Tag: OFAC

Categories
Corruption, Crime and Compliance

Microsoft Pays OFAC and BIS Over $3.3 Million to Settle OFAC Sanctions Violations

Microsoft recently paid over $3 million for multiple sanctions violations involving illegal exports of services and software to sanctioned jurisdictions. The violations spanned seven years and involved prohibited Russian entities or persons located in the Crimea region of Ukraine. However, what makes this case particularly intriguing is the remedial actions taken by Microsoft, which offer best practices and insights into what can be done when resources are available. In this week’s episode of Corruption, Crime, and Compliance, Michael Volkov takes a deep dive into the Microsoft OFAC enforcement action.

He discusses these ideas:

  • Microsoft committed 1339 transactions in violation of multiple sanctions programs over seven years, totaling over $12 million worth of sales and services.
  • Violations included the sale of software licenses and the provision of related services from servers and systems located in the US and Ireland to SDNs, blocked persons, and other end users located in Cuba, Iran, Syria, Russia, and the Crimea region of Ukraine.
  • The violations were due to Microsoft’s failure to obtain complete or accurate information on the identities of end customers and shortcomings in its restricted party screening. At times, Microsoft Russia employees intentionally circumvented Microsoft screening controls to prevent other Microsoft affiliates from knowing the identity of the ultimate end customers.
  • Microsoft’s significant remedial measures included enhancing its trade compliance program, improving its governance structure and screening resources, adopting a new three lines of defense model, and conducting a holistic risk assessment to identify and remediate instances of prohibited engagements.
  • Microsoft deployed a multidisciplinary internal investigation team proficient in 16 foreign languages, modified its procedures to respond to matches, and expanded the scope and volume of data screened.
  • “Companies with sophisticated technology operations and a global customer base should ensure that their sanctions compliance controls remain commensurate with risk.” 
  • Companies should consider conducting a holistic risk assessment to identify and remediate prohibited engagements and ensure that employees adhere to the sanctions compliance program.
  • OFAC emphasized that companies conducting business through foreign-based subsidiaries, distributors, and resellers should have sufficient visibility into their end-users, including through the provision of services after an initial sale.

 

KEY QUOTES:

“Now, when Microsoft supported these third party sales to prohibited parties, they provided prohibited software and services to SDNs and end customers in sanctioned jurisdictions and the violations occurred. The root cause really was because Microsoft did not have complete or accurate information on the identities of the end customers for Microsoft’s products.” – Michael Volkov

 

“Companies with sophisticated technology operations and a global customer base should ensure that their sanctions compliance controls remain commensurate with that risk and leverage in appropriate technological compliance solutions.” – Michael Volkov

 

“Testing or auditing, whether conducted on a specific element of a compliance program or enterprise wide level, are important tools to ensure that the program is working as designed and weaknesses are promptly remediated.” – Michael Volkov

 

Resources:

Michael Volkov on LinkedIn | Twitter

The Volkov Law Group

 

Categories
2 Gurus Talk Compliance

2 Gurus Talk Compliance – Episode 4

What happens when two top compliance commentators get together? They talk compliance, of course. Join Tom Fox and Kristy Grant-Hart in their podcast, 2 Gurus Talk Compliance, as they tackle topics on behavior economics, OFAC settlement lessons, the importance of the user experience in compliance policy creation, and more. They also discuss incorporating behavioral sciences into compliance strategies and the exciting changes in compliance consulting services. With their expertise, they share insights on how data, behavioral science, and innovative approaches can improve compliance programs, business processes, and profitability.

 

Listen as they provide valuable insights on understanding culture by starting a dialogue and the importance of finding someone to give a narrative to. Lastly, they discuss the challenge of bribery and corruption and the need for compliance professionals to be innovative, accept failures, and be comfortable with experimentation. Take advantage of this exciting and informative podcast episode from two renowned compliance experts, Tom Fox and Kristy Grant-Hart.

Highlights Include:

·      Evolution of Corporate Ethics and Compliance Programs

·      Microsoft OFAC Settlement

·      Irritating Emails

·      Behavioral Science in Compliance

·      Messaging Apps and Dept. of Business Denial

·      FTX and its (lack of) Internal Controls

 Notable Quotes

1.      “I don’t want to say the traditional tools are limited, but we’ve really evolved past them.”

2.     When they were specifically talking about the section on learning and training and talking about that frequently shorter in more bursts, more frequently where the learner gets to decide when and how they learn is really a lot not just with behavioral science, but also with adult learning theory.”

3.     “But again, 1 of the things that are so powerful about the enforcement act is that they tell us what we should be doing.”

4.     “Compliance professionals need to look at their sales models and see if they’re using distributors.”

Resources 

1.     Microsoft’s OFAC Settlement Underscores Important Remedial Measures

2.     FTX, Multimillion-Dollar Expenses Were Approved by Emoji

3.     Your Email Does Not Constitute My Emergency

4.     New DOJ policies about messaging apps and clawbacks threaten compliance departments’ standing

Connect with Kristy Grant-Hart on LinkedIn

Spark ComplianceConsulting

Tom

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
Compliance Into the Weeds

Microsoft OFAC Enforcement Action

The award-winning, Compliance into the Weeds is the only weekly podcast that takes a deep dive into a compliance-related topic, literally going into the weeds to explore a subject more fully. In this episode, join Tom and Matt as they delve into Microsoft’s recent sanctions enforcement action with OFAC. They explore what went wrong and how to avoid costly compliance failures, from potential red flags to reseller relationships. But it’s not all doom and gloom as they discuss how Microsoft implemented three lines of defense model for sanctions compliance, setting a benchmark for the industry. With Tom and Matt going into the weeds on the importance of centralization and persistent screening technology, this podcast is a must-listen for any compliance officer looking to stay ahead of the curve. Tune in now to find out more!” 

Key Highlights 

·      Sanctions compliance case involving Microsoft

·      Microsoft’s Sanctions Compliance Model

·      Microsoft’s Sanctions Compliance Program Remediation

·      Sanctions Compliance and OFAC Guidance

·      Impact of Russia invasion on Microsoft operations

 Notable Quote:

“It’s well worth giving the case a good look. So it was, I thought, a great lesson on resellers and the way the hardware and software industry did business.”?

 Resources

Matt  on LinkedIn

Matt on Radical Compliance

Tom

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
Daily Compliance News

March 18, 2023 – The Corrupt Client Edition

Welcome to the Daily Compliance News. Each day, Tom Fox, the Voice of Compliance, brings you compliance-related stories to start your day. Sit back, enjoy a cup of morning coffee, and listen to the Daily Compliance News. All from the Compliance Podcast Network. Each day we consider four stories from the business world, compliance, ethics, risk management, leadership, or general interest for the compliance professional.

Stories we are following in today’s edition of Daily Compliance News:

  • My client is the speaker. (Law360)
  • The US sanctions the former Bosnia Intelligence Chief for corruption. (Balkan Insights)
  • Lessons from the Householder conviction. (Cincinnati Enquirer)
  • Jes Staley to be deposed over Epstein connections. (Reuters)
Categories
Compliance Kitchen

Compliance Kitchen – Navigating OFAC’s Latest Guidance on Russia’s Metals and Mining Sector

The Compliance Kitchen, hosted by Silvia Surman, is a podcast that examines and evaluates the changing legal framework of international compliance. In this episode, Silvia examines OFAC’s brand new determination concerning the metals and mining sector of the Russian Khanate. She provides listeners with an FAQ about the determination and explains that it authorizes certain energy-related transactions or if General Licensed 6C only authorizes those activities. Silvia further elaborates that the license authorizes transactions related to the production, manufacturing, sale, transport, or provision of medicine and medical devices. Tune into Compliance Kitchen to stay updated with the evolving legal framework of international compliance.

Notable Quotes

1. “This February 24 determination authorizes sanctions on any person that the government determines to operate or have operated in the metals and mining sector of the Russian economy.”

2. “OFAC does not intend to target persons for operating in this metals and mining sectors where the provision of their goods and services is solely for safety and care of personnel protection of human life, prevention of accidents or injuries, maintenance, necessary repairs, to avoid significant or environmental damage or activities that are related to environmental mitigation or remediation.”

3. “Non-US persons generally do not risk exposure to US blocking sanctions. Under executive order 14024 for engaging in transactions with black persons, including in the metals and mining sector where those transactions would not require a license if a US person were engaging in the transactions.”

4. “Non-US persons generally do not risk exposure to US blocking sanctions if they engage in transactions in the mining and metals sector. If General License 8F would normally authorize such transactions as in Frank. That 1 authorizes certain energy-related transactions or if General would only authorize those activities Licensed 6C. That license authorizes certain transactions related to the production, manufacturing, sale, transport, or provision of medicine, medical devices, including certain industrial isotopes used in nuclear medicine.”

Categories
Compliance Kitchen

Compliance Kitchen on OFAC and DOJ Developments

The Compliance Kitchen returns with a wrap-up of the week’s top trade and economic sanction issues. In today’s episode, Silvia Surman looks at OFAC issues Russia-related sanctions licenses and allows for limited marine activities on SDN vessels; DOJ obtains a guilty plea for EAR violations due to unlicensed exports of chemicals to a Chinese SOE listed on the Entity List.

Categories
Corruption, Crime and Compliance

Matt Stankiewicz on the Bittrex OFAC and FinCEN Enforcement Action

powered by Sounder

In this episode, cryptocurrency expert Matt Stankiewicz discusses why sanctions and AML compliance need to be taken seriously in the cryptocurrency industry.

Matt Stankiewicz, a Partner at Volkov Law, is a leading industry expert on cryptocurrency. Bittrex, a leading cryptocurrency exchange, suffered twin enforcement actions for AML and Sanctions Compliance deficiencies. Matt takes a deep dive into the enforcement actions and outlines practical compliance steps that every cryptocurrency exchange should implement.

Join us as we discuss the following:

  • The enforcement action on Bittrex led by OFAC and FinCEN
  • Why compliance risks are increasing in the cryptocurrency industry
  • Practical steps that all cryptocurrency exchanges should implement

To reach Matt, email him at: mstankiewicz@volkovlaw.com

Categories
Daily Compliance News

October 14, 2022 The Ascot Rant Edition

In today’s edition of Daily Compliance News:

  • Crypto groups sue Treasury over Tornado cash sanctions. (WSJ)
  • Rant at Ascot ends Deloitte’s career. (FT)
  • Venezuela objects to Citgo sale. (Reuters)
  • When pay-to-play goes local. (The Mercury News)
Categories
Daily Compliance News

May 9, 2022 the Business Travel Rebounds Edition


In today’s edition of Daily Compliance News:
·      A Virtual currency put on sanctions list. (WSJ)
·      Business travel rebounds. (Bloomberg)
·      Feds move to seize Armenian politician mansion in LA.  (LATimes)
·      Twitter shareholders sue to stop Musk purchase.  (Reuters)

Categories
Corruption, Crime and Compliance

Episode 232 – OFAC Settles with S&P Global for $78,750 for violation of Ukraine-Russia Sanctions


OFAC recently announced a settlement with OFAC for $78,750 for violations of the Ukraine-Russia Sanctions Program. The enforcement action provides important reminders relating to compliance with various “deby” maturity restrictions and how OFAC construes this restriction. Michael Volkov reviews OFAC’s enforcement action against S&P Global in this episode.