Would Your Controls Prevent Violations Under the Foreign Corrupt Practices Act?

Risk Advisory/Internal Audit

By Donald Owens

Doing business in a global economy has unique risks. One risk is third parties soliciting illegal payments (i.e., bribes) from companies in exchange for brokering entry into new markets. Realizing the temptation is great and the practice widespread, the Foreign Corrupt Practices Act (FCPA), an anti-bribery statute that has been around for years, makes it unlawful for any corporation or any corporate officer, director, employee, agent or stockholder acting on behalf of the corporation to make (or promise to make) payments to foreign officials, political parties or other persons for the purposes of influencing or inducing the foreign official to act in a particular manner or to secure a business advantage. In recent years, prosecution of individuals has been a cornerstone of FCPA enforcement efforts, and fines levied on companies and individuals have been ever-increasing. The trends in FCPA enforcement that have emerged and are likely to continue into the future include:

  • More focused prosecution of individual wrongdoers
  • Increased civil and criminal penalties
  • Broadening definition of culpable intent
  • Continued push to expand jurisdictional reach
  • More sector-wide investigations
  • Increased use of traditional law enforcement techniques such as sting operations
  • Enhanced international cooperation in the prosecution of corruption

To mitigate the risk of FCPA frauds and defend against criminal and civil litigation, directors and officers should embrace the following practices:

  • Communicate a strong “tone at the top” that emphasizes ethics, integrity and honesty in all actions of the company.
  • Establish strong policy deterrents to fraudulent action.
  • Ensure that the company has comprehensive internal controls throughout the company to prevent or timely detect fraud in a timely manner.
  • Challenge the actions of your risk management practices (internal audit, risk management, compliance, legal, etc.).
  • Be active in all critical aspects of the business.
  • Acknowledge areas in which you may be lacking in knowledge and understanding, and seek out counsel as needed.
  • Do not readily accept all that is presented.
  • Skepticism and prudence in judgment should always be applied.
  • Know the fraud risks common to the various business units and practices.
  • Do not defer to management control over the information presented to the board.

Knowing your obligations and responsibilities, as well as designing effective organizational fraud controls, can greatly mitigate criminal and civil litigation exposure.

©2011 Schneider Downs. All rights-reserved. All content on this site is property of Schneider Downs unless otherwise noted and should not be used without written permission.

This advice is not intended or written to be used for, and it cannot be used for, the purpose of avoiding any federal tax penalties that may be imposed, or for promoting, marketing or recommending to another person, any tax-related matter.

You’ve heard our thoughts… We’d like to hear yours

The Schneider Downs Our Thoughts On blog exists to create a dialogue on issues that are important to organizations and individuals. While we enjoy sharing our ideas and insights, we’re especially interested in what you may have to say. If you have a question or a comment about this article – or any article from the Our Thoughts On blog – we hope you’ll share it with us. After all, a dialogue is an exchange of ideas, and we’d like to hear from you. Email us at contactSD@schneiderdowns.com.

Material discussed is meant for informational purposes only, and it is not to be construed as investment, tax, or legal advice. Please note that individual situations can vary. Therefore, this information should be relied upon when coordinated with individual professional advice.

© 2019 Schneider Downs. All rights-reserved. All content on this site is property of Schneider Downs unless otherwise noted and should not be used without written permission.