Skip to content.
Image of person discreetly trying to bribe someone

FCPA Compliance

The Foreign Corrupt Practices Act (FCPA) is a U.S. law which lays down provisions to stop business persons from making bribery payments to officials of foreign governments with the intent of securing business.

Woman working on laptop

Challenge of addressing FCPA Compliance

The U.S. Foreign Corrupt Practices Act (FCPA) aims to combat bribery and corruption. It establishes liability for corporations regarding bribery payments and third-party oversight. The U.S. Securities and Exchange Commission (SEC) and the U.S. Department of Justice (DOJ) both aggressively enforce the FCPA to encourage fair business practices on a global scale. The DOJ expects a risk-based compliance program that applies greater resources and due diligence for the areas at highest risk in your organization. In addition, senior management is expected to go beyond internal controls by creating a tone from the top that embeds a culture of FCPA compliance throughout the organization.

Man and woman working together on a board

Fines for FCPA violations frequently are in the hundreds of millions of dollars category with the heftiest fine nearing $1 billion. The company is not the only entity at stake when violating FCPA compliance. Individual employees across all levels of the organization can be hit with civil enforcement actions that can result in significant civil penalties as well as disgorgement of profits gained from corrupt practices. Since 1977, FCPA has been one of the most prominent anti-corruption acts facing organizations and continues to remain a significant concern to ethics and compliance programs globally.

What You Need to Comply with the Foreign Corrupt Practices Act

Code of Conduct & Compliance Policies

Policies regarding internal controls, auditing practices and documentation, anti-bribery measures must exist, along with the burden of proof that employees attested to key policies.

Confidential Reporting & Investigation

Employees and others should have a mechanism to report suspected or actual misconduct or violations of policies without fear of retaliation.

Effective Training on FCPA guidelines

Periodic training is necessary for all directors, officers, relevant employees, and agents/business partners in the local language.

Incentives & Disciplinary Measures

Appropriate disciplinary actions and modifications of internal controls need to be fairly and consistently applied to prevent misconduct.

Third-Party Due Diligence

A business rationale for using the third party, initial due-diligence and ongoing monitoring of third-party relationships should all be documented.

Continuous Improvement & Review

Benchmarks and internal measurements of compliance program effectiveness should be regularly reviewed to prove best practice intentions and results.

Steps You Can Take to Meet FCPA Compliance Requirements

Step 1

Make sure your policies and procedures create effective internal controls that guide employee behavior as well as create sufficient documentation of transactions.

Step 2

Offer multiple whistleblower reporting methods, including a compliance hotline to encourage employees to identify and report potential FCPA violations. Resolving violations internally can protect companies from significant financial and reputational damage.

Step 3

Train the right people on the anti-bribery and corruption practices to mitigate risks of non-compliance with applicable laws and regulations.

Step 4

Be the first to know when third-party or vendor behavior may put you at risk for FCPA violations. Automated, continuous third-party due diligence is critical.