Data Analytics in Corporate Compliance – Part Two
How companies are already using data analytics in compliance, and factors that should be considered as companies adopt this as part of their compliance solution.
March 12, 2020 at 02:00 PM
5 minute read
Credit: Khakimullin Aleksandr/Shutterstock.com
This article is the second part in a two-part series on data analytics in corporate compliance.
The Use of Data Analytics to Detect Compliance Risks
As detailed in Part 1 of this series, the DOJ, SEC and other government agencies are increasingly using sophisticated data analytics technology as they focus their resources. Taking a cue from government agencies, many companies around the world are already using data analytics to detect control weaknesses, potential misconduct, and high risk behavior. In Part 2 of this series, this article briefly describes how companies are already using data analytics in compliance, and discusses factors that should be considered as companies adopt this as part of their compliance solution.
How Data Analytics Is Being Used
For years, financial services firms have analyzed transactions and flow of funds to identify individuals and activities that raise the risk of money laundering, corruption, and other financial frauds. Many banks use algorithms to detect suspicious transactions, like round-tripping, flow of funds between accounts, and transactions structured to avoid triggering a suspicious activity report. But the use of data analytics as a compliance tool is not limited to the financial services industry, and is increasingly used to identify bribery and corruption risk. Anheuser-Busch InBev, one of the world's largest consumer goods companies, has used machine-learning technology to develop a compliance tool called Project BrewRIGHT, which identifies high risk business partnerships and potentially illegal third-party payments. The program analyzes data from over 50 countries for possible red flags and has saved AB InBev hundreds of thousands of dollars on investigating payments.
Data analytics tools like Project BrewRIGHT allow companies to be proactive rather than reactive in their compliance efforts. Companies are also increasingly examining employee expense reports, travel bookings, accounts payable records, and vendor charts of accounts to identify transactions, trends, or patterns that suggest compliance problems. These internal data sources can be incredibly valuable in detecting corruption risk.
Considerations for Using Data Analytics in Compliance
The extent to which a company uses data analytics to identify compliance weaknesses necessarily depends upon its risk profile. In its most recent guidance on effective corporate compliance programs, DOJ reiterated the bedrock compliance principle that well-designed compliance programs should be tailored to the particular risks a company faces. Those risks include the industry, geographic scope, and regulatory landscape in which a company operates.
In thinking about how to incorporate data analytics into a compliance program, a company can start with the basics:
- What data sources already exist in the company, and can they be analyzed to detect compliance risks, such as third-party payments, internal expense reports, chart of accounts, "know your customer" data, or other financial transaction reports?
- What data does the company already analyze in order to generate management reports and track financial performance, and can that data be analyzed from a different perspective to identify control weaknesses or high risk behavior?
- How do existing data sources align with the company's compliance risk areas? For example, if the company faces significant corruption risk through a global distributor network, does the company record margin payments, discounts, and marketing support payments to distributors that could be analyzed to identify potentially corrupt transactions?
Data analytics rarely works well in isolation and should be one component of a holistic approach to compliance. A well-devised algorithm can flag a transaction for additional review. But it is that additional review—which requires human judgment and analysis—that makes the crucial determination of whether the transaction is a problem. In the securities or commodities industry, a trade placed just before a market moving announcement may be evidence of the trader's skill or luck, or it may be evidence of possible insider trading. Once a trade is flagged for additional review, it will likely take additional investigative legwork to determine whether the trade was benign.
As with any other part of a compliance program, a company needs to have a well-thought-out plan for implementing data analytics into its compliance efforts including resource considerations. A data analytics tool needs to be appropriately calibrated to flag items that are true anomalies given the nature of a company's business. Too many false positives can distract from legitimate compliance problems and drain precious compliance resources. To be sure, the process of calibrating a data analytics tool requires some up front trial-and-error and investment in time, but it is worth the effort to get more reliable data on potential compliance gaps. Once the data analytics tool is up and running, the company needs to ensure it has the right team with the right skill set to analyze the transactions the tool flags for review. That may require augmented training for compliance personnel and enlisting the support of other control functions like finance and accounting. Ultimately, a well-designed data analytics tool will become part of the fabric of the compliance program and help a company detect and remediate compliance problems in their nascent state rather than waiting for them to hit the hotline.
Charles D. Riely, a former assistant regional director for the Division of Enforcement for the SEC, and Erin R. Schrantz are partners, and Matthew J. Phillips is an associate, in Jenner & Block's Investigations, Compliance and Defense Practice.
This content has been archived. It is available through our partners, LexisNexis® and Bloomberg Law.
To view this content, please continue to their sites.
Not a Lexis Subscriber?
Subscribe Now
Not a Bloomberg Law Subscriber?
Subscribe Now
NOT FOR REPRINT
© 2025 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
You Might Like
View All
AI Disclosures Under the Spotlight: SEC Expectations for Year-End Filings
5 minute read
A Blueprint for Targeted Enhancements to Corporate Compliance Programs
7 minute read
Three Legal Technology Trends That Can Maximize Legal Team Efficiency and Productivity
Trending Stories
- 1Million-Dollar Verdict: Broward Jury Sides With Small Business
- 2'Reluctant to Trust'?: NY Courts Continue to Grapple With Complexities of Jury Diversity
- 3'Careless Execution' of Presidential Pardons Freed Convicted Sex Trafficker, US Judge Laments
- 4Newsmakers: Littler Elevates Dallas Attorney to Shareholder
- 5South Florida Real Estate Lawyers See More Deals Flow, But Concerns Linger
Who Got The Work
J. Brugh Lower of Gibbons has entered an appearance for industrial equipment supplier Devco Corporation in a pending trademark infringement lawsuit. The suit, accusing the defendant of selling knock-off Graco products, was filed Dec. 18 in New Jersey District Court by Rivkin Radler on behalf of Graco Inc. and Graco Minnesota. The case, assigned to U.S. District Judge Zahid N. Quraishi, is 3:24-cv-11294, Graco Inc. et al v. Devco Corporation.
Who Got The Work
Rebecca Maller-Stein and Kent A. Yalowitz of Arnold & Porter Kaye Scholer have entered their appearances for Hanaco Venture Capital and its executives, Lior Prosor and David Frankel, in a pending securities lawsuit. The action, filed on Dec. 24 in New York Southern District Court by Zell, Aron & Co. on behalf of Goldeneye Advisors, accuses the defendants of negligently and fraudulently managing the plaintiff's $1 million investment. The case, assigned to U.S. District Judge Vernon S. Broderick, is 1:24-cv-09918, Goldeneye Advisors, LLC v. Hanaco Venture Capital, Ltd. et al.
Who Got The Work
Attorneys from A&O Shearman has stepped in as defense counsel for Toronto-Dominion Bank and other defendants in a pending securities class action. The suit, filed Dec. 11 in New York Southern District Court by Bleichmar Fonti & Auld, accuses the defendants of concealing the bank's 'pervasive' deficiencies in regards to its compliance with the Bank Secrecy Act and the quality of its anti-money laundering controls. The case, assigned to U.S. District Judge Arun Subramanian, is 1:24-cv-09445, Gonzalez v. The Toronto-Dominion Bank et al.
Who Got The Work
Crown Castle International, a Pennsylvania company providing shared communications infrastructure, has turned to Luke D. Wolf of Gordon Rees Scully Mansukhani to fend off a pending breach-of-contract lawsuit. The court action, filed Nov. 25 in Michigan Eastern District Court by Hooper Hathaway PC on behalf of The Town Residences LLC, accuses Crown Castle of failing to transfer approximately $30,000 in utility payments from T-Mobile in breach of a roof-top lease and assignment agreement. The case, assigned to U.S. District Judge Susan K. Declercq, is 2:24-cv-13131, The Town Residences LLC v. T-Mobile US, Inc. et al.
Who Got The Work
Wilfred P. Coronato and Daniel M. Schwartz of McCarter & English have stepped in as defense counsel to Electrolux Home Products Inc. in a pending product liability lawsuit. The court action, filed Nov. 26 in New York Eastern District Court by Poulos Lopiccolo PC and Nagel Rice LLP on behalf of David Stern, alleges that the defendant's refrigerators’ drawers and shelving repeatedly break and fall apart within months after purchase. The case, assigned to U.S. District Judge Joan M. Azrack, is 2:24-cv-08204, Stern v. Electrolux Home Products, Inc.
Featured Firms
Law Offices of Gary Martin Hays & Associates, P.C.
(470) 294-1674
Law Offices of Mark E. Salomone
(857) 444-6468
Smith & Hassler
(713) 739-1250
