One would think we have had our fill of shocking headlines cataloguing corrupt business practices and the staggering fines and penalties that go with them. From the US side of the Atlantic, the numbers can truly make your head swim.
For example, the US government collected around $750,000 in fines under the Foreign Corrupt Practices Act (FCPA) last year. It targeted high-profile industries, including energy (Weatherford), fashion (Ralph Lauren), financial services (Diebold) and food processing (ADM), and prosecuted more executives individually than in previous years.
And with British regulators armed with the UK Bribery Act (also known as ‘the FCPA on steroids’) and publicly declaring war on corrupt business practices, the stage is set for a massive trend in anti-corruption enforcement actions in the years to come.
With the US, UK and Germany in the vanguard of global anti-bribery enforcement, other countries are also clamping down on such activity. China’s pursuit of domestic and international companies that are believed to contravene its bribery and corruption laws has been widely documented.
Without an effective bribery and corruption compliance strategy, organisations face heightened governance risks
But despite some 41 countries signing up to the Organisation for Economic Co-operation and Development Anti-Bribery Convention, of which China is not a signatory, just four are currently known to be actively investigating and prosecuting alleged breaches. Alongside the US, the UK and Germany, only Switzerland has been deemed by Transparency International as having an active enforcement strategy.
Echoing these findings, the European Commission last year published its first EU Anti-Corruption Report, which concluded that “the effectiveness of anti-corruption policies [across EU Member States] is quite different”.
Nevertheless, without an effective bribery and corruption compliance strategy, organisations face heightened governance risks. This is illustrated by Germany’s decision to launch a bribery investigation into aircraft manufacturer Airbus, reportedly relating to contracts in Saudi Arabia and Romania. Meanwhile, the UK’s Serious Fraud Office has begun criminal proceedings against an Alstom company in the wake of an earlier successful investigation by Swiss authorities.
All of this begs one very important question: why are so many respected companies still having such difficulty getting their collective hands around the problem of corruption in the workplace? In other words, why are we still reading those headlines?
The answer, surely, is not a lack of desire. Most companies today have implemented compliance programmes that are designed to increase awareness of risky business situations and provide a framework to employees for avoiding horribles such as: bribery, anti-competitive behaviour, and importing/exporting goods or technology in violation of trade sanctions. And yet, these programmes far too often suffer from one or more of these five fatal flaws.
In addition, the latest compliance tools provide senior executives and compliance professionals with a credible, robust and transparent audit trail around policy access and use. This can help organisations to make informed decisions about where to spend their precious compliance resources, minimise the likelihood of investigations or prosecutions, and maximise their ability to successfully navigate a regulator’s inquiry should one arise.
Finally, compliance technology can go a long way to supporting a ‘culture of compliance’. In its definition of an effective compliance and ethics programme, the US government highlights the need for companies to “promote an organisational culture that encourages ethical conduct and a commitment to compliance with the law” (US Sentencing Guidelines, §8B2.1 (a)(2)). Enforcement agencies often start with the belief that your programme is merely ‘window dressing’ and leave it to you to convince them otherwise. Effective use of technology can make that process significantly easier.
It is time for a compliance renaissance, and by following these simple steps – writing policies with your employees in mind, providing meaningful and varied training, routinely assessing your risks and updating your policies, and using technology to help create and reinforce a culture of compliance – you can revitalise your programme and better protect yourself from disaster. And who knows, in time, those headlines we are all so tired of reading can finally start to disappear.
Seth Berman is executive MD of Stroz Friedberg, a risk management, investigations and intelligence company. He leads its Europe and Asia operations. www.strozfriedberg.com