Sunday, January 17, 2021
Corporate Compliance Insights
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Articles
    • See All Articles
    • NEW: COVID-Related
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Leadership and Career
  • Vendor News
  • Jobs
  • Events
    • Webinars & Events
    • Submit an Event
  • Downloads
    • eBooks
    • Whitepapers
  • Podcasts
  • Videos
  • Subscribe
No Result
View All Result
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Articles
    • See All Articles
    • NEW: COVID-Related
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Leadership and Career
  • Vendor News
  • Jobs
  • Events
    • Webinars & Events
    • Submit an Event
  • Downloads
    • eBooks
    • Whitepapers
  • Podcasts
  • Videos
  • Subscribe
No Result
View All Result
Corporate Compliance Insights

4 Clear Messages from the BMS FCPA Enforcement Action

by Michael Volkov
October 19, 2015
in Uncategorized
4 Clear Messages from the BMS FCPA Enforcement Action

This article was republished with permission from Michael Volkov’s blog, Corruption, Crime & Compliance.

The SEC’s FCPA enforcement action for $14.6 million against Bristol-Myers Squibb (BMS) provides a textbook example of how things can go wrong in China.

For the compliance practitioner (as well as CEO and senior executives) in the pharmaceutical and medical device industries, the BMS enforcement action should be read and digested as a quick checklist of important principles.

The facts underlying the BMS enforcement action are fairly common when it comes to China and pharmaceutical companies. Health care professionals (HCPs) demand gifts, cash, gift cards, conference sponsorships, speaking fees and other benefits in exchange for prescriptions. The headline is pretty basic – no gifts, no prescriptions.

BMS employees responded to this demand.  They used fake invoices, receipts – which are easy to secure in China – and other sources of cash to fund this bribery program. BMS employees had little difficulty in getting the cash they needed and paying the bribes that were required to keep their sales growing and meet significant sales requirements.

This bribery scheme continued without any real concern, even when senior executives, as well as the audit committee, were warned about potential problems, as well as weaknesses in BMS’ controls in China governing such expenditures. There was no evident commitment to a culture of compliance; if anything, the incentives and the controls that were in place and never remedied communicated an implicit culture of non-compliance and sales at any cost.

The SEC’s enforcement action sends out some clear messages on the compliance front. They include:

Implement a prospective pre-approval expense process. Throughout the BMS bribery scheme, bribes were funded through retrospective reimbursement requests. Managers and employees submitted fake invoices and receipts to fund the bribery scheme. China has a notorious black market for fake receipts and they are easy to obtain and then use for reimbursement purposes. A prospective, pre-approval requirement establishes a basic framework for examining, verification and documentation of a specific expenditure. As part of its remediation, BMS instituted a 100 percent pre-approval expenditure requirement process.

Require remediation of internal audit findings. BMS’ internal audits identified serious weaknesses in BMS’ controls in China, particularly with respect to gifts, meals, entertainment, speaker conferences and physician payments. It is clear that, notwithstanding these findings, the internal audit function did not have a mandate to require appropriate remediation of findings and actions to be taken.

When problems occur or are identified, corporate leadership, legal and compliance must respond. Despite numerous notifications to senior managers and even the audit committee about potential problems in China, no one acted to investigate or even respond to the problem. Such evidence is damning for a company and subjects individual actors to potential criminal liability.

Robust compliance requires resources. BMS’ bribery scheme continued in a corporate culture where compliance had inadequate resources. As noted by the SEC, for much of the time of this activity, BMS did not have a compliance officer located in China. Instead, a compliance officer responsible for China was based in the United States and traveled only one time to China. Companies have to assign additional compliance resources, and especially assign them to specific regions. On-site compliance officers are more effective in building important relationships, monitoring corporate culture and offering their assistance to management. It is clear that BMS had no desire to expend resources on compliance and assign any resources to the China operation, notwithstanding the size and revenues generated in China.


Tags: tone at the top
Previous Post

LUCY V 2.4 Phishing Server Becomes First Cybersecurity Tool To Simulate and Defend Against Macro Malware Attacks

Next Post

Observations on the Short-Term/Long-Term Debate, Part 2

Michael Volkov

Michael-Volkov-leclairryan Michael Volkov is the CEO of The Volkov Law Group LLC, where he provides compliance, internal investigation and white collar defense services.  He can be reached at mvolkov@volkovlaw.com. Michael has extensive experience representing clients on matters involving the Foreign Corrupt Practices Act, the UK Bribery Act, money laundering, Office of Foreign Asset Control (OFAC), export controls, sanctions and International Traffic in Arms, False Claims Act, Congressional investigations, online gambling and regulatory enforcement issues. Michael served for more than 17 years as a federal prosecutor in the U.S. Attorney’s Office in the District of Columbia; for five years as the Chief Crime and Terrorism Counsel for the Senate Judiciary Committee, and Chief Crime, Terrorism and Homeland Security Counsel for the Senate and House Judiciary Committees; and as a Trial Attorney in the Antitrust Division of the U.S. Department of Justice. Michael also maintains a well-known blog: Corruption Crime & Compliance, which is frequently cited by anti-corruption professionals and professionals in the compliance industry.

Related Posts

illustration of ransomware and hand paying ransom

Ransomware: It’s Time to Stop Negotiating

January 15, 2021
wrench with 100 dollar bills

DOJ Launches 2 Criminal Prosecutions of Illegal No-Poach and Wage-Fixing Agreements

January 14, 2021
mobile health care app

Prioritizing Compliance Along Health Care’s Digital Transformation Journey

January 14, 2021
Leadership Lessons From Darth Vader

Leadership Lessons From Darth Vader

January 13, 2021
Next Post
Observations on the Short-Term/Long-Term Debate, Part 2

Observations on the Short-Term/Long-Term Debate, Part 2

Special Coverage

Special COVID page graphic

Jump to a Topic:

anti-corruption anti-money laundering/AML Artificial Intelligence/A.I. automation banks board of directors board risk oversight bribery CCPA/California Consumer Privacy Act Cloud Compliance communications management Coronavirus/COVID-19 corporate culture crisis management culture of ethics cyber crime cyber risk data analytics data breach data governance decision-making diversity DOJ due diligence fcpa enforcement actions financial crime GDPR GRC HIPAA information security internal audit KYC/know your customer machine learning monitoring regtech reputation risk risk assessment Sanctions SEC social media risk technology third party risk management tone at the top training whistleblowing
No Result
View All Result

Privacy Policy

Follow Us

  • Facebook
  • Twitter
  • LinkedIn
  • RSS Feed

Category

  • CCI Press
  • Compliance
  • Compliance Podcasts
  • Cybersecurity
  • Data Privacy
  • eBooks
  • Ethics
  • FCPA
  • Featured
  • Financial Services
  • Fraud
  • Governance
  • GRC Vendor News
  • HR Compliance
  • Internal Audit
  • Leadership and Career
  • Opinion
  • Resource Library
  • Risk
  • Uncategorized
  • Videos
  • Webinars
  • Whitepapers

© 2019 Corporate Compliance Insights

No Result
View All Result
  • Home
  • About
  • Articles
  • Vendor News
  • Podcasts
  • Videos
  • Whitepapers
  • eBooks
  • Events
  • Jobs
  • Subscribe

© 2019 Corporate Compliance Insights