No Result
View All Result
SUBSCRIBE | NO FEES, NO PAYWALLS
MANAGE MY SUBSCRIPTION
NEWSLETTER
Corporate Compliance Insights
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe
No Result
View All Result
Corporate Compliance Insights
Home Compliance

DOJ Releases New Guidance on Compliance Programs

by Philip Bezanson
March 9, 2017
in Compliance, Featured
man manipulating touchscreen reading "investigation"

What to Expect in a Criminal Investigation

Bracewell white collar attorneys dissect guidance from the DOJ’s Fraud Section on how it assesses compliance program (and intends to). This guidance provides insight into the questions corporate counsel should expect from DOJ prosecutors during a criminal investigation and highlights common indicators of a strong corporate culture of compliance.

with co-authors Glen Kopp and Chelsea O’Donnell

On February 8, 2017, the Fraud Section of the Department of Justice (DOJ) quietly published pointed and specific guidance on how it assesses – and intends to assess – compliance programs in a report titled “Evaluation of Corporate Compliance Programs” (“the Report”).1 Much of the substantive guidance in the Report draws from pre-existing DOJ materials and is consistent with other well-known compliance guidance.  The Report provides insight into the questions corporate counsel should expect from DOJ prosecutors during a criminal investigation and it highlights common indicators of a strong corporate culture of compliance.

Background

Since at least 1999, when the “Holder Memo” addressed principles of prosecution of business organizations, companies have looked to a variety of DOJ publications for clues on how compliance programs were evaluated and weighed in the context of corporate criminal investigations.  The Report is an explicit continuation of DOJ materials that previously addressed compliance programs, including the United States Federal Sentencing Guidelines,2 the United States Attorney’s Manual3 and A Resource Guide to the U.S. Foreign Corrupt Practices Act (“the FCPA Guide”).4  Earlier materials, such as the Federal Sentencing Guidelines and U.S. Attorney’s Manual, have helped defense lawyers frame corporate cooperation with criminal investigations, but proved less effective guides to DOJ compliance program evaluations (as has been made clear many times over, an effective compliance program is not a complete defense for a corporation).  Although the 2008 “Filip Factors” listed in the U.S. Attorney’s Manual instruct prosecutors to consider the effectiveness of a compliance program when conducting an investigation or negotiating a resolution, they lack the detail necessary to evaluate complex international compliance programs that rely on layers of internal corporate review and data analysis.  More recent guidance, such as the FCPA Guide, provides insight into how the effectiveness of companies’ compliance programs would be assessed by the DOJ in the event of an investigation.  That is, valuable after-the-fact measures that provide only a baseline for creating compliance policies and turning them into an effective compliance program.

The Report gives a further window into what DOJ prosecutors are looking for and in particular, what the DOJ internal compliance counsel is looking for, when analyzing a company’s compliance operation.  Though its approach is consistent with prior DOJ guidance, the new release could mark a subtle departure from the DOJ’s allowance that compliance programs are individually evaluated in light of a company’s specific needs and risk profile.  Instead, the Report is a roadmap of questions that companies and their counsel should expect and be able to answer – and, importantly, they should be able to explain why inapplicable questions are not relevant to a company’s specific needs or risk profile.  Two pronounced themes that are present throughout the Report are accountability from individuals and an expected corporate culture of compliance.

Focus on Individual Responsibility and Corporate Culture

The Report reflects the DOJ’s continued interest in individual responsibility, as recently articulated in the 2015 Yates Memo, which prioritized individual accountability in corporate investigations.5 The Report further evidences the DOJ’s interest in pursuing individuals in cases of corporate wrongdoing.  The Report identifies 11 broad topic areas,6 along with numerous subtopics and questions that prosecutors may ask when evaluating a compliance program.  Several of these topics, subtopics and specific questions focus on individual responsibility; some examples:

  • “How have senior leaders, through their words and actions, encouraged or discouraged the type of misconduct in question?”
  • “What specific actions have senior leaders … taken to demonstrate their commitment to compliance, including their remediation efforts?”
  • “Who reviewed the performance of the compliance function, and what was the review process?”

The 11 broad topic areas in the Report also set forth a detailed framework of the DOJ’s corporate culture expectations.  For example, the Report includes questions regarding:

  1. the stature and power of the compliance program,
  2. compliance officers’ access to the company’s board of directors,
  3. the design and implementation of compliance policies and procedures,
  4. how the company assesses and tests for risk,
  5. whether employees are adequately trained to recognize and respond to misconduct,
  6. the company’s reporting and investigatory mechanisms and
  7. whether the company takes appropriate disciplinary actions in the event of misconduct.

While none of these questions is novel, it is undeniably essential that a responsible company official be able to provide satisfactory answers to them in the face of enforcement scrutiny.

Takeaways

Even though the Report contains guidance previously addressed through existing DOJ materials, it provides a sharper lens into how the DOJ evaluates the effectiveness of corporate compliance programs.  Only time will tell the extent to which the DOJ treats the Report as a checklist (which it explicitly denies it does or will) when it subjects a compliance program to close scrutiny and even then, whether the DOJ’s approach will be publicly discernable in resolved cases.

_______________________________________________

1 The report is available here.

2 http://www.ussc.gov/guidelines/guidelines-archive/2014-federal-sentencing-guidelines-manual

3 https://www.justice.gov/usam/usam-9-28000-principles-federal-prosecution-business-organizations

4 https://www.justice.gov/sites/default/files/criminal-fraud/legacy/2015/01/16/guide.pdf

5 https://www.justice.gov/dag/file/769036/download

6 These topics include: Analysis and Remediation of Underlying Conduct, Senior and Middle Management, Autonomy and Resources, Policies and Procedures, Risk Assessment, Training and Communications, Confidential Reporting and Investigation, Incentives and Disciplinary Measures, Continuous Improvement, Periodic Testing and Review, Third Party Management and Mergers & Acquisitions.


Tags: Corporate CultureDOJYates Memo/Personal Liability
Previous Post

The 2 Most Important Words in a Compliance Dictionary

Next Post

Protiviti Named to Fortune 100 Best Companies to Work For® List for 3rd Year

Philip Bezanson

Philip Bezanson

Phil BezansonPhil Bezanson is a partner at Bracewell LLP in Seattle, where he represents corporate clients, senior management and boards of directors, as well as individual clients in internal investigations, securities enforcement, criminal defense and regulatory matters. Phil is a member of the Bracewell LLP team that has worked on recent high-profile and complex cases, including the Deepwater Horizon explosion; the George Washington Bridge lane closure; General Motors’ ignition switch investigations; “Pay to Play” cases in New York, New Mexico and Illinois; the stock options backdating cases; and a variety of matters involving the Foreign Corrupt Practices Act, accounting and public disclosure practices at publicly traded companies and trading desks at financial institutions.

Related Posts

doj-flag-sculpture

Fraud Section’s 2022: A Year of Individual Accountability, Cooperation With Foreign Authorities & Pushing Compliance Programs

by Morgan Lewis
March 15, 2023

The DOJ’s Fraud Section had a banner year in 2022, posting its highest number of convictions in a single year...

Incentives to report FCPA violations greater than ever for compliance officers

New DOJ Guidance Charts a Way Forward on Ephemeral Messaging

by Mary Shirley
March 8, 2023

New guidance from the DOJ on what makes an effective compliance program should be mandatory reading for every corporate integrity...

Robert Kennedy Justice Department building in washington DC

Slicing Up DOJ’s Half-a-Loaf Update to Corporate Enforcement Policy

by Miller & Chevalier
February 15, 2023

The DOJ's updated corporate enforcement policy continues to push companies to self-disclose potential criminal issues "at the earliest possible time"...

Fox_McDonalds Delaware Chancery Court Case_f

McDonald’s Delaware Court Decision Will Change CCO World Forever

by Corporate Compliance Insights
February 9, 2023

Podcaster and compliance expert Tom Fox digs into the details of a recent Delaware Chancery Court decision and how it...

Next Post
Protiviti Named to Fortune 100 Best Companies to Work For® List for 3rd Year

Protiviti Named to Fortune 100 Best Companies to Work For® List for 3rd Year

Compliance Job Interview Q&A

Jump to a Topic

AML Anti-Bribery Anti-Corruption Artificial Intelligence (AI) Automation Banking Board of Directors Board Risk Oversight Business Continuity Planning California Consumer Privacy Act (CCPA) Code of Conduct Communications Management Corporate Culture COVID-19 Cryptocurrency Culture of Ethics Cybercrime Cyber Risk Data Analytics Data Breach Data Governance DOJ Download Due Diligence Enterprise Risk Management (ERM) ESG FCPA Enforcement Actions Financial Crime Financial Crimes Enforcement Network (FinCEN) GDPR HIPAA Know Your Customer (KYC) Machine Learning Monitoring RegTech Reputation Risk Risk Assessment SEC Social Media Risk Supply Chain Technology Third Party Risk Management Tone at the Top Training Whistleblowing
No Result
View All Result

Privacy Policy

Founded in 2010, CCI is the web’s premier global independent news source for compliance, ethics, risk and information security. 

Got a news tip? Get in touch. Want a weekly round-up in your inbox? Sign up for free. No subscription fees, no paywalls. 

Follow Us

Browse Topics:

  • CCI Press
  • Compliance
  • Compliance Podcasts
  • Cybersecurity
  • Data Privacy
  • eBooks Published by CCI
  • Ethics
  • FCPA
  • Featured
  • Financial Services
  • Fraud
  • Governance
  • GRC Vendor News
  • HR Compliance
  • Internal Audit
  • Leadership and Career
  • On Demand Webinars
  • Opinion
  • Resource Library
  • Risk
  • Uncategorized
  • Videos
  • Webinars
  • Well-Being
  • Whitepapers

© 2022 Corporate Compliance Insights

No Result
View All Result
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe

© 2022 Corporate Compliance Insights

Welcome to CCI. This site uses cookies. Please click OK to accept. Privacy Policy
Cookie settingsACCEPT
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT