No Result
View All Result
SUBSCRIBE | NO FEES, NO PAYWALLS
MANAGE MY SUBSCRIPTION
NEWSLETTER
Corporate Compliance Insights
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe
No Result
View All Result
Corporate Compliance Insights
Home FCPA

Cryptocurrencies: Instruments for Payments or Corruption?

by Anthony Campanelli
April 24, 2017
in FCPA, Featured
bills and credit card on digital background

Preparing for Potential Compliance Violations

Companies engaged in cross-border commerce are uncertain about how the use of Bitcoin and other cryptocurrencies may heighten the risk of noncompliance with the Foreign Corrupt Practices Act (FCPA) and other anti-fraud and corruption regulations. Consider what risks may arise and what controls might be needed to keep an aspiring but misguided employee from successfully executing a payoff without being caught.

with co-author Kevin Corbett

Company X is bidding on a major industrial contract in an emerging market, a piece of business that could catapult it to a record year. The Sales Vice President leading the proposal team is energized to deliver a win and reap the bonus and quick promotion to follow.

But it’s not looking good for the bid. At least that’s what a government official told the VP at a recent charity event. The official was willing to take a fresh look at the matter, especially if he had an extra incentive to do so. The Sales VP wanted this deal to happen, both for his own benefit and that of the company. This VP was going to make it happen.

“One more thing, my friend,” said the official. “Kindly make it in Bitcoins!”

Bribes reach the hands of public officials through many routes, from cash payments and excess commissions to charitable contributions, sponsorships and lavish travel. The emergence of Bitcoin and other cryptocurrencies brings another option into the mix.

Blockchain, the distributed ledger technology that underpins these currencies, is a mechanism for exchanging value and transaction information online without an intermediary. As such, it has the potential to disrupt virtually every industry.

With disruption comes risks and uncertainties. Companies engaged in cross-border commerce are uncertain about how the use of Bitcoin and other cryptocurrencies may heighten the risk of noncompliance with the Foreign Corrupt Practices Act (FCPA) and other anti-fraud and anti-corruption regulations. As companies contemplate the possibility of using cryptocurrencies, it is important to consider what risks may arise and what controls might be needed to keep an aspiring but misguided employee, such as our hypothetical VP, from successfully executing a payoff without being caught.

How a Corruption Scheme Might Unfold

Both the sales VP and the government official have a role in setting up the Bitcoin bribe. Here is a possible sequence:

  • The VP and the government official each create a Bitcoin wallet, an online repository for digital currency. The wallet is software downloaded and controlled by the user, similar to an online wallet storage.
  • The VP purchases Bitcoins through one of hundreds of online exchanges and stores them in the wallet.
  • Bitcoin users each have multiple Bitcoin addresses, which are single-use tokens used for transactions. The government official creates a new address to which the VP sends the payment.

The vehicle for value transfer cryptocurrencies provide is paradoxically both anonymous and transparent. Bitcoin transactions are permanently recorded and traceable. At the same time, some online exchanges do not require verifiable personal information to purchase Bitcoins. For example, Dark Wallet was launched in 2014 as a Bitcoin application to protest users’ identities and was described by its founder as “money-laundering software.”[1] On some cryptocurrency platforms, users are able to utilize fake names and addresses, making it harder to identify the individuals or entities behind the payments. The VP, therefore, might recognize the benefits of utilizing a cryptocurrency platform that offers him anonymity so that he increases his chances of not getting caught while making the aforementioned bribe. Additionally, Bitcoin mixing (putting one’s coins into a larger pool with coins from other sources) scrubs the linkability and traceability from them, making it harder to track specific payments entering the mixing service to payments exiting it. A user may also opt to use newer protocols such as Zcash, a cryptocurrency that utilizes zero-knowledge proof constructions to mask the identity of users.

Other Risks Posed by Cryptocurrencies

How could a company uncover the VP’s payment to the government official? A typical investigation would involve combing books and records for round-dollar or one-time-vendor payments. But what would be the mitigating control to identify a cryptocurrency transaction? Could the transaction go undetected?

Another problem with cryptocurrencies is that their online networks are vulnerable to hackers.  For example, in August 2016, some US$65 million in Bitcoins were stolen from the Hong Kong-based Bitfinex exchange platform.[2] Therefore, a legitimate entity could potentially obtain Bitcoins in a presumably above-board transaction from a fraudster who stole Bitcoins through a hack. That transaction might then be traced back to a payment for some illegal activity, and exchanges could commence to blacklist the legitimate entity for engaging with the fraudster.

Regulators are Taking Notice

Regulators in the United States, Europe and around the world have begun to take action to prevent companies and individuals from utilizing cryptocurrencies to launder money or conduct other illegal activity. First, governments have started to establish legal frameworks for regulation of cryptocurrency usage. For example, in the United States, the Financial Crimes and Enforcement Network (FinCEN) stated in 2013 that “digital currency firms need to comply with the same anti-money laundering rules as other financial institutions, including monitoring customers and reporting suspicious activity to the government.”[3] Additionally, governments around the world have made numerous arrests for Bitcoin-related money-laundering involvement. Intelligence and justice agencies are employing increasingly advanced technology to identify the users behind illicit cryptocurrency activity. These advanced technologies, combined with traditional investigative techniques, helped the U.S. Justice Department identify the Bitcoin wallet of Ross Ulbricht, who was arrested for running Silk Road, an online drug bazaar.

However, some countries have yet to form coherent policies toward cryptocurrencies, and regulation on this topic is still a mixed bag worldwide.

What Companies Can Do to Prepare

Given the increasing regulation of cryptocurrencies and the risks presented by usage of this technology, companies need to take proactive steps to ensure that cryptocurrencies are not being used for bribes and other illicit activities. Here are some steps companies can take to ensure the legality of their cryptocurrency activities:

  • Conduct a detailed assessment and monitoring of current and potential corruption schemes using cryptocurrencies and enhance the control environment as needed.
  • Give careful consideration to the people within the company who can conduct business in cryptocurrencies, which Bitcoin addresses can send payments and to whom payments can be sent so that companies can track all users who utilize this technology for business purposes.
  • Closely monitor traditional company bank accounts for transfers that involve the purchase of cryptocurrencies.
  • Stay alert to the potential for dirty money — money used in some sort of criminal activity — to be laundered through Bitcoin mixing that could potentially infect a legitimate transaction.
  • Train employees on compliance with FCPA and other requirements, including how to identify new red-flag schemes that involve the use of cryptocurrencies.

Becoming Cryptocurrency Ready

Cryptocurrencies, and the scams and schemes they can potentially spawn, represent new forms of business opportunity and risk. The first chapters of their story are just now being written. If the variety and pace of developments to date are any indication, the activity in this field is only likely to accelerate. By understanding digital currency and carefully planning for the emergence of new cryptocurrency applications, companies can be better prepared for the emerging era of digital commerce and an overeager VP who may try to use this technology to conduct illegal activity.

[1] https://www.wired.com/2014/04/dark-wallet/

[2] http://www.coindesk.com/bitfinex-negotiate-hacker-stole-Bitcoin-exchange/#

[3] http://www.reuters.com/article/us-digitalcurrency-regulation-bitcoin-idUSBRE94U17X20130531


Tags: BlockchainCryptocurrency
Previous Post

Building Resilience and Mitigating Risk in the 21st Century

Next Post

Can Companies Rely on Compliance Consultants?

Anthony Campanelli

Anthony Campanelli

Anthony Campanelli is a Deloitte Risk and Financial Advisory partner with Deloitte Financial Advisory Services LLP, specializing in forensics, corporate investigations and financial crime detection and prevention.

Related Posts

ftx arena miami

2023: The Year of Crypto Compliance

by Ben Richmond
January 11, 2023

The November collapses of FTX and BlockFi, two of the world’s biggest cryptocurrency exchanges, were shocking — and devastating for...

The North Korean Crypto Threat_f

The North Korean Crypto Threat

by Corporate Compliance Insights
October 20, 2022

How to challenge North Korea's entry into the crypto field of play Facing the Latest Challenge to the Crypto Ecosystem...

unpacking crypto eo

Unpacking Biden’s Crypto Executive Order

by Harriet Christie
July 27, 2022

Rather than an exhaustive dossier of rules and regulations providing next steps for crypto firms, President Joe Biden’s March 9...

crypto security risks

Where the Money Is: Cryptocurrency Industry Grapples With Rising Cybersecurity Risks

by FTI Consulting
July 6, 2022

Notorious bank robber Willie Sutton famously said “because that’s where the money is” in response to why he robbed banks....

Next Post
businessman holding virtual key

Can Companies Rely on Compliance Consultants?

Compliance Job Interview Q&A

Jump to a Topic

AML Anti-Bribery Anti-Corruption Artificial Intelligence (AI) Automation Banking Board of Directors Board Risk Oversight Business Continuity Planning California Consumer Privacy Act (CCPA) Code of Conduct Communications Management Corporate Culture COVID-19 Cryptocurrency Culture of Ethics Cybercrime Cyber Risk Data Analytics Data Breach Data Governance DOJ Download Due Diligence Enterprise Risk Management (ERM) ESG FCPA Enforcement Actions Financial Crime Financial Crimes Enforcement Network (FinCEN) GDPR HIPAA Know Your Customer (KYC) Machine Learning Monitoring RegTech Reputation Risk Risk Assessment SEC Social Media Risk Supply Chain Technology Third Party Risk Management Tone at the Top Training Whistleblowing
No Result
View All Result

Privacy Policy

Founded in 2010, CCI is the web’s premier global independent news source for compliance, ethics, risk and information security. 

Got a news tip? Get in touch. Want a weekly round-up in your inbox? Sign up for free. No subscription fees, no paywalls. 

Follow Us

Browse Topics:

  • CCI Press
  • Compliance
  • Compliance Podcasts
  • Cybersecurity
  • Data Privacy
  • eBooks Published by CCI
  • Ethics
  • FCPA
  • Featured
  • Financial Services
  • Fraud
  • Governance
  • GRC Vendor News
  • HR Compliance
  • Internal Audit
  • Leadership and Career
  • On Demand Webinars
  • Opinion
  • Resource Library
  • Risk
  • Uncategorized
  • Videos
  • Webinars
  • Well-Being
  • Whitepapers

© 2022 Corporate Compliance Insights

No Result
View All Result
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe

© 2022 Corporate Compliance Insights

Welcome to CCI. This site uses cookies. Please click OK to accept. Privacy Policy
Cookie settingsACCEPT
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT