DOJ's New Policy on Independent Monitors—Time to Beef Up Compliance
The Department of Justice's new guidance regarding the appointment of corporate monitors could significantly change the dynamics for companies dealing with the important element of corporate compliance. This article explores key takeaways to consider as a result of the DOJ's new approach.
November 29, 2018 at 12:02 PM
7 minute read
The Department of Justice's new guidance regarding the appointment of corporate monitors could significantly change the dynamics for companies dealing with the important element of corporate compliance. Although the new guidance is couched as simply supplementing prior DOJ guidance in the “Morford Memo,” it could be a difference maker—it requires prosecutors to carefully weigh the monetary costs, as well as the burdens to a company's operations, in deciding whether a monitor is required as a condition of a negotiated settlement with DOJ and, if necessary, to tailor the scope of the monitorship as narrowly as possible. The policy shift therefore creates opportunities for institutions to potentially avoid the imposition of a monitor if they redouble compliance efforts before winding up in DOJ's cross-hairs. This article explores key takeaways to consider as a result of the DOJ's new approach.
Cost-Benefit Analysis in the New Guidance
The new guidance was unveiled last month by Brian Benczkowski, the assistant attorney general in charge of DOJ's criminal division who supplemented the Morford Memo. This latest guidance explicitly states that the only time a monitor should be imposed is where there is a demonstrated need for a monitor, and where there is a clear benefit that will outweigh the projected costs and burdens of the monitorship. Although the Morford memo recommended that prosecutors consider the potential benefits versus the cost and burden of imposing a monitor, the new guidance articulates more detailed factors that should be considered when making that cost-benefit analysis. Specifically, the new guidance states that in evaluating the potential benefits of a monitor, prosecutors should consider:
- whether the underlying misconduct involved the manipulation of corporate books and records or the exploitation of an inadequate compliance program or internal control systems;
- whether the misconduct at issue was pervasive across the business organization or approved or facilitated by senior management;
- whether the corporation has made significant investments in, and improvements to, its corporate compliance program and internal control systems; and
- whether remedial improvements to the compliance program and internal controls have been tested to demonstrate that they would prevent or detect similar misconduct in the future.
In addition, whenever the misconduct at issue occurred under different corporate leadership or within a compliance environment that no longer exists within the company, the new guidance directs prosecutors to weigh the following factors before requiring the imposition of a monitor:
- whether the changes in corporate culture and/or leadership are adequate to safeguard against recurrence of misconduct; and
- whether adequate remedial measures were taken to address problem behavior by employees, management, or third party agents, including the termination of business relationships and practices that contributed to the misconduct.
Finally, with regard to the cost side of the equation, the new guidance states that prosecutors should not only consider the projected monetary costs, but should also make sure that the proposed scope of the monitorship “is appropriately tailored to avoid unnecessary burdens to the business's operations.”
|Take-Aways From the New Guidance
The new guidance makes it clear that remediation and compliance remain extremely important for the DOJ, but that the DOJ will seriously weigh the potential cost and burden to an institution's operations in deciding whether a monitor is necessary. As a result, the new guidance creates opportunities for institutions who find themselves sitting across the table from DOJ attorneys to make meaningful arguments against the imposition of a monitor. However, even before that stage, the new guidance shows how important it is for institutions to establish and maintain a robust compliance program that strives to prevent misconduct in the first place, and if misconduct is discovered, to double down on efforts to improve compliance in the relevant business unit, industry sector, or across reporting lines within the institution.
The new guidance creates the opportunity to avoid the imposition of a monitor for those institutions that take compliance seriously and proactively act to improve it. Accordingly, any institution that is evaluating its compliance program and/or conducting an internal investigation of potential wrongdoing should engage in a rigorous analysis of its operations to assess potential compliance risks in order to prevent misconduct or detect the areas in which the potential misconduct occurred. This analysis involves the following:
- Performing a risk assessment to identify legal, financial, operational and brand impacts. An assessment also serves as a vehicle to help allocate resources to mitigate these risks. Institutions should focus the scope of its assessment on identifying existing or potential risks of legal or policy non-compliance because these can often lead to debarment or other adverse business consequences.
- Documenting procedures for responding to and preventing misconduct. Institutions should formalize the processes for how it prevents and responds to compliance matters, and these processes should be reviewed frequently to ensure they remain relevant to the institution's current operating model and strategic priorities.
- Embedding compliance in business operations. Using technology and enhanced internal oversight can help manage risk and integrate compliance within overall business processes. The act of integrating compliance within business processes and initiatives is only one step; being able to test and monitor what's working or not working is equally important. Insights gained through testing and monitoring can help identify compliance gaps and ways in which the compliance framework should be supplemented or adjusted.
- Anticipating emerging compliance matters. Staying ahead of potential legal and regulatory changes enables institutions to educate and incentivize collaboration among its employees to comply with regulatory requirements.
- Educating and communicating compliance expectations to internal and external stakeholders. Consistent training and communication helps articulate compliance expectations, creates transparency, and establishes clear ownership of risks by individuals or business units.
- Understanding third party dependencies. Identifying and monitoring third party agents who are critical to the institution, coupled with insights gained from risk assessment, helps establish a proactive approach to monitoring the activities of third parties who act on behalf of the institution in order to get ahead of potential missteps.
- Establishing and preserving a strong ethical culture at the top. Executives and other senior leaders set the example for all employees as to how to conduct business appropriately. The institution's leaders are responsible for reinforcing the principles of always acting with integrity and speaking up in the face of compliance lapses or risks. Top management also has to take responsibility for preventing retaliation against employees who report compliance issues, and taking appropriate corrective actions if misconduct occurs.
The approach for tackling these activities is not “one size fits all,” and an institution's focus should be on its greatest risks and impacts to its strategy. It is imperative that an institution ensures that its compliance efforts are sustainable and agile enough to respond to changing commercial and operational priorities, as well as the corresponding risks and evolving regulatory landscape.
If serious wrong-doing is suspected or discovered, companies should consider hiring independent compliance counsel in order to re-work and improve compliance and controls, either in conjunction with a voluntary disclosure to the DOJ, or in the event of a DOJ investigation in the absence of self-disclosure. The new guidance shows that the DOJ values and will reward proactive compliance improvements.
Finally, institutions continue to face an increasingly complex operating environment, and a robust compliance program helps it proactively respond to new risks and misconduct. DOJ's new guidance underscores the importance of implementing and maintaining a compliance program that prevents misconduct and corporate recidivism. To not commit resources to this endeavor risks not only prosecution by the DOJ, but the imposition of a potentially costly monitor that is tasked with evaluating the institution's conformity to legal and regulatory requirements over the course of multiple years.
Amy Walsh is a partner in the white-collar investigations and compliance group at Orrick, Herrington & Sutcliffe. She served as a court-appointed monitor for a settlement between JP Morgan Chase and the U.S. Department of Justice. Sarah Foley is a compliance specialist at Orrick who evaluates, develops and implements compliance programs for multinational corporations and financial institutions.)
This content has been archived. It is available through our partners, LexisNexis® and Bloomberg Law.
To view this content, please continue to their sites.
Not a Lexis Subscriber?
Subscribe Now
Not a Bloomberg Law Subscriber?
Subscribe Now
NOT FOR REPRINT
© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
You Might Like
View All
A Blueprint for Targeted Enhancements to Corporate Compliance Programs
7 minute read
Three Legal Technology Trends That Can Maximize Legal Team Efficiency and Productivity
Corporate Confidentiality Unlocked: Leveraging Common Interest Privilege for Effective Collaboration
11 minute readTrending Stories
- 1Gibson Dunn Sued By Crypto Client After Lateral Hire Causes Conflict of Interest
- 2Trump's Solicitor General Expected to 'Flip' Prelogar's Positions at Supreme Court
- 3Pharmacy Lawyers See Promise in NY Regulator's Curbs on PBM Industry
- 4Outgoing USPTO Director Kathi Vidal: ‘We All Want the Country to Be in a Better Place’
- 5Supreme Court Will Review Constitutionality Of FCC's Universal Service Fund
Who Got The Work
Michael G. Bongiorno, Andrew Scott Dulberg and Elizabeth E. Driscoll from Wilmer Cutler Pickering Hale and Dorr have stepped in to represent Symbotic Inc., an A.I.-enabled technology platform that focuses on increasing supply chain efficiency, and other defendants in a pending shareholder derivative lawsuit. The case, filed Oct. 2 in Massachusetts District Court by the Brown Law Firm on behalf of Stephen Austen, accuses certain officers and directors of misleading investors in regard to Symbotic's potential for margin growth by failing to disclose that the company was not equipped to timely deploy its systems or manage expenses through project delays. The case, assigned to U.S. District Judge Nathaniel M. Gorton, is 1:24-cv-12522, Austen v. Cohen et al.
Who Got The Work
Edmund Polubinski and Marie Killmond of Davis Polk & Wardwell have entered appearances for data platform software development company MongoDB and other defendants in a pending shareholder derivative lawsuit. The action, filed Oct. 7 in New York Southern District Court by the Brown Law Firm, accuses the company's directors and/or officers of falsely expressing confidence in the company’s restructuring of its sales incentive plan and downplaying the severity of decreases in its upfront commitments. The case is 1:24-cv-07594, Roy v. Ittycheria et al.
Who Got The Work
Amy O. Bruchs and Kurt F. Ellison of Michael Best & Friedrich have entered appearances for Epic Systems Corp. in a pending employment discrimination lawsuit. The suit was filed Sept. 7 in Wisconsin Western District Court by Levine Eisberner LLC and Siri & Glimstad on behalf of a project manager who claims that he was wrongfully terminated after applying for a religious exemption to the defendant's COVID-19 vaccine mandate. The case, assigned to U.S. Magistrate Judge Anita Marie Boor, is 3:24-cv-00630, Secker, Nathan v. Epic Systems Corporation.
Who Got The Work
David X. Sullivan, Thomas J. Finn and Gregory A. Hall from McCarter & English have entered appearances for Sunrun Installation Services in a pending civil rights lawsuit. The complaint was filed Sept. 4 in Connecticut District Court by attorney Robert M. Berke on behalf of former employee George Edward Steins, who was arrested and charged with employing an unregistered home improvement salesperson. The complaint alleges that had Sunrun informed the Connecticut Department of Consumer Protection that the plaintiff's employment had ended in 2017 and that he no longer held Sunrun's home improvement contractor license, he would not have been hit with charges, which were dismissed in May 2024. The case, assigned to U.S. District Judge Jeffrey A. Meyer, is 3:24-cv-01423, Steins v. Sunrun, Inc. et al.
Who Got The Work
Greenberg Traurig shareholder Joshua L. Raskin has entered an appearance for boohoo.com UK Ltd. in a pending patent infringement lawsuit. The suit, filed Sept. 3 in Texas Eastern District Court by Rozier Hardt McDonough on behalf of Alto Dynamics, asserts five patents related to an online shopping platform. The case, assigned to U.S. District Judge Rodney Gilstrap, is 2:24-cv-00719, Alto Dynamics, LLC v. boohoo.com UK Limited.
Featured Firms
Law Offices of Gary Martin Hays & Associates, P.C.
(470) 294-1674
Law Offices of Mark E. Salomone
(857) 444-6468
Smith & Hassler
(713) 739-1250
