Tag: incentives

Categories
Blog

The Culture Builder’s Trilogy: Part 3 – The Art of Celebration: What Compliance Chooses to Honor Becomes Culture

Ed. Note: We conclude our three-part blog post series on three recent books by Hemma Lomax and Ashley Dubriwny. There are The Art of Ideation, The Art of Celebration, and The Art of Implementation.

The final book in Hemma Lomax and Ashley Dubriwny’s trilogy, The Art of Celebration, completes the arc. Ideation imagines what is possible. Implementation gives that possibility form. Celebration sustains the culture by recognizing what matters, reinforcing what works, and creating the memory that carries the organization forward.

For compliance professionals, celebration may sound like the least obvious compliance discipline. That would be a mistake. The authors make clear that celebration is not decorative. It is strategic. It is a feedback system. It teaches people what the culture values. It turns behaviors into norms and norms into identity. The compliance lesson is profound: what the organization celebrates, it multiplies.

Lesson One: Recognition Is a Control Signal

The DOJ’s Evaluation of Corporate Compliance Programs (ECCP) focuses on incentives and consequences, providing compliance professionals with a regulatory rationale to take compliance seriously. The DOJ’s compensation and clawback Pilot Report states that prosecutors consider whether companies use positive incentives for ethical behavior and compliance leadership, whether compensation systems include compliance criteria, and whether companies penalize breaches of the compliance program.

That means recognition is not merely an HR activity. It is part of the control environment. When a company celebrates only sales growth, deal speed, cost reduction, or heroic problem-solving after avoidable chaos, employees learn what really matters. When a company celebrates employees who pause a transaction over a red flag, escalate a concern, improve a control, cooperate in an investigation, or protect a colleague from retaliation, employees learn a different lesson. The question for the CCO is not whether the company celebrates. Every company celebrates something. The question is whether those celebrations are aligned with the Code, controls, risk appetite, and ethical commitments.

Lesson Two: Celebration Can Strengthen Speak-Up Culture

The Art of Celebration explains that appreciation and recognition can foster conditions of trust, belonging, openness, and moral reasoning. The book ties celebration to the willingness to speak up, take healthy risks, protect colleagues, and choose integrity. This has direct compliance relevance. Employees do not report concerns simply because the hotline exists. They report when they believe the organization values truth over comfort. They report when managers respond with care. They report when prior reporters were not punished, isolated, or ignored.

Celebration can reinforce this. A company should not publicly identify confidential reporters, but it can celebrate the behavior of raising concerns, asking hard questions, and improving systems. It can share anonymized stories showing that reports led to meaningful improvements. It can recognize managers who receive concerns well. It can reward teams that identify and remediate control gaps before they become enforcement problems.

Lesson Three: Celebration Must Be Aligned, or It Becomes Dangerous

The authors are careful to address the shadow side of celebration. Misaligned recognition can distort culture. They cite examples where companies celebrated the wrong behaviors, including aggressive sales targets, engineering brilliance without ethical oversight, deal-making over transparency, speed over safety, and ambition over rigor.

This is where compliance professionals should pay close attention. Wells Fargo did not fail because it lacked stated values. It failed because its operating incentives and recognition systems pushed employees to open accounts at any cost. Boeing’s 737 MAX crisis offers another cautionary tale about what can happen when cost, schedule, and production pressure overwhelm engineering judgment and safety culture. Volkswagen shows the risk of celebrating technical performance while ethical guardrails lag. Celebration is therefore not harmless. It is a governance tool. If the company celebrates the wrong thing, it creates evidence of cultural misalignment. If it celebrates the right thing, it demonstrates culture in practice.

Lesson Four: Metrics of Morale Must Be Ethical

One of the most forward-looking sections of The Art of Celebration addresses the “metrics of morale.” The authors explore how organizations can use communications data, sentiment analysis, wearables, AI-assisted pattern recognition, and cultural dashboards better to understand trust, stress, belonging, and burnout. They also warn that these tools must be used as coaching, not surveillance, systems. Participation should be voluntary, data should be aggregated, and insights should improve systems rather than punish individuals.

That is a critical lesson in AI governance. AI can help compliance detect cultural signals, emerging risks, retaliation patterns, training gaps, and control friction. But AI can also chill speech, invade privacy, amplify bias, or turn culture monitoring into employee surveillance. For CCOs, the right framework is clear. Use AI to improve governance, risk sensing, and employee support. Anchor it in transparency, purpose limitation, access controls, human review, and documented risk assessment. Align the work with NIST AI Risk Management Framework, ISO/IEC 42001, privacy principles, and the company’s own AI governance program.

Lesson Five: Rituals Preserve Culture Under Pressure

The book’s discussion of rituals is especially important for compliance. Rituals are repeated practices that teach a community what to remember. In compliance, rituals can include investigation debriefs, quarterly risk reviews, third-party red-flag meetings, manager speak-up moments, annual code refresh discussions, control-owner certifications, AI use reviews, and post-remediation lessons learned.

A ritual is stronger than a reminder. A reminder tells people to do something. A ritual teaches people who they are. This matters under pressure. When a quarter-end target is at risk, when a sales team faces a red flag, or when a senior leader wants to move quickly, the organization will not live up to the words in its code. It will fall to the level of its practiced rituals. If those rituals include escalation, challenge, documentation, and accountability, the culture has muscle memory.

Compliance Application

Celebration belongs in the compliance program because it helps answer one of the DOJ’s most important practical questions: Does the company incentivize compliance and ethical behavior in a meaningful way? The Criminal Division’s compensation pilot report states that companies that proactively design compensation systems to incentivize ethical behavior and that adopt company policies are better positioned to prevent misconduct, generate reports, address incidents before they escalate, and build a company-wide culture of compliance.

A mature compliance program should therefore examine recognition, promotion, compensation, awards, leadership messaging, and performance management as part of the control environment. The CCO should ask not only what misconduct is punished but also what integrity is honored.

CCO Questions

  • What behaviors does the company currently celebrate, formally and informally?
  • Do performance reviews, promotions, bonuses, and awards reflect ethical leadership and control ownership?
  • Are speak-up, cooperation, remediation, and control improvements recognized as business contributions?
  • Do we use cultural data and AI responsibly, or are we creating surveillance risk?
  • What rituals reinforce the compliance program under pressure?

Practical Takeaways

  1. Inventory what the company celebrates in awards, town halls, performance reviews, and leadership communications.
  2. Align recognition with the Code, internal controls, speak-up expectations, and risk management priorities.
  3. Create anonymized speak-up success stories that show reporting leads to improvement.
  4. Review incentive structures for misconduct risk and compliance-positive behaviors.
  5. Build compliance rituals that preserve culture: pre-mortems, post-investigation lessons learned, recognition of control owners, third-party red-flag reviews, and AI governance check-ins.

Conclusion: The Compliance Culture Builder’s Discipline

Taken together, Hemma Lomax and Ashley Dubriwny’s trilogy offers compliance professionals something more than a culture-building framework. It offers a practical operating model for program effectiveness. The Art of Ideation reminds us that compliance begins with better questions, deeper listening, and the courage to design around employees’ lived experiences. The Art of Implementation shows that even the best ideas fail unless they are operationalized through alignment, ownership, testing, adoption, and iteration. The Art of Celebration completes the cycle by showing that culture is sustained by what the organization chooses to recognize, repeat, and remember. This is the full arc of a mature compliance program: imagine wisely, execute consistently, and reinforce intentionally.

For the CCO, the message is clear. Culture is not an abstraction, and it is not a slogan. It is built through the systems employees use, the controls they trust, the concerns they feel safe raising, the incentives they see rewarded, the investigations they experience as fair, and the stories leaders choose to elevate. The DOJ’s ECCP asks whether a compliance program is well designed, adequately resourced, empowered to function, and working in practice. This trilogy gives compliance professionals a human-centered way to answer those questions with evidence. Ideation creates the insight. Implementation creates the operating discipline. Celebration creates the cultural memory.

The larger lesson is that compliance professionals are not simply policy owners, trainers, investigators, or risk managers. They are culture builders. They help organizations decide what matters, operationalize those commitments, and ensure they endure under pressure. In an era of AI governance, third-party complexity, speak-up expectations, incentive scrutiny, and board oversight, this work is more important than ever. The compliance programs that will matter most are not the ones with the most polished documents. They are the ones where employees know how to act, leaders know what to reinforce, controls work in practice, and the organization honors integrity as a business discipline.

That is the power of the trilogy. It takes us from possibility to practice to permanence. It reminds us that compliance effectiveness is not created in a single policy rollout, annual training event, or investigation report. It is created over time through disciplined attention to what people need, how work happens, and what the organization chooses to celebrate. For the modern compliance professional, this is both the challenge and the opportunity: to build a culture where ethics is not episodic, controls are not ornamental, and integrity is not merely stated. It is lived, reinforced, and carried forward.

Categories
Blog

Isaac Newton and the Hidden Forces Behind Misconduct

Today, we conclude our exploration of Enlightenment Thinkers to see their influence on modern compliance programs. This week’s category is broader than philosophers, as many of these men excelled in numerous fields, including science, mathematics, calculus, and medicine. However, each contributed a key component that relates directly to our modern compliance regimes. In this concluding post, we consider Isaac Newton’s theorem that misconduct is rarely random.

If Francis Bacon taught us that a compliance program must be grounded in evidence, René Descartes taught us that evidence must be examined with rigor, John Locke taught us that the system must be legitimate, and Thomas Hobbes taught us that institutions need order, Isaac Newton brings this series to its final and perhaps most powerful insight: misconduct is rarely random. Forces drive it. Pressures. Incentives. Structural weaknesses. Repeated patterns. Hidden relationships. The most mature compliance programs understand that reality and act on it.

Newton is remembered as the great scientist of motion, force, and causation. He gave the world a way to understand that observable events are often the result of underlying principles that can be identified, studied, and predicted. His work was not simply about describing what happened. It was about explaining why it happened and how the same forces might operate again. For the compliance professional, that is a profoundly useful way to think. A hotline complaint, a bribery incident, a books-and-records failure, a retaliation claim, or a control breakdown should never be seen as a one-off event. The real question is Newtonian: what forces produced this result? In a best practices compliance program, that question is the bridge from reaction to prevention.

Why Newton Matters to Compliance

Newton helps compliance professionals move beyond event-based thinking. Too often, organizations respond to misconduct by focusing only on the visible incident. Someone violated policy. Someone approved a bad payment. Someone ignored a red flag. Someone retaliated against a whistleblower. Those facts matter, of course, but they are usually only the surface expression of deeper conditions. Newton would urge us to ask what was acting beneath the surface.

Was the employee under intense sales pressure? Were performance incentives designed in a way that rewarded output but ignored process? Was a business unit growing so quickly that controls were bypassed in the name of speed? Did management tolerate workarounds because the local market was too important to slow down? Was the company relying on outdated monitoring tools in a rapidly changing business model? Were risk signals present but scattered across functions with no one connecting them?

That is Newton’s great gift to compliance. He reminds us that forces shape behavior, and if you want to reduce misconduct, you must understand and address the forces that make misconduct more likely.

The DOJ Expects Companies to Understand Causes, Not Just Outcomes

The Department of Justice’s Evaluation of Corporate Compliance Programs (ECCP) reflects this Newtonian logic with remarkable consistency. The ECCP asks whether a company performs root cause analysis, adapts its program based on lessons learned, uses data to identify patterns, aligns incentives with ethical conduct, and can demonstrate that controls are responsive to emerging risks. These are not narrow enforcement questions. There are questions about causation.

The ECCP is not satisfied when a company says it found the bad actor and imposed discipline. Regulators want to know what the company learned. Why did the misconduct happen? Were there prior warning signs? Was the conduct enabled by poor oversight, flawed incentives, weak middle management, insufficient resources, or ineffective controls? Did the company identify those drivers and change the system? That is exactly the sort of inquiry Newton would have appreciated.

Root Cause Analysis Is Newton in Practice

If there is one place where Newton’s influence should be front and center, it is root cause analysis. In compliance, root cause analysis is the discipline of looking beyond the immediate violation to identify the pressures, structures, incentives, and system weaknesses that created the conditions for failure. This is where many companies still fall short.

A company uncovers improper payments and concludes that an employee acted dishonestly. Perhaps that is true. But Newton would ask what else was in motion. Was there a compensation model that encouraged aggressive behavior without corresponding control discipline? Were finance and compliance understaffed relative to expansion? Did business leadership send signals that revenue mattered more than process? Had similar concerns surfaced in audit findings or prior investigations? Was a third-party oversight process designed for a smaller and less risky operating model? A true root cause analysis keeps asking until the organization understands the forces at work.

Incentives Are Among the Strongest Forces in Any Organization

Newton’s framework is especially valuable when thinking about incentives. Every organization generates motion through what it rewards, measures, and celebrates. If those incentives are poorly designed, they can push employees and managers toward decisions that undermine the compliance program even when the formal policy language is sound. This is one of the most underappreciated truths in compliance.

A company may say all the right things about integrity, but if promotions, bonuses, and recognition go disproportionately to people who hit aggressive numbers regardless of how they achieved them, employees receive a different message. If managers are evaluated on speed and volume but not on control discipline, they will often treat process as friction. If local market leaders are given extraordinary flexibility without matching oversight, the organization may create precisely the pressures and blind spots that breed misconduct.

The ECCP has increasingly focused on compensation structures, clawbacks, and incentive alignment for precisely this reason. Regulators understand that culture is shaped not only by leadership’s words, but also by tangible rewards that guide daily conduct. Newton helps compliance professionals explain why this matters. Incentives are not background conditions. They are active forces inside the corporate system.

Analytics Help the Company See What the Eye Misses

A Newtonian compliance program also leverages analytics more effectively. Newton’s work showed that patterns in motion could be identified through disciplined observation and analysis. Modern compliance can do something similar. Data analytics, trend reviews, and integrated monitoring allow a company to detect patterns that an isolated human review might miss. That does not mean technology replaces judgment. It means technology can help reveal the forces and relationships that judgment must then interpret.

Consider a multinational company reviewing third-party spend, travel, and entertainment data, hotline trends, and investigation outcomes. Each data set alone may show only limited information. But when viewed together, patterns may emerge. A particular region may show above-average use of high-risk intermediaries, greater discounting, delayed documentation, and increased employee complaints about management pressure. No single data point proves misconduct. But together they may reveal a system under strain.

This is where Newton connects back to Bacon. Bacon tells us to gather evidence. Newton tells us to study how patterns and causes operate across the system. Together, they produce a compliance function that is empirical, analytical, and forward-looking.

Misconduct Is Often a Systems Failure, Not Merely an Individual Failure

One of the most valuable lessons Newton offers the compliance profession is that misconduct is frequently systemic. This does not excuse individual wrongdoing. Personal accountability remains essential. But if a company stops with personal accountability, it may miss the broader organizational truth.

An employee may make an improper payment, but the surrounding system may have made that outcome easier, more predictable, or more likely. A senior manager may retaliate against a reporter, but the broader culture may have conditioned leaders to treat bad news as disloyalty. A financial control breakdown may involve one approving official, but the deeper problem may be a long-standing tolerance for informal overrides. In each case, the misconduct event should prompt a systems review.

This is particularly important in fast-changing environments. Growth, acquisitions, digital transformation, remote work, AI deployment, and market stress all alter the forces acting on the organization. Controls designed for one operating model may not be sufficient for the next. A Newtonian compliance officer understands that governance must evolve as the system changes. The question is never just whether the policy still exists. The question is whether the underlying forces have shifted in ways the compliance program has not yet caught up to.

Newton and the Future of Compliance

Newton is particularly relevant today because the modern compliance landscape is increasingly defined by complexity. Third-party ecosystems are larger. Data flows are faster. Business models shift more quickly. AI and automated decision-making create new risks that can change over time through drift, scale, and changing use cases. In that world, static compliance is not enough. A company needs to understand how moving systems work.

This is where frameworks like NIST and ISO/IEC 42001 become useful companions to Newtonian thinking. They emphasize lifecycle governance, ongoing monitoring, documented accountability, testing, and adaptation. In the AI context, especially, the lesson is clear: a control that works on day one may not be enough on day two. Risks evolve—inputs change. Vendors change. User behavior changes. Governance must therefore be dynamic, evidence-based, and attentive to emerging forces.

The same is true across compliance more broadly. Companies cannot assume that yesterday’s control environment will manage tomorrow’s pressures. Newton teaches that motion continues unless acted upon, and in the corporate setting, that means risk patterns will continue to develop unless governance actively intervenes.

The Compliance Officer as Interpreter of Organizational Forces

If Bacon casts the compliance officer as an institutional scientist, Descartes as a guardian of clear thinking, Locke as a steward of legitimacy, and Hobbes as an architect of order, Newton casts the compliance officer as an interpreter of organizational forces. That is a sophisticated and necessary role.

The compliance officer must ask what is really driving conduct across the enterprise. Which incentives are shaping decisions? Which processes are creating blind spots? Which managers are transmitting pressure? Which data trends suggest a deeper problem? Which repeated “isolated incidents” are no longer isolated at all? Which changes in the business model have altered the risk environment without corresponding updates to governance?

Those are not merely compliance questions. They are strategic governance questions. That is why Newton is such a fitting conclusion to this series. He pulls together all that came before. Evidence matters. Rigor matters. Legitimacy matters. Order matters. But ultimately, the mature compliance program does something more. It understands how these elements interact inside a living system. It seems that misconduct does not fall from the sky. It emerges from forces that can be studied, anticipated, and changed. Isaac Newton would have understood that a well-governed institution learns to read its own motion.

Five Lessons Learned for the Modern Compliance Professional

First, misconduct is rarely random. It is usually the product of identifiable pressures, incentives, weaknesses, and structural conditions.

Second, root cause analysis must go beyond the visible event. The goal is to understand the forces that made the event more likely.

Third, incentives are among the strongest drivers of conduct. A company must align compensation, promotion, and recognition systems with ethical and compliant behavior.

Fourth, analytics and trend analysis are essential tools for seeing patterns across the system. They help the company detect pressure points before they become crises.

Fifth, the most mature compliance programs are systemic and preventive. They do not simply respond to incidents. They study the organization well enough to reduce the conditions that produce misconduct.

Closing It Out

This five-part journey through Bacon, Descartes, Locke, Hobbes, and Newton shows that the architecture of a modern compliance program is not merely legal or procedural. It is intellectual. Bacon teaches us to demand evidence. Descartes teaches us to examine it with discipline. Locke teaches us that the system must be legitimate. Hobbes teaches us that institutions require order. Newton teaches us to understand the forces that shape outcomes.

Together, they offer a powerful framework for the compliance professional, the board, internal audit, legal, and business leadership. A best practices compliance program is not simply a collection of policies. It is a way to see the organization clearly, govern it credibly, and continuously improve it. That is as true now as it would have been revolutionary in their own time.

 

Categories
GSK in China: 13 Years Later

GSK In China: 13 Years Later – From Compliance Crisis to Business Redesign: GSK’s Business Comeback

Thirteen years after the GSK China scandal exploded onto the global stage, its lessons remain as urgent as ever for compliance professionals and business leaders. In this podcast series, we revisit the case not simply as corporate history, but as a living cautionary tale about culture, incentives, third parties, investigations, and governance. Each episode explores what went wrong, why it went wrong, and how those failures still echo in today’s compliance and ethics landscape. Join me as we unpack the scandal and draw practical lessons for building stronger, more resilient organizations. In this episode, we consider the maxim that treating major compliance failures as purely legal problems is a business mistake, using GlaxoSmithKline’s bribery allegations in China as a case study.

Chinese police alleged GSK funneled money through travel agencies to bribe doctors and hospital officials, triggering parallel investigations and severe operational and financial impacts, including a profits warning, declines in Advair sales (12% after a prior 15% drop), and a 14% annual share price fall. CEO Sir Andrew Witty responded by emphasizing innovation, executing a $20bn asset swap to shift away from higher-risk oncology toward vaccines and consumer health, severing sales-target links to rep pay, ending payments to doctors to promote products (from 2016), leveraging transparency, and welcoming whistleblowers. The script also frames China’s strategy risk, contrasting joint-venture protection in autos with GSK’s vulnerability as an isolated foreign operator.

Key highlights:

  • Business Fallout and Numbers
  • Scarecrow Compliance Analogy
  • CEO Witty Plays Offense
  • The $20 Billion Asset Swap
  • Rewriting Sales Incentives

Resources:

GSK in China: A Game Changer for Compliance on Amazon.com

GSK in China: Anti-Bribery Enforcement Goes Global on Amazon.com

Tom Fox

Instagram

Facebook

YouTube

Twitter

LinkedIn

Ed. Note: the voices of the hosts, Timothy and Fiona, were created by Notebook LM based upon text written by Tom Fox

Categories
Compliance Into the Weeds

Compliance into the Weeds: Incentives in Compliance: Structuring Effective Compensation Plans

The award-winning Compliance into the Weeds is the only weekly podcast that takes a deep dive into a compliance-related topic, literally going into the weeds to explore a subject more fully. Seeking insightful perspectives on compliance? Look no further than Compliance into the Weeds! In this episode, Tom Fox and Matt Kelly discuss the intricacies of integrating incentives into corporate compliance programs.

Matt shares insights from a recent webinar and blog posts, discussing how companies can encourage ethical behavior through executive compensation plans, performance bonuses, and other incentive schemes. The conversation explores the Justice Department’s guidelines on executive compensation, the intricacies of designing these programs to align with industry-specific risks, and the implications for various levels of management. They also examine the challenges of establishing meaningful compliance metrics and striking a balance between compliance incentives and overall business objectives across multiple sectors.

Key highlights:

  • The Role of Incentives in Compliance Programs
  • Structuring Executive Compensation for Compliance
  • Challenges and Nuances in Incentive Programs
  • Incentives for Different Business Models
  • Compensation Types and Ethical Behavior

Resources:

Matt in Radical Compliance

Tom

Instagram

Facebook

YouTube

Twitter

LinkedIn

A multi-award-winning podcast, Compliance into the Weeds was most recently honored as one of the Top 25 Regulatory Compliance Podcasts, a Top 10 Business Law Podcast, and a Top 12 Risk Management Podcast. Compliance into the Weeds has been honored with a Davey, Communicator, and W3 Award, all for excellence in podcasting.

Categories
Sunday Book Review

Sunday Book Review: September 28, 2025, The Books on Compensation and Incentives for September Edition

In the Sunday Book Review, Tom Fox considers books that would interest compliance professionals, business executives, or anyone curious about the subject. It could be books about business, compliance, history, leadership, current events, or any other topic that might interest Tom. Today, Tom reviews four top books on compensation and incentives inside a corporation.

  • The Compensation Handbook, Sixth Edition by Lance A. Berger and Dorothy Berger
  • The WorldatWork Handbook of Total Rewards by WorldatWork
  • Pay Matters: The Art and Science of Employee Compensation by David Weaver
  • The Complete Guide to Sales Force Incentive Compensation by  Andris Zoltners, Prabhakant Sinha, and Sally Lorimer

Resources:

The Sunday Book Review was recently honored as one of the world’s Top 100 Book Podcasts.

Categories
Great Women in Compliance

Great Women in Compliance: GWIC X EC Q2 2025 – Exploring Compliance Innovations

We’re back with another GWIC x EC crossover episode. Today, we have the quartet of Great Women in Compliance of Kristy Grant-Hart, Karen Moore, Lisa Fine, and Hemma Lomax.

The GWIC quartet discusses various intriguing topics related to compliance. Lisa Fine kicks off the conversation by discussing the new ‘failure to prevent fraud’ guidance in the UK, which places greater responsibility on companies to avoid engaging in fraud. The group delves into the implications of this law and its extraterritorial elements. Hemma Lomax shifts the conversation to changes in the False Claims Act in the US, highlighting its expanded use beyond fraudulent billing to areas like cybersecurity and diversity obligations. Karen Moore introduces the innovative ‘Karma’ rewards system by Revolut Bank in the UK, which incentivizes compliance behaviors through team performance multipliers. Kristy Grant-Hart wraps up with a fascinating discussion on AI, touching on AI’s potential as a whistleblower and whether AI could attain employment rights if it becomes sentient. They conclude by sharing their rants and raves, offering insights on topics ranging from the importance of local theaters to women’s leadership in compliance.

Join the Great Women in Compliance community on LinkedIn ⁠here⁠

Categories
All Things Investigations

All Things Investigations – Navigating New DOJ Directives: Declinations, Cooperation, and Whistleblower Programs with Mike DeBernardis and Katherine Taylor

Welcome to the Hughes Hubbard Anti-Corruption & Internal Investigations Practice Group’s podcast, All Things Investigation. In this podcast, host Tom Fox is joined by HHR lawyers Mike DeBernardis and Katherine Taylor about the recent speech by Matthew R. Galeotti, Head of the Criminal Division at the U.S. Department of Justice (DOJ);  his attendant Memo entitled Focus, Fairness, and Efficiency in the Fight Against White-Collar Crime; and the updates to the Corporate Enforcement and Voluntary Self-Disclosure Policy; and finally the new Memo on Monitors and Monitorships.

Key highlights:

  • Is meaningful cooperation credit finally here?
  • Did we move from a presumption of a declination to something stronger or at least more tangible?
  • Is the Kenneth Polite “double secret—we know it when we see it” cooperation requirement now a thing of the past, or at least defined?
  • Enhancements to the Whistleblower Program—Initial Thoughts.
  • Monitors—dead and gone or something else?
  • What, if anything, does this change about the role of corporate compliance today?

Resources:

Mike DeBernardis

Hughes Hubbard & Reed website

Katherine Taylor

Categories
31 Days to More Effective Compliance Programs

31 Days to a More Effective Compliance Program: Day 2-2024 ECCP on Incentives, Consequences, and Clawbacks

Welcome to a special podcast series on the Compliance Podcast Network, 31 Days to a More Effective Compliance Program. Over these 31 days series in January 2025, I will post a key part a best practices compliance program each day. By the end of January, you will have enough information to create, design or enhancement a compliance program. Each podcast will be short, at 6-8 minutes with three key takeaways that you can implement at little or no cost to help update your compliance program. I hope you will plan to join each day in January for this exploration of best practices in compliance.

In this episode, we discuss how the Department of Justice (DOJ) has emphasized the importance of designing and implementing compliance-based compensation schemes. Financial incentives, such as deferred or escrowed compensation tied to conduct, play a critical role in fostering a culture of compliance. The episode also explores the necessary continuum of assessment, analysis, implementation, and monitoring that companies must follow for effective compliance incentive programs. Additionally, Tom covers the DOJ’s rigorous approach to consequence management, particularly concerning clawback provisions in executive contracts. The episode guides compliance professionals on the essential steps and analyses required to adhere to the enhanced DOJ expectations. Key takeaways include the importance of financial incentive analysis and the distinct yet related roles of clawbacks and consequence management within a compliance program.

Key Highlights

  • Starting with Incentives and Consequences
  • Incentive Program Breakdown
  • Consequence Management Deep Dive

Resources

Listeners to this podcast can receive a 20% discount to The Compliance Handbook, 5th edition by clicking here.

Categories
Greetings and Felicitations

Compliance Lessons from Venice – Episode 2, The Arsenale and Creating a Culture of Compliance

Welcome to a short podcast series on doing compliance with a Venetian twist. This week, we will examine three areas where Venice’s time-honored methods inform modern compliance practices. Over the next 3 episodes, we will consider going back to basics in your compliance regime, the use of incentives and consequences to drive a culture of compliance, and how the Lion’s Mouth informs your modern-day whistleblower program. In episode 2, we see how Venice used financial and non-financial incentives and consequence management to create a culture of compliance in Venice’s largest business operation, Arsenale.

The Arsenale district in Venice was known for its shipbuilding prowess from the 1200s to the 1400s. By examining how Venice managed its critical shipbuilding workforce through both incentives and discipline, Tom draws valuable parallels to modern corporate compliance programs. He highlights that Venice implemented job security and compensatory incentives to promote loyalty while enforcing strict non-compete clauses and severe punishments for leaking state secrets. Tom emphasizes the importance of balancing positive incentives with clear disciplinary actions, aligning this historical example with contemporary guidance from the DOJ and SEC. These principles support recognizing compliance efforts through promotions, bonuses, and acknowledgments, which can foster ethical behavior and improve overall organizational integrity.

Key highlights:

  • Arsenale and Incentivizing Compliance
  • Historical Context and Compliance Insights
  • Punishments and Incentives in Venice
  • Modern Compliance Practices

For more information on the Ethico Toolkit for Middle Managers, available at no charge, click here.

Check out the full 3-book series, The Compliance Kids, on Amazon.com.

Categories
Blog

Key Compliance Speeches from 2023-Kenneth Polite on Incentives and Consequence Management

Assistant Attorney General Kenneth A. Polite, Jr. began his speech with an interesting aside. It is about the clear tie between poverty and corruption. This is why it is important to prosecute corrupt government officials because their actions keep the people of in such dire economic straits. He stated, “Just as crime recognizes no borders, our efforts to combat it must be equally boundless. We need our partners – both domestic and international – to solve community problems. That is where the Criminal Division thrives.” In the Diaz case there was international cooperation at various levels. Think about that for a moment, the US and Venezuelan governments cooperating on anything, yet they apparently did cooperate on this matter. Polite added that several recent FCPA corporate enforcement matters, “Glencore, ABB, Danske, and Stericycle, among many others, underscore the successes that we’ve shared with our colleagues abroad.”

To be truly effective community problem-solvers, prosecutors must broaden our sense of community by literally ‘spanning the globe’ to fight crime, including bribery and corruption. Polite stated, “Crime does not limit itself by country or region. Corruption’s corrosive effects are global, with the world’s poor often bearing the brunt. Bribery threatens our collective security by undermining the rule of law and providing a breeding ground for other crime and authoritarian rule.”

Clawbacks

The clawback policy was developed to promote “innovative approaches to compensation” which would “shift the burden of corporate malfeasance away from uninvolved shareholders onto those more directly responsible.” She believes “Companies should ensure that executives and employees are personally invested in promoting compliance” as “nothing grabs attention or demands personal investment like having skin in the game, through direct and tangible financial incentives.” This led the Criminal Division to “develop guidance, guidance on how to reward corporations with compliance-promoting compensation programs.”

The clawback Initiative has two parts. “First, every corporate resolution involving the Criminal Division will now include a requirement that the resolving company develop compliance-promoting criteria within its compensation and bonus system. Second is the creation of a 3-year pilot program under which the “Criminal Division will provide fine reductions to companies who seek to claw back compensation from corporate wrongdoers.”

Finally, the DOJ has added some real benefits for companies which follow these prescripts. First is that any company which resolves a FCPA violation will “pay the applicable fine, minus a reserved credit equaling the amount of compensation the company is attempting to claw back from culpable executives and employees.” Additionally, “If the company succeeds and recoups compensation from a responsible employee, the company gets to keep that clawback money — and also doesn’t have to pay the amount it recovered.” Finally, if the company’s efforts at clawbacks are not successful or completed during the pendency of the investigation up to the settlement “the pilot program will also ensure that those who pursue clawbacks in good faith but are unsuccessful are still eligible to receive a fine reduction.” All of these efforts are designed to “shift the burden of corporate wrongdoing away from shareholders, who frequently play no role in the misconduct, onto those directly responsible.” This new emphasis is clearly designed to encourage companies who do not already factor compliance into compensation to retool their programs and get ahead of the curve.

Polite provided more detail on the new clawback initiative. He said, “As to clawbacks: for companies that fully cooperate with our investigation and timely and appropriately remediate the misconduct, they may receive an additional fine reduction if the company has implemented a program to recoup compensation and uses that program. We expect companies that use these programs to address not only employees who engaged in wrongdoing in connection with the conduct under investigation, but also those who had supervisory authority over the employees or business area engaged in the misconduct, and knew of, or were willfully blind to, the misconduct.” (emphasis mine)

Expanding on the benefits for an organization, he stated, “If the company meets these factors and – in good faith – has initiated the process to recover such compensation at the time of resolution, our prosecutors will accord an additional fine reduction equal to the amount of any compensation that is recouped within the resolution term.” Finally, “if a company’s good faith effort is unsuccessful by the time the resolution term ends, our prosecutors will have discretion to accord a fine reduction of up to 25% of the amount of compensation that has been sought.”

Polite did leave room for companies to weigh a variety of factors in bringing a clawback claim. He noted, “We are not trying to incentivize waste. To the contrary, companies should make an assessment about the potential cost to shareholders and prospect of success of clawback litigation, given any applicable laws, and weigh it against the value of recoupment – and proceed in accordance with their stated corporate policies on executive compensation. This Pilot Program will be in effect for three years, allowing us to gather data and assess its effectiveness and also aid other components and offices in considering this important issue.”

Any litigation is always fraught with unknowns, both known and unknown. Given the imbroglio involving the DOJ and Cognizant Technologies Solutions over the DOJ prosecution of former executives, the road to any successful clawback will be fraught with peril. Additionally, it is not clear how far companies or the DOJ will push for clawbacks from “those who had supervisory authority over the employees or business area engaged in the misconduct.” If scope creep comes in it could be a wide group.