European CEI. Compliance 101

Similar documents
Measuring Compliance Program Effectiveness

Compliance Program Start Up: What are the Basics Needed for your Infrastructure?

Sheryl Vacca, CHC-F, CCEP-F, CHRC, CCEP-I, CHPC. SVP/Chief Compliance & Audit Officer University of California

SETTING POLICIES and GUIDELINES for CONDUCTING INTERNAL INVESTIGATIONS

Compliance Effectiveness Strategies HOW TO SUCCEED AS A COMPLIANCE PROFESSIONAL

Discussion Goals. Compliance Effectiveness Strategies HOW TO SUCCEED AS A COMPLIANCE PROFESSIONAL. Federal Sentencing Guidelines 3/16/2016

2017 The Global ABB Integrity Program.

Developing an Integrated Anti-Fraud, Compliance, and Ethics Program

Developing an Integrated Anti-Fraud, Compliance, and Ethics Program

Internal Audit & Compliance Importance of Collaboration and Skill Development

2015 Duke University Compliance Program Standards and Responsibilities

Developing an Integrated Anti-Fraud, Compliance, and Ethics Program

TEACHERS RETIREMENT BOARD. AUDITS AND RISK MANAGEMENT COMMITTEE Item Number: 9 SUBJECT: Scope and Structure of the Enterprise Compliance Program

Society of Corporate Compliance & Ethics: West Coast Regional

SCCE Regional Meeting - Alaska

Benchmarking 101: Shaping your E&C Program for Maximum Value

Contract and Procurement Fraud. Detection and Prevention

Strategies For Better Positioning Your Company To Do Business With The Federal Government

INVESTIGATIONS WORKSHOP: Part 1 BEGINNING THE INVESTIGATION & INTERVIEWING THE REPORTER SESSION AGENDA. Workshop Part 1 (9:00 10:00)

Compliance Plans. Kelly S. McIntosh July 20, 2017

Strategies to Build An Effective Compliance and Ethics Program

Compliance Program Effectiveness Guide

Airport Legal Governance Issues: Understanding & Meeting Ethics Compliance Obligations

Compliance in 2016: Navigating the New Expectations

Global Anti-Corruption Programs:

HCCA Audit & Compliance Conference Fundamentals of Health Care Compliance

10/3/2013 MAPPING YOUR PROGRAM TO THE FEDERAL SENTENCING GUIDELINES FOR ORGANIZATIONS (FSGO) AGENDA HOW MUCH DO YOU KNOW ABOUT THE FSGO?

In Place; No Changes Recommended DRAFT

Office of Business Conduct and Ethics Program Review. Name and Title

Managing Fraud Risk: New Professional Guidance

Henkel s Compliance Management System (CMS)

Anthony M. Tocco CCEP, CIA, CFE Chief Compliance Officer DTE Energy

CSL BEHRING COMPLIANCE PLAN

Delta Dental of Michigan, Ohio, and Indiana. Compliance Plan

McKesson at-a-glance America s oldest and largest healthcare services company

ESTERLINE ANTI-CORRUPTION PROGRAM CHARTER

Session 7: Corporate Governance

Global Expectations for Addressing Fraud Risk and the Investigative Process

Conducting a Compliance Audit or Review Key Issues

Report on Compliance and Ethics

Conducting Effective Internal Investigations. From Workplace Harassment to Criminal Conduct and Everything in Between

It s time to revisit your anti-corruption compliance program How to design an effective and defensible compliance program in response to global trends

International Compliance

Interpreting the Energy Risks from EY s 2016 Global Fraud Survey

Managing Compliance Risk in M&A, and Special Considerations for Joint Ventures

2012 GUIDELINES MANUAL

Waheed Alkahtani, CFE and CCEP-I March, 2017 Copyright 2016, Saudi Aramco. All rights reserved.

BEATING THE BENCHMARK. A comprehensive guide for assessing and benchmarking compliance program effectiveness

Developing an Integrated Anti-Fraud, Compliance, and Ethics Program

Developing an Integrated Anti-Fraud, Compliance, and Ethics Program

Fraud in focus March Fraud & Corruption in the Victorian Public Sector learnings and insight for 2017 and beyond

Bearing the Bad News Reporting to the Board on Internal Corruption. Peter Dent, National Leader Deloitte Forensics September 11, 2013

THE ARCG CHARTER. Issued in March 2008

Fraud Investigation & Dispute Services. Forensic analysis and global experience: the intelligent connection

IIA ACFE Conference April 17, 2015

SCCE Compliance & Ethics Institute. Agenda. Trust & Verify: Investigation and Compliance Forensic Tools. September 16, 2014

Office of Compliance Program Report

Improving corporate behavior in a way that positively impacts the world. Anti-Bribery Management Systems ETHISPHERE ISO CERTIFICATION

The Rye Ambulatory Surgery Center, LLC Compliance Plan

GOODWILL INDUSTRIES OF COLORADO SPRINGS

Effective implementation of COSO s new anti-fraud guidance

VOYA Financial CODE OF BUSINESS CONDUCT AND ETHICS

DRAFTING AN COMMUNICATING EFFECTIVE POLICIES AND PROCEDURES AGENDA

AMERICAN EXPRESS COMPANY AUDIT AND COMPLIANCE COMMITTEE CHARTER (as amended and restated as of September 26, 2017)

Today s presentation

GUIDELINES. Corporate Compliance. Kenneth D. Gibbs President & Chief Executive. Martin A. Cammer Senior Vice President & Corporate Compliance Officer

9/20/2012. Overview. Ethics and Compliance Challenge. Making the Grade: Developing and Implementing an Ethics & Compliance Scorecard for Executives

Reaching and Monitoring Remote Workers. Today s Outline

CODE OF BUSINESS CONDUCT AND ETHICS (Amended and Restated as of May 7, 2013)

The Company seeks to comply with both the letter and spirit of the laws and regulations in all countries in which it operates.

What is Compliance? Compliance Preventative Medicine for Your Practice. Commit to consistency. Commit to correctness. Commit to communication

Compliance Program Effectiveness

Listen Closely: Is that a Whistle Blowing Or a Slot Machine Ringing?

Over the last ten years, Congress has appropriated hundreds

ISO & ISO TRAINING DAY 4 : Certifying ISO 37001

The Eight Elements of a Compliance Plan and What Has Changed

CORPORATE INTELLIGENCE AND RISK SOLUTIONS

Best Practices for Vendor Risk Profiling

Third-party risk management. EY Integrity Diligence

FCPA COMPLIANCE PROGRAMS

Identifying Organizational Risk Based Activities and Integrating Them Into Your Compliance Program

Compliance & Ethics. a publication of the society of corporate compliance and ethics MAY 2018

OPERATIONAL DIRECTIVE REF. OD.ED INTERNAL AUDIT AND INVESTIGATIONS CHARTER

BUILDING AN EFFECTIVE COMPLIANCE PROGRAM

Effective Ethics & Compliance Due Diligence during M&A Transactions

Compliance Auditing Done Right

npliance IN 2008, MICROSOFT CORP. WAS FINED 899 MILLION Auditing for

Corporate Compliance Global. 5 Essential Elements of Compliance

AUDIT COMMITTEE CHARTER (updated as of August 2016)

Detecting and responding to fraud: making the intelligent connection Fraud Investigation & Dispute Services

Fraud Risk Management Review March 18, 2010

Effective Compliance Programs How Does Your Program Measure Up?

International Standards for the Professional Practice of Internal Auditing (Standards)

What should your compliance function look like?

Enterprise Risk Management Framework

Creating a Global Ethics & Compliance Program that Will Truly Promote and Reinforce Ethical Behavior

Cuyahoga County Division of Children and Family Services (CCDCFS) Policy Statement

Triple C Housing, Inc. Compliance Plan

MiMedx Group, Inc. Code of Business Conduct and Ethics

7 Elements Roundtable

Transcription:

European CEI Compliance 101 Debbie Troklus, CHC-F, CCEP-F, CHRC, CHPC, CCEP-I Managing Director Aegis Compliance and Ethics Center dtroklus@aegis-compliance.com Sheryl Vacca, CHC- F, CCEP-F, CCEP-I, CHRC, CHPC SVP/Chief Compliance and Audit Officer University of California Sheryl.vacca@ucop.edu Society of Corporate Compliance and Ethics 6500 Barrie Road, Suite 250, Minneapolis, MN 55435, United States www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 Why Develop an Ethics & Compliance Program? Promotes a culture of ethical behavior and commitment to compliance with the law Prevents and detects wrong-doing Communicates organizational expectations and commitment Provides safe mechanisms for reporting and seeking help Raises awareness Enables compliance with governing standards, laws and guidelines Makes good business sense/provides a competitive edge benefits of having an effective ethics and compliance program Positive impact to corporate reputation/culture; public image Serves as a risk management tool www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 2 1

Ethics & Compliance Programs: How Comprehensive? Employment/Labor Law Anti-Trust/Competition Anti-Corruption/Bribery Fed prosecutors are looking outside the US Intellectual Property Protection/Confidential Information Information Technology Conflicts of Interest Laws which pertain specifically to the organization Federal Sentencing Guideline Standards Ethics and Compliance Programs encourage the right culture Other Federal and/or State laws International considerations - GLOBAL Everywhere you do business www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 3 Benefits of an Effective Ethics & Compliance Program Integrates processes that ensure the prompt, thorough investigation of alleged misconduct Facilitates timely and appropriate corrective action and remediation Reduces liability and exposure to civil damages and penalties, criminal sanctions, and administrative remedies, such as program exclusions Criminal - leniency for a pre-existing program Complete declination or reduced penalty Some (but less) credit for after-the-fact programs Fosters a strong ethical culture -- Attracts talent and improves employee retention www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 4 2

General Considerations: Gain Support/Commitment Top levels of the organization Values-based approach Board of Directors Senior Leadership Management/Supervisors middle management is key Tone at the Middle Other functional areas HR, Security, IT, Internal Audit, Corp Comm, etc. Employees and staff at all levels *Gain support and buy-in through direct engagement, education, partnership, collaboration, leadership, empowerment, and a solid values-based business case www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 5 General Considerations: Support Needs Development/Beginning Stages Program and Risk Assessment/Program Plan Resources (people, budget, etc.) Infrastructure needs, i.e., education/communications platform & mechanisms, marketing resources, reporting mechanism, printing services, etc. Establish capabilities and protocols for issue management, tracking & trending, gathering program effectiveness metrics, etc. Partner with other key functional areas; leverage existing resources Ongoing operational needs and considerations www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 6 3

General Considerations: Governance & Staffing Establish organizational governance & infrastructure Reporting structure defined ( Tone at the Top ) Charters, roles, responsibilities, etc. Ethics & Compliance Officer Appointment High-level individual w/overall responsibility Develop job functions/job descriptions for staff, i.e., Education/training, auditors, hotline and issue management, policy and procedure development, etc. Partner with Counsel (internal and external) www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 7 Essential Elements of Ethics & Compliance Programs 1. Standards, Procedures and the Code 2. Oversight & Accountability 3. Due Care in Delegating Authority 4. Communication, Training and Awareness 5. Monitoring, Auditing, Reporting and Background Checks 6. Enforcement, Incentives and Discipline 7. Response and Prevention Risk Assessment Effectiveness Assessment www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 8 4

Standards & Procedures Code of Conduct Keep it real Values-based and avoid legalese Tailor to organization s culture, ethical attitude, business, and corporate identity Get lots of input - focus groups, senior execs., etc. Guidance on seeking help and reporting concerns High-level concepts and key policies Scenarios and FAQs Endorsement by CEO Clearly stated expectations Primary language watch translations www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 9 Standards & Procedures Standards and Procedures Controls Facilitate compliance and prevent misconduct Structural Substantive Integrate with and complement other departmental policies and procedures Avoid repetition/duplication Values-based Speaks to Audience Publication consider how best to communicate standards and procedures to employees and others www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 10 5

Oversight and Accountability Governing Authority Knowledgeable of program w/reasonable oversight (Board of Directors) High-level personnel Ensures effective program is in place Ethics & Compliance Officer Overall responsibility Strong leader Independent, empowered, effective Designated individual(s) responsible for day-to-day operations Access to Board with periodic reporting responsibilities Shall have adequate resources and authority Other: Compliance Committees, Regional liaisons, Program Staff, etc. www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 11 Due Care in Delegation of Authority Don t give responsibility or authority to those you should have known are criminals Do hiring and promotion systems screen out those likely to break the law or who have a history of unethical behavior? Use care when placing individuals in positions of substantial authority, i.e., hiring, promotions Substantial Authority Personnel Could you have a Board Member, executive or other manager who had served time for armed robbery without knowing it (e.g., Smith and Wesson)? CEO resigned, served time Nobody asked www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 12 6

Communications, Training and Awareness Communication and Training Effectiveness Continual review Internal vs. External Mandatory vs. Voluntary Audience & Risk Considerations General vs. Specific Content Considerations Training Methods Blended & Interactive approach is most effective Attestations Other Communications Media Publish disciplinary cases and good news stories as learning tools www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 13 Monitoring and Auditing Essential for effectiveness Serves to prevent and detect criminal conduct and wrongdoing Monitoring - Real time reviews Audits - Independent/objective use of subject-matter experts www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 14 7

Monitoring and Auditing (cont) Monitoring & Auditing Planning Understand/define the difference between auditing and monitoring Leverage what is already available Scalable to risks and resources Range of tools, e.g., deep dives, self assessments, internal audits, external audits, exit interviews, employee engagement surveys, etc. Outputs used to create and support effectiveness metrics and improve program www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 15 Reporting A Reporting System (hotline, helpline, etc.) Essential program resource for reporting wrong-doing and/or seeking help and guidance Consider differing country laws for operation Anonymous & confidential to extent allowed by law Need strong, publicized and enforced non-retaliation policy Fear of retaliation and perceived inaction are key reasons for nonuse Continually market and publicize reporting mechanism Internal vs. external systems? Address matters in a timely and consistent way Use reporting systems metrics to improve program www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 16 8

Enforcement, Incentives and Discipline Failure to take reasonable steps to prevent or detect criminal conduct heightens organizational liability and negatively impacts effectiveness determinations Incentives Incentives aligned Performance reviews & compensation Consistency in enforcement Support from Sr. Mgmt; Board Understanding by all members of organization Fairness and consistency is key www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 17 Response and Prevention Timely response Triaging and handling investigations Investigations should be professional train investigators Reports to whom, how, when? Decision-making on outcomes of concerns Action is comprehensive related to the potential/real concern Is it really a problem? How serious is it? Are their enough facts to investigate? www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 18 9

Response and Prevention (cont) Outside support & resources considered (outside counsel, etc.) Attorney-client privilege? Preventative measures Resolution of Issues Root cause analysis/checklist Education and Awareness Policies and Procedures Remediation efforts are timely and adequately address the program gaps, identified risks, etc. Prevents likelihood of reoccurrence Majority of the time are related to lack of Knowledge or expectations aren t clear (policy) www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 19 Risk Assessment Why conduct a risk assessment? Timing? Risk Identification considerations Internal/External Inputs Industry and organization specific risks Legal and regulatory requirements Current challenges, past findings, incidents, etc. Management Judgment What keeps them up at night Program Benchmarking Risk Assessment & Prioritization Phase Impact and Likelihood Risk Management Plans & Clear Ownership Test, Audit and Monitoring Activities www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 20 10

Ongoing Improvement Evaluating Effectiveness: Considerations & Approaches: Program metrics (hotline calls, incidents, etc.) Surveys Focus Groups Testing Self Assessments Exit Interviews Periodic risk assessment, Internal Audit reports, etc. Is program working as designed and implemented? Impact? www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 21 Industry Practice and Benchmarking In organizations with weak or no compliance programs, the incidence of both fraud and observance of non-compliant conduct is significantly higher. Nearly 45% of employees have witnessed misconduct at work That figure rises to 89% in companies with weak programs and ethics cultures 42% of companies have weak ethics cultures Globally, companies have experienced fraud-related activities at high levels: 66% suffered fraud in North America 71% in Europe 84% in China 85% in Africa SOURCE: Ethics Resource Center: 2011 National Business Ethics Survey ; KROLL Global Fraud Report: 2011/2012 www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 22 11

Global Compliance Executive Survey More than 50% anticipate the bribery and corruption risks to their company will increase 75% have no oversight of cyber security 58% never train third parties Only 43% monitor compliance after a third-party relationship begins Only 48% of compliance officers automate their anti-corruption program in some way 2014 Anti-Bribery and Corruption Benchmarking Report. www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 Employee Fraud Increasingly, the biggest corruption threat facing companies is not bribe payments or speed money but the risk that their own employees may be on the take. Several recent surveys on global fraud have highlighted this problem, drawing attention to the involvement of senior executives of multinational companies in emerging markets. 2013/2014 Global Fraud Report, Kroll, fraud.kroll.com. www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 12

Industry Practice and Benchmarking The bottom line: The cost of implementing an ethics and compliance program are a small fraction of the potential costs of damage to your reputation or bottom line due to an ethics or compliance violation. http://www.globalcompliance.com/resources/understanding-ethics-and- Compliance/About-Ethics-Compliance.aspx#sthash.6hhFmSjn.dpuf www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 Enforcement Efforts Continue Enforcement environment Heightened scrutiny Enforcement activity Recoveries are paying for the investigations Enforcement weapons Forensic data mining, tracking/trending, etc. International Global enforcement! www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 26 13

Characteristics of an Effective Program Buy-in from the top Sufficient resources Program authority or clout Program independence Sufficient program reach and embedding in the company s operations Meaningful management knowledge of and involvement in the program Program s focus on corporate culture and ethics, not just compliance www.kaplanwalker.com www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 27 Sources SCCE www.corporatecompliance.org Murphy, 501 Ideas for Your Compliance and Ethics Program, (SCCE; 2008) SCCE Complete Compliance & Ethics Manual www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 28 14

QUESTIONS??? www.corporatecompliance.org +1 952 933 4977 or 888 277 4977 29 15

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback