No Result
View All Result
SUBSCRIBE | NO FEES, NO PAYWALLS
MANAGE MY SUBSCRIPTION
NEWSLETTER
Corporate Compliance Insights
  • Home
  • About
    • About CCI
    • CCI Magazine
    • Writing for CCI
    • Career Connection
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Library
    • Download Whitepapers & Reports
    • Download eBooks
    • New: Living Your Best Compliance Life by Mary Shirley
    • New: Ethics and Compliance for Humans by Adam Balfour
    • 2021: Raise Your Game, Not Your Voice by Lentini-Walker & Tschida
    • CCI Press & Compliance Bookshelf
  • Podcasts
    • Great Women in Compliance
    • Unless: The Podcast (Hemma Lomax)
  • Research
  • Webinars
  • Events
  • Subscribe
Jump to a Section
  • At the Office
    • Ethics
    • HR Compliance
    • Leadership & Career
    • Well-Being at Work
  • Compliance & Risk
    • Compliance
    • FCPA
    • Fraud
    • Risk
  • Finserv & Audit
    • Financial Services
    • Internal Audit
  • Governance
    • ESG
    • Getting Governance Right
  • Infosec
    • Cybersecurity
    • Data Privacy
  • Opinion
    • Adam Balfour
    • Jim DeLoach
    • Mary Shirley
    • Yan Tougas
No Result
View All Result
Corporate Compliance Insights
Home Compliance

It’s Not Just the Feds: State AGs Are Reaching Through Your Corporation

State authorities increasingly embrace role as consumer watchdogs

by Clayton Friedman and Trey Smith
April 5, 2023
in Compliance
state AGs_f

No longer simply legal advisers for their respective governors, state attorneys general are increasingly taking an offensive position, bringing lawsuits against companies and executives they accuse of bad conduct. A team of attorneys from Troutman Pepper, led by Clayton Friedman and Trey Smith, explore recent cases and how executives can strengthen the corporate veil.

A few big headlines aside, executives at large companies have rarely been prosecuted criminally for corporate conduct. Even civilly, executives have historically avoided suit unless there was a clear case of alter-ego liability (i.e., the individual and the company were not truly separate), and those claims were generally reserved for closely held entities rather than executives of high-profile companies.

State attorneys general have recently been more willing to bring suits individually against officers and directors of well-known corporate brands. The goal in these suits is often not to collect on a judgment but to send a message that state attorneys general will use their enforcement authority to hold executives accountable for perceived wrongdoing. 

State attorneys general are starting to pursue corporate executives

A look at some of the recent cases state attorneys general have brought demonstrates the trend. Last year, then-D.C. Attorney General Karl Racine sued Meta founder Mark Zuckerberg, alleging he was directly involved in a data breach. He also sued Washington Commanders owner Dan Snyder, the NFL and league commissioner Roger Goodell, claiming the team and the NFL colluded to deceive residents about an investigation into the team. In both cases, Racine alleged violations of the Consumer Procedure Protection Act, which prohibits unfair and deceptive trade practices in connection with the offer, sale and supply of consumer goods.

Like Racine, New York Attorney General Letitia James also brought a series of high-profile lawsuits against company directors, including actions against the former CEO of a now-bankrupt cryptocurrency company, a former president and his adult children and the chief executive officer and chairman of the board of a large international media company.

The uptick in suits against executives is best explained by the expanding presence state attorneys general have grown over the past few decades. Historically, attorneys general primarily provided legal advice to governors and state agencies. However, over the past few decades, attorneys general have emerged as the state’s primary consumer protection enforcers, taking an expansive view of both their common law and statutory authority. 

This transformation has led to states bringing an ever-increasing number of lawsuits, resulting in multimillion-dollar settlements that have increased resources to attorney general offices.

Fox_2023 ECCP Update_f
Compliance

2023 Evaluation of Corporate Compliance Programs

by Corporate Compliance Insights
March 23, 2023

Read moreDetails

AGs may struggle to overcome procedural hurdles but have other tools at their disposal

There are some challenges, though, when state attorneys general attempt to secure judgments against corporate executives, including a lack of personal jurisdiction. For example, the Colorado Supreme Court recently ruled that the state courts did not acquire personal jurisdiction over the executives of ecigarette company JUUL because (1) the district court failed to consider an individualized assessment of each defendant’s action (and instead based its determinations on allegations against the corporation as a whole); and (2) the attorney general failed to allege facts sufficient to show that the executives were primary participants in conduct that they personally directed at Colorado.

North Carolina Attorney General Josh Stein brought a similar suit against these executives. The suit also failed for lack of personal jurisdiction. The North Carolina court held that the complaint failed to allege how the defendants’ individual conduct connected to North Carolina, finding the corporation’s contacts with the state could not be attributed to the defendants personally. However, executives should note that defeating state attorneys’ general suits is typically the exception, not the rule.

How to avoid being sued personally

Implement and follow a comprehensive compliance program

It may seem obvious, but the best way an executive can avoid scrutiny is by scrupulously following all laws. While corporate separateness will typically protect executives from personal liability, courts may pierce the corporate veil if an executive uses the corporate entity as a device or sham to perpetrate wrongs, fraud or injustice. 

Directors can also face criminal liability for misstatements, misrepresentations, fraudulent conveyances, undercapitalization and other crimes. The best way to avoid these situations is to develop, implement and follow a comprehensive compliance program with checks on executive power. 

Indeed, having an “effective compliance and ethics program” in effect at the time an offense occurs can result in decreased fines under the federal sentencing guidelines for organizations. Moreover, if regulators decide to open an investigation into a corporation, one of the most significant factors they will consider in deciding whether to bring claims against the company is whether it has a compliance program in place.  A program consistent with the sentencing guidelines would help shield or contain exposure.

Further, as discussed below, directors and officers have corporate duties of care and loyalty to their companies. Given that Delaware courts have ruled that corporate management has a duty to implement a compliance system (on account of the sentencing guidelines), executives should ensure an effective compliance program is in place.

Keep a separate identity from the corporate entity

Directors, officers and shareholders should separate themselves from the corporation and comply with all incorporation documents and bylaws. There are a few key considerations in this regard. First, individuals should keep business finances separate from their personal finances, making sure to keep a separate bank account and accounting records for the business. Second, the company must follow all rules to maintain its legal identity, including having owner meetings, maintaining meeting minutes and keeping active board members. Third, directors and officers should have clearly defined roles — and should exercise their control of the business exclusively within those roles, towards proper business objectives.

Make full disclosures to third parties

In dealing with third parties, executives should ensure everyone they are dealing with knows they are dealing with a separate legal entity rather than an individual. This particularly applies to business partners, lenders, clients and service providers, who in any potential dispute may claim that the individual’s use of a limited liability entity perpetrated a fraud on them. If this were to happen, a court would likely pierce the corporate veil and hold the director or executive liable.

Be aware of your corporate duties

Business leaders should carefully observe the legal duties owed to their enterprises. The duty of care requires executives to make informed business decisions. While the business judgment rule typically protects “bad” decisions, it does not protect uninformed ones. Accordingly, business leaders should ensure they are adequately informed before making a decision that could affect the company.

The duty of loyalty requires directors to act in good faith to advance the corporation’s best interests and avoid injury to the corporation. It also requires directors to disregard their self-interests to advance the corporation’s interests. Accordingly, unless complete disclosures are made, business executives should avoid transacting with the corporation or usurping business opportunities that properly belong to the corporation.

Michael Yaghi, Ketan Bhirud and Chris Carlson of Troutman Pepper also contributed to this article.

Previous Post

Pinpointing Culture of Compliance Is a Challenge. Start With These 3 Questions.

Next Post

2022 Developments in U.S. Securities Fraud Class Actions Against Non-U.S. Issuers

Clayton Friedman and Trey Smith

Clayton Friedman and Trey Smith

Clayton Friedman is a partner at Troutman Pepper’s regulatory investigations, strategy and enforcement (RISE) practice group and co-leader of the state attorneys general practice, multidisciplinary teams with decades of experience crafting effective strategies to help deter or mitigate the risk of enforcement actions and litigation.
Trey Smith is an associate for Troutman Pepper’s RISE practice.

Related Posts

robot nurturing a good idea

Innovation vs. Compliance: In the Age of AI, Why Not Both?

by Asha Palmer
June 17, 2025

As governments scramble to regulate AI, forward-thinking companies are writing their own compliance playbooks

human robot working as team pie chart

Smart Machines, Smarter Humans: Why Compliance Still Needs a Human Touch

by Roman Eloshvili
June 17, 2025

From the 2008 financial crisis to everyday judgment calls, the case for keeping humans in the compliance loop

data privacy leader concept

Who’s Minding Your Data? The Case for Dedicated Privacy Leadership

by Daniel Barber
June 16, 2025

As state privacy laws multiply and AI introduces new vulnerabilities, the question isn't whether you need dedicated privacy expertise —...

abstract obscured data colorful

NIST’s Differential Privacy Guidelines: 6 Critical Areas for Secure Implementation

by Michelle Drolet
June 16, 2025

Standard de-identification methods remain vulnerable to sophisticated attacks, but differential privacy offers mathematical guarantees that scale with emerging threats

Next Post
Dechert 2022 Securities Class Actions vs Non US Issuers_f

2022 Developments in U.S. Securities Fraud Class Actions Against Non-U.S. Issuers

No Result
View All Result

Privacy Policy | AI Policy

Founded in 2010, CCI is the web’s premier global independent news source for compliance, ethics, risk and information security. 

Got a news tip? Get in touch. Want a weekly round-up in your inbox? Sign up for free. No subscription fees, no paywalls. 

Follow Us

Browse Topics:

  • CCI Press
  • Compliance
  • Compliance Podcasts
  • Cybersecurity
  • Data Privacy
  • eBooks Published by CCI
  • Ethics
  • FCPA
  • Featured
  • Financial Services
  • Fraud
  • Governance
  • GRC Vendor News
  • HR Compliance
  • Internal Audit
  • Leadership and Career
  • On Demand Webinars
  • Opinion
  • Research
  • Resource Library
  • Risk
  • Uncategorized
  • Videos
  • Webinars
  • Well-Being
  • Whitepapers

© 2025 Corporate Compliance Insights

Welcome to CCI. This site uses cookies. Please click OK to accept. Privacy Policy
Cookie settingsACCEPT
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT
No Result
View All Result
  • Home
  • About
    • About CCI
    • CCI Magazine
    • Writing for CCI
    • Career Connection
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Library
    • Download Whitepapers & Reports
    • Download eBooks
    • New: Living Your Best Compliance Life by Mary Shirley
    • New: Ethics and Compliance for Humans by Adam Balfour
    • 2021: Raise Your Game, Not Your Voice by Lentini-Walker & Tschida
    • CCI Press & Compliance Bookshelf
  • Podcasts
    • Great Women in Compliance
    • Unless: The Podcast (Hemma Lomax)
  • Research
  • Webinars
  • Events
  • Subscribe

© 2025 Corporate Compliance Insights