Spotlight on FCPA Violations –2024 in Review

The growth of international markets has brought unprecedented opportunities for businesses to expand their reach, form partnerships, and attract new customers. However, with these opportunities come significant risks. Issues such as supply chain disruptions, pandemic-induced shortages, and rising costs linked to geopolitical events, such as the war in Ukraine, underscore the vulnerabilities of global dependencies. Amid these challenges, businesses must remain vigilant about mitigating the risk of Foreign Corrupt Practices Act (FCPA) violations, which can lead to severe financial and consequences from reputational damage.

Increased Focus on Corporate Enforcement (The Monaco Memo)
The Department of Justice (DOJ)  outlined its intent to strengthen corporate criminal enforcement through the Monaco Memo. This directive emphasizes:

• Individual Accountability: Holding executives, including CEOs and COOs, responsible for compliance failures.
• Prior Misconduct: Considering a company’s historical violations in enforcement decisions.
• Use of Corporate Monitors: Requiring corporations to implement compliance programs designed to detect and prevent FCPA violations.

Although the language in the memo is intentionally broad, this flexibility may enable stricter enforcement actions and harsher penalties.

Case Example: Glencore

The Glencore FCPA resolution illustrates the DOJ's enforcement approach. Under a 2022 plea agreement, Glencore’s CEO and COO were required to certify the company’s compliance program as being “reasonably designed” to prevent violations. However, the lack of detailed guidelines creates significant risks for executives, who could face criminal charges if violations occur later. Penalties for such charges include imprisonment ranging from 5 to 20 years.

Expanded Enforcement Scope

The DOJ continues to broaden its enforcement strategy, targeting:

• Bribery Recipients: Using money laundering theories to pursue foreign officials, even though they are not directly subject to the FCPA.
• FCPA-Related Offenses: Pursuing charges such as tax violations, mail and wire fraud, money laundering, Travel Act violations, and false statements, often in addition to or in place of FCPA charges.

Escalating Penalties and Enforcement Trends

Recent enforcement actions reflect the DOJ and SEC’s intensified focus on FCPA violations:

• In 2022, penalties totaled $1.5 billion across eight companies, more than five times the $282 million in 2021.
• 2020 saw a record $6.4 billion in penalties involving twelve companies.
• The 2021 dip in enforcement activity may have been partly due to pandemic-related disruptions.

Notable Individual Cases

High-profile cases reinforce the DOJ’s commitment to holding individuals accountable:

• Jerry Li (Herbalife): Ordered to pay $550,092 in penalties after a default judgment.
• Roger Ng (Goldman Sachs): Convicted on FCPA charges.
• In 2022, enforcement actions against individuals included guilty pleas, indictments, and dismissals, though no sentences were issued.

Importance of Proactive Compliance

With increasing penalties and expanding enforcement priorities, it is critical for businesses to invest in robust compliance programs and conduct thorough due diligence investigations, especially in high growth, high risk regions of the world. These measures are essential to mitigating risks and navigating the evolving regulatory landscape effectively.

2024 FCPA VIOLATIONS REVIEW

• AAR CORP. – The Illinois-based global provider of aviation services and products agreed to pay approximately $30 million in disgorgement and prejudgment interest to resolve FCPA anti-bribery, recordkeeping, and internal accounting controls charges arising from conduct in Nepal and South Africa. Deepak Sharma, a former senior executive at an AAR subsidiary, agreed to pay $184,597 in disgorgement and prejudgment interest, $130,835 of which was deemed satisfied by a forfeiture order with the U.S. Department of Justice, for his involvement in bribery schemes. 

From 2015 through 2018, Sharma orchestrated a bribery scheme to secure a $210 million contract for two Airbus A330 aircraft for Nepal Airlines, a government-owned airline, and another contract with a South African Airways subsidiary. (12/19/24)

• Cyril Cabanes – A former director on the board of Azure Power Global Limited, a renewable energy company in India, was charged by the SEC for authorizing bribes as part of a massive bribery scheme to secure multi-billion-dollar energy projects for Azure and Adani Green Energy Limited. (11/20/24)
• BIT Mining Ltd. – Formerly known as 500.com Limited, the company agreed to pay a $4 million civil penalty to resolve charges of violating FCPA provisions through a bribery scheme from 2017 to 2019. It influenced foreign officials, including members of Japan’s parliament, to establish an integrated resort casino in Japan. The scheme involved $2.5 million in cash bribes, entertainment, and trips authorized by a senior executive. BIT Mining also agreed to pay a $10 million criminal fine to DOJ, with $4 million credited to its SEC civil penalty payment. (11/18/24)
• RTX Corporation – Formerly Raytheon, RTX agreed to pay over $124 million in disgorgement, prejudgment interest, and civil penalties (offset by $22.5 million to DOJ) to resolve FCPA violations in Qatar. From 2015 to 2022, Raytheon obtained defense contracts by bribing Qatari military officials through sham subcontracts with suppliers. (10/16/24)
• Moog Inc. – The New York-based manufacturer of motion control systems agreed to pay over $1.5 million in disgorgement, prejudgment interest, and a civil penalty for FCPA violations involving its Indian subsidiary, Moog Motion Controls Private Limited. From 2020 to 2022, employees bribed Indian government officials to secure contracts, funneling bribes through third-party agents and distributors. (10/11/24)
• Deere & Company – Operating as John Deere, the company agreed to pay nearly $10 million in disgorgement, prejudgment interest, and a civil penalty for FCPA violations by its subsidiary, Wirtgen Thailand. From 2017 to 2020, Wirtgen Thailand employees bribed Thai officials and private company employees with cash, massage parlor visits, and international travel to secure contracts. (9/10/24)
• SAP SE – The company agreed to pay $98 million in disgorgement and prejudgment interest (offset by up to $59 million paid to South African authorities) to resolve FCPA violations. Through its subsidiaries, SAP employed intermediaries and consultants to bribe government officials to obtain business in South Africa, Malawi, Kenya, Tanzania, Ghana, Indonesia, and Azerbaijan. (1/10/24)

Bribery Violations/per violation

The following are basic guidelines. Supplementary penalties include: injunction of assets, forfeiture of associated profits, forfeiture of assets, and suspension (or in some instances a ban) from doing business with the government. Unlisted costs are reputational damage, effects on company and staff performance, and loss of future revenue.

• Enterprises – Criminal penalty of up to $2,000 
• Individual – Criminal penalty up to $250,00 and five years of imprisonment
• Enterprises and Individuals – Civil penalty up to $16,000 

Accounting Violations/per violation

• Enterprises – Criminal penalty of up to $25,000,000 
• Individuals – Criminal penalty of up to $5,000,000 plus up to 20 years imprisonment
• Enterprises – Civil penalty of up to $750,000 
• Individuals – Civil penalty of up to $150,000

Enhancing Compliance Through Robust Due Diligence

To safeguard against FCPA violations and other legal risks, companies need to implement a rigorous compliance program. This should include:

Regular Board and Executive Due Diligence: Routine investigations to assess potential risks at the highest levels of leadership.

Pre-M&A Due Diligence: Conduct thorough due diligence risk assessments before mergers and acquisitions to identify hidden liabilities.

Partner and Supply Chain Vetting: Extend due diligence investigations to vet external associates, supply chains, and business partners.

Tier III Due Diligence

When hiring abroad or acquiring foreign businesses, Tier III due diligence—conducted by specialized investigative firms—is essential. Unlike standard background checks, these investigations uncover hidden or undisclosed information, including:

• Relationships with foreign officials
• Criminal, financial, and civil litigation histories
• Reputation issues and ties to shell companies
• Evidence of fraud, money laundering, or conflicts of interest
• Indicators of anti-competitive behavior or human trafficking

Open Source Intelligence (OSINT) and publicly available records provide valuable insights, and cultural and regional nuances must also be considered. Practices that are socially acceptable—or even legal—in one jurisdiction may be unlawful in another. In some cases, on-the-ground intelligence through in-country investigations is critical.

Adherence to U.S. Laws

Even when operating internationally, companies with management or financial ties to the U.S. are accountable under the FCPA and related regulations.

Best Practices for Risk Mitigation

Preventative care and transparency are the cornerstones of effective risk management. Companies should:

• Establish ongoing FCPA compliance programs, designed with clear understanding of the company’s international risk exposure.
• Partner with external global security and risk management firms for comprehensive due diligence investigations at both individual and corporate levels.
• Conduct ongoing due diligence for all board members, executive hires, M&A activities, subcontractors, and partners.

By prioritizing high-quality, continuous due diligence, organizations can effectively identify international risks, and mitigate risks posed by bad actors, ensuring compliance and protecting their reputation.

These due diligence investigations must be of the highest quality to keep you, your board, your investors, and your business safe and mitigate risk.

Every business must prioritize preventative measures by partnering with a risk management firm that excels in due diligence investigations at both individual and corporate levels. A qualified firm should not only gather data, but possess the expertise necessary to interpret it effectively, with a reach that spans both national and global operations.  

Global risk intelligence provides companies with the best tools to effectively mitigate risk and build resiliency in the business’ infrastructure.

Companies often opt for the cheapest option or cut corners on compliance to reduce costs. However, this short-sighted approach exposes them to significant risks, including compliance failures, internal misconduct, security breaches, and violations of government regulations due to inadequate oversight. Additionally there is insufficient risk intelligence information that can be obtained this way which in turn leaves the company exposed to reactive response to threats but also fails to identify new business opportunities which may exist.

Overlooking the critical importance of investing in a robust compliance program is not just a gamble—it’s a recipe for disaster.

To evaluate your company’s risk profile and improve supply chain resiliency contact Infortal to find out more.