In today’s edition of Daily Compliance News:
Tag: toxic culture
Today, I wrap-up a two-part series on the intersection of a toxic culture and the Fraud Triangle. We began by exploring the attributes of a toxic culture and how they might lead to the rationalization prong of the Fraud Triangle. Today, we consider the Fraud Triangle and how a compliance professional can use its insights to help adapt a compliance program to prevent fraud which leads to bribery and corruption.
Todd Haugh, an assistant professor of business law and ethics at Indiana University’s Kelley School of Business, posited in a MIT Sloan Management Review article, entitled “The Trouble With Corporate Compliance Programs”, that even best practices compliance programs fail to take into account behavioral best practices and one important, but too often overlooked, key to strengthening both individual and overall corporate behavior is eliminating rationalizations.
Haugh’s conclusions were drawn from long-term research he has been doing on the causes of white-collar crime and more general corporate wrong doing. His research has led him to flagrant rationalizations engaged in by those who commit white collar crimes. This insight led him to see the behavioral aspect of compliance programs as lacking but that can be remedied. He listed out eight different types of rationalizations.
The first is simply denying responsibility where offenders “deny responsibility by pleading ignorance, they were acting under orders, or contending that larger economic forces caused them to act.” In denying an injury, “an offender often excuses his or her behavior if no clear harm exists.” In denying a victim, the offenders claim the “victim deserved the harm; or when the victim is unknown or not clearly defined.” Through condemning the condemners, “offender’s conduct to the motives of others, such as regulators, prosecutors, and government agencies.” By appealing to higher loyalties, the fraudster claims “to protect a boss or employee, shore up a failing business, or maximize shareholder value.” By using a ledger metaphor, employees claim there is a “behavioral balance sheet” whereby employees “balance out negative actions against positive accomplishments.” Through claiming entitlement offenders assert “that they deserve the fruits of their illegal behavior.” In claiming acceptability or normality employees compare their “bad acts with those of others to relieve moral guilt.” The FCPA violator has probably several of these rationalizations going on at once. The compliance professional needs to look for ways to counter-act or overcome them.
Haugh considers the Wells Fargo scandal, not from the actions of the former Chief Executive Officer (CEO) or other senior executives but on the failure of the company’s ethical culture and compliance program to stem illegal conduct. He believes the scandal occurred in large part because of multiple rationalizations at multiple levels, stating “preliminary reports suggest it allowed an environment riddled by employee rationalizations. On the heels of the bank’s $185 million settlement agreement with the Consumer Financial Protection Bureau, a number of former employees have reported that despite ethics training and messages from headquarters to not create fake accounts, the bank’s aggressive sales culture drowned out any explicit compliance measures.”
Haugh believes the “compliance program failed to address the systemic problem of managers pressuring employees to meet unrealistic sales goals.” He cited to one former employee on the pressure employees felt, quoting “The reality was that people had to meet their [sales] goals. They needed a paycheck.” It was this push by management which led employees, under pressure to meet unrealistic goals, to rationalize their conduct by denying responsibility and claiming relative normality in creating fraudulent accounts. Also remember that the fraudulent accounts were not limited in geographic or any other scope. They were literally created across the US by Wells Fargo branches.
As a prescription, Haugh recommends several steps. The first was one of the most intriguing and it was for a company to employ a behavioral specialist to take current research and theory into practice in an organization. He believes such a behavioral specialist could help multiple corporate departments construct both training and communications by creating “a behavioral compliance curriculum tailored to various groups of employees, giving all members of the organization insight into their ethical decision-making processes. Such a curriculum can become the backbone of a behaviorally cognizant compliance program.” Note how Haugh’s suggestion on a tailored approach to training echo’s the language from the Department of Justice’s (DOJ) Evaluation of Corporate Compliance Programs (Evaluation) to have tailored anti-corruption training. Wedding these two types of tailored employee training, anti-corruption and anti-fraud, could be quite powerful.
Haugh’s next suggestion was to “use behavioral best practices to eliminate rationalizations.” He believes that the compliance practitioner should use behavioral insights to improve company practices. When you consider that most compliance programs were initially written by lawyers, this is not too surprising and, he wrote, “This will necessarily go beyond the traditional law-driven compliance practices employed by the vast majority of Fortune 500 companies.”
Haugh advocates that compliance programs should attack rationalizations directly, with an aim towards eliminating them. Here Haugh provided the simple yet direct example of an honesty certificate on an employee gift, travel and entertainment (GTE) reimbursement form as a starting point. I would add this has the added significance of an effective internal control. He also noted companies should facilitate communications around fraud, rationalizations and compliance by encouraging “employees to openly discuss rationalizations and how they affect ethical decision-making. This can be accomplished through storytelling by employees and the company. Employees should be encouraged, even required, to meet periodically in small groups to explore the potential effects of compliance violations and white-collar crimes.” To make this communication technique more powerful and to make this strategy more powerful is to fully operationalize by having business leaders guide such discussions including “topics such as what regulations are relevant to the business, common compliance pitfalls, and how some business practices produce externalities that negatively impact stakeholders.”
Finally, every compliance practitioner is well-aware of the role of financial incentives in compliance. I write about this topic on a regular basis. But Haugh takes the incentives discussion in a different direction, suggesting there are non-monetary incentives which could positively impact compliance. Haugh concludes by noting that companies should “use incentives to influence behavior in the right direction” by understanding how rationalizations come into play. Most interestingly, Haugh believes that employee “praise and expressions of gratitude motivate more than money”. Think of the cost of a good word now and then or a pat on the back. But more than a pat on the back, such an approach emphasizes that good compliance is seen as the “governing ethos” of the company where the goal is “to build a corporate culture that incentivizes the rejection of rationalizations through the creation of shared values.”
Haugh concludes by recognizing that no compliance program will always eliminate bad employee behavior. However, his article and research give the compliance practitioner new insights into how to motivate employees and make compliance more effective in an organization. Further, many of the ideas and suggestions put forth by Haugh would help to more fully operationalize your compliance program as specified by the DOJ in the Evaluation. Finally, the use of behavioral techniques can add a powerful tool to the compliance practitioner in more fully integrating compliance into the fabric of an organization.
The fraud triangle is well-known to most compliance practitioners. It is pressure, opportunity and rationalization. When these three factors converge, there is danger of an ethical lapse which could lead to violation of law. Bribery and corruption under the Foreign Corrupt Practices Act (FCPA) are types of fraud where the employee or employees do not keep the direct proceeds of their conduct but enrich the company. Of course, if their collective bonuses are drawn from the fraudulent conduct, the cycle is complete around how the fraud triangle applies to the FCPA.
Yet 2022 has introduced another reason for compliance professionals to pay attention to the Fraud Triangle and it revolves around corporate culture. In an MIT Sloan Management Review article, entitled “Why Every Leader Needs to Worry About Toxic Culture”, authors Donald Sull, Charles Sull, William Cipolli, and Caio Brighenti wrote about how the elements of toxic culture in an organization can help leaders focus on addressing the issues that lead employees to disengage and quit, which could be one of the reasons for the Great Resignation. However, the issue of a toxic culture could lead one of the prongs of the Fraud Triangle, rationalization for stealing money from your organization to put together a pot of money to pay a bribe.
Attributes of a Toxic Culture
The authors posit that there are five attributes of a toxic culture; “disrespectful, non-inclusive, unethical, cutthroat, and abusive — that poison corporate culture in the eyes of employees.” An inclusive culture is one that encourages the representation of diverse groups of employees and sees they are treated fairly, made to feel welcome, and included in key decisions. Non-inclusiveness is seen as meeting these basic human decency standards. The authors found that “feeling disrespected at work has the largest negative impact on an employee’s overall rating of their corporate culture of any single topic and was the single strongest predictor of how employees as a whole rated the corporate culture.”
Unethical behavior captures refer to the general thoughts and feelings about integrity and ethics within an organization. Cut-throat is not simply non-cooperative teammates or the lack of coordination across organizational silos but when employees are “actively undermining one another.” Abusive management is more than simply having a co-worker or manager “who has a bad day and takes it out on” others but more as sustained hostile behavior toward other employees. Some examples of such behaviors are “bullying, yelling, or shouting at employees, belittling or demeaning subordinates, verbally abusing people, and condescending or talking down to employees.”
How do these lead to rationalization under the Fraud Triangle? A couple of ways come to mind. First, “disengaged employees are nearly 20% less productive than their engaged counterparts because they put in less effort and miss more days on the job. Nearly half of employees who felt disrespected at work admitted to decreasing their effort and time spent at work.” This could lead to the situation where the watchers really are not watching. Second, and directly in the compliance wheelhouse, is that the authors reported, “Among U.S. CEOs and CFOs surveyed, 85% agreed that an unhealthy corporate culture could lead to unethical or illegal behavior. For example, after fraudulent sales practices at Wells Fargo were exposed in 2016, the bank paid billions of dollars in fines and lawsuits and saw its corporate reputation suffer the largest single-year drop in Harris Poll history.”
The bottom line is that many employees might experience the culture as toxic. As the authors noted, “Women, underrepresented minorities, or older employees, for example, might have a much more negative view of the culture than other employees. In most large organizations, distinctive microcultures coexist within the same company, often across business units, functions, geographies, or acquired companies. Individual leaders also create subcultures within their extended team. Whatever their origin, microcultures can diverge from the broader corporate culture, which means that even the best cultures can contain pockets of cultural toxicity.” Does this mean they will be prone to engage in bribery and corruption? Not necessarily but it does mean they may have a propensity to rationalize away such conduct due to the toxicity of culture at their companies.
Bret Hood, writing in a Fraud Magazine article entitled “Twisted rationalization”, said, “We might commonly assume that fraudsters choose to commit fraud by deploying rational cost-benefit analyses of potential rewards against the consequences of being caught. However, most fraud perpetrators completely ignore this calculation. Most of their decisions are automatic and unconscious. Sometimes, others massage circumstances so the fraudulent decision maker doesn’t comprehend the ethical implications.” That sounds suspiciously like someone who has been treated so poorly in a toxic culture they feel like they have nothing to lose.
David Schrieberg, writing in a Forbes.com article entitled “How Does Corporate Culture Fuel Fraud? Start With Volkswagen And Wells Fargo”, cited to Steve Morang who said of those entities and their scandals, “The brains behind the “strategic decisions that organizations make, whether Volkswagen or Walmart or Wells Fargo, don’t understand that those decisions, as they get implemented and trickle down the organization, could very much affect their fraud risk profile.” These comments were aimed at the culture of sales, but those same cultural morals created a toxic culture in both organizations.
In our next edition, we consider the Fraud Triangle and compliance.