Compliance into the Weeds

The award-winning Compliance into the Weeds is the only weekly podcast that takes a deep dive into a compliance-related topic, literally going into the weeds to explore a subject more thoroughly, looking for some hard-hitting insights on sanctions compliance. Look no further than Compliance into the Weeds! In this episode, Tom and Matt deeply dive into the termination of Citibank employee Szabolcs Fekete over cheating on his expense account, then lying about it and drawing out broad lessons for the compliance professional.The importance of trust, accountability, and ethics in the workplace cannot be overstated. These elements are the bedrock of a healthy corporate culture and are crucial for maintaining a positive and productive work environment. Tom believes that a broader conversation about these topics is necessary within corporations. He emphasizes the need for employees to understand the importance of trust, accountability, and adherence to policies and procedures.Matt echoes these sentiments. He shares a poignant story about a CEO who had to fire a cleaner for embezzlement and dishonesty, underlining the critical role of trust in upholding ethical standards. Both Fox and Kelly acknowledge the cynicism among the public and the workforce regarding ethical enforcement, and they advocate for a commitment to doing the right thing, even when it is difficult. Join Tom Fox and Matt Kelly on this episode of the Compliance into the Weeds podcast as they delve deeper into this crucial topic.Key Highlights: Expense Report Dishonesty and Wrongful Termination Citibank’s Expense Report Policy and Trust The Consequences of Ethical Breaches The importance of trust and ethical enforcement  ResourcesMatt in Radical ComplianceJane Croft in the FTPilita Clark in the FTTom ThreadsInstagramFacebookYouTubeTwitter Learn more about your ad choices. Visit megaphone.fm/adchoices

The award-winning Compliance into the Weeds is the only weekly podcast that takes a deep dive into a compliance-related topic, literally going into the weeds to explore a subject more fully. Are you looking for some hard-hitting insights on sanctions compliance? Look no further than Compliance into the Weeds! In this episode, Tom and Matt deeply dive into the recent enforcement action against Deutsche Bank for AML violations and greenwashing to consider best practices for policies and procedures.In the complex business world, the importance of tailored policies for compliance and risk management cannot be overstated. Tom Fox and Matt Kelly bring their unique perspectives to this topic, emphasizing the need for well-designed, specific policies and procedures to mitigate compliance risks and potential harm.Drawing from his experience, Fox believes that generic policies are insufficient and stresses the need for policies specific to a company’s needs, risks, and operations. On the other hand, Kelly criticizes copying and pasting policies from regulations without considering the organization’s unique characteristics and needs. He underscores the importance of conducting risk assessments and gap analyses to design effective policies. Join Tom Fox and Matt Kelly as they delve deeper into this topic on this episode of the Compliance into the Weeds podcast. Key Highlights: The Importance of Tailored Policies and Procedures Risks and Consequences of Generic Policies Tailoring Policies and Procedures for Compliance Ongoing Monitoring of Policies and Procedures Resources:Matt in Radical ComplianceTom ThreadsInstagramFacebookYouTubeTwitterLinkedIn Learn more about your ad choices. Visit megaphone.fm/adchoices

The award-winning Compliance into the Weeds is the only weekly podcast that takes a deep dive into a compliance-related topic, literally going into the weeds to explore a subject more fully. Are you looking for some hard-hitting insights on sanctions compliance? Look no further than Compliance into the Weeds! In this episode, Tom and Matt consider the recent speech by DAG Lisa Monaco, creating a Safe Harbor for M&A under the FCPA and beyond.The Justice Department has recently unveiled a new policy aimed at fostering cooperation and compliance within the corporate sector, especially during acquisitions. This policy, which offers companies the chance to avoid charges for compliance violations discovered during the acquisition process, has sparked a lively discussion among compliance experts. Matt views this policy with a mix of curiosity and uncertainty. He acknowledges its potential benefits but also raises concerns about its practical execution, particularly in relation to antitrust enforcement and the treatment of companies new to acquisitions.The application of the policy across various DOJ divisions and its interactions with other enforcement organizations intrigue Tom. He also questions whether acquiring companies will still receive a “free pass” if the acquired company engages in antitrust behavior. To delve deeper into these perspectives and explore the potential implications of this new policy, join Tom Fox and Matt Kelly in the latest episode of the Compliance into the Weeds podcast.Key Highlights: Cooperation and Compliance Incentives for M&A Exemption of Acquisition Target’s Aggravating Factors DOJ’s Emphasis on Pre-Acquisition Compliance Involvement Enforcement Policy’s Impact and Curiosity  Resources:Matt in Radical ComplianceTom ThreadsInstagramFacebookYouTubeTwitterLinkedIn Learn more about your ad choices. Visit megaphone.fm/adchoices

The award-winning Compliance into the Weeds is the only weekly podcast that takes a deep dive into a compliance-related topic, literally going into the weeds to explore a subject more fully. Are you looking for some hard-hitting insights on sanctions compliance? Look no further than Compliance into the Weeds! In this episode, Tom and Matt consider the recent SEC pre-taliation enforcement action involving DE Shaw.The recent $10 million settlement by financial services firm De Shaw over a retaliation case has sparked a significant conversation about whistleblower policies. This case, the largest of its kind, centered around employment agreements that prohibited employees from speaking to governmental agencies without company authorization, a practice that has been illegal since 2011 under the Dodd Frank Act. Matt views this as a significant issue, emphasizing the need for clear processes and alignment between policies and employment templates. He also expresses surprise at the rarity of instances where pretaliation clauses actually deter whistleblowers, suggesting that the problem lies in the language used in employment agreements.Tom sees this as a problem of process. He believes that companies need to have a clear process in place to ensure that changes in employment policies are reflected throughout all relevant documents and agreements. He criticizes companies like De Shaw for updating their policies but failing to update their employment templates, which led to the inclusion of language that prevented whistleblowers from coming forward. Join Tom Fox and Matt Kelly as they delve deeper into this topic on the Compliance into the Weeds podcast.  Key Highlights: Largest pre-taliation settlement in financial services Persistent Non-Compliance Issues with Dodd Frank The Rise of Multimillion-Dollar Penalties Resources:Matt in LinkedInTom ThreadsInstagramFacebookYouTubeTwitterLinkedIn Learn more about your ad choices. Visit megaphone.fm/adchoices

The award winning, Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. Looking for some hard-hitting insights on sanctions compliance? Look no further than Compliance into the Weeds! In this episode, Tom and Matt consider the recent OFAC enforcement action involving 3M.3 3M, found itself in hot water after violating Iran sanctions, leading to a hefty fine of $9,618,477 from the Treasury Department and OFAC. This violation, involving a subsidiary selling goods to a German reseller who then sold them directly to Iran, including to a sanctioned entity. Tom points out the significant failures in controls and monitoring within the company that led to the violation. He emphasizes the importance of end user statements and monitoring in compliance functions to prevent such violations. On the other hand, Matt acknowledges that while 3M made an effort to comply with the Iran nuclear deal, changes in the arrangement that were not properly communicated or approved led to a violation of the sanctions agreement. He also underscores the importance of monitoring and obtaining end user statements to ensure compliance with export control laws. Join Tom Fox and Matt Kelly as they delve deeper into this topic in the latest episode of the Compliance into the Weeds podcast. Key Highlights·      Sanctions Compliance and Ongoing Monitoring·      Challenges and Consequences of Sanctions Compliance·      Sanctions Settlement for Selling Goods to Iran·      Anticipated Impact of Recent Events on 3M ResourcesMatt in LinkedInMatt on Radical ComplianceTom  InstagramFacebookYouTubeTwitterLinkedIn Learn more about your ad choices. Visit megaphone.fm/adchoices

The award winning, Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. Looking for some hard-hitting insights on sanctions compliance? Look no further than Compliance into the Weeds! In this episode, Tom and Matt consider the recent MGM Reports data breach and what it may mean for CCOs and Danny Ocean.The MGM Grand data breach, a significant cyber-attack that disrupted MGM Resorts' operations across the U.S., has raised serious concerns about cybersecurity and regulatory requirements. Tom and Matt discuss the potential financial impact and regulatory investigations that may arise from the breach, emphasizes the severity of the situation and the potential consequences for MGM. They also question MGM's disaster recovery and business continuity plans and raises concerns about the network design vulnerabilities that allowed the attack to have such a widespread impact. He also discusses the implications of the breach in relation to new SEC rules mandating the disclosure of material cybersecurity events by public companies. Join Tom Fox and Matt Kelly as they delve deeper into these issues in this episode of the Compliance into the Weeds podcast. Key Highlights·      MGM Grand Cyber Attack Disrupts Operations·      Understanding the Impact of Qualitatively Material Cybersecurity Incidents·      Navigating Material Cybersecurity Event Disclosure Requirements·      Inadequate backup plans leading to operational disruptions·      MGM's Ransomware Attack and Business Continuity ResourcesMatt in LinkedInMatt on Radical ComplianceTom  InstagramFacebookYouTubeTwitterLinkedIn Learn more about your ad choices. Visit megaphone.fm/adchoices

The award winning, Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. Looking for some hard-hitting insights on sanctions compliance? Look no further than Compliance into the Weeds! In this episode, Tom and Matt consider the recent DOJ enforcement action involving Verizon Business Network Services for failure to have an effective cyber security compliance program.The recent case of Verizon's non-compliance with cybersecurity standards and subsequent remediation efforts has sparked a significant conversation in the realm of cyber compliance. Tom views this case as a roadmap for companies to enhance their cybersecurity programs, emphasizing the importance of gap analysis and pressure testing. He draws parallels between cybersecurity compliance and the Foreign Corrupt Practices Act (FCPA) compliance, suggesting that Verizon's case could serve as an example for other companies. Matt applauds Verizon's voluntary self-disclosure and extensive remediation efforts. He underscores the importance of disclosure, cooperation, and remediation in both cybersecurity and corruption cases, viewing Verizon's actions as a positive example for other companies. Join Tom Fox and Matt Kelly as they delve deeper into this topic in the latest episode of the Compliance into the Weeds podcast. Key Highlights·      Verizon's Cybersecurity Program Failures·      Enhancing Cybersecurity Compliance through Remediation Measures·      Automating Compliance Efforts with GRC Tools·      Potential Penalties for Non-Disclosure of Cybersecurity Issues ResourcesMatt in LinkedInMatt on Radical ComplianceTom  InstagramFacebookYouTubeTwitterLinkedIn Learn more about your ad choices. Visit megaphone.fm/adchoices

The award winning, Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. Looking for some hard-hitting insights on sanctions compliance? Look no further than Compliance into the Weeds! In this episode, Tom and Matt consider the recent pronouncements from the SEC regarding risk assessments together with control environments and all this played out in the Plug Power enforcement action.The importance of risk assessments and a strong control environment in companies cannot be overstated. These elements are crucial for effective internal controls and proper financial reporting, as emphasized by the SEC's chief accountant, Paul Munter. In this episode Tom and Matt underscore the need for thorough evaluation of potential pitfalls in risk assessments, citing insufficient personnel, changes in board or management composition, and hasty adoption of new strategies or technologies as potential triggers for flawed assessments. They highlight the significance of small control failures and entity-level failures, such as weaknesses in IT controls, as indicators of a weak control environment.. Join Tom Fox and Matt Kelly as they delve deeper into the topic of risk assessment in the latest episode of the Compliance into the Weeds podcast. Key Highlights·      Munter’s statement·      Enhancing Control Environment through Risk Assessments·      The Importance of Risk Assessments and Controls·      Attracting and Retaining Competent Individuals·      Flaws in Risk Assessment Beyond Insufficient Personnel·      Lessons Learned ResourcesMatt in LinkedInMatt blogged twice on these issues. A report on Munter’s statements here and on the Plug Power enforcement action hereTom  InstagramFacebookYouTubeTwitterLinkedIn Learn more about your ad choices. Visit megaphone.fm/adchoices

The award winning, Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. Looking for some hard-hitting insights on sanctions compliance? Look no further than Compliance into the Weeds! In this episode, Tom and Matt consider the recent FCPA enforcement action involving the Chinese business unit of 3M.The importance of post-event documentation and monitoring in preventing fraud and corruption cannot be overstated, as highlighted by the recent FCPA incident involving 3M China. Tom believes that while training and control environment adjustments are crucial, they may not be enough to prevent misconduct if individuals are determined to commit such acts. He emphasizes the need for hard evidence, such as post-event documentation, and recommends looking to the heavily regulated pharmaceutical sector for guidance.Matt stresses the importance of rigorous post-event documentation to ensure the legitimacy of business activities. Both Fox and Kelly gained these insights from their extensive experience in the field of compliance and their analysis of various fraud cases. To learn more about their unique perspectives on post-event documentation and monitoring, join them on this episode of the Compliance into the Weeds podcast. Key Highlights·      Background facts·      GTE in FCPA enforcement actions·      What happens when conduct is done secretly·      Concerns over the use of messaging apps·      Lessons Learned ResourcesMatt in LinkedInTom -blog post on the FCPA Compliance and Ethics BlogInstagramFacebookYouTubeTwitterLinkedIn Learn more about your ad choices. Visit megaphone.fm/adchoices

The award-winning, Compliance into the Weeds is the only weekly podcast that takes a deep dive into a compliance-related topic, literally going into the weeds to explore a subject more. Looking for some hard-hitting insights on sanctions compliance? Look no further than Compliance into the Weeds! In this episode, Tom and Matt consider the recent SEC and CFTC enforcement actions around messaging app non-compliance.Join Tom and Matt as they take a deep dive into the enforcement actions and then consider how such claims would impact non-regulated industries. Regulated industries, particularly broker-dealer firms like Wells Fargo and Morgan Stanley, are facing enforcement actions and hefty fines for their employees' use of messaging apps like WhatsApp and Snapchat that allow record preservation to be disabled. The involvement of senior managers in these misconducts has prompted the SEC to require an independent compliance consultant in settlements.The conversation between Tom and Matt emphasizes the importance of messaging policies and procedures in regulated industries and the need for stricter compliance measures. They also discuss the complexities and potential consequences of record-keeping obligations and the regulatory concerns over the use of messaging apps. The conversation briefly touches on the future of AI chatbots in customer service, with differing perspectives on their ethical implications. Overall, the conversation highlights the significance of messaging policies, enforcement, and compliance in regulated industries.Key Highlights·      Enforcement Actions Against Regulated Industries·      Enforcement actions and messaging policies·      Record-keeping obligations for broker dealers and other industries·      Regulatory concerns over the use of messaging apps·      Internal Controls and non-regulated industries ResourcesMatt LinkedInBlog Post in Radical ComplianceNo Smoke and No Fire: The Rise of Internal Controls Absent Anti-Bribery Violations in FCPA Enforcement by Karen Woody in Cardoza Law ReviewTom InstagramFacebookYouTubeTwitterLinkedIn Learn more about your ad choices. Visit megaphone.fm/adchoices