In our last alert, we discussed three tips to ensure an effective internal investigation: (1) develop and follow internal policies; (2) identify the audience that will evaluate and make decisions at the outset of the investigation; and (3) identify and understand the law that applies to the investigation. Below are several additional best practices for conducting an internal investigation.
4. Ensure the Investigator is Independent
Identifying what group should conduct an investigation is critical to achieving a successful resolution. The investigating party should be independent when evaluating the facts that develop during the investigation. This means that the investigating party cannot be implicated in any way in the events that sparked the investigation. Further, the investigating party must be of a sufficient level (internally or externally) to ensure that the integrity of the investigation will not be compromised if members of management are involved. Sometimes the need for independence will warrant hiring outside counsel to conduct the investigation. Other times, members of the legal or human resources department may be sufficiently independent to conduct the internal investigation. Evaluating this issue at the outset of the investigation will avoid the added cost of having to switch investigators in the middle of the investigation or, worse yet, compromising the integrity of the investigation all together.
5. Gather and Review All Relevant Evidence
Identifying all of the relevant evidence is imperative to an effective investigation. This may include preserving, searching, and reviewing the emails of key personnel. It will involve talking with the key witnesses that have knowledge of the facts of the investigation. It may also involve gathering evidence from third parties, such as vendors or agents. Ensuring that the scope of the search for evidence is broad enough to discover all of the relevant facts is key. Starting with a broad group of documents and witnesses and refining that universe over the course of the investigation is often the best way to ensure that all relevant facts are identified.
6. Protect the Privilege
Throughout the investigation it is important to stay mindful of the attorney-client and work product privileges. Depending on the size and scope of the investigation, third parties such as outside auditors, insurers or customers may ask for periodic status updates. It is important to consult with the internal legal department or outside counsel in these circumstances to ensure that privileges associated with materials prepared by attorneys or communications with counsel are not waived. It is also important to remind employees who may be aware of the investigation that the privileges involved belong to the company, not the employee, and information related to the investigation should not be shared with third parties.
7. Deliver the Findings and Conclude the Investigation
When the investigation has concluded, it is important to consider the best medium to report the findings. A written report is warranted in some cases. In others, an oral report is appropriate. In considering the best way to deliver the findings, consider the audience and issues of privilege. Most importantly, the conclusion of the investigation itself should be documented. A review of the company’s policies and procedures and an evaluation of best practices will ensure that the next internal investigation is even more efficient and effective.
Heather Hatfield represents clients in corporate investigations, white-collar crime investigations and defense involving the Foreign Corrupt Practices Act (FCPA), complex contract disputes, oil and gas litigation ...
Blake Runions assists clients with broad range of business disputes and investigatory matters, including partnership disputes, internal investigations, and commercial litigation.
Prior to joining the Firm, Blake worked in the ...
Jamie Godsey represents public and private corporations, partnerships, and small companies on a broad range of complex business and commercial litigation. Her experience includes a wide variety of matters such as contractual ...
- Best Practices to Prevent Internal Fraud and Embezzlement
- Cybersecurity Best Practices: Disclosure Requirements for Risk Management, Strategy, and Governance
- Cybersecurity Risk Management Practices for Small and Midsize Businesses
- Overview of New Cybersecurity Disclosure Rules for Public Companies
- Increased Focus on Cybersecurity Warrants Review of Policies and Procedures
- DOJ Issues Expedited FCPA Opinion Procedure
- Companies Must Review Compliance Policies Following New Sanctions of Russian Financial Institutions and Individuals
- Anti-Corruption Enforcement: 2021 Year-In-Review
- Credit Suisse Settlement Carries Broader Lessons about Reputational Risk
- World’s Largest Advertising Group Settles with SEC for $19.2 Million After Ignoring Red Flags
- September 2022
- August 2022
- July 2022
- June 2022
- May 2022
- April 2022
- March 2022
- February 2022
- November 2021
- October 2021
- September 2021
- August 2021
- July 2021
- June 2021
- May 2021
- April 2021
- March 2021
- February 2021
- January 2021
- November 2020
- October 2020
- September 2020
- August 2020
- July 2020
- June 2020
- May 2020
- April 2020
- March 2020
- February 2020
- January 2020
- November 2019
- October 2019
- September 2019
- August 2019
- July 2019
- June 2019
- May 2019
- April 2019
- March 2019
- February 2019
- January 2019