Ng and others.” Bishop wrote the monies allegedly from Chan Leissner’s account, “to another shell company in the name of Ng’s mother-in-law, initially called Silken Waters but later changed to Victoria Square.” Then came another web of shell company transfers into entities controlled by some combination of Ng, his wife, Lim Hwee Bin, and Lim’s mother. Around $300,000 was spent on diamond jewelry, another $20,000 for an hourglass and over $200,000 for the purchase of Bristol Myers Squibb shares, according to the government.” Finally, there was another $3.15 million which went into yet another “account the government couldn’t identify.” Nothing in this adds up to $35 million.
Got all that. Does that money transfer convince you that Ng was the mastermind that Leissner and the government is trying to make him out to be? By putting one of the great liars of all time on the stand as their key witness with only this as the ‘documented’ evidence, the government is risking everything on Leissner’s testimony; that it will be believable and credible and will not taint the government’s case in one juror’s eyes so the government can garner a guilty verdict. Remember, it doesn’t take 12 to acquit, only one.
There is lots of other unbelievable things going on in the Ng trial, but I will save them for another day.

Categories
This Week in FCPA

Episode 296 – the Seeing Green edition


The SEC releases regulations around climate change as Tom take a solo turn to look at some of the week’s top compliance and ethics stories in the Seeing Green edition.

Stories

1.     SEC comes out with climate change regs. Andrew Ross Sorkin in NYTimes Dealbook. Matt Kelly in Radical Compliance. Tom and Matt in Compliance into the Weeds.
2.     SFO spanked again. Andrew Crowley in MLex.
3.     Getting rid of old data critical. Debevoise lawyers in Compliance and Enforcement.
4.     The ‘S’ in ESG. Mike Volkov in Corruption Crime and Compliance.
5.     FINRA and CCO liability. Matt Kelly in Radical Compliance.
6.     IDB debars construction company. Harry Cassin in the FCPA Blog.
7.     First ZTE monitorship ends. Jaclyn Jaeger in Compliance Week (sub req’d)
8.     DOJ raises stakes. Todd Fishman, Noah Brumfield, Eun Woo Jhang and Elaine Johnston in CCI.
9.     Top 6 ESG issues for 2022. Giles Newman in Risk and Compliance Matters.
10.  A Privacy Shield replacement on the horizon? Neil Hodge in Compliance Week(sub req’d) 

Podcasts and More

11.  In March on The Compliance Life, I visit with Audrey Harris, Managing Director at AMI, formerly CCO at BHP. In Part 1, she discussed her academic background and early professional career. In Episode 2, Audrey moved to the CCO chair at BHP. In Episode 3, she moved back to private practice. In Episode 4, she moves to AMI.
12.  Tom has a two part series with Aly McDevitt on her recent Ransomware case study, on Greetings and Felicitations,  Part 1 and Part 2.
13.  Why should you attend Compliance Week 2022? Find out on this episode of From the Editor’s Desk. Listeners get a $200 discount to CW 2022 with the code Fox200. More here.
14.  Tom visits with Pop Hair Art Salon founder, Michele Van Fossen on The Hill Country Podcast.
15.  An undergrad degree focusing on ESG? Jules Oringel explains on the ESG Compliance Podcast.
Tom Fox is the Voice of Compliance and can be reached at tfox@tfoxlaw.com. Jay Rosen is Mr. Monitor and can be reached at jrosen@affiliatedmonitors.com.

Categories
Everything Compliance

Episode 96, the Spring Arrives Edition


Welcome to the only roundtable podcast in compliance. The entire gang was also recently honored by W3 as a top talk show in podcasting. In this episode, we have the quartet of Jay Rosen, Jonathan Armstrong, Tom Fox and Matt Kelly. We conclude with our fan favorite Shout Outs and Rants.

1. Jay Rosen discusses the connection between corruption and the Russian invasion of Ukraine and the leadership differences between Presidents Putin and Zelensky. Rosen rants about Mavericks owner Mark Cuban over the allegations of former GM Donnie Nelson that Nelson was fired for reporting a sexual assault of a Maverick employee.

2. Matt Kelly looks cybersecurity and the state of proposed new rules from the SEC governing the conduct of public companies which sustain a cyber breach.  Kelly rants about West Virginia Senator Joe Manchin opposes electric cars because customers would have to wait too long at charging stations for batteries to be replaced (electric car batteries are recharged not replaced).

3. Jonathan Armstrong looks at the increase in cyber-attacks and ransomware demands and a GDPR enforcement action involving Tucker’s. Armstrong shouts out to TV show editor Marina Ovsyannikova who on live TV in Moscow, stood up to the President Putin by holding a sign which said, “Russian: “Don’t believe the propaganda. They’re lying to you here.” In English it said: “No war … Russians against war.”

4. Tom Fox discusses the recent District Court decision in the Coburn case and what it means for all involved; the DOJ, companies under FCPA investigation and counsel who perform internal investigations. Fox rants about Texas AG Ken Paxton who once again disobeyed a District Court injunction forbidding the state of Texas from investigating the parents of transgender teens for child abuse. 

The members of the Everything Compliance are:
•       Jay Rosen– Jay is Vice President, Business Development Corporate Monitoring at Affiliated Monitors. Rosen can be reached at JRosen@affiliatedmonitors.com
•       Karen Woody – One of the top academic experts on the SEC. Woody can be reached at kwoody@wlu.edu
•       Matt Kelly – Founder and CEO of Radical Compliance. Kelly can be reached at mkelly@radicalcompliance.com
•       Jonathan Armstrong –is our UK colleague, who is an experienced data privacy/data protection lawyer with Cordery in London. Armstrong can be reached at jonathan.armstrong@corderycompliance.com
•       Jonathan Marks is Partner, Firm Practice Leader – Global Forensic, Compliance & Integrity Services at Baker Tilly. Marks can be reached at jonathan.marks@bakertilly.com
The host and producer, ranter (and sometime panelist) of Everything Compliance is Tom Fox the Voice of Compliance. He can be reached at tfox@tfoxlaw.com. Everything Compliance is a part of the Compliance Podcast Network.

Categories
Everything Compliance - Shout Outs and Rants

Everything Compliance – Shout Outs and Rants from Episode 96


In this episode of Shout Outs and Rants, we submit the following for your consideration:
1.Jay Rosen rants about Mavericks owner Mark Cuban over the allegations of former GM Donnie Nelson that Nelson was fired for reporting a sexual assault of a Maverick employee.
2. Matt Kelly rants about West Virginia Senator Joe Manchin opposes electric cars because customers would have to wait too long at charging stations for batteries to be replaced (electric car batteries are recharged not replaced).
3. Jonathan Armstrong shouts out to TV show editor Marina Ovsyannikova who on live TV in Moscow, stood up to the President Putin by holding a sign which said, “Russian: “Don’t believe the propaganda. They’re lying to you here.” In English it said: “No war … Russians against war.”
4. Tom Fox rants about Texas AG Ken Paxton who once again disobeyed a District Court injunction forbidding the state of Texas from investigating the parents of transgender teens for child abuse.
The members of the Everything Compliance are:

  • Jay Rosen– Jay is Vice President, Business Development Corporate Monitoring at Affiliated Monitors. Rosen can be reached at JRosen@affiliatedmonitors.com
  • Karen Woody – One of the top academic experts on the SEC. Woody can be reached at kwoody@wlu.edu
  • Matt Kelly – Founder and CEO of Radical Compliance. Kelly can be reached at mkelly@radicalcompliance.com
  • Jonathan Armstrong –is our UK colleague, who is an experienced data privacy/data protection lawyer with Cordery in London. Armstrong can be reached at armstrong@corderycompliance.com
  • Jonathan Marks is Partner, Firm Practice Leader – Global Forensic, Compliance & Integrity Services at Baker Tilly. Marks can be reached at marks@bakertilly.com

The host and producer, ranter (and sometime panelist) of Everything Compliance is Tom Fox the Voice of Compliance. He can be reached at tfox@tfoxlaw.com. Everything Compliance is a part of the Compliance Podcast Network.

Categories
Compliance Kitchen

Task Force KleptoCapture


The Kitchen looks at the DOJ announces the launch of Task Force KleptoCapture.

Categories
Blog

Tax and Compliance: Why Compliance Should Talk to Tax

What is the intersection of tax and compliance? Why does a Chief Compliance Officer (CCO) or compliance professional need to sit down with the corporate head of tax? How does a corporate tax function fit into a best practices compliance program? It turns out there is quite a bit a compliance professional can learn from a tax professional. Moreover, there are many aspects of tax which should be considered by a CCO and compliance professional from an overall risk management perspective. Unfortunately, these questions are rarely explored in the compliance community.
To explore these issues (and remedy this lack of awareness) I recently sat down with noted tax professional Tracy Howell to explore these and other questions. We tackled these issues and others in a five-part podcast series for Innovation in Compliance. We begin with why compliance should talk to tax and why tax needs to have a seat at the table when it comes to a best practices compliance program.
All publicly traded companies and all organizations have an Enterprise Risk Management (ERM) system. Companies, especially compliance professionals, work diligently to assess and then monitored the identified risks. Moreover, significant efforts are put in place to mitigate and manage these risks. A key risk that every multinational company’s faces is corporate tax. Unfortunately, as Howell noted, “many times corporate tax risk remains under the radar from what is characterized as your normal risk. An entity normally will identify the risk, a legal risk, environmental risk, transactional risk, supply chain risk, and others. But one of the risks that frequently doesn’t get much attention in a formalized ERM program is tax risk.”
These tax risks can be substantial, especially for multinational companies operating in many jurisdictions. Across the globe, jurisdictions are in different stages of development economically and Rule of Law sophistication, which includes tax jurisprudence. This means there are different levels of risk associated with where a company is performing its work, what type of work it is it doing, how it is delivering goods and services and the overall development of the jurisdiction.
Howell asserted that experienced international tax professionals and multinational entities are usually very good at identifying and mitigating tax risk. Unfortunately, such specialized risk management talent does not usually get outside the visibility of a tax department. Howell provided an example of a transactional risk where a company manufactured in one country and then sold the goods through a foreign affiliate in another country to a customer in a third country. “An Indian affiliate contracted with a customer in outside India. The Indian entity needed for the sale of a manufactured good in the US, but it was a drop shipment. The sale was between the Indian entity and a third-party for the delivery in a third country. Legally, the contract went from US to India to the third party in the third country. However, the flow of goods went in a different way; going directly from the US directly to the third country. Internally, the India subsidiary reported the third-party sale as income and then India was trying to deny the deduction for those goods because the goods never entered the territory of India. In other words, India is saying, okay, we’re going to tax the revenue, but we’re not going to let you deduct the cost of goods. And that’s because the goods never entered and left, were exported for the country. It was a tax risk, and it was huge.”
Typically, such a series of events would have no visibility to the corporate compliance function. Now imagine that same series of events where a tax dispute arises and goes on for literally years. Would compliance ever have visibility into it? What would happen if a bribe was paid, or other type of illegal conduct was involved to resolve it? Now you can perhaps begin to see the issue, more particularly if you consider the Lisa Monaco October 2021 speech about the Department of Justice (DOJ) reviewing all disputes and corporate culture.
This type of problem is amplified globally because of the differences in maturity of governmental tax functions across the globe. I asked Howell about this key difference. He said, “it’s the difference between night and day. I lived and worked in Canada, a very mature, sophisticated and developed tax regime, great environment for jurisprudence. And one of the things you learn once you go outside of the US to get rid of the idea of asking the question, well, this is different, why does it work that way? You focus on the rules, laws, and regulations.”
Howell then compared the maturity and sophistication of the tax regime in Canada with that in Russia. He said, “You compare it to some of the other jurisdictions that I’ve lived and worked in, most jurisdictions will all have a tax code, but the street rules or the rules of the jungle play, those are in play. You go into the remote parts of a country that’s five time zones away where it’s very cold and you’re summoned by a tax official in a very remote place, they want to audit you, you’re a multinational. You’re thinking in a traditional sense, this is very organized, there’s a tax law which is your taxable on profits, but the conversation goes something like the following, “Okay, how much tax are you going to pay me?” That’s the question that was asked by a tax official. And I said, “Well, it’s all calculated based on profits, you have the tax returns.” He said, “No, I want to know, how much are you going to pay me now to resolve this?” And he says, “I have a budget and I have to have some contributions.””
This means the tax function must establish the fact that you do not pay bribes, you do not make facilitating payments regarding tax issues, or any other types of payments and, as Howell noted, “you make it real clear. The reality is if you are doing business outside the US more than likely your organization will have complicated tax issues and while it may seem more expensive to deal with them above board, the bottom is you have to follow the Foreign Corrupt Practices Act (FCPA) so you do not put the company at risk, but you have to be strong and you have to be firm.”
Join us tomorrow when we discuss transfer pricing. Check out the full podcast series Taxman: On the Intersection of Tax and Compliance on the Compliance Podcast Network. Check out Tracy Howell on LinkedIn.

Categories
Daily Compliance News

March 11, 2022 the Enablers Edition


In today’s edition of Daily Compliance News:

  • Another BitMex founder pleads guilty. (WSJ)
  • Corruption stripping Cameroon?  (Crux)
  • The Enablers of Russian oligarchs. (NYT)
  • Regime change in Pakistan? (Bloomberg)