As discussed in Part 1 and Part 2 of this series, the seven core principles of an effective integrity compliance program apply to businesses of any size, but there is no one-size-fits-all model to compliance. What is appropriate for a multi-national business with thousands of employees speaking numerous languages in various locations will almost certainly not be right for a domestic business employing less than 200, much less a local business employing 25. Yet, it is critical for small and medium size businesses to have compliance programs in place and embedded into their culture. The following ideas are ways to adapt a compliance program to fit the size and risk profile of the business:
- Can your business afford a full-time, independent compliance officer? Many simply cannot, but that does not mean that a compliance program or oversight of the program is out of reach. Such a business can incorporate compliance oversight into an existing role. But that existing role should not be one that also has responsibility for operations and/or bid offers or acceptance. Wearing both of these hats creates real or perceived conflicts of interest. Another consideration is recusal: if a financial officer also acts as head of compliance, then there must be a clearly defined alternative if a violation arises within that finance group. Not every company can afford to hire a dedicated compliance professional, but every company must set the tone from the top of management and clearly allocate the responsibility for oversight, review, and adaption of the program.
- Does your business have the resources to commit to a training program with all the bells and whistles? Deluxe (but complicated and expensive) web training tools and off-campus training days may not be within the budget, but every company must assure integrity compliance training of all employees. In a smaller company that may mean semi-annual compliance training meetings; having each employee sign a certification that she or he has read the Code of Conduct and related policies; and/or management certifications that they have conducted departmental compliance training.
- How can a business of 20 employees, all of whom know and work closely with each other, implement a confidential and anonymous reporting scheme? When the officer responsible for compliance personally knows each employee, then an “anonymous” hotline is suddenly not so anonymous. Of course, that does not mean such a small business can merely omit a proper reporting function, but reporting will likely need to be adapted to fit the needs of the business. One possible alternative may be a simple drop box for anonymous reports. The core principle remains intact, but the means to accomplish it looks different.
- What if your business does not or cannot commit a portion of the incentive compensation plan to compliance? That is not the only way to incentivize employees around integrity. You can plan an “Integrity Week” where the Code of Conduct is stressed and small rewards are provided for answering questions related to the policies or providing the best answers to hypotheticals. Internal promotion decisions can include an integrity review of employees up for promotion. The specific incentive will be appropriate to the business but must instill the importance of integrity within the culture.
These are only a few ideas and each program will look different depending on the context of that business. A multi-national enterprise may need to provide a web-platform in multiple languages with all the bells and whistles to allow employees spread across multiple continents to effectively report potential violations. A smaller local business may need only a publicly available drop box. Although these specifics will be different, all companies, no matter the size, should take the appropriate steps to instill a culture of integrity and an effective compliance program within the heart of the organization.
Heather Hatfield represents clients in corporate investigations, white-collar crime investigations and defense involving the Foreign Corrupt Practices Act (FCPA), complex contract disputes, oil and gas litigation ...
Blake Runions assists clients with broad range of business disputes and investigatory matters, including partnership disputes, internal investigations, and commercial litigation.
Prior to joining the Firm, Blake worked in the ...
Jamie Godsey represents public and private corporations, partnerships, and small companies on a broad range of complex business and commercial litigation. Her experience includes a wide variety of matters such as contractual ...
- Biden Administration Plans Increased Enforcement of Compliance Issues
- MoneyGram Settlement Illustrates the Need to Maintain Robust Controls
- Whistleblower Protections Incentivize Development of Strong Anti-Retaliation Programs
- New Action by the CFTC Means Higher Stakes for Commodity Market Participants
- Transparency International’s 2020 Corruption Perceptions Index Indicates Corruption is Affecting COVID-19 Response
- Expected Enforcement Trends under the Biden Administration
- FCPA: 2020 Year-In-Review
- Goldman Sachs Reaches Record $2.9 Billion Settlement of Malaysia FCPA Violations
- Recent Advisory Opinion Provides Important Guidance to Mitigate Sanctions Risk
- DOJ Releases Rare FCPA Opinion Procedure
- July 2021
- June 2021
- May 2021
- April 2021
- March 2021
- February 2021
- January 2021
- November 2020
- October 2020
- September 2020
- August 2020
- July 2020
- June 2020
- May 2020
- April 2020
- March 2020
- February 2020
- January 2020
- November 2019
- October 2019
- September 2019
- August 2019
- July 2019
- June 2019
- May 2019
- April 2019
- March 2019
- February 2019
- January 2019