• 

Anti-Corruption Internal Controls

1. Overview of Anti-Corruption Internal Controls

Anti-Corruption Internal Controls are the policies, procedures, and operational mechanisms that organizations implement to prevent, detect, and mitigate bribery, fraud, and corruption. These controls are often mandated under:

Foreign Corrupt Practices Act (FCPA, US) – accounting provisions require internal controls to prevent bribery and ensure accurate financial reporting.

UK Bribery Act 2010 – mandates proportionate procedures to prevent bribery.

OECD Anti-Bribery Convention – recommends corporate internal control frameworks to prevent corruption.

Local anti-corruption regulations across jurisdictions.

Objectives of Internal Controls:

Prevent bribery and improper payments to public officials or private parties.

Ensure accurate financial reporting and accounting transparency.

Detect and remediate corruption risks before they result in regulatory violations.

Provide evidence of compliance programs to regulators in case of investigations.

2. Core Components of Anti-Corruption Internal Controls

3. Principles for Effective Anti-Corruption Controls

Risk-Based Approach: Focus controls on high-risk regions, transactions, and third-party relationships.

Integration into Business Processes: Embed controls in procurement, sales, finance, and contracting workflows.

Transparency & Documentation: Maintain auditable records to demonstrate compliance.

Independent Oversight: Compliance officers and auditors should have authority and direct reporting to senior management or the board.

Continuous Improvement: Update controls based on audit results, enforcement guidance, and regulatory developments.

4. Notable Case Laws Demonstrating Internal Control Requirements

Case 1: Siemens AG (US, 2008)

Issue: Widespread bribery through intermediaries across multiple jurisdictions.

Ruling: DOJ and SEC settlements mandated comprehensive internal controls, global compliance programs, and board-level oversight.

Significance: Set a global benchmark for internal control expectations in anti-corruption programs.

Case 2: BHP Billiton Ltd. (US, 2015)

Issue: Bribery to secure mining licenses abroad.

Ruling: Settlement emphasized the need for robust internal controls, risk assessments, and integration of compliance across subsidiaries.

Significance: Demonstrates internal control obligations in multinational operations.

Case 3: TechnipFMC (US & UK, 2019)

Issue: Payments to foreign officials via intermediaries.

Ruling: Required enhanced monitoring, internal audits, training, and controls over third-party relationships.

Significance: Highlights the importance of controls over agents and intermediaries.

Case 4: Och-Ziff Capital Management (US, 2016)

Issue: Bribes to officials in Africa and Asia to secure investments.

Ruling: DOJ settlement required comprehensive internal controls, due diligence, monitoring, and reporting mechanisms.

Significance: Demonstrates regulators’ focus on control systems for multi-jurisdictional operations.

Case 5: Walmart de Mexico (US & Mexico, 2012–2019)

Issue: Bribery to obtain local permits.

Ruling: Enforcement required company-wide integration of anti-corruption internal controls, monitoring, and risk-based approval processes.

Significance: Illustrates how internal controls extend to subsidiaries and cross-border operations.

Case 6: Halliburton/KBR Inc. (US, 2009)

Issue: Bribery of Nigerian officials via joint ventures.

Ruling: DOJ mandated implementation of internal controls, audits, and employee training to prevent corruption.

Significance: Emphasizes controls in joint ventures and indirect bribery scenarios.

Case 7: GlaxoSmithKline (US & China, 2014)

Issue: Kickbacks to healthcare professionals to boost product sales.

Ruling: DOJ required implementation of enhanced internal controls, compliance audits, and monitoring systems.

Significance: Shows importance of industry-specific internal control mechanisms in high-risk sectors.

5. Best Practices for Anti-Corruption Internal Controls

Design Risk-Based Controls: Focus on high-risk geographies, business units, and third parties.

Segregate Duties: Ensure no individual can authorize, execute, and record a transaction alone.

Implement Multi-Level Approvals: Require approvals for high-risk payments, gifts, and hospitality.

Maintain Transparent Records: Accurate accounting of all payments and interactions with officials.

Monitor Third-Party Relationships: Conduct periodic audits and due diligence for agents, distributors, and JV partners.

Provide Role-Based Training: Educate employees and management on detecting red flags and following procedures.

Enable Whistleblower Reporting: Establish confidential reporting mechanisms.

Audit and Continuously Improve: Periodic testing and remediation of control gaps based on audit findings and regulatory updates.

Summary:
Anti-Corruption Internal Controls are a cornerstone of effective compliance programs. Regulatory enforcement and case law demonstrate that robust, documented controls—covering approvals, financial transparency, third-party oversight, training, and monitoring—are essential to prevent bribery and mitigate corporate liability. Properly implemented internal controls also serve as evidence of good faith compliance in the event of investigations.

RELATED Blog

Corporate Law at Afghanistan

Corporate Law at Albania

Corporate Law at Algeria

Corporate Law at American Samoa (US)

Corporate Law at Bangladesh

Corporate Law at Andorra

Corporate Law at Angola

Corporate Law at Antigua and Barbuda

Corporate Law at Anguilla (BOT)

Corporate Law at Argentina