Tag: whistleblower

Categories
Daily Compliance News

Daily Compliance News: February 3, 2026, The Pizza Hut and Compliance Edition

Welcome to the Daily Compliance News. Each day, Tom Fox, the Voice of Compliance, brings you compliance-related stories to start your day. Sit back, enjoy a cup of morning coffee, and listen in to the Daily Compliance News. All, from the Compliance Podcast Network. Each day, we consider four stories from the business world, compliance, ethics, risk management, leadership, or general interest for the compliance professional.

Top stories include:

  • NATO officials were arrested on corruption charges. (MILITARNYI)
  • How to bury a mandated whistleblower report. (WSJ)
  • A Pizza Hut resurgence and compliance. (Slate)
  • Former FBI compliance head slides over to EY. (GTSC)
Categories
Blog

From Controls to Culture: Building Anti-Corruption Programs that Address Fraud, Waste, and Abuse

Fraud, waste, and abuse are not just buzzwords in the government sector. They represent a real continuum of risk that every private sector company must confront. In fact, when designing or refreshing an anti-corruption compliance program, these three categories should not be seen as separate from bribery and corruption risks; they are integral to them. Bribery schemes thrive in environments where fraud is unchecked, where waste is tolerated, and where abuse of authority is normalized.

A truly effective anti-corruption compliance program, therefore, must address fraud, waste, and abuse head-on. Each requires different tools, but all rest on the same foundation: clear expectations, adequate controls, data-driven monitoring, and a culture of accountability. Yesterday, we took a deep dive into the three concepts behind fraud, waste, and abuse. Today, we continue our primer on fraud, waste, and abuse for the compliance professional by exploring how compliance professionals can operationalize their ABC framework to help fight these corporate scourges.

1. Fraud Prevention: Strengthening the Control Environment

Fraud sits at the heart of most corruption schemes. Bribery rarely occurs without the use of falsified invoices, fraudulent expense reports, or deceptive third-party contracts. That’s why fraud prevention measures must be embedded directly into your anti-corruption compliance program.

Practical steps include:

  • Segregation of duties. No single employee should have the authority to control both vendor approval and invoice payment. Splitting responsibilities closes off avenues for concealment.
  • Mandatory rotations or vacations. Employees in high-risk positions, such as procurement or finance, should be required to take periodic breaks. This not only reduces burnout but also increases the chance of uncovering irregularities.
  • Third-party due diligence. Vendors, distributors, and consultants are often used as conduits for corrupt payments. Screening them for red flags of fraud and corruption is essential.
  • Hotlines and reporting mechanisms. Anonymous channels encourage employees to report fraudulent or corrupt activity before it escalates.

Finally, modern fraud prevention is inseparable from data analytics. Reviewing transactions for anomalies in billing, procurement, or travel can help compliance officers identify both fraudulent activity and corruption red flags early.

2. Waste Reduction: Linking Efficiency to Integrity

Waste may not sound like a corruption risk at first, but it often creates the environment in which corrupt practices thrive. When organizations tolerate careless spending or redundant processes, they signal that accountability is optional. Waste becomes the fertile soil in which corruption can take root.

Practical steps include:

  • Cross-functional accountability. Compliance should collaborate with finance, procurement, and operations to ensure efficient allocation of resources.
  • Tracking key waste indicators. Duplicate software licenses, unnecessary travel expenses, or high energy consumption may not be fraudulent, but they represent vulnerabilities that can be exploited. Left unchecked, they normalize sloppy practices that corrupt employees can exploit.
  • Integrating waste metrics into compliance dashboards. If a business unit consistently demonstrates waste, it may also be vulnerable to bribery risks, particularly in operations that are heavily reliant on procurement.

By spotlighting waste, compliance leaders not only save the company money but also reinforce a culture of stewardship and integrity, two qualities that reduce the likelihood of corruption.

3. Abuse Control: Guarding Against the Gray Areas

Abuse often serves as the gateway to corruption. It thrives in gray zones, where managers stretch policies, exploit loopholes, or turn a blind eye to questionable behavior. Abuse may not always cross a legal line, but it corrodes culture and opens the door to bribery and unethical decision-making.

Practical steps include:

  • Tone from the top and middle. Executives and line managers alike must model integrity. If leaders exploit perks or bend rules, employees will assume similar behavior is acceptable in dealing with third parties.
  • Policy clarity. Abusive practices often hide in vague policies. For example, a travel policy that allows “reasonable upgrades” without definition invites abuse. Aligning policies with anti-corruption standards closes these loopholes.
  • Incentive structures. Embedding transparency and fairness into performance reviews and rewards ensures managers do not cut ethical corners to hit financial targets.

By shrinking the space in which abuse can thrive, companies make it more difficult for corrupt practices to become normalized.

4. Leverage Data Analytics: Uncovering Patterns Across Risk Categories

Corruption schemes are rarely isolated. They often weave together fraud, waste, and abuse. That’s why analytics should not be siloed. A robust anti-corruption program integrates monitoring across multiple risk vectors.

Practical applications include:

  • Travel and entertainment analytics. Reviewing expense reports can uncover fraudulent receipts, wasteful spending, or abusive upgrades. These same reports may also reveal bribery risks if entertainment involves government officials or high-risk clients.
  • Procurement analytics. Comparing vendor pricing across regions may reveal fraudulent invoicing, excessive costs (resulting in wasteful spending), or favoritism (abuse of power). It can also reveal third parties that may be used as conduits for corruption.
  • Cross-data integration. Linking procurement, HR, and finance data highlights unusual patterns. For example, a sudden spike in overtime in a high-risk market may flag both payroll abuse and potential red flags for corruption.

Data analytics transforms compliance from a reactive to a proactive discipline, catching issues before they metastasize into a full-blown corruption scandal.

5. Whistleblower Empowerment: The Human Early Warning System

Even the most advanced controls and analytics cannot replace human intelligence. Employees are the first to notice when fraud, waste, or abuse is occurring. But unless they feel safe speaking up, those observations remain hidden.

Practical steps include:

  • Robust reporting channels. Multiple options, including hotlines, digital portals, or direct reporting to compliance, all make it easier for employees to raise concerns.
  • Protection against retaliation. Employees must trust that speaking up won’t cost them their careers. Policies must be clear, and enforcement consistent.
  • Timely follow-up. When employees report fraud, waste, or abuse, prompt investigation and feedback demonstrate that the company takes reports seriously.

In the context of anti-corruption compliance, whistleblowers are invaluable. They can flag bribery schemes before external regulators or auditors uncover them.

Building Resilience by Tackling All Three

An anti-corruption compliance program that focuses only on bribery risks but ignores fraud, waste, and abuse is incomplete. Fraud fuels corruption, waste fosters the conditions where it flourishes, and abuse normalizes the behavior that enables it.

By embedding fraud prevention, waste reduction, abuse control, data analytics, and whistleblower empowerment into your anti-corruption framework, you create a resilient program that goes beyond compliance checklists. You demonstrate stewardship to shareholders, accountability to employees, and integrity to regulators.

The fight against corruption is not won by policing bribery alone. It is won by creating a culture where fraud, waste, and abuse cannot survive and where transparency, efficiency, and fairness are the norm. That is the true mandate for today’s compliance professional.

Categories
2 Gurus Talk Compliance

2 Gurus Talk Compliance – Episode 55 – The From Worse to Worser Edition

What happens when two top compliance commentators get together? They talk compliance, of course. Join Tom Fox and Kristy Grant-Hart in 2 Gurus Talk Compliance as they discuss the latest compliance issues in this week’s episode!

Stories this week include:

  • What happens when your bot goes antisemitic? (NYT)
  • BRG modeled a plan to settle Palestinians. (FT)
  • Goldman to demand loyalty oaths. (Bloomberg)
  • NFLPA head works for private equity. (ESPN)
  • Bid-rigging in stadium development. (WSJ)
  • Airbus, ASML, Mistral Bosses Ask EU to Pause AI Rules. (WSJ)
  • EU Omnibus Simplification Package Update. (Gibson Dunn)
  • Antitrust Whistleblower Program Launched. (Radical Compliance)
  • Unfinished Business at the Department of Justice. (Ideas & Answers)
  • ‘Today is his birthday’: Man allegedly stole a tour train high on meth, picked up passengers. (Florida Local 12)

Resources:

Kristy Grant-Hart on LinkedIn

Prove Your Worth

Tom

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
Daily Compliance News

Daily Compliance News: May 9, 2025 – The Bring Out Your Dead Pardon Edition

Welcome to the Daily Compliance News. Each day, Tom Fox, the Voice of Compliance, brings you compliance-related stories to start your day. Sit back, enjoy a cup of morning coffee, and listen in to the Daily Compliance News—all from the Compliance Podcast Network. Each day, we consider four stories from the business world: compliance, ethics, risk management, leadership, or general interest for the compliance professional.

Top stories include:

  • Credit Suisse whistleblowers will share in a $150MM bounty. (WSJ)
  • Corpses for cash = corruption. (WSJ)
  • CZ to ask for a Presidential pardon. (CoinDesk)
  • OpenAI governance issues still exist. (FT)
Categories
Compliance Tip of the Day

Compliance Tip Of the Day – Using AI to Transform Whistleblower Response

Welcome to “Compliance Tip of the Day,” the podcast where we bring you daily insights and practical advice on navigating the ever-evolving landscape of compliance and regulatory requirements. Whether you’re a seasoned compliance professional or just starting your journey, we aim to provide bite-sized, actionable tips to help you stay on top of your compliance game. Join us as we explore the latest industry trends, share best practices, and demystify complex compliance issues to keep your organization on the right side of the law. Tune in daily for your dose of compliance wisdom, and let’s make compliance a little less daunting, one tip at a time.

Today, we consider how you can use AI to improve your whistleblower response and your culture of speaking up.

For more on embedded compliance, check out my new book, Upping Your Game: How Compliance and Risk Management Move to 2030 and Beyond, available from Amazon.com.

Categories
Daily Compliance News

Daily Compliance News: December 16, 2024 – The Not Paying Musk Edition

Welcome to the Daily Compliance News. Each day, Tom Fox, the Voice of Compliance, brings you compliance-related stories to start your day. Sit back, enjoy a cup of morning coffee, and listen in to the Daily Compliance News—all from the Compliance Podcast Network. Each day, we consider four stories from the business world: compliance, ethics, risk management, leadership, or general interest for the compliance professional.

  • McKinsey hit with $650MM for opioid work, fraud. (Reuters)
  • Not Paying Musk could cost Tesla $100MM. (FT)
  • Return to the Office (or else). (WSJ)
  • Another whistleblower was found dead. (BBC)

For more information on the Ethico Toolkit for Middle Managers, available at no charge, click here.

Check out the entire 3-book series, The Compliance Kids, on Amazon.com.

Categories
Daily Compliance News

Daily Compliance News: September 27, 2024 – The Hiz Honor Indicted Edition

Welcome to the Daily Compliance News. Each day, Tom Fox, the Voice of Compliance, brings you compliance-related stories to start your day. Sit back, enjoy a cup of morning coffee, and listen to the Daily Compliance News. All from the Compliance Podcast Network.

Each day, we consider four stories from the business world: compliance, ethics, risk management, leadership, or general interest for the compliance professional.

In today’s edition of Daily Compliance News:

  • NYT Mayor Adams indicted on bribery and corruption charges.  (NYT)
  • What happens when a news organization is a hedge fund or class action firm? (Bloomberg)
  • DOJ probing Super Micro Computer. (WSJ)
  • SEC fines 11 more firms for failures in messaging apps. (SEC Press Release)

Categories
Blog

Internal Reporting and Investigative Lessons from Star Trek: The Conscience of the King

Last month, I wrote a blog post on the tone at the top, exemplified in Star Trek’s Original Series episode, Devil in the Dark. Based on the response, some passionate Star Trek fans are out there. I decided to write a series of blog posts exploring Star Trek: The Original Series episodes as guides to the Hallmarks of an Effective Compliance program set out in the FCPA Resources Guide, 2nd edition. Today, I will continue my two-week series by looking at the following Hallmarks of an Effective Compliance Program laid out by the Department of Justice (DOJ) and Securities and Exchange Commission (SEC) in the FCPA Resources Guide, 2nd edition. Today, we look at internal reporting and investigative lessons from The Conscience of the King.

The Conscience of the King centers around Captain Kirk’s investigation into the identity of Anton Karidian, the leader of a traveling theater troupe. Kirk suspects that Karidian is Kodos the Executioner, a tyrant responsible for the massacre on Tarsus IV, where Kirk is one of the few survivors. As the episode unfolds, Kirk must gather evidence to confirm his suspicions while navigating the moral complexities of justice and revenge.

Lesson 1. The Importance of Confidential Reporting

Confidential reporting mechanisms are essential for identifying and addressing potential compliance violations. You should develop a comprehensive, confidential reporting policy that outlines the process for submitting reports, the types of issues that can be reported, protections for whistleblowers, and investigation procedures. These policies must be communicated broadly to all employees and made easily accessible.

You should have multiple reporting channels from there, such as a dedicated hotline, an online submission form, an email address, or in-person reporting to a compliance officer. Ensure all channels are communicated and easy for employees to access. Finally, consider using an independent third party to manage the reporting hotline for maximum confidentiality. They allow employees to report concerns without fear of retaliation, fostering a culture of transparency and accountability. Some of the mechanisms include anonymous reporting.

Lesson 2. Conduct Thorough Investigations

Effective investigations are crucial for verifying claims, gathering evidence, and determining appropriate action. Each compliance program should have a formal, standardized investigation process led by trained, impartial investigators. Your investigative protocol should outline evidence collection, interviews, and documentation guidelines. Investigations should be conducted impartially, ensuring that all parties are treated fairly and that conclusions are based on evidence rather than assumptions or biases. You must ensure that investigations are properly documented, with clear accountability for follow-up actions. You should provide regular progress updates to the reporting party while maintaining confidentiality.

Kirk’s evidence gathering illustrates these principles in the episode, as he seeks out individuals who might recognize Karidian as Kodos, such as Dr. Leighton, who was also a survivor of the Tarsus IV massacre. He balances suspicion with the need for concrete evidence before taking action. Kirk engages in human and forensic-based investigative tools when he devises a plan to observe Karidian’s reaction to hearing his voice from historical records of Kodos’s speeches, showcasing the importance of testing hypotheses to validate suspicions.

Lesson 3. Balancing Privacy and Justice

Investigations must balance the need for transparency with the privacy rights of those involved. Protecting confidentiality is essential to maintaining trust in the reporting process and ensuring fair outcomes. Every compliance function should have protocols to safeguard the confidentiality of all parties involved in an investigation, including the reporter, subject, and witnesses. This may include restricting access to sensitive information and ensuring secure storage of records. Finally, while maintaining confidentiality, organizations should communicate the outcomes of investigations to relevant stakeholders, reinforcing the organization’s commitment to transparency and accountability.

As a compliance professional, balancing the principles of privacy and justice during an internal investigation can be a delicate challenge. Here are some key considerations and approaches to striking the right balance through both proportionality and necessity. This means collecting and retaining only the personal data that is strictly necessary and proportional to the specific investigation. Also, avoid excessive data gathering or prolonged retention that could be considered an unwarranted invasion of privacy.

Examples from The Conscience of the King include Kirk’s maintenance of secrecy by ensuring that information about the investigation is shared only with those who need to know, protecting the privacy of individuals involved, and preventing potential harm to the theater troupe if the suspicions prove unfounded. His tactful handling of sensitive information is an example of how crucial it is to limit access to private information to preserve the investigation’s integrity.

Lesson 4. Leadership’s Role in Fostering a Compliance Culture

Leadership plays a critical role in establishing and maintaining a culture of compliance. Leaders must demonstrate a commitment to ethical behavior and support implementing compliance initiatives. A corporate compliance function should encourage business leadership, the C-Suite, and the Board of Directors to consistently reinforce the importance of speaking up and the organization’s non-retaliation commitment. You should also celebrate employees who come forward with reports that lead to positive change.

Business leaders should model ethical behavior and demonstrate a commitment to compliance through their actions and decisions. This sets a positive example for employees and reinforces the organization’s values. Your executives must actively support compliance initiatives, including developing and promoting reporting mechanisms and investigation procedures. Kirk exemplifies ethical leadership by prioritizing justice and integrity over personal vendetta. He uses his authority responsibly to pursue the truth while protecting his crew and the accused.

Lesson 5. Addressing the Human Element

Compliance programs must account for the human element, recognizing that emotions and personal biases can influence reporting and investigations. Programs should be designed to minimize these influences and ensure objective outcomes. Your compliance function should provide training to help employees recognize and manage emotions and biases that may impact their decision-making. You need to, as much as possible, move towards evidence- and data-based objective decision-making. This includes professional skepticism and developing processes and tools to facilitate objective decision-making, such as checklists or decision trees, to guide investigators and reduce the influence of personal biases.

“The Conscience of the King” offers valuable lessons for compliance professionals on the importance of confidential reporting and thorough investigations. By implementing these lessons, organizations can enhance compliance programs, foster a culture of transparency and accountability, and effectively manage risks. Incorporating these elements into your compliance strategy can help ensure that your organization is prepared to navigate the complexities of today’s regulatory environment while upholding the highest ethical standards. As Captain Kirk demonstrated, pursuing truth and justice requires vigilance, integrity, and a commitment to doing what is right.

Join us tomorrow as we consider the lessons on financial incentives and disciplinary measures from the Star Trek episode Mirror Mirror.

Categories
Great Women in Compliance

Great Women in Compliance: Jane Norberg – What’s New with Whistleblowing

In today’s episode, Lisa Fine speaks with Jane Norberg, a partner at Arnold & Porter. Jane is also the former Chief of the Office of the Whistleblower at the SEC, and she is one of the people who built that office into what it is today, both as Chief and before that, Deputy Chief. She is one of the leading voices on the whistleblower process, and an advisor to organizations in building best practices for organizations to address concerns.

In March, Deputy Attorney General Lisa Monaco announced a pilot program to compensate whistleblowers who report “significant corporate or financial misconduct” of which the DOJ was not aware. Jane talks about the SEC program and how it has succeeded. She also explains the similarities and differences between the not-yet-enacted DOJ program and the SEC program. Jane provides her perspective and insight as to why she thinks there is a delay from the DOJ as the initial 90 days have passed and how funding, staffing and other factors may contribute.

Jane and Lisa also discuss the SEC reporting process, how tips come in globally from over 100 countries, and the importance of the Whistleblower program to deter and stop wrongdoing.  This goes along with the statistics that indicate that 80% of whistleblowers raise concerns internally, most frequently to the person’s manager most often go to management, not to the Ethics and Compliance teams or the helplines. To that end, Jane provides practical advice to make sure that E&C teams are providing the right training for managers to identify issues and raise them appropriately.

Supporting ethical decision-making is critical for every organization, but providing training to those who may hear concerns is a key component of that. While practitioners think about this for company culture, Jane provides insight on the larger picture of how our internal work is related to the larger scope of whistleblower reporting.

Topics Include:

  • Jane’s integral role as Chief of the SEC Office of the Whistleblower
  • The DOJ pilot whistleblower program and the SEC program and the distinctions
  • Global Impact of the SEC Whistleblower Program
  • Practical advice for E&C professionals building and managing hotlines

Resources

Join the Great Women in Compliance community on LinkedIn here.

Categories
10 For 10

10 For 10: Top Compliance Stories For The Week Ending March 9, 2024

Welcome to 10 For 10, the podcast that brings you the week’s Top 10 compliance stories in one podcast each week. Tom Fox, the Voice of Compliance, brings to you, the compliance professional, the compliance stories you need to be aware of to end your busy week. Sit back, and in 10 minutes, hear about the stories every compliance professional should be aware of from the prior week.

Every Saturday, 10 For 10 highlights the most important news, insights, and analysis for the compliance professional, all curated by the Voice of Compliance, Tom Fox. Get your weekly filling of compliance stories with 10 for 10, a podcast produced by the Compliance Podcast Network.

  1. The DOJ announces a whistleblower program.  (WSJ)
  2. More from DAG Monaco. Changes to ECCP regarding AI. (Compliance Week)
  3. The NYT asks for Boeing whistleblowers. (NYT)
  4. Forced labor and Porsches.  (WSJ)
  5. The SEC approves weakened climate change rules. (NYT)
  6. Bribery acquittal in London. (F T)
  7. The CTA ruled it unconstitutional. (NYT)
  8. Senator Menendez, a co-defendant, pleads guilty. (CNBC)
  9. Ethisphere announces the World’s Most Ethical Company Awards. (Press Release)
  10. Gunvor is to pay $661 million for FCPA violations. (WSJ)

For more information on the Ethico ROI Calculator and a free White Paper on the ROI of Compliance, click here.

You can check out the Daily Compliance News for four curated compliance and ethics-related stories each day here.

Connect with Tom:

Instagram

Facebook

YouTube

Twitter

LinkedIn