Tag: GTE

Categories
Compliance Tip of the Day

Compliance Tip of the Day: Lessons on GTE from John Deere

Welcome to “Compliance Tip of the Day,” the podcast where we bring you daily insights and practical advice on navigating the ever-evolving landscape of compliance and regulatory requirements.

Whether you’re a seasoned compliance professional or just starting your journey, our aim is to provide you with bite-sized, actionable tips to help you stay on top of your compliance game.

Join us as we explore the latest industry trends, share best practices, and demystify complex compliance issues to keep your organization on the right side of the law.

Tune in daily for your dose of compliance wisdom, and let’s make compliance a little less daunting, one tip at a time.

The foundation of any effective whistleblower program is a clear, robust policy that is communicated effectively across the organization.

Categories
Blog

Deere’s FCPA Case: Lessons on Gifts, Travel and Entertainment

We recently had a Foreign Corrupt Practices Act (FCPA) enforcement action that reminded me that everything old is new again in anti-corruption compliance. The Securities and Exchange Commission (SEC) FCPA enforcement action involving Deere has bribery schemes that were torn literally from the first decade of the 21st century as they involved gifts, travel, and entertainment. In other words, it was about a low set of hanging fruit that any compliance officer would see. Yesterday, I laid out the broad strokes of the Deere enforcement action. Today, I want to take a multipart look at the case and see what lessons the enforcement action can provide to the 2024 compliance professional.

Between 2017 and 2020, Wirtgen Thailand engaged in a series of corrupt practices aimed at securing government tenders from key agencies, including the Royal Thai Air Force (RTAF), the Department of Highways (DOH), and the Department of Rural Roads (DRR). These practices, including bribery, improper entertainment, and falsifying company records, clearly violated Wirtgen Group’s Code of Business Conduct. The total value of the tenders awarded due to these corrupt practices exceeded $6 million. Below is a detailed account of the amounts paid and the benefits conferred through these illicit activities.

Massage Parlors

Any expense reimbursement request submitted that references a ‘massage parlor’ would immediately raise a Red Flag and be set aside for additional investigation. (And you would be correct.) But in the Deere enforcement action, we had multiple trips for foreign government officials sent to massage parlors.

From late 2017 through 2020, Wirtgen Thailand routinely entertained government officials from RTAF, DOH, and DRR at various massage parlors in Thailand. These expenses were falsely documented as legitimate business costs and often rounded to appear less suspicious. Wirtgen’s Managing Director for Southeast Asia and the Managing Director of Wirtgen Thailand approved these expenses despite company policies that expressly forbid bribery or improper influence.

  1. RTAF. In November 2019 and March 2020, Wirtgen Thailand incurred expenses at massage parlors to entertain high-ranking RTAF officers involved in tender processes. A high-level RTAF officer responsible for drafting and awarding tenders was entertained on multiple occasions, resulting in Wirtgen Thailand winning two tenders in March and April 2020, valued at approximately $665,000.
  2. DOH. Wirtgen Thailand also engaged in similar activities to influence DOH officials. For example, in March 2017, a $15,000 expense was recorded for entertaining 15 members of a DOH tender committee at a massage parlor. Subsequent entertainment expenses, including those in July 2018 and December 2018, continued this pattern. As a result, Wirtgen Thailand secured multiple tenders, including a $2,303,294 tender in December 2018, a $498,567 tender in October 2019, and a $1,451,432 tender in November 2019.
  3. In December 2019, Wirtgen Thailand entertained DRR officials at massage parlors, incurring expenses of approximately $10,000. This effort paid off when DRR awarded Wirtgen Thailand a $1,283,905 tender in April 2020. Notably, two of the four DRR signatories on this tender had received entertainment from Wirtgen Thailand during the December 2019 visit.

In total, Wirtgen Thailand spent over $58,000 on improper massage parlor entertainment for government officials. These expenses were falsely recorded on the company’s books and records, often listed in round numbers with vague descriptions such as “entertainment.” This widespread bribery directly influenced the outcome of several tenders, leading to the award of contracts worth millions of dollars.

Bribery Through a Sightseeing Trip Disguised as a “Factory Visit”

In another scheme, Wirtgen Thailand paid for an elaborate eight-day sightseeing trip for four DOH officials and two of their spouses under the pretense of a “factory visit” to its facilities in Germany. However, the itinerary consisted of luxury sightseeing in Switzerland, with visits to Interlaken, Zermatt, and Lake Lucerne, shopping excursions, and stays in high-end hotels. The total cost of this trip was approximately $47,500.

During this period, Wirtgen Thailand submitted a bid on a DOH tender. After the trip concluded, Wirtgen Thailand was awarded a tender on October 16, 2019, valued at $498,567. A month later, on November 20, 2019, Wirtgen secured another tender worth $1,451,432. The trip and the subsequent awards were orchestrated without following Deere’s internal compliance procedures, which required detailed documentation and prior approval for such visits. The Managing Director for Southeast Asia knowingly approved these expenses, citing the need to “gain information and build rapport” with government customers.

What was wrong with these trips? Basically, everything. What makes all of this even more egregious is that the rules around gifts, travel, and entertainment for clients have long been known since at least 2007, when the Department of Justice (DOJ) issued Opinion Releases 07-01 and 07-02, which detailed the DOJ’s expectations for GTE going forward.

The key elements are:

  1. The purpose of the visit is to familiarize the delegates with the nature and extent of the requestor’s operations and capabilities and to help establish the requestor’s business credibility.
  2. The visit will last four days and will be limited to domestic economy class travel to only one U.S. operations site.
  3. The requestor also intends to pay for the six officials’ domestic lodging, local transport, and meals.
  4. The foreign government plans to pay the costs of the international airfare.
  5. The company did not select the delegates who would participate in the visit.
  6. The company will pay all costs directly to the providers; no funds will be paid directly to the foreign government or the delegates.
  7. The company will not pay any expenses for spouses, family, or other officials’ guests.
  8. Any souvenirs the requestor may provide to the delegates would reflect the requestor’s name and/or logo and be of nominal value.
  9. The Company will not fund, organize, or host any entertainment or leisure activities for the officials, nor will it provide the officials with any stipend or spending money.

Falsification of Records

The expenses related to both the massage parlor entertainment and the sightseeing trip were improperly recorded as legitimate business expenses in Wirtgen Thailand’s books. None of these activities complied with the company’s policies and procedures regarding interactions with government officials. Senior management routinely approved these expenses without adequate scrutiny, bypassing the company’s compliance framework.

As noted above in Opinion Release 07-01, “All costs and expenses incurred by the requestor in connection with the visit will be properly and accurately recorded in the requestor’s books and records.” This means that not only is it a requirement for companies to accurately record their legitimate travel expenses in their books and records, but it is also a separate violation when there is a failure to do so. Deere did not meet this standard.

The total value of the corrupt payments and benefits provided to RTAF, DOH, and DRR officials through these schemes amounted to over $105,500, while the total value of the tenders awarded to Wirtgen Thailand because of these illicit practices exceeded $6 million.

Wirtgen Thailand’s actions highlight a significant breakdown in compliance oversight and internal controls. The deliberate falsification of records and the use of bribery to secure government contracts violated the company’s own Code of Business Conduct and exposed it to severe legal and reputational risks. These events serve as a stark reminder to compliance professionals of the critical importance of robust compliance monitoring and the need for stringent enforcement of anti-bribery policies.

To prevent such violations, companies must ensure that their compliance programs are well-designed and actively enforced, with continuous monitoring to detect and address potential breaches. This case underscores the necessity of a proactive approach to compliance, where ethics and integrity are prioritized at every level of the organization.

Categories
Compliance Tip of the Day

Compliance Tip of the Day: Lesson from The John Deere FCPA Enforcement Action – Gifts, Travel and Entertainment

Welcome to “Compliance Tip of the Day,” the podcast where we bring you daily insights and practical advice on navigating the ever-evolving landscape of compliance and regulatory requirements.

Whether you’re a seasoned compliance professional or just starting your journey, our aim is to provide you with bite-sized, actionable tips to help you stay on top of your compliance game.

Join us as we explore the latest industry trends, share best practices, and demystify complex compliance issues to keep your organization on the right side of the law.

Tune in daily for your dose of compliance wisdom, and let’s make compliance a little less daunting, one tip at a time.

The basics of GTE have been in place since 2007, in opinion Release 07-01. Pressure tests your GTE policies and procedures to make sure your compliance program still meets them.

Categories
Blog

The John Deere’s FCPA Case: A Throwback to Compliance Fundamentals

In corporate compliance, some very basic compliance lessons are destined to be repeated. This was clear from the recently announced Securities and Exchange Commission (SEC) Foreign Corruption Practices Act enforcement action involving Deere (John Deere herein). The $9.9 million settlement between John Deere and the SEC involved FCPA violations at its Wirtgen Group subsidiary. It offers a stark reminder that even the most established companies can stumble over basic compliance principles. For those in the compliance community, this case highlights the importance of robust integration post-acquisition and serves as a throwback to classic FCPA pitfalls that should have been avoided.

The John Deere Case: A Synopsis

According to the SEC Press Release announcing the resolution, “From at least late 2017 through 2020, Wirtgen Thailand employees bribed Thai government officials with the Royal Thai Air Force, the Department of Highways, and the Department of Rural Roads to win multiple government contracts and also bribed employees of a private company to win sales to that company. The order finds that the bribes included cash payments, massage parlor visits, and international travel for government officials and private company employees. According to the SEC’s order, Wirtgen Thailand made approximately $4.3 million in profits” from these bribes. The improper payments were inaccurately recorded as legitimate expenses in Deere’s books and records.

The settlement resulted in John Deere paying $9.9 million in penalties and disgorgements. While the case details could easily be mistaken for a compliance nightmare from the early 2000s, it happened just last year, making it a timely cautionary tale for compliance professionals today.

The Importance of Post-Acquisition Integration

One of the most glaring issues in this case was John Deere’s failure to integrate Wirtgen’s operations into its compliance program swiftly. This lapse is a textbook example of the risks arising when companies fail to prioritize compliance during and after mergers and acquisitions. The SEC’s settlement order emphasized this point, making it clear that Deere’s delay in extending its compliance framework to Wirtgen created an environment where bribery and corruption could thrive unchecked.

This raises critical questions for compliance professionals: How quickly can we realistically integrate an acquired company into our compliance program? What resources are needed to ensure this integration happens efficiently? The answers to these questions are theoretical; they have real-world implications for preventing violations and avoiding costly enforcement actions.

The Role of Internal Controls and Red Flags

The SEC’s order also highlighted several internal control failures and red flags Deere’s compliance team should have caught regarding gifts, travel, and entertainment (GTE). Expense reports with round numbers, lack of detail in expense documentation, and including non-existent employees to justify expenses are all classic indicators of fraud and bribery. Yet, these obvious signs were missed—or worse, ignored. What makes all of this even more egregious is that the rules around gifts, travel, and entertainment for clients have long been known, since at least 2007 when the Department of Justice (DOJ) issued Opinion Releases 07-01 and 07-02, which detailed the DOJ’s expectations for GTE going forward.

This oversight suggests a deeper issue: a lack of robust internal audit and compliance mechanisms within Deere at the time. It is a stark reminder that strong internal controls are not just a regulatory requirement but essential tools for detecting and preventing unethical behavior. The lesson for compliance officers is to continually assess and strengthen these controls, ensuring they can identify red flags before they escalate into full-blown violations.

The Perennial Importance of Pre-Acquisition Due Diligence

Another critical aspect of this case is the apparent need for thorough pre-acquisition due diligence. The SEC’s order does not mention evidence of John Deere conducting such due diligence before acquiring Wirtgen, raising serious concerns about the company’s risk assessment process. In high-risk markets like Thailand, where corruption is pervasive, skipping or skimping due diligence can be costly.

Compliance professionals should take this as a reminder to prioritize comprehensive due diligence in any acquisition, especially when the target operates in regions of corruption risks. This includes reviewing the target’s compliance program and understanding its business practices, key relationships, and potential vulnerabilities. As Deere’s case demonstrates, failure to do so can expose a company to significant legal and financial liabilities.

Positive Steps and Root Cause Analysis

While the case against John Deere is filled with the company’s missteps, the company’s response post-settlement also offers some positive lessons. John Deere has enhanced its internal audit and compliance programs, including launching an in-house compliance podcast and a bi-monthly compliance newsletter. These initiatives reflect an effort to improve the company’s tone at the top and engage employees in ongoing compliance education.

Moreover, Deere’s commitment to conducting a root cause analysis is particularly noteworthy. We saw this set out by the DOJ in its enforcement action involving SAP earlier this year. Understanding the root causes of compliance failures is crucial for preventing future violations. In this case, the root cause seems to stem from a failure to integrate Wirtgen into John Deere’s compliance framework rather than from deficiencies in accounting or transparency. This distinction highlights the need for companies to identify compliance gaps and address the underlying issues that allow those gaps to exist in the first place.

For compliance professionals, the takeaway is clear: a robust root cause analysis is a vital component of any remediation effort. Whether conducted by the compliance team, internal audit, or an external party, this analysis should be thorough and inform subsequent risk assessments and program improvements.

Learning from the Past

In many ways, the John Deere case feels like a throwback to the early days of FCPA enforcement, when companies were still learning the ropes of anti-bribery compliance. The violations at Wirtgen Thailand are reminiscent of the kind of misconduct that the DOJ and SEC have warned against for over a decade, with the GTE issues mandated nearly 15 years ago. Yet, here we are in 2024, still grappling with the same basic issues.

The John Deere enforcement action serves as a sobering reminder that the fundamentals of compliance—strong internal controls, thorough due diligence, timely post-acquisition integration, and ongoing risk assessment—are as relevant today as they were 20 years ago. The challenge for compliance professionals is ensuring that these fundamentals are understood and deeply embedded in the company’s culture and operations.

Ultimately, the John Deere case is a call to action for the compliance community. It reminds us that even large, sophisticated companies can falter if they lose sight of the basics. It prompts us to revisit those basics in our organizations, ensuring that we are not just keeping up with the latest trends in compliance but also mastering the fundamentals that will protect our companies from tomorrow’s risks.

Categories
Compliance Into the Weeds

Compliance into the Weeds: Everything Old is New Again – The John Deere FCPA Enforcement Action

The award winning, Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. Looking for some hard-hitting insights on compliance? Look no further than Compliance into the Weeds!

In this episode, Tom Fox and Matt Kelly take a deep dive into the recent Securities and Exchange Commission FCPA enforcement action involving John Deere.

The case centers on a $10 million civil penalty imposed by the SEC for bribery activities in the Thailand office of a newly acquired subsidiary, Wirtgen Group. This transgression spanned from 2017 to 2020, and despite having a code of business conduct, Wirtgen employees flouted rules by falsifying expenses, entertaining government officials at massage parlors, and engaging in a luxury sightseeing tour under the guise of a factory visit.

A critical issue was John Deere’s delayed integration of Wirtgen into its compliance program, leading to internal control lapses and obvious red flags in expense reports. Although Deere has since taken significant remedial actions, including firing culpable employees and enhancing its compliance and internal audit programs, the situation underscores persistent compliance challenges even for large, sophisticated firms. This episode serves as a reminder of the essential compliance lessons from past decades that firms must steadfastly adhere to.

Key Highlights:

  • Details of the Bribery Scheme
  • Internal Control Violations
  • Pre- and Post-Acquisition Due Diligence Issues
  • Remedial Steps and Improvements
  • Root Cause Analysis and Lessons Learned

Resources:

Matt in Radical Compliance

Tom

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
Daily Compliance News

Daily Compliance News: July 24, 2024 – The Menendez Resigns Edition

Welcome to the Daily Compliance News. Each day, Tom Fox, the Voice of Compliance, brings you compliance-related stories to start your day. Sit back, enjoy a cup of morning coffee and listen to the Daily Compliance News. All from the Compliance Podcast Network.

Each day, we consider four stories from the business world: compliance, ethics, risk management, leadership, or general interest for the compliance professional.

In today’s edition of Daily Compliance News:

  • Senator Menendez submits his resignation.  (Reuters)
  • Is the doctor’s GTE registry working? (WSJ)
  • Meta tells the EU not to regulate us. (FT)
  • Delta is under investigation.  (NYT)

 

For more information on the Ethico ROI Calculator and a free White Paper on the ROI of Compliance, click here.

Categories
Compliance Into the Weeds

Compliance into the Weeds: 3M FCPA Enforcement Action

The award winning, Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. Looking for some hard-hitting insights on sanctions compliance? Look no further than Compliance into the Weeds! In this episode, Tom and Matt consider the recent FCPA enforcement action involving the Chinese business unit of 3M.

The importance of post-event documentation and monitoring in preventing fraud and corruption cannot be overstated, as highlighted by the recent FCPA incident involving 3M China. Tom believes that while training and control environment adjustments are crucial, they may not be enough to prevent misconduct if individuals are determined to commit such acts. He emphasizes the need for hard evidence, such as post-event documentation, and recommends looking to the heavily regulated pharmaceutical sector for guidance.

Matt stresses the importance of rigorous post-event documentation to ensure the legitimacy of business activities. Both Fox and Kelly gained these insights from their extensive experience in the field of compliance and their analysis of various fraud cases. To learn more about their unique perspectives on post-event documentation and monitoring, join them on this episode of the Compliance into the Weeds podcast. 

Key Highlights

·      Background facts

·      GTE in FCPA enforcement actions

·      What happens when conduct is done secretly

·      Concerns over the use of messaging apps

·      Lessons Learned

 Resources

Matt in LinkedIn

Tom –blog post on the FCPA Compliance and Ethics Blog

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
Blog

3M in China-Where Secret Travel = FCPA Violations

You know that when the Securities Exchange Commission (SEC) uses the word ‘secretly’ when discussing a corporate program, it is a seriously not good look. That is certainly the case in the recently announced Foreign Corrupt Practices Act (FCPA) enforcement action involving 3M’s Chinese business unit. In an Order, outlining the facts and FCPA violations it stated, “During the Relevant Period, a former 3M-China marketing manager (the “Marketing Manager”) colluded with two China-based travel agencies (the “China Travel Agencies”) to secretly provide Tourism Activities for Chinese Government Officials during Educational Events. The Marketing Manager was aided in the scheme by several employees in 3M-China’s sales, marketing and professional services departments.” [emphasis supplied] For its ‘secret’ scheme without admitting or denying the SEC’s findings, 3M agreed to pay $4.5 million in prejudgment interest and disgorgement and a civil penalty of $2 million or a total of $6.5 million.

Background

The Order recited that certain 3M-China Employees targeted influential officials of Chinese state-owned enterprises and Chinese Government Officials for attendance at overseas Educational Events and, in collusion with the China Travel Agencies. To facilitate this scheme, 3M-China Employees would create a travel itinerary that included various legitimate business, training and marketing activities for submission to 3M-China’s compliance personnel for approval. However there were “alternate itineraries (the “Alternate Itineraries”)” planned which consisted of various Tourism Activities at or near the location of the Educational Events. There were free travel and lodging provided which “were designed to improperly induce the Officials to purchase 3M products, and violated company policy.”

Interestingly, the 3M-China Employees circulated the Alternate Itineraries through hand delivery or personal WeChat accounts or ephemeral messaging. The 3M-China Employees asked the participants to keep the agenda hidden, and falsified internal compliance documents so that the Tourism Activities were not shown to be planned as part of the overseas trip.

There were several indicia which demonstrated the travel was not for business purposes but for recreational purposes. From the Order it stated

(a) Tourism Activities were scheduled at the same time as the Educational Event activities;

(b) the ostensibly Educational Events were in English, and the trips included Chinese Government Officials who neither understood English nor had adequate translation services;

(c) at times Chinese Government Officials missed whole days of the Educational Event or simply never attended at all; and

(d) Certain Chinese Government Officials also requested Tourism Activities as part of the overseas trip.

To fund these illegal activities, 3M-China Employees would at times work with the collusive China Travel Agencies to inflate their billing invoices for ostensibly legitimate expenses such as  travel costs. In other instances, the 3M-China Employees submitted unpermitted invoices directly to the China Travel Agencies for reimbursement rather than to 3M China. Finally, the China Travel Agencies, with the support of the 3M-China Employees, at times directed that 3M-China’s distributors pay for portions of the non-reimbursable expenses. Rather stupidly from a legal and compliance perspective, 3M China employees measured the impact that this corruption had on sales. They tracked the effect of providing overseas travel on 3M-China’s sales to SOE Customers. One 3M-China Employee tracked post-trip sales “to ensure they were consistent with 3M-China’s sales goals. Most amazingly “3M-China management asked for the “return on investment” from an Educational Event (i.e. the effect of providing health care officials with overseas travel on sales to the SOE Customer) by comparing sales figures before and after an Educational Event.”

Finally, “from at least 2014 through 2017, 3M-China paid nearly $1 million to fund at least 24 trips for Chinese Government Officials that included Tourism Activities. The costs of these trips were improperly recorded in 3M’s books and records as legitimate business expenses, without any indication that they included Tourism Activities. As a result of the above conduct, 3M improperly benefited by at least $3.5 million from increased sales.”

Discussion

There are several key lessons to be garnered from this FCPA enforcement action. One key lesson from this case is that if your organization is paying for attendance at educational events, the value of rigorous post-event documentation, such as sign-in sheets and attendance verification is critical. By ensuring that officials were present at the events they are paid for, transparency is enhanced, and corruption can be prevented as your employee base will know that compliance is providing oversight and monitoring. This approach draws from the pharmaceutical sector, which has implemented stringent event monitoring practices.

The importance of post-event documentation and monitoring extends beyond coruption prevention. It also plays a crucial role in compliance efforts. By thoroughly documenting events and activities, companies can demonstrate their commitment to ethical business practices and compliance with regulations. This documentation serves as evidence of due diligence and can be invaluable in audits and investigations.

However, compliance professionals must strike a balance between the level of control and the resources required for documentation. While it is essential to have robust controls in place, excessive bureaucracy can hinder efficiency and productivity. Finding the right balance is crucial to ensure compliance without impeding business operations.

Another challenge lies in the use of ephemeral messaging, as seen in the Three M China case. Ephemeral messaging platforms, which automatically delete messages after a certain period, can raise concerns about transparency and compliance. While these platforms may have legitimate uses in private communications, their use in a corporate setting can be seen as a less than transparent attempt to conduct business ethically. Compliance professionals should carefully consider the implications of using such platforms and evaluate whether they align with their organization’s compliance objectives.

Data analytics also play a significant role in post-event documentation and monitoring. By leveraging advanced analytics tools, companies can detect patterns and anomalies that may indicate fraudulent activities. For example, multiple payments to the same vendor by different entities within the extended enterprise can be a red flag worth investigating. Implementing robust data analytics capabilities can enhance the effectiveness of post-event monitoring and help identify potential compliance risks.

In conclusion, the 3M China FCPA enforcement action underscores the importance of post-event documentation and monitoring in fraud prevention and compliance efforts. Rigorous documentation practices, inspired by the pharmaceutical sector’s approach, can enhance transparency and prevent corruption. However, finding the right balance between control and efficiency, addressing challenges associated with ephemeral messaging, and leveraging data analytics are crucial for effective post-event documentation and monitoring. By prioritizing these factors, companies can strengthen their compliance programs and mitigate the risks associated with fraudulent activities.

Categories
31 Days to More Effective Compliance Programs

One Month to More Effective Internal Controls – Internal Controls for Gifts, Travel and Entertainment

While many compliance practitioners believe that employee expense reports are a sufficient internal control of gifts because there are other ways in which a gift can be presented, other controls must be considered. Once your company policy on gifts has been finalized, the internal controls over expense reports fall into three primary areas:

  1. The expense report format, including what information it requires.
  2. Controls over the submitting employee and the preparation of the expense report.
  3. Controls to ensure the approvers do their review process properly.

Internal controls around gifts can be used in various ways in your best practices compliance program. They can certainly be used to detect an issue and perhaps even prevent an issue from becoming a full-blown FCPA violation; however, by using some of the techniques that Howell has suggested, you can move your compliance program to a proscriptive phase where you not only stop an issue from becoming a violation but through identification, you can move towards remediation as a part of your ongoing compliance efforts. The bottom line is that good internal controls make for good business processes; if you can move your compliance program’s internal controls forward, you can help make them a part of your financial controls and, thereby, have a better-run company. 

Three Key Takeaways:

  1. GTE compliance internal controls are low-hanging fruit. Pick them.
  2. Compliance with internal controls can be both detected and prevented controls.
  3. Good compliance with internal controls is good for business.

For more information on how to build out a best practices compliance program, including internal controls, check out The Compliance Handbook, 3rd edition.

Categories
31 Days to More Effective Compliance Programs

One Month to More Effective Internal Controls – Discipline and Rigor In Your Internal Controls

New York Times columnist David Brooks’ thoughts on building and maintaining order inform the discussion on rigor in your internal controls. In internal controls, I believe it is incumbent to consider not only the most obvious risk areas for your internal controls but also the universe of potential transactions within a company’s operations. There is a clear need for rigor in your internal controls protocols. Adherence to that rigor can increase operationalization around the internal controls a company should consider, including gifts, travel, and entertainment expenses. Brooks said, “Building and maintaining order … requires toughness of mind and rigid discipline to serve your own work properly.” By having the rigor to institute and enforce the types of internal controls identified, you can go a long way toward detecting and, more importantly, preventing an FCPA violation from occurring.

Some of the key areas of Internal Control focus should be:

·       The Delegation of Authority (DOA)

Petty cash disbursements

·       Travel

·       P-Cards

·       Employee Expense Reports

·       Corporate checks and wire transfers, such as check requests, purchase orders, or vendor invoices.

·       Gifts and business entertainment

Three key takeaways:

1. You must maintain rigor around your internal controls.

2. Controls against fraud can also help to prevent corruption.

3. Building and maintaining good internal controls requires rigor.