Global Third Party Due Diligence

Similar documents
ESTERLINE ANTI-CORRUPTION PROGRAM CHARTER

FCPA COMPLIANCE PROGRAMS

ATTACHMENT C CORPORATE COMPLIANCE PROGRAM

Global Anti-Corruption Programs:

Managing Compliance Risk in M&A, and Special Considerations for Joint Ventures

CARNIVAL CORPORATION & PLC

2017 The Global ABB Integrity Program.

Risk Management Briefing

Mitigating Corruption Risk When Acquiring Companies in High-Risk Jurisdictions

RESPONSIBLE SOURCING PRINCIPLES

Bearing the Bad News Reporting to the Board on Internal Corruption. Peter Dent, National Leader Deloitte Forensics September 11, 2013

SUNRISE TELECOM CODE OF BUSINESS CONDUCT AND ETHICS Overview Sunrise Telecom is committed to its customers, partners, employees and stockholders.

BUSINESS PRINCIPLES FOR PROMOTING INTEGRITY IN THE PHARMACEUTICAL SECTOR

SOSi SUPPLIER CODE OF CONDUCT

Ethics and integrity. Compliance: A guide for third parties

MegaFon has a zero-tolerance policy towards corruption of all kinds.

It s time to revisit your anti-corruption compliance program How to design an effective and defensible compliance program in response to global trends

China Airlines Ltd. Ethical Corporate Management Best Practice Principles

Developing Effective Anti-Corruption Ethics and Compliance Programmes. Sven Biermann

Compliance Program Effectiveness Guide

CONFLICT OF INTEREST POLICY

Anti-bribery corporate policy

1 July Guideline for Municipal Competency Levels: Head of Supply Chain and Supply Chain Senior Managers

PostNL group procedure

Ethical Corporate Management Best Practice Principles of ASPEED Technology

2 TRACE Inc. RISK-BASED DUE DILIGENCE

McKesson at-a-glance America s oldest and largest healthcare services company

LIVING OUR CORE VALUES. Supplier Code of Conduct

ONLINE PUBLIC CONSULTATION

ISO & ISO TRAINING DAY 4 : Certifying ISO 37001

INTRODUCTION. Overview of Compliance Program. I. Leadership and Structure. GSK Ethics & Compliance Program US Operations

Guide to North America Healthcare Compliance 2016/2017

Managing the Supply Chain

Standards for Excellence Program Organizational Self-Assessment Checklist

Society of Corporate Compliance & Ethics: West Coast Regional

Slavery and Human Trafficking Statement 2016

Model 231. Adopted by the Board of Directors of Brainlab Italy s.r.l. on December 9, 2013.

Compliance Plans. Kelly S. McIntosh July 20, 2017

The Siemens Compliance System Seminario internacional - 24/08/2016 Escándalos Empresariales en Primera Persona: Volver a ponerse de pie

Henkel s Compliance Management System (CMS)

Leading Practices to Leverage Forensic Data Analytics in Compliance Monitoring and Investigation

WORKING WITH THIRD PARTIES POLICY POLICY ADOPTED MARCH 2015, REVISED FEBRUARY 2017

Acknowledgement of Aramco Overseas Company BV. Supplier Code of Conduct

European CEI. Compliance 101

STC s Supplier Code of Conduct

Proven Methods for Accelerating Cost Reduction. Richard Peters, Sr. Director of Surgical Services, Provista

FRAUD AND PROFESSIONAL ETHICS IN HIGHER EDUCATION

VOYA Financial CODE OF BUSINESS CONDUCT AND ETHICS

Gifts, Benefits and Hospitality Policy

Compliance Auditing Done Right

Otsuka. Supporting. Supplier Code of Ethics and Professional Conduct

Developing An Effective Global Anti-Bribery Compliance Program

ebook FROM DETECT TO PREVENT : HOW TO USE TRANSLATION SOLUTIONS AS A PREVENTATIVE TOOL PAGE 1 library

Analysis of ISO 9001:2015 against the ICoCA Certification Assessment Framework

Business Partner Code of Conduct

1 July Guideline for Municipal Competency Levels: Accounting Officers

Business Conduct Requirements for Representatives and Channel Partners

Code of business conduct

Sheryl Vacca, CHC-F, CCEP-F, CHRC, CCEP-I, CHPC. SVP/Chief Compliance & Audit Officer University of California

TEEKAY TANKERS LTD. STANDARDS OF BUSINESS CONDUCT POLICY

TABLE OF CONTENTS THE DEFINITIVE GUIDE TO DUE DILIGENCE AUTOMATION 2

Can the public sector deliver a zero tolerance approach to corruption risk?

THE AMA HANDBOOK OF DUE DILIGENCE

GUIDANCE FOR SUPPLIERS OF PURDUE PHARMA L.P.

THE BODY OF KNOWLEDGE FOR MEDICAL PRACTICE MANAGEMENT

Compliance Risk Mitigation in Developing Economies

Anti-Bribery & Anti-Corruption Best Practices to Ensure a Compliant Culture

Code of Conduct Trans Adriatic Pipeline AG

A Case Study: How Effective Risk Management Drives Global Supply Chain Optimization.

DHT HOLDINGS, INC. CODE OF BUSINESS CONDUCT AND ETHICS

HALLMARK III. CCO Authority and Compliance Function Resources. Thomas Fox. The Compliance Evangelist

THE IFRS WORKSHOP. Hilton Hotel. Saturday, 11 February /02/2017 Uphold Public Interest

DOUBLE-TAKE SOFTWARE, INC. CODE OF BUSINESS CONDUCT AND ETHICS

Code of Conduct. V November 2017

SETTING POLICIES and GUIDELINES for CONDUCTING INTERNAL INVESTIGATIONS

CODE OF CONDUCT Version 3 August 2016

2/12/2014. Physician Hospital Integration 1. Physician-Hospital Integration Compliance Considerations. Agenda

Committee on Anti-Corruption (CAC) Lima, Peru 2016 An overview of ISO Anti-bribery management system standard

Kyte Broking Ltd. Conflicts of Interest Policy Summary Statement. Page 1 of 9

THE BODY OF KNOWLEDGE FOR MEDICAL PRACTICE MANAGEMENT A FRAMEWORK FOR SUCCESS

Third Party Risk Management ( TPRM ) Transformation

Rules, Procedures, and Internal Controls Manual BRAM Bradesco Asset Management

Conflict of Interest Policy

ENVIRONMENTAL, SOCIAL AND GOVERNANCE POLICY

Bridgestone Americas Code of Conduct

Benchmarking 101: Shaping your E&C Program for Maximum Value

General Policies & Procedures. SV 5.0 Clean Harbors Vendor Code of Business Conduct and Ethics

Global Mobility Services

ENVIRONMENTAL AUDITING GUIDE TD 16/16/E

BUSINESS ETHICS POLICY and GUIDING PRINCIPLES

Standards of Business Conduct I N T E RM E D I A RY A N D S U P P L I E R E D I T I O N

5 key elements of effective compliance training

BroadSoft, Inc. Vendor Code of Conduct

Implementing a Consistent and Efficient Third-Party Due Diligence Process

Business Principles for Countering Bribery. Transparency International Self-Evaluation Tool

The World Bank Audit Firm Assessment Questionnaire

Living Our Purpose and Core Values CODE. Code of Business Ethics and Conduct for Vendors

City of Colorado Springs Code of Ethics

Handbook of Operating Procedures. for the use of IFIA Member Companies providing Social Auditing Services. Page 1

Transcription:

Global Third Party Due Diligence PCC 2017 28 April 2017 Presented by Darren Jones, Cory LaBarge and Michael Clarke

Key questions to be addressed 1. Central risks associated with Third Party interactions 2. How to effectively manage high-risk Third Parties where there are limited ex-ante risk mitigation options 3. Factors to consider when enhancing third party due diligence process 4. Examine best practices for the verification, monitoring and auditing of third party entities 5. How to make KPIs=KRIs for your monitoring and auditing plans 6. Evaluate best practices for using third party auditors (opposed to internal auditors) 7. How to manage third party due diligence and alliance management for M&A and Product Licensing deals 2

Why is Third Party management and oversight challenging? Less control and visibility into their work, records, organization May not have internal controls and/or compliance program Potentially divergent business interests They may delegate work to a sub-contractor (without consent or knowledge) Direct interactions with government officials (especially outside the U.S.) Easier to disclaim knowledge of wrongdoing Limited options for vendors in risky countries or in specialized markets/for specialized services 3

Bribery and corruption happen in various ways through Third Parties Forms of bribery Facilitation payments Discounts Vacations Gifts Medical Education Grants Charitable Contributions Meals Employment/Internship Product samples Free or discounted equipment Risky Third parties Distributors Suppliers (other vendors along supply chain) Travel agencies Market access consultants Event & meeting management vendors HCP/Public officials engagements Customs agents Market Authorization Holders Contract sales organizations Contract research organizations Medical society / association Patient advocacy organizations Third Parties interaction with HCPs, HCOs, or government officials is high risk due diligence is key 4

The development of systematic anti-corruption laws enhances the need for Third party (TP) monitoring North America USA Foreign Corrupt Practices Act (1977) South America North America Europe UK Bribery Act (2010) German Act on Fighting Corruption in the Healthcare Sector (2016) France Sapin 2 (2016) Europe APAC APAC China Anti-bribery laws (1979, amended in 2011) South Korea The Act on the Prohibition of Improper Solicitation and Provision/Receipt of Money and Valuables (2016) UAE Penal Code (1987) Brazil Clean Company Act (2014) Colombian Transnational Corruption Act (2016) Mexican National Anti- Corruption system (2016) South America Africa Africa South African Prevention and Combating of Corrupt Activities Act (2004) Note: this is a non-exhaustive list of laws in place to fight corruption 5

U.S. focuses on pharmaceutical companies and new DOJ compliance guidance a healthy compliance program should also include third-party agent due diligence risk that the distributor will use their margin or spread to create a slush fund of cash that will be used to pay bribes a compliance program must thoroughly vet its third-party agents to include an understanding of the business rationale appropriate expense controls must also be in place to ensure that payments to third-parties are legitimate business expenses and not being used to funnel bribes to foreign officials Andrew Ceresney, Director, Division of Enforcement DOJ Evaluation Guidance provides guidance and benchmarking for best practices in the US and Globally. This aligns in with the Five Elements of Risk Management: Elements of Risk Management 1. Policies Policies DOJ Evaluation Guidance 2. Processes Procedures Risk Assessment Third Party Management Mergers and Acquisitions 3. People & Organization Senior and Middle Management Autonomy and Resources Training and Communications 4. Systems & Data Books & Records 5. Management Reporting Confidential Reporting and Investigations Incentives and Disciplinary Measures Continuous Improvement, Periodic Testing and Review Analysis and Remediation of Underlying Misconduct 6

Third party oversight and management: 5 key objectives Reliability As with all compliance programs, having consistent policies and procedures is essential to ensure program effectiveness. Consistency in areas such as initial screening/risk rating criteria, riskbased due diligence and approval/denial criteria are particularly important for TP oversight. Transparency The volume and diversity of TP engagements makes it challenging to gain visibility into key TP compliance data points such as: how many TPs are we actually engaged with? What do they do for us? Who vetted and approved the engagement? Business and approval rationale? Efficiency Efficiency in execution is vital given the geographic diversity and high volume of TP vendor engagements. For this reason, having tight and scalable policies and processes and/or some form of automation is important. Responsibility Shared or diffused responsibility among various stakeholders (compliance, finance, business, etc.) is common in TP management. This potential liability can be alleviated by a clear governance model with clear lines of review and approval, as well as structured policies and SOPs. Organization Maintaining accurate records and documentation of all TP arrangements and decision-making processes is an essential component of the TP program both for internal tracking and analytics as well as for regulatory compliance purposes. 7

Stages of Third Party Management & Oversight Life Cycle Identification Qualification Engagement & contracting Monitoring & auditing Renewal/exit strategy Business needs/rationale Initial screening Vendor questionnaire Vendor FMV or benchmarking analysis Risk-based due diligence Contracting Business stakeholder training Vendor training (as required) Risk-based & Purposeful Criteria to decide which vendors to monitor Exercise auditing rights Consideration: Who conducts the audit legal, compliance, internal audit department Pareto Principle 80% of corruption risk comes from 20% of vendors Risk-based due diligence renewal (periodic) o o Factors for termination Risk Internal resources Opportunities to correct Document conversations with business 8

Sample factors that can drive risk Geographic location (High corruption index; Advanced regulation/enforcement) Industry Distribution to Government Officials/Agencies (direct/indirect/high percentage) Sales Through Sub-Distributors Value of Contract (high dollar amount) Proposed Compensation Structure (fee-for-service, commission, salary) Financial Irregularities (Typical? Cash vs. Pre-Pay? Higher than usual? Transfer to a third party accounts or different country) Adverse Media Reports/Prior History (prior corruption, scandal, civil/criminal prosecutions, media search) Unwillingness to include contract protections (audit rights; indemnity; certifications; ABAC provisions) Strength of Third Party s Ethics & Compliance Program 9

Due Diligence for M&A and Licensing Important Considerations Contract Administration View Alliance Management View One time transaction Short to mid term profit maximization Straightforward contract provisions and clean hand off Upfront evaluation of risks and due diligence requirements Manage to the contract agreement Little interest/investment in a relationship Focused on alliance or partnership considerations Mid to longer term relationship Distribution Contract can become more complex and involved More monitoring and auditing may be required Partnership and Alliance Management must be considered and managed 10

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback