Check out The Checklist Manifesto

As a former transactional attorney, I was trained to use checklists. The transactions were too complicated to keep track of everything in my head. I also needed to communicate with the rest of the transaction team. In The Checklist Manifesto, Atul Gawande approaches checklists from the perspective of a surgeon.

I had put off reading this book because I’m already a fan of checklists. I didn’t need to be sold on their effectiveness. But I was still floored by the effectiveness Gawande reported in his studies.

In using a checklist for placing a central line, the ten-day infection rate was reduced from 11% to zero. He cites many other examples and studies that show that checklists can improve the performance of highly-trained workers.

“In a complex environment, experts are up against two main difficulties. The first is the fallibility of human memory and attention, especially when it comes to mundane, routine matters that are easily overlooked under the strain of more pressing events…. A further difficulty, just as insidious, is that people can lull themselves into skipping steps even when they remember them. In complex processes, after all, certain steps don’t always matter.”

I was particularly happy to see Gawande cite the correct story about Van Halen’s use of M&M’s as a compliance checklist tool. (See my prior post: Compliance Van Halen and Brown M&M’s.)

If you haven’t already read The Checklist Manifesto you should add it to your reading list.

Other’s thoughts on The Checklist Manifesto:

Portugal and Ethics Hotlines

Under guidelines published by the Portuguese Data Protection Authority on the 1st October 2009, a whistleblower cannot make a report anonymously. I have to admit that I can’t read Portuguese, so reading Deliberação Nº 765 /2009 does not help me much in interpreting the limitations. (Google translate helps.)

Most EU member states allow anonymous reporting as a last resort. Portugal went a step further and outlawed anonymous reporting completely.

The Portugal guidelines also limit hotline use to reports of corruption, banking and financial crime and internal accounting controls. It’s not allowed for breaches of general codes of conduct. To go a step further, whistleblowers may only report against individuals in managerial positions.

If you are a public company with operations in Portugal and required to have whistleblower hotline under Sarbanes-Oxley, you need to look at these limitations. They seem to be in direct conflict.

Thanks to Bill Piwonka of EthicsPoint for letting me know about this. EthicsPoint supplies my company’s hotline.

Sources:

SEC’s Mickey Mouse Sting Operation

Maybe this would have worked last year. But traders are probably a little nervous when it comes to buying inside information since the Galleon insider trading case. Hedge funds are now well aware that the SEC and FBI are willing to use a broader range of investigation techniques including wire taps and undercover agents.

That’s probably exactly what they were thinking when they got this mysterious email in March 2010:

“Hi, I have access to Disney’s (DIS) quarterly earnings report before its release on 05/03/10 [sic]. I am willing to share this information for a fee that we can determine later. I am sorry but I can’t disclose my identity for confidentiality reasons but we can correspond by email if you would like to discuss it. My email is [email protected]. I count on your discretion as you can count on mine. Thank you and I look forward to talking to you.”

According to the criminal complaint, at least 33 investment firms received the email. It’s not clear which firms alerted the SEC or the FBI.

The FBI sent in “Al Tyson”, a hedge fund trader to discuss the purchase of the inside information. Al was was an undercover FBI agent. The FBI also used undercover agents “Kurt” and “Bill Evers” in separate discussions. There was even a confidential informant for the FBI: “Oscar.”

Bonnie Hoxie worked for Disney as an executive assistant and thought she could get pre-release earnings information. Her boyfriend, Yonni Sebbag sent the emails.

Bonnie and Yonni must not have heard of the Galleon insider trading case. I’m sure the investment firms they contacted have heard of Galleon and I’m sure are extra cautious of insider trading cases. Especially anonymous emails offering to sell inside information.

I guess they smelled a rat instead of a mouse.

Sources:

Compliance Bits and Pieces – Compliance Week Edition

If you stuck around for my blog posts on Compliance Week 2010, I figured I would end the week with other attendee’s coverage:

Lanny Breuer at Compliance Week by Tom Fox on FCPA Compliance and Ethics Blog

He stated that tools which had been previously used to combat organized crime would now be employed in the fight against white collar crime, including both wiretaps and sting operations as were used against the gun manufacturing industry in the operations which culminated in the arrests of 22 individuals in Las Vegas in January of this year. He also discussed that many foreign governments had entered into collaboration agreements to facilitate cross-border investigations and enforcement actions.

Barney Less Than Frank About Auditor Reform by Francine McKenna in Going Concern

To the question about fears of going after the accounting firms, Rep. Frank rambled on about McCarthyism, the Inquisition and not spending time looking back – that’s what courts and prosecutors are for. I suspect the industry’s lobbyists and their campaign contributions have whispered in his ear. Employees of KPMG, PwC and Deloitte are among his top 25 contributors in 2009-2010 period. In the 2008 election year, all of the Big 4 made it to Rep. Frank’s top 20 contributors list.

SEC Commissioner Aguilar Says Still a Long Way to Go by Jaclyn Jaeger in Compliance Week‘s The Filing Cabinet

The SEC’s current way of doing things is not tough enough, SEC Commissioner Louis Aguilar told an audience of compliance and risk officers during Compliance Week’s annual conference in Washington D.C. this week. While problems in the market are “seamlessly connected, regulatory oversight is piecemeal,” he said.

JetBlue on Why CEO/Chair Split Works for Them by Melissa Klein Aguilar in Compliance Week‘s The Filing Cabinet

JetBlue Airways not only split the posts, but its board chairman, Joel Peterson, hails from outside of the airline industry—an approach he notes that not many companies have taken.

Observers Share Tips, Views On Navigating Social Media by Melissa Klein Aguilar in Compliance Week‘s The Filing Cabinet

Companies wrestling with how to navigate the rapidly changing social media landscape got some advice from executives whose companies have already taken the plunge. During a panel discussion at Compliance Week’s annual conference in Washington D.C., executives from Best Buy, Johnson & Johnson and The Travelers Companies shared their own experiences and tips for using social media tools such as Twitter and Facebook and crafting a corporate social media policy.

Grindler Touts Importance of Compliance, But Doubts Linger by Chris Matthews in Main Justice

“I want to emphasize… that having an effective compliance program will be taken under consideration when you have to talk to the government about a criminal violation,” Grindler said at the annual Compliance Week conference in Washington, D.C.

Fraud Chief: Effective Compliance Programs Can Prevent Monitors by Christopher M. Matthews in Main Justice

Criminal Fraud Section Chief Denis McInerney said Monday that an effective compliance program can prevent companies facing deferred and non-prosecution agreements from having to install an expensive compliance monitor. “If you have already established an excellent compliance program, then it will be less likely that we’ll install a compliance monitor, which can come at some cost to the company,” McInerney said.

Breuer: FCPA Facilitating Payments Worth Discussing by Christopher M. Matthews in Main Justice

Assistant Attorney General Lanny Breuer indicated Wednesday that the Justice Department was open to revisiting its exemption for “facilitating payments” under the Foreign Corrupt Practices Act. “That’s worth discussing,” Breuer, head of the DOJ’s Criminal Division, said during his remarks at the annual Compliance Week conference in Washington, D.C. “Facilitation payments — obviously this area is dynamic — so I don’t rule that out. I’m not currently aware of any real movement to make that change here. I think as other countries laws evolve and mature… I suspect over time, we too will be modifying our law.”

Creating a GRC Strategy Roadmap by Jaclyn Jaeger in Compliance Week‘s The Filing Cabinet

To build a successful enterprise governance, risk, and compliance program, companies need a solid roadmap that aligns people, processes, and information.David Walter, RSA director for Archer eGRC Solutions, discussed ways in which companies can achieve that, during a recent seminar at Compliance Week’s annual conference in Washington, D.C., this week.

Live Blogging from Compliance Week 2010 by Gordon Burnes for Open pages

Shelley Parratt of the SEC’s Corporation Finance Division gave the afternoon keynote on Day 2 of Compliance Week 2010. She spoke about the Commission’s program of enhanced disclosure.

Live Blogging from Compliance Week 2010 by Gordon Burnes for Open pages

US Rep and House Financial Services Committee Chair Barney Frank gave the opening keynote at Compliance Week 2010, day 2. As usual, he was witty and insightful. His remarks covered the conceptual underpinnings of financial services regulatory reform. He then took questions from the group.

Derivatives Spinoff Proposal ‘Goes Too Far,’ Says Frank Wall Street Journal

A key House Democrat signaled Tuesday that a controversial derivatives provision in the Senate’s financial-regulation bill could be stripped out during negotiations when the two chambers hammer out compromise legislation that could be signed into law by July 4.

Barney Frank Speaks Frankly About Financial Reform by Jaclyn Jaeger in Compliance Week‘s The Filing Cabinet

Now that the healthcare reform bill has been passed, legislators can begin to focus on another equally important issue: financial reform. “It’s very important for the financial industry that we get some stability,” Barney Frank, chair of the House Financial Services Committee, told an audience of compliance, risk, and audit executives during Compliance Week’s annual conference in Washington D.C. this week. It’s important to move quickly, he said, adding that the bill is very close to passage.

SEC Commissioner Aguilar Says Still a Long Way to Go by Jaclyn Jaeger in Compliance Week‘s The Filing Cabinet

The Securities and Exchange Commission still has a long way to go in its quest to understand the causes of the financial crisis and from deterring those who commit wrongdoing.

SEC Commish: Agency Needs to Get Tough on Miscreants Kara Scannel’s coverage from the Wall Street Journal’s Law Blog

If Securities and Exchange Commissioner Luis Aguilar has his way, corporate miscreants will face stronger sanctions.

Maximizing Privacy Effectiveness by Jaclyn Jaeger in Compliance Week‘s The Filing Cabinet

From internal investigations to data privacy issues to regulatory compliance, the overlap of privacy, security and compliance functions within an organization is inevitable. But where should privacy be housed in the organization to ensure effectiveness, and how should it interact with compliance, legal, and IT? These were only some of the questions answered during a panel at Compliance Week’s annual conference in Washington, D.C., this week

Update:

Parting Thoughts on Compliance Week 2010 by Compliance Week‘s Editor-in-Chief Matt Kelly

Well, the Compliance Week 2010 conference is now done and fading into history. The event was excellent, and credit belongs to all the attendees, speakers and helpers who altogether made our 2010 conference the largest and most successful we’ve ever had. Anyone who didn’t make it to Washington this year can see what you missed on our home page, but let me also share a few wrap-up thoughts here.

Winding Down From Compliance Week

My head is full of compliance goodness after spending 2.5 days at Compliance Week 2010. The Mayflower Hotel is a great place for a conference this size, with plenty of places to run into people.

Substance

The agenda was full of great substantive information from fellow compliance professionals. There were sessions on metrics, social media, corporate governance, ROI, organizational structures and communications. There were lots of closed door sessions that have not made their way into the blog, where compliance professionals could have more open discussions without the presence of media or vendors.

On top of that, we heard some great perspectives from top government officials, like Lanny Breur, Gary Grindler, Shelley Parratt, Barney Frank and Luis Aguilar.

Of course the best part of any conference is being able to interact with your peers. This was a great gathering of people in the compliance field.

Matt Kelly, Francine McKenna and Me

Old Friends

For me, it was great to once again spend time face-to face with old friends like Scott Cohen, Matt Kelly, Bruce Carton, Francine McKenna, Melissa Klein Aguilar, Bill Piwonka, Carole Switzer, Kathleen Edmond, and Scott Giordano.

New Friends

One of the great things about have a blog, or micro-blogging on Twitter is being able to get in touch with people prior to meeting them in person and then staying in touch with them.

Here are some of the Twitterati I was finally able to meet face-to-face:

tfoxlaw Tom Fox
@tfoxlaw
http://tfoxlaw.com
David Seide
@davidSeide
Scott Mitchell
@mitchell360
Doug Jacobson
@tradelawnews
Doug Chia
@dougchia

Of course, I met more people who don’t blog or use Twitter. It’s just harder to keep those weak ties.

Behind the Scenes

Gina Imperato, Elizabeth Busch, Anne Frey-Mott, Beckie Jankiewicz and the rest of the Event Studio team did a great job of running the conference, getting the attendees where they need to go and making the speakers look good.

Next year

…..

Second City on the Stage at Compliance Week 2010 Conference

Get ready for a fun, interactive, high-energy conference closer from Second City Communications, the business solutions division of the world-famous comedy theatre. Using observations, ideas, and insights garnered from the entire three-day conference, Second City Communications will play back what they’ve heard, offering a real-time wrap-up of key conference takeaways, and providing a host of ideas you can bring back to your company.

Tom Yorton is the CEO of Second City Communications. He is the suit and probably the least funny person in the organization. (or so he claims.)

They supplied some of the Second City “talent” to help take a look at some tough issues. Lee Smart came back on the stage with two others, taking suggestions from the audience. The first was a funny skit laced with compliance buzzwords.

They played a video from my earlier session at the conference: Second City and Compliance. They then used those compliance challenges in an improv skit, with Lee and the talent back on stage.

Rule 1:  Things are only funny when they are true.

Laughter comes from shared recognition. There is a different between making issues accessible as opposed making light of them. There are risks with comedy, but it’s riskier if not grounded in reality. Use humor to get to the truth. Comedic messages are better retained, noticed and shared.

Rule 2: Dialogues are better than monologues.

One way communication has a limited feedback loop. You want to give the audience a greater stake in the outcome. He also pointed out how the web and social learning make dialogues possible.

Rule 3: Foster an Open Environment.

Humor can make leaders and issues accessible. You can pop the tension bubble around legitimate challenges. Listen to understand, not just respond. You want to affirm and build on ideas.

Rule 4: Say it, and say it again.

You have to fight for attention. In a noisy environment, reinforcement and repetition is key. Think about a daily vitamin instead of an annual inoculation.

It was a highlight of the conference. If you want to see some more you can see the video below and other stuff at the Second City Communications website.

When you make people laugh, you make people think.

Video

During The Second City’s 50th Anniversary, The Wall Street Journal’s MarketWatch visited with Second City Communications to learn how we use improv techniques to train corporate workers :

U.S. DoJ Asst. Attorney General, Criminal Division, Lanny Breuer Speaks at Compliance Week

Lanny Breuer, selected by President Obama to head the Criminal Division of the Justice Department in January 2009, will discuss practical matters for companies dealing with the Justice Department, including topics such as cooperation, attorney-client privilege, and the importance of pre-existing compliance programs. Breuer will also discuss the Department’s increasing use of proactive law-enforcement strategies and tools, such as wiretaps, to combat financial fraud.

These are my notes, live from the keynote:

Prosecutions promote the rule of law, deter future bad behavior and punish wrong-doers. Compliance is largely the opposite of criminality.

He wants a new era in white collar crime prosecution.

The Obama administration is giving great attention to financial fraud and the establishment of the Financial Fraud Enforcement Task Force. Over 2 dozen state and federal agencies are part of the group. A companion is the deployment of additional resources. The budget has increased allowing the hiring of additional prosecutors and support.

They using more aggressive law enforcement techniques, including wire taps and undercover stings. They will continue to look toward innovative techniques and existing techniques used against organized crime and blue collar crime. (Is there a meaningful distinction anymore?)

He is looking to continue strengthening their partnership with the SEC.

Foreign bribery is a law enforcement challenge.  Since 2004 the DOJ has filed 37 FCPA cases, with fines over $1.5 billion. Over 80 individuals have been charged under the FCPA. Aggressive enforcement is meant to deter others from engaging in bribery.

He cited the new UK Bribery Act and the need for a company to have “adequate procedures” to detect and prevent bribery.

There are benchmarks. The principles of federal prosecution of business entities are the OECD guidance on effective compliance are key standards. But you need to customize these to your company. Direct reporting lines are important. Testing effectiveness is important.

If you come forward, cooperate with the investigation and institute meaningful remediation, the DOJ is committed to giving you meaningful credit. But not amnesty.

He used the Siemens case as a benchmark for the value of cooperation and remediation. The Siemens fine was huge at over $400 million. However, the sentencing guidelines called for a fine of over $1.4 billion. (He didn’t mention whether taking federal contracting debarment off the table was part of the discussion with their cooperation credit.)

As for compliance monitors, he would want one in place when the corporation needs to implement or significantly redesign a compliance program. Largely, it sounds like a monitor would be more likely if there is still significant remediation to be done.

He then sat down with Compliance Week‘s Matt Kelly.

Complying with the FCPA is harder in some countries is harder than others (China versus Belgium)?

You don’t get a free pass. They expect a more robust compliance program when entering into markets where bribery is more common. They would want to see new tools to detect and try to prevent bribery.

Now that the UK Bribery Law has banned facilitating payments will they be prohibited under the FCPA?

It will take an act of Congress, but he is looking forward to the evolution of law in the area of bribery of government officials.

Interpreting “Tone at the Top”, does firing someone and not supplying legal fees a bad tone?

The DoJ has changed their position on this. The key is removing the person from authority at the company, at least temporarily. The company has to make some real changes.

What about consistency throughout the DOJ and US Attorney Offices?

All FCPA has come in through the fraud unit, so that helps ensure consistency in that area. (It sounds like he recognized some inconsistencies.)

Acting Deputy Attorney General Gary Grindler Speaks at Compliance Week 2010

Gary Grindler, the second-highest ranking official at the U.S. Justice Department, will talk about the department’s policy goals and initiatives to fight corporate fraud, including white-collar crime issues such as securities and commodities fraud, healthcare fraud, and the work of the Financial Fraud Enforcement Task Force.

These are my notes, live from the keynote:

Lots of the thoughts about the Department of Justice are about how to stay away from the Department of Justice.

The DOJ is taking some new steps related to discovery. They are designating attorneys in each office on discovery practices and in particular e-discovery.

StopFraud.gov - Financial Fraud Enforcement Task Force

There is a new financial fraud enforcement task force brought together. President Obama established the Financial Fraud Enforcement Task Force in November 2009 to hold accountable those who helped bring about the last financial crisis, and to prevent another crisis from happening. With more than 20 federal agencies, 94 US Attorneys Offices and state and local partners, it’s a broad coalition of law enforcement, investigatory and regulatory agencies assembled to combat financial fraud. It’s a broad definition of financial fraud: mortgage scams that target the elderly, Ponzi schemes that shock the world, tax fraud that steals money from our nation’s coffers, predatory lending that discriminates against vulnerable communities, credit card fraud that strikes broadly, and the list goes on.

The next focus is health care fraud. They assembled a Health Care Fraud Prevention & Enforcement Action Team. (Yes, HEAT.) The group has brought the heat, with a big record of success, convictions and fraud deterrence. They have returned over $13 billion to the Medicare Trust fund. In Miami alone, they reduced the amount of durable medical device expenditures in Miami by over $1.7 billion.

The next priority he mentioned was intellectual property crime.

Besides these, there are many other priorities. These three are just the ones he thought most relevant to this crowd.

He emphasized the importance of an effective compliance program. They can’t just be paper compliance programs. He also highlighted the recent changes to the US Sentencing Guidelines. One new aspect is that after an “event” the organization needs to evaluate its program and amend it to prevent that kind of event.

What about a company’s cut in a compliance program’s budget?

If a budget reduction is indicative of a lack of interest in compliance, then that’s bad. He seemed understanding that a reduction in revenue means there will be budget cuts across the company.

What does an inadequate compliance program look like?

No compliance program is at the far extreme. Indifference to a compliance program. Senior leadership not promoting the compliance program. They see this a lot in FCPA cases.

The 2010 OCEG GRC Achievement Awards Presentation

The Open Compliance and Ethics Group will recognize the great strides that many organizations have made in improving and integrating their approaches to governance, risk management, and compliance.

The winners were:

  • Best Buy – Ethics blog for employees
  • Capital One – GRC implementation
  • Carnival Corporation – Integrated approach to GRC Management
  • Direct TV- Embedding spreadsheet governance into everyday business
  • Tawuniya – Performance management through GRC
  • Visa – Global ERM Program & Roadmap

Carole Switzer announced the Peer Choice award winner, chosen by the Compliance Week attendees.

And the winner is . . . .

Visa!

UPDATE: