No Result
View All Result
SUBSCRIBE | NO FEES, NO PAYWALLS
MANAGE MY SUBSCRIPTION
NEWSLETTER
Corporate Compliance Insights
  • Home
  • About
    • About CCI
    • CCI Magazine
    • Writing for CCI
    • Career Connection
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Library
    • Download Whitepapers & Reports
    • Download eBooks
    • New: Living Your Best Compliance Life by Mary Shirley
    • New: Ethics and Compliance for Humans by Adam Balfour
    • 2021: Raise Your Game, Not Your Voice by Lentini-Walker & Tschida
    • CCI Press & Compliance Bookshelf
  • Podcasts
    • Great Women in Compliance
    • Unless: The Podcast (Hemma Lomax)
  • Research
  • Webinars
  • Events
  • Subscribe
Jump to a Section
  • At the Office
    • Ethics
    • HR Compliance
    • Leadership & Career
    • Well-Being at Work
  • Compliance & Risk
    • Compliance
    • FCPA
    • Fraud
    • Risk
  • Finserv & Audit
    • Financial Services
    • Internal Audit
  • Governance
    • ESG
    • Getting Governance Right
  • Infosec
    • Cybersecurity
    • Data Privacy
  • Opinion
    • Adam Balfour
    • Jim DeLoach
    • Mary Shirley
    • Yan Tougas
No Result
View All Result
Corporate Compliance Insights

Derailing Internal Reviews, Audits, Assessments and Investigations

by Michael Volkov
March 4, 2016
in Uncategorized
internal audits are important, but so are independent investigations

This article was republished with permission from Michael Volkov’s blog, Corruption, Crime & Compliance.

Following FCPA enforcement actions provides important insights that can be translated into corporate compliance program best practices. One key element of an effective ethics and compliance program is conducting periodic assessments and implementing an efficient and responsive internal investigation protocol. Under the Sentencing Guidelines, an effective ethics and compliance program has to prevent and detect potential violations of law and the company’s code of conduct.

Recently, FCPA enforcement actions have underscored some glaring problems in this area. Several companies identified potential compliance problems or weaknesses in their anti-corruption compliance programs. However, these inquiries and investigations failed to uncover the full scope of the problem, leading to the continuation of illegal bribery. It was not until outside counsel conducted an internal investigation that the full scope of the problem was uncovered.

There are two possible explanations for this problem – both of which are not good. First, the internal investigation protocol applied by the company is weak and suffers from serious deficiencies either in terms of resources or capabilities. Second, and very troubling, is the possibility that internal inquiries are conducted to produce a result that is favorable to current management. If the structure of these inquiries is mere window dressing, designed to reach a predetermined result, the company has serious culture problems and could be exposed to potential obstruction issues.

In the last six months, the FCPA enforcement actions have had a familiar pattern: inadequate controls over gifts, meals and entertainment, particularly in China. It is not like this is a new issue; compliance and enforcement professionals have been discussing this risk for years and recommending appropriate steps to mitigate those risks.

Outside counsel is usually brought in and retained with a mandate to conduct a thorough independent investigation. Outside counsel is not beholden to the company or depending upon approval from senior management for counsel’s career. But outside counsel is not a foolproof solution – there have been plenty of situations where outside counsel has investigated the matter with an eye to currying favor with senior management or a corporate Board.

The focus of this article is not on outside counsel and oversight of outside counsel to ensure a fair and thorough independent investigation.

Companies that suspect FCPA violations need to devote more attention to ensuring that their own investigations uncover evidence of such violations. The SEC and DOJ will cite the failure of internal investigation functions to detect and investigate potential violations. If an initial investigation is deficient, the company will lose a valuable opportunity to demonstrate the strength of its culture, as well as the assignment of adequate resources to detect and uncover illegal conduct.

A company that seeks to brush a matter under the rug or that conducts a cursory investigation is certain to lose points and credibility with the DOJ and SEC.

For compliance practitioners, the message is clear: companies have to design and implement effective independent internal investigation functions. A separate investigation function that is supported by top management and encouraged to uncover potential problems is an important engine for promoting an ethical culture and establishing a speak-up culture where employees trust the company’s internal policing system.

When companies avoid the hard truths, turn a blind eye to potential problems or skew risk assessment results, they risk serious enforcement actions and damage to any culture of compliance. Senior management has to embrace these functions and avoid any appearance of or actions to obstruct an inquiry into potential misconduct. This cannot be done on a case-by-case basis, but depends on establishing a structure that promotes independence and objective investigations.

A company’s credibility on its commitment to a culture of compliance is easy to test when it comes to its internal investigation function. If the company encourages internal reporting, commits to respond to potential problems and avoids any inkling of retaliation against employees that report problems, the company will be able to build a solid foundation to promote objective and fair internal investigations.


Tags: HIPAA
Previous Post

Protiviti: Cybersecurity Risk Becoming a Mainstay in Annual Audit Plans

Next Post

Winning the War for Talent

Michael Volkov

Michael Volkov

Michael-Volkov-leclairryan Michael Volkov is the CEO of The Volkov Law Group LLC, where he provides compliance, internal investigation and white collar defense services.  He can be reached at mvolkov@volkovlaw.com. Michael has extensive experience representing clients on matters involving the Foreign Corrupt Practices Act, the UK Bribery Act, money laundering, Office of Foreign Asset Control (OFAC), export controls, sanctions and International Traffic in Arms, False Claims Act, Congressional investigations, online gambling and regulatory enforcement issues. Michael served for more than 17 years as a federal prosecutor in the U.S. Attorney’s Office in the District of Columbia; for five years as the Chief Crime and Terrorism Counsel for the Senate Judiciary Committee, and Chief Crime, Terrorism and Homeland Security Counsel for the Senate and House Judiciary Committees; and as a Trial Attorney in the Antitrust Division of the U.S. Department of Justice. Michael also maintains a well-known blog: Corruption Crime & Compliance, which is frequently cited by anti-corruption professionals and professionals in the compliance industry.

Related Posts

virginia state flag

Are You Ready for Virginia’s Sweeping Reproductive Health Privacy Law?

by Meghan O’Connor
April 29, 2025

Broadly defined ‘reproductive and sexual health information’ may affect any company doing business in the state

demystifying data de ID collage

Demystifying Data De-Identification for US Privacy Compliance

by L. Hannah Ji-Otto, David Chen and Julie Kilgore
October 30, 2024

De-identification is a valuable tool for protecting consumer privacy, but the process requires diligent compliance with multiple state and federal...

paper medical records

What HIPAA-Covered Entities & Other Companies Need to Know About Cookies & Tracking Tech

by Steve Britt
October 21, 2024

New state laws seek to regulate collecting of health data

Medical professional enters information into electronic medical record

Navigating HIPAA Compliance in the Cloud: Is Google Workspace the Right Fit?

by Nick Harrahill
August 15, 2023

By 2025, an estimated 85% of enterprises will shift to a cloud-first mindset, while others will adopt a hybrid approach...

Next Post
Top talent demands competitive benefits. Can you retain your star performers with the benefits you’re offering?

Winning the War for Talent

No Result
View All Result

Privacy Policy | AI Policy

Founded in 2010, CCI is the web’s premier global independent news source for compliance, ethics, risk and information security. 

Got a news tip? Get in touch. Want a weekly round-up in your inbox? Sign up for free. No subscription fees, no paywalls. 

Follow Us

Browse Topics:

  • CCI Press
  • Compliance
  • Compliance Podcasts
  • Cybersecurity
  • Data Privacy
  • eBooks Published by CCI
  • Ethics
  • FCPA
  • Featured
  • Financial Services
  • Fraud
  • Governance
  • GRC Vendor News
  • HR Compliance
  • Internal Audit
  • Leadership and Career
  • On Demand Webinars
  • Opinion
  • Research
  • Resource Library
  • Risk
  • Uncategorized
  • Videos
  • Webinars
  • Well-Being
  • Whitepapers

© 2025 Corporate Compliance Insights

Welcome to CCI. This site uses cookies. Please click OK to accept. Privacy Policy
Cookie settingsACCEPT
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT
No Result
View All Result
  • Home
  • About
    • About CCI
    • CCI Magazine
    • Writing for CCI
    • Career Connection
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Library
    • Download Whitepapers & Reports
    • Download eBooks
    • New: Living Your Best Compliance Life by Mary Shirley
    • New: Ethics and Compliance for Humans by Adam Balfour
    • 2021: Raise Your Game, Not Your Voice by Lentini-Walker & Tschida
    • CCI Press & Compliance Bookshelf
  • Podcasts
    • Great Women in Compliance
    • Unless: The Podcast (Hemma Lomax)
  • Research
  • Webinars
  • Events
  • Subscribe

© 2025 Corporate Compliance Insights