FCPA Autumn Review 2018
- Corporate Enforcement Actions
- Beam Suntory Reaches Settlement with the SEC Over Payments by Indian Subsidiary
- Credit Suisse Settles with DOJ and SEC Over Improper Hiring Practices in Hong Kong
- Sanofi Settles with SEC Over FCPA Allegations in Kazakhstan and the Middle East
- United Technologies Corporation Settles FCPA Claims with SEC for $13.9 Million
- Petrobras Resolves Books-and-Records, Internal-Controls, and Related Charges with the DOJ, SEC in Connection with Illegal Payments to Petrobras Officials, Politicians, and Political Parties in Brazil
- Stryker Corporation Resolves Second Set of Internal-Controls and Books-and-Records Violations with the SEC
- Individual Enforcement Actions
- Ongoing Litigation
- International Developments
- Argentinian Officials Launch Investigation Based on "Bribery Notebooks" Kept by Former Government Chauffer
- Russian Government Enacts Rules Exempting Companies from Bribery Liability
- ING Settles Financial Economic Crimes Investigation with Dutch Prosecutors
- English Appellate Court Reverses Lower Court Opinion Regarding Attorney Client Privilege in Internal Investigations
- Miller & Chevalier Upcoming Speaking Events and Recent Publications
The third quarter of 2018 was a busy time for enforcement of the Foreign Corrupt Practices Act (FCPA), with enforcement actions against six companies, convictions of or settlements with four individuals, and the resolution by the U.S. Department of Justice (DOJ) and Securities and Exchange Commission (SEC) of ten known investigations without enforcement actions. The quarter also saw a key litigation development in the Second Circuit, potentially narrowing the extraterritorial application of the FCPA.
Three themes stand out from this flurry of activity: First, the SEC had a productive quarter, resolving six enforcement actions and re-emphasizing several of the common challenges that publicly traded companies – "issuers" under the FCPA – may face when seeking to comply with the law's accounting provisions. Second, both the DOJ and SEC continue to wrap up long-running FCPA investigations. Third, the DOJ and SEC continue to resolve a higher-than-average number of FCPA-related investigations without enforcement action, although often without officially "declining" to prosecute pursuant to the November 2017 FCPA Corporate Enforcement Policy. Each of these themes is discussed in greater detail below.
Corporate Enforcement Actions
FCPA corporate enforcement in the third quarter of 2018 was driven by the SEC, which issued a total of six Cease-and-Desist Orders during the period. Much of the conduct covered by these Orders occurred several years ago, in some cases ending in 2012, 2013, or 2014. This suggests that the SEC may be following a trend we have seen over the past year in the DOJ's enforcement of the FCPA – wrapping up long-running, multi-year investigations, potentially freeing up resources for new investigations in the future.
At the same time, all six of this quarter's SEC corporate enforcement actions re-emphasize some of the perennial challenges that FCPA issuers must keep in mind with regard to the law's books-and-records and internal-controls provisions, which require issuers to properly implement accounting controls that, in part, deter foreign bribery. For example, the Stryker Corp. settlement highlights the challenges of ensuring that employees at foreign subsidiaries submit appropriate supporting documentation for transactions and expenses; the Sanofi S.A. and Beam Suntory, Inc. settlements emphasize the importance of ensuring that supporting documentation is in fact legitimate, especially with regard to third party vendors; and the United Technology Corporation (UTC) settlement demonstrates how even well-designed gifts, travel, and entertainment policies and procedures can fail if company personnel fail to follow them. (Each of these settlements and others are summarized below in the Introduction to this FCPA Autumn Review 2018 and discussed in detail in sections on each case.)
The third quarter of 2018 saw activity on the DOJ side as well. Specifically, the DOJ executed two Non-Prosecution Agreements (NPAs), one with the Brazilian national oil company Petróleo Brasileiro S.A. – commonly known as "Petrobras" – and one with Credit Suisse (Hong Kong) Limited, the Hong Kong affiliate of the Swiss investment bank Credit Suisse Group AG. Both NPAs cover conduct that also gave rise to separate Cease-and-Desist Orders from the SEC. The Petrobras settlement is particularly notable as part of the third largest global settlement in anti-corruption history – with a total of $1.7 billion in penalties split between U.S. and Brazilian authorities.
Summaries of this quarter's corporate enforcement actions by the SEC and DOJ are set forth below:
- Beam Suntory, Inc.: On July 2, 2018, the SEC announced a Cease-and-Desist Order for Beam Suntory, Inc. (Beam), a Chicago, Illinois-based producer of several well-known brands of distilled spirits, including the Kentucky bourbons Jim Beam and Maker's Mark, the single-malt Scotches Laphroaig and Auchentoshan, the French cognac Courvoisier, and the Japanese whisky Hibiki. According to the SEC, from 2006 to 2012, employees at Beam's subsidiary in India used fabricated and inflated invoices to reimburse third-party sales promoters and distributors, with the understanding that these illicit payments would be passed on to employees at government-controlled Indian alcohol depots and retail stores to increase sales orders, get better positioning on store shelves, and facilitate distribution of Beam products. Beam India employees recorded these payments as legitimate expenses. Based on this alleged misconduct, the SEC charged Beam with failing to maintain accurate books and records and failing to maintain a sufficient system of internal accounting controls, both in violation of the FCPA. Beam agreed to pay a total of approximately $8 million to resolve these charges. Beam's SEC settlement echoes that of the London-based distilled spirits producer Diageo plc in 2011, which also included alleged misconduct related to inflated commission payments to distributors and sales agents in India. We provide details and analysis of the Beam settlement below.
- Credit Suisse Group AG and Credit Suisse (Hong Kong) Limited: On July 5, 2018, the SEC announced a Cease-and-Desist Order for the Zurich, Switzerland-based investment bank and financial services company Credit Suisse Group AG (CASG). The same day, the DOJ announced an NPA with CASG's Hong Kong subsidiary Credit Suisse (Hong Kong) Limited (CSHK). The charges against CASG and CSHK arose out of CSHK's hiring program in the Asia Pacific region from 2007 to 2013, which allegedly gave preferential treatment to family members of government officials at state-owned entities (SOEs) for employment opportunities or internships, at a time when such SOEs were clients of CSHK. According to the SEC, this hiring practice demonstrated that CASG's internal accounting controls "were insufficiently devised or maintained to reasonably enforce" the bank's policy against such relationship-based hires. According to the DOJ, these "relationship hires" or "referral hires" were part of a quid pro quo with SOE officials to win business. CASG and CHSK agreed to pay a total of $76 million to resolve these FCPA charges. The Swiss investment bank's settlement is similar to the New York-based investment bank JP Morgan's settlement with the DOJ and SEC in 2016 arising out of a similar "Sons and Daughters Program" in the Asia Pacific region. We provide details and analysis of the CASG and CSHK settlements below.
- Sanofi S.A.: On September 4, 2018, the SEC announced a Cease-and-Desist Order for the Paris, France-based pharmaceutical company Sanofi S.A. (Sanofi). From 2011 to 2015, employees and agents at Sanofi subsidiaries in Kazakhstan, the Levant (Jordan, Lebanon, Syria, and Palestine), and the Gulf (Bahrain, Kuwait, Qatar, Yemen, Oman, and the United Arab Emirates) allegedly made improper payments to healthcare professionals in order to be awarded public tenders and increase prescriptions of Sanofi products. According to the SEC, the funds used for these improper payments were generated through fake documentation for purportedly legitimate travel and entertainment expenses, clinical trial and consulting fees, product samples, round table meeting expenses, distributor discounts, and credit notes to distributors – all of which were recorded as legitimate expenses in Sanofi's books and records. Based on this alleged misconduct, the SEC found that Sanofi failed to devise and maintain a sufficient system of internal accounting controls for its subsidiaries in Kazakhstan, the Levant, and the Gulf. Sanofi agreed to pay more than $25 million to resolve charges arising out of the alleged misconduct. Previously, in March 2018, Sanofi had separately disclosed in its SEC filings that the DOJ closed a four-year investigation into the company without criminal enforcement action. We provide details and analysis of the Sanofi settlement below.
- United Technologies Corporation: On September 12, 2018, the SEC announced a Cease-and-Desist Order for the Farmington, Connecticut-based technology conglomerate UTC. The allegations in the SEC Order arise out of a range of alleged misconduct across the company's subsidiaries business units. For example, from 2012 to 2014, UTC's wholly-owned subsidiary Otis Elevator Company (Otis) allegedly executed contracts for the sale of elevator equipment with sham subcontractors and intermediaries with the understanding that the equipment would subsequently be sold to Azerbaijan public housing authorities at inflated prices, thereby creating a pool of money for kickbacks to government officials. Similarly, from 2006 to 2013, UTC's affiliates Pratt & Whitney and International Aero Engines allegedly engaged a sales agent for the sale of airplane engines in China, conducted no due diligence on the sales agent, and agreed to pay him a "success fee commission" of between 1.75 percent to 4 percent of sales to Chinese state-owned airlines, which created a pool of money that could be used for bribes to government officials. Finally, UTC employees reportedly funded leisure travel and entertainment for foreign officials from several countries – including China, Kuwait, South Korea, Pakistan, Thailand, and Indonesia – often by misleading the Legal Department, which was required by company policy to review all such travel. UTC agreed to pay a total of $13.9 million to resolve alleged anti-bribery, books-and-records, and internal-controls FCPA violations. We provide details and analysis of the UTC settlement below.
- Petrobras: On September 27, 2018, the Brazilian national oil company Petrobras reached settlements with the DOJ and SEC to resolve FCPA accounting charges arising out of its role at the center of the Operation Car Wash scandal in Brazil. Operation Car Wash has already resulted in several massive global corruption settlements, including the $3.7 billion global Odebrecht/Braskem settlement, the $422 million Keppel Offshore global settlement, a portion of the SBM Offshore $825 million global settlement, and a portion of the $816 million Rolls-Royce global settlement. Petrobras executives allegedly awarded inflated contracts to engineering and oilfield services companies in exchange for bribes that they shared with Brazil's political elite, including two former presidents, dozens of former senators and federal deputies, and other governors, mayors, and cabinet officials. Under the resolutions, Petrobras itself will be held liable for failing to maintain adequate books and records and sufficient internal controls. Altogether, Petrobras will pay up to $1.7 billion to settle U.S. and Brazilian charges. We provide details and analysis of the Petrobras settlements below.
- Stryker Corp.: On September 28, 2018, the SEC announced a Cease-and-Desist Order for Stryker Corp. (Stryker), a Kalamazoo, Michigan-based medical device company. According to the SEC, at the time of the alleged misconduct, Stryker had implemented policies requiring its foreign subsidiaries to properly document transactions; execute written agreements with distributors and sub-distributors that included anti-corruption provisions and audit rights; conduct due diligence on distributors and sub-distributors prior to approval; and provide anti-corruption training to distributors and sub-distributors. However, Stryker allegedly failed to follow these policies in India, China, and Kuwait at various times between 2010 and 2017, resulting in books-and-records and internal-controls violations. For example, Stryker's subsidiary in India allegedly failed to keep and maintain any documentation for up to a quarter of transactions tested in an internal forensic review from 2010 to 2015, during which time certain Stryker India dealers "regularly" issued inflated invoices upon the request of certain private hospitals. Similarly, from 2015 to 2017, several Chinese sub-distributors allegedly did not undergo the due diligence required by company policy, a fact that Chinese employees hid from Stryker management by falsifying certain internal records. Stryker agreed to pay a total of $7.8 million to settle FCPA books-and-records and internal-controls charges. The company previously settled with the SEC in 2014 for FCPA allegations in connection with its business in Mexico, Poland, Romania, Argentina, and Greece. We provide details and analysis of the Stryker settlement below.
Individual Enforcement Actions
The third quarter of 2018 was also relatively active in terms of individual enforcement actions, with the DOJ and SEC each securing two individual enforcement actions apiece. The DOJ obtained the convictions of Luis Carlos De Leon Perez and Juan Carlos Castillo Rincon, both of whom pled guilty to one count of conspiracy to violate the FCPA anti-bribery provisions for their role in an alleged corruption scheme at Venezuela's state-owned and state-controlled energy company, Petroleos de Venezuela S.A. (PdVSA). The SEC also issued Cease-and-Desist Orders to JooHyun "Dennis" Bahn – who has previously pled guilty for his role in the fraudulent Landmark 72 skyscraper deal described below – and Patricio Contesse González – the former CEO of the Chilean mining company Sociedad Química y Minera de Chile, S.A. (SQM), which reached its FCPA-related settlements of its own with the DOJ and SEC in January 2017.
Despite the third quarter's enforcement actions, 2018 as a whole thus far has lagged in terms of individual enforcement actions, with only four DOJ convictions and two SEC individual enforcement actions all year. Notably, unless the DOJ increases individual enforcement actions in the fourth quarter of the year, 2018 may buck a trend we have seen since 2014 of year-on-year increases of criminal charges against individuals.
The reasons for the 2018 lag in individual enforcement actions and charges is unclear. The previous increase in DOJ individual enforcement actions from 2015 to 2017 likely was attributable to the agency's prioritization of enforcement against responsible individuals – rather than companies – as set forth in the 2015 internal DOJ "Yates Memorandum" and the 2017 FCPA Corporate Enforcement Policy, which conditions a company's declination from prosecution on disclosure of "all relevant facts" about individuals involved in misconduct. The Corporate Enforcement Policy is still in effect, so that emphasis has not changed. Other factors tied to specific cases, some of which may be outside of the DOJ's direct control, could be in play.
Summaries of this quarter's individual enforcement actions by the SEC and DOJ are set forth below:
- Luis Carlos De Leon Perez: On July 16, 2018, former Venezuelan government official Luis Carlos De Leon Perez (De Leon) pled guilty to one count of conspiracy to violate the FCPA and one count of conspiracy to commit money laundering. Specifically, De Leon admitted that he had used his connections as a former government official to solicit and direct bribes and kickbacks from vendors to officials with the Venezuelan state-owned oil company PdVSA between 2011 and 2013 in order to assist the vendors in obtaining PdVSA business, and then conspired with the vendors to launder the proceeds from the bribery scheme. De Leon was arrested in Spain in October 2017 and subsequently extradited to the United States.
- JooHyun "Dennis" Bahn: On September 6, 2018, former New Jersey real estate broker JooHyun "Dennis" Bahn consented to an SEC Cease-and-Desist Order to settle civil books-and-records and internal-controls charges of the FCPA. Bahn's charges arise out of the Landmark 72 corruption scheme, under which Bahn and others at a U.S.-listed global commercial real estate firm allegedly paid $500,000 to a fraudster claiming he would pass a portion of the funds on to a government official from an unnamed Middle Eastern country. Bahn and others allegedly hoped that the payment would induce the unnamed Middle Eastern country's sovereign wealth fund to purchase the Landmark 72 skyscraper in Vietnam, in which Bahn's brokerage firm had a property interest, although the fraudster in actuality had no intention of passing on any funds to any official. Bahn previously pled guilty to criminal FCPA charges arising out of this misconduct, as discussed in our FCPA Spring Review 2018. The civil accounting charges resolved in September 2018 arise out of allegations that Bahn also circumvented the brokerage firm's internal accounting controls, fabricated documents, created fictitious email messages, and lied to company executives, all in furtherance of the $500,000 payment. As part of the settlement with the SEC, Bahn must pay a total of $225,000 in disgorgement. The same day as the SEC Order, Bahn was sentenced to six months in prison for the criminal FCPA charges to which he pled guilty.
- Juan Carlos Castillo Rincon: On September 13, 2018, former U.S. businessman Juan Carlos Castillo Rincon (Castillo) pled guilty to one count of conspiracy to violate the FCPA. From 2011 to 2013, Castillo had served as a manager at a Houston-based logistics and freight forwarding company. During this time, according to Castillo's plea agreement, he conspired with others to bribe a PdVSA official in exchange for assistance in obtaining PdVSA contracts on favorable terms for Castillo's company, as well as inside information about PdVSA's bidding process. Castillo is one of several U.S.-based businessmen who have faced FCPA liability in connection with their work for PdVSA.
- Patricio Contesse González: On September 25, 2018, Patricio Contesse González (Contesse), the former CEO of SQM, consented to an SEC Cease-and-Desist Order to settle civil FCPA charges arising out of his role in causing the Chilean mining company to violate the FCPA, which resulted in settlements with the DOJ and SEC in January 2017. According to the facts alleged by the SEC, from 2008 to 2015, SQM provided discretionary funding to Contesse as CEO for, among other things, travel, publicity, and advisory services. Contesse allegedly used these funds to make payments worth a total of $14.75 million to officials and their relatives from the Chilean government and a Chilean political party, typically through third-party vendors. Based on his role in the scheme, the SEC alleged that Contesse had caused his employer SQM to violate the FCPA's books-and-records and internal-accounting-controls provisions, as well as himself circumventing SQM's internal accounting controls, falsifying SQM's books and records, and misleading the company's accountants. Under the terms of the Order, Contesse must pay a civil penalty of $125,000.
Lastly, the third quarter of 2018 also saw the sentencing of Anthony "Tony" Mace and Robert Zubiate. Both men are former executives at the Dutch offshore oil and gas company SBM Offshore, N.V. (SBM Offshore) and its U.S. subsidiary SBM Offshore USA (SBM USA): Mace previously served as CEO of SBM Offshore and a board member of SBM USA, while Zubiate served as a sales executive at SBM USA. As reported in our FCPA Winter Review 2018, Mace and Zubiate previously pled guilty to FCPA-related charges for their roles in a multi-year scheme to bribe officials at state-owned oil companies Brazil, Angola, and Equatorial Guinea in exchange for assistance in obtaining offshore oil and gas contracts. On September 28, 2018, Mace was sentenced to serve 36 months in prison and ordered to pay a fine of $150,000. The same day, Zubiate was sentenced to serve 30 months in prison and ordered to pay a fine of $50,000.
Investigations Ended Without Enforcement Action
As in past quarters, throughout the third quarter of 2018 Miller & Chevalier has tracked investigations closed without enforcement action, i.e., investigations that the DOJ and SEC have launched but then resolved without a Deferred Prosecution Agreement (DPA), NPA, Cease-and-Desist Order, guilty plea, or other conviction. In July, August, and September of 2018, we tracked ten such investigations closed without enforcement action, including six by the DOJ and four by the SEC – a number significantly above the average over the last ten years, continuing 2018's overall trend in that direction.
Most notably, the third quarter of 2018 saw the second and third official "declinations" under the DOJ's relatively new FCPA Corporate Enforcement Policy. Announced in November 2017, the FCPA Corporate Enforcement Policy offers companies a "presumption" of a declination from prosecution for (1) voluntarily self-disclosing FCPA-related misconduct; (2) fully cooperating with the DOJ in any subsequent investigation; and (3) implementing timely and appropriate remediation. However, the DOJ has thus far only granted declinations under the Policy to three companies: the global intelligence provider Dun & Bradstreet in April 2018, and, this quarter, the Insurance Corporation of Barbados Ltd and Guralp Systems Ltd.:
- Guralp Systems Limited: On August 20, 3018, the DOJ released a letter informing the U.K.-based seismic testing equipment company Guralp Systems Limited (Guralp) that the DOJ had closed an inquiry into possible FCPA and related anti-money laundering violations by the company. According to the DOJ letter, potential FPCA violations may have occurred due to improper payments allegedly made to the director of the Earthquake Research Center at the Korea Institute of Geoscience and Mineral Resources. Nevertheless, based on the FCPA Corporate Enforcement Policy, the DOJ officially declined to prosecute Guralp, noting the company's voluntary self-disclosure, cooperation with the DOJ, and significant remediation efforts, as well as Guralp's cooperation with an ongoing parallel investigation by the U.K. Serious Fraud Office (SFO) allegedly arising out of the same conduct.
- Insurance Corporation of Barbados Ltd: On August 23, 2018, the DOJ released a letter informing the Insurance Corporation of Barbados Ltd (ICBL) that the DOJ had closed its inquiry into possible FCPA violations by the company. Notably, the DOJ letter alleged that ICBL employees and agents had paid approximately $36,000 in bribes to a Barbadian government official in exchange for the government's purchase of two insurance policies. ICBL allegedly collected approximately $686,827.50 in premiums on these policies, earning $93,940 in profits. Despite these allegations, the DOJ officially declined to prosecute the ICBL, noting that the company had satisfied the requirements of the FCPA Corporate Enforcement Policy by voluntarily self-disclosing, cooperating in the DOJ's subsequent investigation, and taking sufficient remediation steps. In addition, the DOJ noted the company's agreement to disgorge the $93,940 in profits from the contracts as issue and "the fact that the [DOJ] has been able to identify and charge the culpable individuals."
Besides the two formal declinations under the FCPA Corporate Enforcement Policy, we tracked eight investigations into six companies by the DOJ and SEC, all officially closed without enforcement action in the third quarter of 2018. These six companies are:
- Hertz Global Holdings: On August 6, 2018, Hertz Global Holdings – the parent company of Estero, Florida-based car rental company The Hertz Corporation – disclosed in a Form 10-Q filed with the SEC that the DOJ and SEC had resolved investigations following the company's self-disclosure of "certain activities in Brazil that raised issues under the Foreign Corrupt Practices Act ('FCPA')."
- Centrais Elétricas Brasileiras S/A: On August 14, 2018, the Rio de Janeiro, Brazil-based electrical utilities company Centrais Elétricas Brasileiras S/A (Eletrobras) disclosed in a Form 6-K filed with the SEC that it had received notice from the DOJ that the agency had elected not to prosecute the company for FCPA-related issues. Although Eletrobras did not clarify the nature of the FCPA-related issues, the company did note that it was continuing to negotiate a related resolution with the SEC.
- Sinovac Biotech Ltd.: On August 20, 2018, the Beijing, China-based vaccine and biopharmaceutical company Sinovac Biotech Ltd. (Sinovac) disclosed in a Form 6-K that the SEC had concluded its investigation into "possible violations of the federal securities laws related to allegations that certain Sinovac employees made improper payments to Chinese government officials," and determined that it would not recommend or pursue an enforcement action. Approximately one month later, on September 17, 2018, Sinovac disclosed in another Form 6-K that the DOJ had similarly closed its investigation into possible FCPA charges without enforcement.
- Ensco plc: On September 4, 2018, the London, U.K.-based offshore drilling contractor Ensco plc (Ensco) disclosed in a Form 8-K that both the DOJ and SEC had informed the company that they had ended investigations into a 2008 drilling services agreement between Pride International LLC (subsequently acquired by Ensco) and Petrobras, the Brazilian national oil company at the center of the Operation Car Wash scandal.
- ING Groep N.V.: On September 5, 2018, Amsterdam, Netherlands-based banking and financial services company ING Groep N.V. (ING) disclosed in a Form 6-K that it had received a formal notification from the SEC that the agency had closed its investigation into alleged misconduct in connection with corruption and money-laundering in Uzbekistan. As discussed in the international developments sections below, ING settled separately with Dutch authorities for their investigation arising out of similar alleged misconduct.
Miller & Chevalier's tracking of such investigations relies on public statements by companies, statements by the DOJ or SEC, or companies' disclosure of such investigations in their securities filings. As such, our tracking is necessarily incomplete, because some companies may elect never to make public either the launch of a DOJ or SEC investigation or its resolution without enforcement action. Nevertheless, tracking investigations closed without enforcement provides a useful data point for assessing the enforcement climate.
Policy and Litigation Developments
In August 2018, the Second Circuit published an opinion in United States v. Hoskins, affirming the dismissal of FCPA charges against a British national and thereby potentially narrowing the jurisdictional scope of the FCPA in certain circumstances. Specifically, the Second Circuit rejected the DOJ's theory that the defendant Hoskins could be held criminally liable for conspiring to violate or aiding and abetting a violation of the FCPA when he could not be held criminally liable for actually violating the FCPA due to his lack of jurisdictional nexus to the United States. It remains to be seen whether other circuits will adopt the interpretation of the FCPA upon which the Second Circuit's opinion relies. Furthermore, the SEC lifted its stay on administrative proceedings following the Supreme Court's decision in Lucia holding the agency's process for appointing Administrative Law Judges (ALJs) unconstitutional. Both the Hoskins opinion and the end of the Lucia stay are discussed in greater detail below.
In addition, on October 11, 2018, Assistant Attorney General for the DOJ Criminal Division Brian Benczkowski announced the publication of a new internal DOJ policy on corporate monitors. We will provide a more detailed analysis of the new DOJ monitor policy in our upcoming FCPA Winter Review 2019. For now, we note that that the new policy appears to formalize many of the DOJ's long-standing practices – most notably the evaluation of the appropriateness of a monitor based on a number of factors, such as the company's corporate compliance program at the time of a resolution, the financial costs of a monitor to the company, and any unnecessary burdens to the company's operations.
Lastly, the third quarter of 2018 saw several developments in anti-corruption law outside the United States. The Dutch companies SBM Offshore and ING resolved anti-corruption charges against them in Brazil and the Netherlands, respectively, for their roles in ongoing global corruption scandals. Media in Argentina reported that a former government driver meticulously recorded trips from 2003 to 2015 when he delivered bags of cash to dozens of powerful Argentine government officials from businessmen who had been awarded government contracts. The driver recorded his trips in spiral-bound notebooks – giving rise to the Spanish name for the scandal, i.e., "Los Cuadernos de las Coimas" ("Notebook of Bribes") – which are now at the center of an investigation into dozens of officials, including those close to former Argentinian Presidents Néstor Kirchner and Cristina Fernández de Kirchner.
The Russian Federation amended its Administrative Code to allow leniency for companies that assist officials in uncovering corruption violations – adopting an anti-corruption strategy that many other countries around the world have implemented. Finally, an appellate court in the United Kingdom overturned a previous lower court decision in the ongoing Eurasian Natural Resources Corporation Ltd. litigation, thereby strengthening the U.K. attorney-client privilege as applied to internal investigations.
The ING settlement in the Netherlands, the developing Argentinean bribery scandal, the Russian Federation's new corruption laws, and the U.K. litigation concerning attorney-client privilege are all discussed in greater detail below.
On July 2, 2018, the SEC announced that Beam Inc., n/k/a/ Beam Suntory, Inc. (Beam), a Chicago-based global maker of spirits and other alcoholic beverages, had agreed to a settlement to resolve allegations that it violated the FCPA's books-and-records and internal-controls provisions. The alleged misconduct centers on the operations of Beam's Indian subsidiary Beam Global Spirits & Wine (India) Private Limited (Beam India) between 2006 and 2012. Beam acquired Beam India in 2006, consolidating Beam India's books and records into its own. At the time, Beam had securities listed on the New York Stock Exchange (NYSE) and was therefore an "issuer" under the FCPA, although it delisted from NYSE after its April 2014 acquisition by Suntory Holdings Limited (Suntory), a Japanese food and beverage conglomerate. As part of the settlement, Beam agreed to pay disgorgement of $5,264,340, prejudgment interest of $917,498, and a civil penalty of $2 million.
According to the SEC's Cease-and-Desist Order (Order), Beam India, with the help of various third parties, made improper payments to a host of Indian government officials to secure product orders, get better placement of its products in government-controlled stores, and obtain required label and license registrations. The SEC alleged that Beam India executives were aware of and directed schemes that involved various third-party distributors, sales promoters, and other affiliates making the payments to officials. The SEC Order details that Beam India generated funds for the improper payments by knowingly paying inflated or false invoices from third parties, with some of the improper payments tracked in off-the-books accounts maintained by Beam India finance executives. According to the SEC, Beam India inaccurately recorded the payments in its books and records, with some then consolidated in Beam's books and records.
India's Alcohol Market
The alcohol market in India is highly regulated, with importation, shipping, manufacturing, warehousing, labeling, and sale to retail stores all subject to government regulations. The Indian alcohol market presents additional regulatory complexity in that each state may have its own laws or regulations relating to various aspects of the industry. During the time period at issue, Beam India sold its products or had warehouses in 26 Indian states and therefore had interactions with a large number of government officials, with its distributors, promoters, bottlers, and other third-party representatives similarly engaged in a significant number of interactions with a wide variety of officials.
The SEC's allegations of improper payments largely fall into two categories, with both spanning the entire time period from 2006 to the third quarter of 2012. The first category involved Beam India's sale and marketing of products in six markets where both the distribution and retail sale of alcoholic products were subject to government regulation. In these markets, according to the Order, Beam India's third-party promoters directed payments to government officials at retail stores and depots to secure orders and to obtain prominent placement of Beam products in retail stores. The SEC alleged that Beam India's management knew of or authorized the improper payments, and was complicit in generating funds for the payments by accepting for payment promoters' inflated invoices. The Order further claims that some Beam India finance executives maintained a second set of financial records that tracked these payments in some detail. The improper payments were allegedly falsely described in Beam India's books and records as legitimate business expenses, such as customer support, promotional expenses, or distributor commissions, and ultimately consolidated in Beam's general ledger as "Selling and Distribution Expenses."
The second type of improper payments described in the Order concerned improper payments to Indian excise officials. These payments related to inspections of a manufacturing facility, label registrations required for the distribution of Beam products to certain states, and warehouse licenses. One example highlighted by the SEC concerns a label registration for a new product Beam India sought to introduce in 2011. Beam India's third-party bottling facility was unable to obtain label registrations necessary to operate the facility until a meeting with a senior excise official, who sought a payment of one million Rupees or approximately $18,000 to approve the registration. According to the Order, the bottler requested that Beam India fund the improper payment, with Australia-based regional management of Beam India approving the payment and devising a scheme for the bottler to submit false invoices to be reimbursed for the payment. Beam India consequently paid two invoices from the bottler for consulting services approximately equal to the bribe amount.
The SEC claimed that Beam missed several opportunities to timely remediate the compliance and internal-controls deficiencies underlying the alleged improper payments. The Order notes that Beam engaged a global accounting firm to conduct a compliance review of Beam India in 2010, which found that Beam India's promoters were "likely making grease payments" to government officials and recommended specific follow-up steps, including due diligence to confirm third-party activities on Beam India's behalf. According to the Order, upon a consultation with a U.S. law firm with FCPA expertise, Beam retained an Indian law firm to review and expand the compliance review. The Indian law firm apparently confirmed many of the accounting firm's recommendations, and further noted "that Beam India managers believed that third parties in India may make payments and/or provide gifts to customs officials and government employees" affiliated with the Indian military's Canteen Stores Department (CSD).
The Order notes that around this time, Beam's U.S. law firm informed the company's general counsel's office of SEC's July 2011 FCPA settlement with Beam's direct competitor in the Indian market Diageo plc. The SEC's allegations against Diageo included claims that its subsidiary Diageo India Pvt. Ltd. engaged third-party distributors and sales promoters in India who made illicit payments of approximately $1.7 million to hundreds of Indian officials, including employees of government liquor stores and military canteens, and excise tax and other government administrators, in exchange for increased sales orders, in-store product placement and promotion, label registrations, import permits, and other administrative approvals. According to the Order, the Diageo enforcement action led to a Beam in-house lawyer traveling to India to make further inquiries and conduct additional FCPA training; the lawyer revised Beam India's agreements with certain third parties and used them as templates for other similar agreements.
According to the Order, Beam's U.S. law firm reviewed the work of the Indian firm in August 2011 and found that it lacked an analysis of Beam India's books and records, internal controls or other issues related to its finance and accounting practices, that it did not include sufficient transactional testing, and that it raised issues concerning the conduct and oversight of third parties. The Order highlights Beam's failure to act upon the law firm's recommendation of a financial review, including the engagement of outside forensic specialists, as well as its failure to act upon the accounting firm's earlier recommendation of additional due diligence relating to third parties. Beam allegedly also rejected the Indian law firm's recommendation of interviewing certain local operational employees, apparently out of a concern that the Indian law firm would not assess potential FCPA issues in the same manner as Beam's in-house lawyers would.
The Order further identifies a November 2011 report by a former Beam India employee that a company manager utilized false third-party invoices to generate apparent cash kickbacks, with a subsequent review finding that the cash was in fact used to make payments of $25,000 to government officials in connection with label registration. Despite these findings, Beam did not expand the review to other third parties or other markets in India. According to the Order, a subsequent July 2012 report of similar issues by another former employee led to a broader internal investigation beginning in September 2012, which uncovered the broader corruption schemes involving Beam India management and third parties, including the second set of financial records.
Acknowledgment of Self-disclosure, Cooperation, and Remedial Efforts
In parallel with highlighting Beam's remediation failures before September 2012, the Order acknowledges Beam's voluntary disclosure and its cooperation, such as sharing and summarizing factual findings from its internal investigation, voluntarily producing documents and translating key documents, providing reports on witness interviews, and making current and former employees available to SEC staff. The Order also notes the scope of Beam's remedial actions, which included cessation of business operations at Beam India until Beam was satisfied it could operate Beam India compliantly, terminating certain employees and third parties, enhancing its anti-corruption policies and procedures, including the development and implementation of FCPA compliance procedures related to the issues identified it the investigation, enhancing internal controls and compliance functions, and conducting extensive anti-corruption training throughout the company. In parallel with Beam's self-disclosure to the SEC, the company also disclosed to the DOJ, although the outcome of any resulting DOJ investigation is not yet public.
- Relevance of Kokesh and the five-year statute of limitations: After the Supreme Court's June 2017 decision in Kokesh v. SEC, which we discuss in our FCPA Summer Review 2017, SEC's disgorgement claims constitute a "penalty" under federal law and are therefore subject to a five-year statute of limitations under 28 U.S.C. § 2462, the same statute of limitations that applies to the SEC's imposition of civil penalties. The SEC's enforcement action against Beam was initiated, for statute of limitations purposes, on July 2, 2018. The conduct at issue, however, took place from 2006 through 2012, and was therefore entirely outside the five-year limitations period. Given the SEC's imposition of both disgorgement and civil penalty here, the company had probably entered into a tolling agreement with the SEC or waived the limitations period. Given the company's voluntary disclosure to the DOJ and SEC at least as far back as February 2013, Beam's apparent waiver of the limitations issue likely predated the Kokesh decision and was consistent with its cooperative posture. With the new check on the SEC's ability to obtain disgorgement relating to older conduct under Kokesh, companies and individuals currently under the SEC's scrutiny should be more strategic in responding to a potential SEC request for a waiver if any of the conduct at issue falls outside the five-year limitations period.
- Risks in a highly-regulated industry in India: The allegations recited in the Order highlight the risks of working in an Indian industry subject to significant regulatory control and that involves frequent interaction with local regulators. Diageo's settlement with the SEC, noted above, similarly involved allegations that a local subsidiary made payments to government officials through inflated commission payments to third-party distributors who passed on the extra funds to the officials. AB InBev's September 2016 settlement with the SEC likewise involved payments to Indian officials via two third-party sales promoters and a local JV that the company was a partner in, with the local subsidiary funding the payments via inflated commissions and reimbursements and recording the expenses as legitimate promotional costs. The circumstances described in each of these administrative orders provide helpful information for crafting India-specific compliance processes and internal controls, such as a particular emphasis on government inspections, licensing, and permitting, and direct and indirect interactions with the relevant regulators; targeted or more frequent internal audits with a focus on third parties; and deeper due diligence on local third parties and their activities. The involvement or complicity of local employees and management in each of these scenarios likewise suggests that certain business transactions and compliance procedures may require a different level of documentation or approval approach than they might in other jurisdictions.
On July 5, 2018, Credit Suisse (Hong Kong) Limited (CSHK), a wholly-owned subsidiary of financial services company Credit Suisse AG (CSAG), entered into a three-year NPA with the DOJ and agreed to pay $47 million in criminal penalties in relation to its improper hiring practices. On the same day, the SEC issued a Cease-and-Desist Order (SEC Order) against CSAG, in which the company agreed to pay $29.8 million in disgorgement and prejudgment interest for violations of the anti-bribery and internal accounting controls provisions of the FCPA. The total amount of penalties imposed by the two agencies was approximately $76.8 million.
The public documents state that CSAG senior managers in the Asia-Pacific (APAC) area of the company allegedly developed a practice to hire candidates referred from employees of state-owned enterprises (SOEs) and government ministries despite knowing that such hires violated CSAG's compliance policies. From 2007 to 2013, CSAG senior managers in APAC allegedly provided the relatives of government officials and employees of SOEs with internships and paid positions in order to win business from the referral sources. The SEC Order alleges that CSAG ultimately derived over $46 million in revenue from the Chinese SOEs whose executives referred candidates hired by CSAG or over which government officials who referred candidates had influence.
According to the SEC Order and the NPA, during the relevant timeframe, CSAG had in place an anti-bribery policy that prohibited "employment, including internships, to Government Officials, their family members, or associates" if offered in order to obtain or retain business. The policy's definition of "Government Officials" included SOE personnel. The SEC Order describes the CSAG's Legal and Compliance Department (LCD) advising managers in APAC not to hire candidates in APAC and Hong Kong referred by SOE clients, determining that such hires could violate the FCPA and were "too great a risk." Despite LCD's advice, senior CSHK managers and CSAG managers in APAC allegedly took steps to onboard referral hires outside of the company's established recruiting program. CSAG managers in APAC allegedly instructed subordinates to take measures to give the appearance that they were following the normal hiring process, including drafting resumes for a referral hire or artificially inflating ratings on hiring forms.
According to the SEC Order, correspondence between senior CSAG managers in APAC highlighted the potential business deals that candidates could bring and their close relationships with senior management at SOEs. According to the NPA, one employee explained, "relationship hires have to translate to $" or "the relationship is worthless to our organization." CSAG allegedly maintained spreadsheets of referral hires that included information identifying the referring client or relationship with regulators. Some spreadsheets allegedly identified specific deals that could come from the relevant hire.
According to the NPA, CSAG referral hires were less qualified, had less relevant experience, and lacked technical skills in comparison with candidates hired through CSAG's normal employment channels. In fact, CSAG bankers in the U.S. allegedly complained about the poor quality of referral hires, with one senior banker writing "we have had really bad experiences with many of the individuals from Asia . . . [a particular Credit Suisse HK senior manager] generates most of them and there is enough frustration in the system over this at this point that I wanted to check in with you for a sanity check on whether we should always break the mold for his requests or not . . . ." Despite the frustration and poor performance of the referral hires, the case documents note that CSAG continued to provide promotions and benefits to referral hires throughout the course of their employment at the request of SOE or government officials.
According to the NPA, CSAG earned over $46 million in revenues from transactions brought to the bank by the SOE executives who were connected to the referral hires. The DOJ applied an aggregate discount of 15 percent off the bottom of the U.S. Sentencing Guidelines fine range based on the reduced credit that CSAG and CSHK received for cooperation and remediation. CSAG and CSHK did not receive voluntary disclosure credit because neither entity voluntarily or timely disclosed the conduct to the DOJ. The NPA states that CSAG and CSHK received partial credit for their cooperation with the investigation by performing an internal investigation, making factual presentations to the DOJ, producing documents and translations, making employees in foreign countries available for interviews, and disclosing all relevant facts on the misconduct. However, the NPA states that "the Company did not receive full cooperation credit because its cooperation was reactive, instead of proactive." CSAG and CSHK likewise did not receive full credit for remediation, despite implementing additional policies and procedures designed to prevent the type of improper hiring at issue, "because [they] did not sufficiently discipline employees who engaged in the misconduct, and instead only recorded policy infractions internally and provided notices of infractions to three employees."
Despite the lack of full cooperation or remediation credit, the DOJ determined that CSAG and CSHK did not need an independent compliance monitor based on the state of their compliance programs and their agreement to self-report to the DOJ. The NPA obligates CSAG and CSHK to report the status of its remediation and implementation of compliance measures to the DOJ at twelve-month intervals during the three-year period. During this period, CSAG and CSHK must conduct an initial review and submit an initial report of its anti-corruption remediation efforts and propose designs to improve compliance internal controls, policies, and procedures. CSAG and CSHK must undertake at least two follow-up reviews incorporating the DOJ's views on prior reports to assess whether their policies and procedures are reasonably designed to detect and prevent violations of the FCPA. The SEC Order did not impose ongoing reporting requirements.
- Employment as an Improper Benefit: CSAG is the fourth company to enter an FCPA settlement based primarily on improperly hiring individuals related to foreign government officials in exchange for business deals. Other FCPA settlements involving the hiring of individuals, usually family members, referred by SOE or government officials in order to secure business include BNY Mellon, Qualcomm, and JP Morgan. All but one of the settlements – BNY Mellon– have been based on activities in China. The CSAG settlement emphasizes the particular bribery risks presented by hiring practices in China. Given the heavy emphasis on relationships, or guanxi, improper requests for employment may occur more frequently in China than in other countries. Companies should ensure that they have the appropriate safeguards to prevent such hires and monitor the effectiveness of such controls.
- Lack of Compliance Monitor: The DOJ's decision not to impose a monitor on CSAG or CSHK appears to be consistent with recent statements by the Assistant Attorney General for the Criminal Division at DOJ, Brian Benkczowski, that the DOJ has revised its guidelines on the imposition of corporate monitors. According to Benkczowski's remarks, when determining whether a monitor is needed, the DOJ must consider the type of misconduct, the pervasiveness of the conduct, whether it involved senior management, and any improvements a company has made to its corporate compliance program. The decision not to impose a monitor in CSAG and CSHK is noteworthy because the NPA alleges that the company failed to cooperate or remediate "proactively" over the course of the investigation, the alleged misconduct occurred over a period of six years, and the alleged misconduct involved active circumvention of the company's existing compliance controls. The CSAG settlement may offer insight as to whether companies should expect the imposition of a monitor under similar circumstances.
- Partial Remediation Credit: The DOJ's decision not to give CSAG and CSHK full credit for remediation was also consistent with the DOJ's 2017 Evaluation of Corporate Compliance Programs guidance that companies must adequately discipline wrongdoers in order to receive full remediation credit. Despite implementing numerous remedial measures, including: additional controls related to their hiring programs; procedures to ensure the identification of and anti-corruption vetting for all candidates referred for employment by government officials and employees of SOEs; screening by an independent service for connections to government officials, SOE employees and other "politically exposed persons" (PEPs) and verifying the efficacy of this screening; post-hire controls on employees linked to government officials and SOE employees; and yearly headcount reviews to ensure accurate record-keeping concerning hiring, among others. According to the NPA, the company did not receive full remediation credit "because it did not sufficiently discipline employees who engaged in the misconduct, and instead only recorded policy infractions internally and provided notices of infractions to three employees." The CSAG and CSHK settlement is notable because it signals that the DOJ expects strong disciplinary responses such as termination.
On September 4, 2018, French pharmaceutical giant Sanofi S.A. (Sanofi), which trades American Depositary Receipts (ADRs) on the NYSE, agreed to pay more than $25.2 million in penalties to resolve charges that the company had violated the books-and-records and internal-controls provisions of the FCPA as a result of alleged bribery-related activities by several of its subsidiaries. According to the SEC's Cease-and-Desist Order, the company's Kazakhstan and Middle East subsidiaries engaged in a variety of schemes to make corrupt payments to government healthcare professionals (HCPs) and procurement officials to secure tenders to increase the prescription of its products.
According to the SEC Order, between 2007 and 2011, Sanofi-Aventis Kazakhstan LLP (Sanofi KZ) allegedly used distributors as part of a kickback scheme to generate funds with which to bribe Kazakh officials to ensure the company was awarded tenders with public institutions in the country. The scheme, which reportedly produced more than $11.5 million in illicit profits, operated as follows: (1) senior managers at Sanofi KZ would flag certain public tenders for its distributors, who would then submit bids; (2) once a tender was awarded, Sanofi KZ would provide the distributor with an excessive discount or credit note (agreed upon in advance) on the sales price between the distributor and the public institution (generally between 20-30 percent); (3) the distributor would then kick back a designated portion of the funds generated by the discount to certain Sanofi KZ employees, who would deliver them to the Kazakh official(s) involved in awarding the tender. The kickbacks to Sanofi KZ employees were tracked using internal spreadsheets and referred to internally as "marzipans."
Between 2011 and 2013, employees at Sanofi-Aventis Liban S.A.L. (Sanofi Levant), the company's Lebanon-based subsidiary, allegedly participated in a series of schemes to convey benefits to HCPs through "sponsorships, gifts, donations, product samples, consulting agreements, peer-to-peer meetings, clinical studies, and grants" and reportedly produced more than $4.2 million in illicit gains. These schemes were executed across the various business lines, included the top selling products of Sanofi in the region, and sometimes involved participation by Sanofi Levant senior managers.
The SEC stated that the improper conduct at Sanofi Levant "w[as] not isolated and spanned across government agencies as well as private institutions." For example, notwithstanding a policy requirement that product samples have a medical justification, sales representatives at Sanofi Levant donated 24 vials of Taxotere, one of the company's most expensive products, to a large, public hospital in Jordan "as a favor" to a key opinion leader (and tender committee member) at the hospital, without consideration of the purpose of the donation or its appropriateness and with an oncology manager rather than Medical Affairs reviewing and approving the request. Sanofi Levant also paid this key opinion leader significant amounts in questionable fees over a period of years, which were paid by check to an unrelated individual, including: the equivalent of $28,900 in consulting fees for hosting events and training HCPs in Iraq (services for which there is no supporting documentation), $25,997 in clinical trial fees (although no reports on trial findings or observations have ever been provided), and $5,500 in speaking fees. The subsidiary also engaged other influential HCPs in the region as consultants, who provided the company with vague services for which there is little to no documented support, including a private sector pharmacist in Lebanon who was paid $237,000 over the course of five years for consulting services that it is unclear were ever provided.
Finally, until 2015, sales representatives at Sanofi Aventis Gulf FZE (Sanofi Gulf), the company's UAE-based subsidiary, allegedly carried out a long-standing scheme under the direction of their managers "to submit false travel and entertainment reimbursement claims, pool the illicit proceeds of the false schemes, and distribute the illicit proceeds to HCPs in the private sector in order to increase prescriptions of Sanofi products." These reimbursement claims, which reportedly generated more than $1,751,567 in illicit profits, involved round-table meetings that did not occur and were enabled by fake receipts issued by collusive vendors known to facilitate such activity. One Sanofi Gulf employee estimated that 70 percent of the travel and entertainment expenses submitted by one business unit during the relevant period were related to the scheme.
Under the terms of its settlement, Sanofi consented to the entry of a Cease-and-Desist Order and agreed to pay $5 million in civil penalties, $17,531,666 million in disgorgement, and $2,674,479 million in prejudgment interest, as well as to self-report periodically to the SEC on the status of its remediation and compliance program over the next two years.
- Sanofi's Voluntary Self-Disclosure: Sanofi initiated an internal investigation in mid-2014 upon receiving a series of anonymous allegations about wrongdoing that reportedly occurred between 2007 and 2012 in parts of the Middle East and East Africa. The company also self-disclosed the allegations to U.S. authorities and cooperated with the DOJ and SEC in the subsequent investigation, which allegedly identified misconduct as recent as 2015.
- Underlying Allegations Beyond the Stated Statute of Limitations: Some of the Sanofi allegations date back to 2007—approximately 11 years ago. While conduct between 2007 and August 2013 would typically fall outside of the statute of limitations following last year's Kokesh decision, it is likely that Sanofi, in cooperating with U.S. authorities, agreed to toll the statute.
- Agencies Did Not Bring Anti-Bribery Charges: Although the SEC Order explicitly describes reported bribery by several Sanofi subsidiaries, neither the SEC nor the DOJ, which in February closed its parallel inquiry into the allegations without enforcement, charged Sanofi with violating the FCPA's anti-bribery provisions. The lack of anti-bribery charges suggests that the agencies might have had difficulty meeting the intent or jurisdictional elements required for such charges. For instance, the SEC Order does not allege any knowledge by Sanofi (the parent issuer) in the underlying misconduct nor does it describe any involvement by U.S. persons or entities or the use of any means or instrumentality of interstate commerce. Sanofi's public disclosures provide limited insight into the DOJ's justification for closing its inquiry without enforcement, but they do indicate that the company cooperated with the agency in its investigation. Notwithstanding the lack of anti-bribery charges, the SEC still required Sanofi to disgorge over $17 million in allegedly illicit profits linked to its accounting provision violations.
- Insight into the SEC's Compliance Expectations: The SEC Order highlights several alleged internal control failures that provide insight into the SEC's compliance expectations, such as:
- Standardizing distributor discounts: The Order implies that companies ought to have controls in place to standardize and monitor discounts, noting that: "At the time, Sanofi had no standardized commercial policy for distributor discounts and did not review the discounts provided by local management."
- Monitoring of outsourced distributor promotional activities: The Order cites an internal company audit that identified a lack of monitoring of outsourced distributor promotional activities (including distributor-organized roundtables) that auditors said were not in compliance with Sanofi policy.
- Conducting periodic audits of affiliate internal accounting controls: Finally, the Order notes that Sanofi had not conducted a full audit of Sanofi Gulf's commercial operations in eight years, highlighting the expectation that a company conduct periodic audits of its higher-risk operations.
- Description of Sanofi's Extensive Cooperation and Remediation: The SEC cited extensive cooperation by Sanofi, including that the company "provided regular briefings regarding the facts developed in its internal investigation" and "timely conveyed the facts it learned in the course of its investigation, including facts that the Commission would not have been able to readily and independently discover, produced and highlighted particularly relevant documents, promptly responded to additional requests by the Commission staff, and provided translations of documents as needed." The SEC also noted that prior to the Commission's investigation, Sanofi had begun independently enhancing its compliance program by, among other things, developing a centralized program, revamping its internal controls and procedures over HCP expenditures, increasing the number of its compliance officers globally, enhancing the operation of local compliance committees, and placing compliance personnel in high-risk local markets. The company also enhanced its relevant policies and procedures, including those dealing with training, audits, third-party due diligence, and event monitoring. Finally, the company reportedly terminated 121 employees, including senior local business managers, accepted resignations from another 14 employees, and disciplined 49 employees.
- Context within Broader Enforcement Landscape: While Sanofi's resolution represents the first FCPA enforcement action involving a pharmaceutical company since December 2016 (Teva Pharmaceuticals), agency scrutiny of the life sciences industry has nevertheless been constant. During that same time period, the DOJ and SEC have brought enforcement actions against three medical device manufacturers, and they currently have open investigations involving upwards of a dozen pharmaceutical and medical device companies. The enforcement landscape, however, does appear to have shifted somewhat in the wake of the FCPA Corporate Enforcement Policy announced last year, with the agencies opting to close or decline cases against an increasing number of companies, including several companies in the life sciences sector. This uptick in closures and declinations could be attributable to, among other things, benefits accorded in recognition of the companies' notable compliance and cooperation, an effort to avoid "piling on," and a less aggressive posture in borderline cases where it is arguable whether the elements of a violation have been met.
On September 12, 2018, the SEC announced that United Technologies Corporation (UTC) reached a settlement to resolve charges that it violated the anti-bribery, books-and-records, and internal-accounting-controls provisions of the FCPA by making unlawful payments to government officials. UTC agreed to pay $13.9 million to the SEC, consisting of disgorgement of $9,067,142 plus interest of $919,392 and a penalty of $4 million. UTC in part designs, manufactures, and markets high-technology products and services to building and aerospace industries. The company is headquartered in Connecticut, incorporated in Delaware, and trades on the NYSE, making it a domestic concern and issuer under the FCPA.
According to the SEC Cease-and-Desist Order, UTC's wholly-owned subsidiary Otis Elevator Co. (Otis) made unlawful payments to officials in Azerbaijan to facilitate the sales of elevator equipment and as part of a kickback scheme to sell elevators in China. From 2012 to 2014, Otis engaged in various schemes to sell its elevator equipment to Baku Liftremont, a municipal entity responsible for procuring and maintaining the elevators in public housing in Baku. The SEC Order states that the schemes involved the use of sham subcontractors and intermediaries to make improper payments to officials of Baku Liftremont.
One scheme, for example, involved a direct sale from Otis's branch based in Russia (Otis Russia) to Baku Liftremont of elevator equipment valued at $1.8 million, which was facilitated through two subcontractors. According to the SEC, no due diligence was performed on the subcontractors or the contracts, and they were paid nearly 44 percent of the contract value. Additionally, between February 2013 and December 2014, at the direction of a Liftremont senior official, Otis Russia involved four different intermediaries that made improper payments to secure nine contracts from Liftremont. Otis Russia sold elevator equipment to the intermediary at one price but knew that the intermediary would sell the equipment to Liftremont at a higher price; the spread between the prices was intended for Liftremont officials. No due diligence was performed on the intermediaries. Otis Russia prepared customs paperwork to facilitate transportation of the equipment across borders and into Azerbaijan. In total, between March 2012 and August 2014, Otis Russia entered into ten contracts worth $14.6 million to sell elevator equipment to Liftremont. The SEC noted that, separately, in 2012, Otis's China branch also made payments as part of a kickback scheme to sell elevators in China.
In addition, the SEC Order found that from 2009 to 2013, UTC, through International Aero Engines (IAE), a joint venture of a division of UTC, Pratt & Whitney, made payments to a Chinese sales agent with no background or expertise in the airline industry to increase IAE's market share in China. IAE and Pratt & Whitney conducted minimal due diligence on the sales agent and "disregard[ed] the high probability that at least some of the money would be used to make unlawful payments to a Chinese official." In 2009, for example, IAE competed for a contract with a Chinese state-owned airline. The sales agent assisted IAE with the campaign for the contract and requested a commission advance of $2 million purportedly for an office expansion. The agent provided no documentation to support this. The following month, a Chinese airline official emailed the agent confidential information about the tender, which the agent provided to the General Manager and Vice President of Customer Business at IAE. IAE modified its bid in response, and IAE won the contract. The SEC Order states that, between March and December 2009, the agent made at least six payments totaling over $160,000 to the airline official who provided the confidential document.
Finally, from 2009 to 2015, the SEC determined that UTC improperly provided trips and gifts to various foreign officials from China, Kuwait, South Korea, Pakistan, Thailand, and Indonesia through its Pratt & Whitney division and Otis to obtain business worth $9 million. Between 2009 and 2015, UTC improperly recorded over $134,000 in illegitimate travel and entertainment for foreign officials in the company's books and records as legitimate business expenses.
UTC self-reported the misconduct and cooperated with the SEC's investigation. The SEC Order also notes that UTC terminated employees and third parties responsible for the misconduct, enhanced its internal accounting controls, and enhanced the applicable due diligence processes. UTC consented to the SEC Order without admitting or denying any violations of law.
- Ineffective Oversight: The SEC Order emphasized that transactions did not follow normal procedures and that Legal, Finance, and business employees all failed to prevent improper transactions. In particular, the SEC Order noted that, in reviewing contracts for anti-corruption purposes, Legal personnel "merely confirmed that the contained standard terms" without "[seeking] to confirm that the intermediaries had undergone due diligence as required by Otis policies or inquired about contractual terms that showed that the intermediaries were acting as distributors." Similarly, the SEC Order noted that Legal, Finance, and business employees approved using Liftremont as a distributor for government-facing elevator projects "despite numerous red flags, including the fact that Liftremont was the government entity responsible for the selection of the supplier for Baku municipal and government projects." In fact, one in-house Otis lawyer in Russia initially refused to approve the insertion of a new intermediary into Liftremont's contract, requesting additional information on the intermediary's ownership and business justification. However, the in-house lawyer eventually signed off on the contract after his superior presented him with a perfunctory explanation for the new intermediary. The SEC Order illustrates the need for parent companies to monitor subsidiaries and question behavior that raises red flags.
- Ineffective Gifts, Travel, and Entertainment Program: The SEC Order also noted that company personnel failed to follow UTC policies for the review of leisure travel and entertainment for foreign officials. For example, the Order notes that the company's Legal Department was required to review and approve all leisure travel and entertainment plans to foreign officials. However, company personnel circumvented this requirement by (1) submitting travel for foreign officials without disclosing the leisure travel/entertainment component or (2) including the travel as a cost component in contracts with the government end customer – such as the South Korean air force – which were not subject to the same level of leisure travel/entertainment review. The Order further states that, even when Legal personnel did review travel expenses related to foreign officials, they often failed to note basic red flags indicating leisure travel/entertainment, such as travel to tourist destinations such as Orlando, Florida, where the company did not have facilities. Like many past FCPA settlements, the UTC settlement reiterates the risk of "paper" gifts, travel, and entertainment programs, which may be sufficient on paper but are not properly followed or adequately enforced.
Petrobras Resolves Books-and-Records, Internal-Controls, and Related Charges with the DOJ, SEC in Connection with Illegal Payments to Petrobras Officials, Politicians, and Political Parties in Brazil
On September 27, 2018, the DOJ and SEC announced that they had reached agreements with Petrobras to resolve books-and-records, internal-controls, and related charges in connection with illegal payments to Petrobras officials, many of which were passed on to politicians and political parties in Brazil. According to a company statement made the same day, the settlement with U.S. authorities was coordinated with a pending settlement between Petrobras and the Ministério Público Federal (MPF) in Brazil.
Petrobras is a state-owned Brazilian energy company, incorporated and headquartered in Brazil and operating in 18 other countries including the United States. The company's shares are publicly traded in the United States, making the company an "issuer" under the FCPA.
The NPA with the DOJ
According to the NPA with the DOJ, between at least 2004 and 2012, Petrobras's executives participated in corruption schemes by receiving bribes, as well as facilitating and directing millions, if not billions, of dollars to other Brazilian politicians and political parties. According to the NPA, Petrobras executives participated in a "massive bid-rigging scheme," which allowed contractors to obtain contracts from Petrobras through non-competitive means. Typically, the contractors paid bribes totaling between one to three percent of the value of the contracts improperly obtained from Petrobras. The bribe payments were often disguised as fictitious expenses included in consultancy agreements and were shared among Petrobras executives, Brazilian politicians, Brazilian political parties, and various intermediaries who helped to facilitate the payments. In return, Petrobras "remain[ed] in the favor of many of Brazil's politicians and political parties." In addition, the NPA notes that some of the corrupt payments paid to Brazilian politicians and political parties "could affect" Petrobras, including because the respective politicians and political parties receiving bribes had oversight over locations where Petrobras was carrying out projects.
The NPA summarizes various examples of the corrupt schemes, including the millions of dollars in bribes paid in connection with the Abreu e Lima Refinery in the Brazilian state of Pernambuco, the Rio de Janeiro State Petrochemical Complex, and large contracts with ship operating, shipyard, and drillship companies. According to the NPA, although the total amount of bribes paid is unknown, "more than U.S. $2 billion has been estimated to have been generated and used to make corrupt payments, more than approximately U.S. $1 billion of which was estimated to have been directed to politicians and political parties."
Petrobras admitted to violating the FCPA's books-and-records and internal-controls provisions pursuant to 15 U.S.C. §§ 78m. Specifically, the NPA stated that, as a result of the corrupt schemes, Petrobras "failed to make and keep books, records, and accounts which accurately and fairly reflected the Company's capitalization of property, plant, and equipment ("PP&E"), which was overstated on the Form 20-F as a result of the bribes being generated by the Company's contractors with the cooperation of certain Petrobras executives." In addition, three executives involved in the corrupt scheme signed Sarbanes-Oxley (SOX) 302 sub-certifications, which required the executives to certify that the Form 20-F filed with SEC did not contain materially false or misleading statements. The NPA further states that the CFO of a Petrobras subsidiary, also involved in the corrupt schemes, signed a management representation letter provided to external auditors, certifying that he was unaware of fraud affecting the subsidiary that would significantly affect its financial statements.
In addition, according to the NPA, Petrobras executives knowingly and willfully failed to implement internal financial and accounting controls to continue the facilitation of bribes to Brazilian politicians and Brazilian political parties, including a failure to implement internal controls over the contracting process for services relating to large investment projects. Specifically, internal controls deficiencies highlighted in the NPA include: "failure to implement appropriate due diligence procedures for the retention of third-party vendors; failure to implement sufficient oversight to prevent the revision of estimates at the conclusion of the bid phase to favor certain bidders; failure to implement sufficient safeguards to prevent the manipulation of bid participant lists or criteria for selecting bid invitees to permit the invitation of companies that were not qualified; failure to implement a selection process that would prevent projects from being improperly awarded through direct contracting instead of a tender process; and manipulation of bid evaluation criteria to favor bribe-paying companies."
SEC Administrative Order
The SEC Order notes from at least 2004 to April 2012, during a time when Petrobras was carrying-out a large-scale expansion of its infrastructure, various "Corrupt Executives" at Petrobras worked with a "cartel" of Petrobras contractors and suppliers to rig bids and subsequently inflate the costs of Petrobras's projects by billions of dollars. In exchange, the contractors paid kickbacks (typically between one to three percent of the total contract value) to Corrupt Executives, politicians and political parties, including the same Brazilian politicians who gave the Corrupt Executives their jobs at Petrobras. In addition, the Order states that from 2003 to 2012, Corrupt Executives engaged in other bribery schemes with companies that wanted to win contracts or receive more favorable contract terms. In one instance, at the recommendation of an executive who received a $2.5 million bribe payment, Petrobras purchased a Texas oil refinery despite the executive knowing that the structure was inadequate for the company's needs and would require a "massive" amount of capital to fix. Part of the $2.5 million bribe payment was passed onto a Brazilian politician.
As a result of the corrupt schemes, the Order states that Petrobras violated the books-and-records and internal-accounting provisions of the FCPA. In addition, the company violated Sections 17(a)(2) and (3) of the Securities Act (prohibiting the offer or sale of any security through false statements of a material fact, omission, fraud, or deceit) and Section 13(a) of the Exchange Act (requiring every issuer of a security registered pursuant to Section 12 of the Exchange Act to file annual reports that do not contain misleading statements).
With regards to the books-and-records violations, the corrupt schemes caused Petrobras to report inflated assets in its Financial Statements filed with the SEC, such as its Form 20-F for fiscal years 2009 through 2013 (including materials incorporated by reference in Petrobras's 2010 $10 billion public offering documents). In addition, the filings contained various misstatements and omissions about the integrity and quality of Petrobras management, as well as its relationship with the Brazilian government and its suppliers and contractors.
With regards to the internal-controls violations, the Order noted that Petrobras did not require employees to receive anti-corruption, anti-fraud, or compliance training, lacked policies addressing interactions with government officials, had "deficient" procurement policies and procedures, did not have a "typical" compliance function until 2014 despite requirements included in its Audit Committee Charter, and had no formal vetting process for appointing senior executives.
Penalties and Offsets
Excluding the offsets and credits discussed herein, Petrobras agreed to pay $1.787 billion in total penalties and disgorgement to U.S. and Brazilian authorities. According to the DOJ NPA, Petrobras agreed to pay a total criminal penalty of $853.2 million which includes a 25 percent discount for full cooperation and remediation pursuant to the U.S. Sentencing Guidelines. The DOJ determined that an independent compliance monitor was unnecessary. However, the company is required to self-report to the DOJ "at no less than twelve-month intervals" for three years regarding its remediation efforts and the implementation of its compliance program and internal controls.
The SEC Administrative Order required the company to pay a penalty in the amount of $853.2 million "to the Commission in connection with [its] Order and as described in the [NPA] with the [DOJ]" and $933.5 million in disgorgement and prejudgment interest.
However, both the DOJ and SEC agreed that 80 percent ($682.6 million) of the $853.2 million should be credited to penalties paid to a fund in Brazil to be used for "various social and educational programs to promote transparency, citizenship and compliance in the public sector." The agencies also agreed to credit Petrobras for the penalties paid to each other. In addition, the entire amount of disgorgement and prejudgment interest owed to the SEC was offset by payments Petrobras made to a settlement fund as part of a U.S. shareholders' suit. Therefore, in practice, Petrobras will pay the DOJ and SEC a combined total of $170.6 million ($85.3 million to the DOJ; $85.3 million to the SEC) with the remainder to be paid in Brazil and to a U.S. shareholder settlement fund.
In deciding to enter into the NPA with Petrobras, the DOJ considered that the company did not voluntarily and timely disclose the violation to the authorities. However, the DOJ noted that after having learned of the allegations of misconduct by its officials, Petrobras retained external counsel to conduct an independent investigation and informed the DOJ of its intent to fully cooperate with the investigation. Furthermore, according to the DOJ, the company fully cooperated with the investigation and provided all relevant facts known to the company in connection with the misconduct at issue. The NPA also noted that the company engaged in extensive remediation measures including replacing the Board of Directors and the Executive Board, as well as implementing wide-ranging governance reforms.
For its part, the SEC stated that Petrobras provided "significant cooperation." The SEC Order continues, "[a]fter learning of the corruption and bribery scheme described above, Petrobras immediately cooperated with the Brazilian authorities' investigation, and has served as an Assistant to the Prosecution in 51 proceedings in Brazil. Petrobras conducted a thorough and timely internal investigation and identified significant documents for the Commission staff, translating them from Portuguese. Petrobras also provided summaries of the investigation's findings and assisted in other SEC investigations." It also highlighted the "significant" remedial steps undertaken by Petrobras.
- Petrobras Preserves Sovereign Immunity: Petrobras is only the second primarily state-owned entity to resolve FCPA issues with U.S. authorities, with Norway's Statoil entering into a DPA with the DOJ in 2006. Unlike the Statoil DPA, which includes no language addressing sovereign immunity, the Petrobras NPA makes clear that Petrobras wished to preserve its sovereign immunity, stating, "[b]y entering into this Agreement, notwithstanding anything contained herein, the Company does not prospectively waive any arguments that, as an instrumentality of the Republic of Brazil, it is protected by sovereign immunity from criminal prosecution in the United States, and it reserves the right to assert this argument in any future prosecution or civil action by the United States."
- Petrobras Executives Served as Both Intermediaries and End Recipients of Bribe Payments, But No Anti-Bribery Charges Brought: According to facts presented in the NPA, Petrobras officials functioned as both bribe recipients and as intermediaries for payments to public officials and political parties. However, the company did not admit to violations of the anti-bribery provisions of the FCPA despite language in the NPA suggesting that the company itself, not just the executives receiving the bribes, benefited from the schemes. For example, the NPA states that the payments allowed Petrobras to "remain in the favor of many of Brazil's politicians and political parties" and further notes that bribes paid to politicians and political parties "could affect" Petrobras, since the same politicians and parties had oversight over the area where Petrobras was carrying out projects.
- The DOJ Insists No Piling On: On May 9, 2018, the DOJ issued a formal policy that directs the agency's prosecutors to coordinate with U.S. and foreign enforcement authorities to avoid duplicative penalties for the same corporate misconduct – sometimes referred to informally as the "piling on" problem. On the same day as the Petrobras settlement was announced, Deputy Assistant Attorney General Matthew S. Miner suggested that the Anti-Piling On Policy was taken into account in determining to credit the amount that Petrobras pays to the SEC and Brazil, with the DOJ and SEC receiving 10 percent each of the total penalty and the remaining 80 percent being credited towards penalties owed in Brazil.
- Continued Collaboration Between U.S. and Brazilian Authorities: The Petrobras settlement marks the most recent coordinated resolution involving U.S. and Brazilian authorities. In recent years, U.S. and Brazilian authorities have collaborated on several large global settlements involving the FCPA including Odebrecht/Braskem, Embraer, SBM Offshore, Keppel Offshore & Marine, and Rolls-Royce. In addition to sovereignty concerns and the significant remediation Petrobras has undertaken to date, the increased collaboration and trust between U.S. and Brazilian authorities seems to have factored into the U.S. authorities' decision not to impose an independent compliance monitor. Specifically, the NPA states, "the fact that the Company is based in Brazil and will separately be entering into a resolution with Brazil and will be subject to oversight by Brazilian authorities, including Brazil's Tribunal de Contas da União and Comissão de Valores Mobiliários, the Fraud Section and the [United States Attorney's] Office [for the Eastern District of Virginia] determined that an independent compliance monitor was unnecessary."
- The Settlement's Timing: Petrobras entered into the agreement with U.S. authorities the week before the country's first round of presidential elections. The elections may have provided an impetus for both authorities and the company to resolve issues after a four-year-long investigation prior to the entry of a new administration. On October 28, 2018, former military officer Jair Bolsonaro was elected as Brazil's next president in a run-off election. He will take office on January 1, 2019.
Stryker Corporation Resolves Second Set of Internal-Controls and Books-and-Records Violations with the SEC
On September 28, 2018, the SEC charged Stryker Corporation (Stryker), a Michigan-based medical device company, with violating the FCPA's books-and-records and internal-accounting-controls provisions for the second time. As part of the resolution, Stryker agreed to pay a penalty of $7.8 million.
According to the Cease-and-Desist Order, the SEC found that Stryker's internal accounting controls were not sufficient to detect the risk of improper payments in sales of Stryker products in India, China, and Kuwait, and that Stryker's India subsidiary failed to maintain complete and accurate books and records.
According to the SEC's Order, Stryker's Indian subsidiary (Stryker India) did not have adequate controls in place to deal with a "widespread" practice of its third-party dealers issuing "inflated invoices." Although Stryker had negotiated the prices that hospitals would pay dealers for Stryker's orthopedic products, the hospitals asked for and the dealers provided "inflated invoices," which enabled the hospitals to generate a windfall by passing on the exaggerated prices for reimbursement to its customers and insurers. The Order states that Stryker initially discovered the problem of "inflated invoices" during an audit of dealers in 2012 but failed to devise and implement adequate controls to curb the practice, taking action with respect only to the three dealers audited. By the time the issue surfaced in a subsequent audit in 2015, it had become "widespread." According to the SEC's Order, Stryker India made approximately 85 percent of its revenue from sales to third-party dealers. Additionally, the Order notes that Stryker India failed to maintain adequate documentation for high-risk transactions, noting that from at least 2010 until 2015, Stryker India lacked adequate documentation for 27 percent of high-risk transactions reviewed internally.
According to the Order, Stryker's subsidiary in China (Stryker China) did not adhere to company policy regarding vetting, approving, and training sub-distributors. According to the Order, Stryker China sells products to a state-owned "hub" distributor, who then sells products to additional distributors. The Order states that Stryker China employees at times worked with unauthorized sub-distributors, and at times falsified records to hide the sub-distributors – both in violation of Stryker policy. The SEC Order notes that "[t]he use of these unauthorized sub-distributors increased the risk of improper payments in connection with the sale of Stryker products."
The Order states that a distributor for Stryker's Kuwaiti business paid over $32,000 in "improper 'per diem' payments" to Kuwaiti healthcare professionals in connection with Stryker events. The distributor paid the Kuwaiti healthcare professionals directly even though Stryker had already directly covered the professionals' costs for lodging, meals, and local transportation. The Order notes that although Stryker had policies in place requiring third parties to comply with Stryker's anti-corruption policies and procedures, Stryker did not sufficiently test or assess whether the Kuwaiti distributor would follow these policies. Specifically, Stryker did not test whether it would be able to exercise its audit rights, nor did it assess whether the Kuwaiti distributor was complying with Stryker's policies prohibiting improper payments.
- Second SEC Resolution: This is Stryker's second resolution with the SEC related to books-and-records and internal-accounting-controls violations. Stryker previously resolved with the SEC in October 2013 for $13,283,523 in disgorgement, pre-judgment interest, and civil penalty in connection with its business in Mexico, Poland, Romania, Argentina, and Greece. We discuss Stryker's previous resolution in our FCPA Winter Review 2014.
- Liability for Third Parties: This resolution is the latest example of U.S. authorities holding companies responsible for the actions of their agents, even when improper payments to officials are not the focus of the issue. Although, for example, payments to officials were key to the prosecution of Stryker's business in Kuwait, the Order does not indicate that Stryker or its subsidiary engaged in improper payments in India or China. With respect to China, the Order noted only that "Stryker's failure to vet, approved, train, and monitor its distributors and sub-distributors…increased the risk of bribery and other improper payments in connection with the sale of Stryker products." (emphasis added)
- Remediation Related to Third Parties: The SEC Order noted that Stryker undertook certain specific remediation efforts with respect to its third-party interactions, including: (a) implementing a new centralized tracking system for documentation; (b) a new commission model; (c) audits of dealers and distributors in India; and (d) other additional controls around the monitoring of the company's relationship with healthcare professionals and indirect channels.
- Independent Compliance Consultant: The SEC Order requires Stryker to retain an independent compliance monitor for 18 months, the seventh SEC-only monitorship. The SEC does not include all of the specific requirements that accompany DOJ Monitors, but in this case the SEC specifically tasked the Monitor to review and evaluate Stryker's business with third parties, specifically drawing attention to sub-distributors. The Monitor was tasked with reviewing the company's "internal controls, record-keeping, and anti-corruption policies and procedures relating to use of dealers, agents, distributors, sub-distributors" and other third parties selling products on Stryker's behalf. Explaining the penalty and Monitor, Marc Berger, Director of the SEC's New York Regional Office, stated in the SEC's Press Release: "Stryker's failures to implement sufficient internal accounting controls and keep accurate books and records are unacceptable, especially as this is not the first time the company has been charged for these types of violations. The penalty ordered along with the imposition of a compliance consultant are appropriate and necessary."
On July 16, 2018, the DOJ announced that former Venezuelan government official Luis Carlos De Leon Perez (De Leon) pled guilty to one count of conspiracy to violate the FCPA's anti-bribery provisions and one count of conspiracy to commit money laundering. According to the DOJ, De Leon admitted to entering into a conspiracy with former executives at PdVSA and its subsidiaries, as well as other former Venezuelan government officials, to solicit bribes and kickbacks from vendors seeking to do business with the Venezuelan national oil company. De Leon's role in the scheme included attempting to solicit the bribes from vendors based in the United States and elsewhere and then directing a portion of those bribes to PdVSA executives – giving rise to the FCPA conspiracy charges against him. De Leon's efforts to conceal the proceeds from these bribes gave rise to a separate charge of conspiracy to commit money laundering. All of the conduct giving rise to De Leon's charges occurred from 2011 to 2013. De Leon was arrested in Spain in October 2017 and subsequently extradited to the United States. De Leon is a dual U.S.-Venezuelan citizen, giving the DOJ a stronger jurisdictional nexus over his behavior, even if there were no other connection to the United States.
Like Juan Carlos Castillo Rincon, whose separate guilty plea is discussed in greater detail below, De Leon on one of several individuals who have been convicted of money laundering and FCPA charges in connection with the PdVSA bribery scheme, including several U.S.-based businessmen.
The SEC announced on September 6, 2018, that it had reached a settlement with JooHyun Bahn, a/k/a Dennis Bahn (Bahn), a former real estate broker at Colliers International Group, Inc. (Colliers), a Toronto, Canada-based and U.S.-listed global commercial real estate services and investment management company. The settlement resolved the SEC's FCPA anti-bribery and accounting charges against Bahn, a South Korean citizen living in the United States and the nephew of Ban Ki-moon, a former Secretary-General of the United Nations.
According to the SEC's Cease-and-Desist Order, from March 2013 through May 2015, Bahn violated the FCPA by attempting to bribe an official associated with a Qatari sovereign wealth fund as part of an effort on behalf of Colliers to broker the sale of a high-rise commercial building in Vietnam to the sovereign wealth fund. The 72-story building known as "Landmark 72" in Hanoi was built and owned by Keangnam Enterprises Co Ltd. (Keangnam), a Korean construction company where Bahn's father, Ban Ki-sang, was an executive. The sale would have benefitted Keangnam by helping the company raise capital which then could be used to mitigate the financial risks associated with the liquidity crisis the company was experiencing at the time. Bahn stood to earn a $5 million commission for brokering the $800 million deal.
The SEC Order found that Bahn provided $500,000 (with an additional $2 million to follow after the deal closed) to the New York fashion designer and blogger Malcolm Harris, expecting him to pass it along to the official who Bahn was led to believe by Harris could influence the Qatari sovereign wealth fund to purchase the building. However, the official was unaware of the attempted bribe since Harris had misrepresented his connection with the official and pocketed the money for himself. As discussed in our FCPA Autumn Review 2017, the DOJ subsequently charged Harris in a foreign bribery and fraud scheme in January 2017. In June 2017, Harris pled guilty to money laundering and wire fraud, and on October 5, 2017, Judge Edgardo Ramos of the U.S. District Court for the Southern District of New York sentenced Harris to 42 months in prison.
The SEC Order found that with his actions Bahn violated the FCPA's anti-bribery provisions, violated the FCPA's accounting provisions by intentionally circumventing Colliers' internal accounting controls, and falsifying the company's books and records by creating fictitious emails, fabricating documents, and lying to Colliers executives about the status of the transaction. The SEC determined that Bahn misrepresented and fabricated confirmations that a buyer had committed to acquire the building, thereby causing Colliers to improperly recognize commission revenue on the purported transaction.
As part of the settlement with the SEC, Bahn agreed to pay $225,000 in disgorgement, which was deemed satisfied by the restitution and forfeiture that had been ordered at his sentencing in the related criminal proceeding. Specifically, on September 6, 2018, U.S. District Judge Ramos sentenced Bahn to six months in prison following his guilty plea in January 2018 to one count of conspiracy to violate the anti-bribery provisions of the FCPA and one count of violating those provisions for his role in the failed Vietnam real estate deal as discussed in our FCPA Spring Review 2018.
On September 13, 2018, the DOJ announced that U.S. businessman Juan Carlos Castillo Rincon (Castillo) pled guilty to one count of conspiracy to violate the FCPA's anti-bribery provisions. From 2011 to 2013, Castillo served as a manager at a Houston-based logistics and freight forwarding company that catered to energy companies such as PdVSA. According to his plea agreement, Castillo entered into a conspiracy to bribe a former official at the Venezuelan national oil company PdVSA in exchange for assistance in obtaining contracts, contract extensions, and favorable terms, as well as inside information concerning the company's bidding process. The same day that Castillo's guilty plea was announced, the DOJ also unsealed the guilty plea of the former Texas-based PdVSA official, Jose Orlando Camacho (Camacho), in which Camacho admitted to accepting bribes from Castillo's company and pled guilty to money laundering conspiracy charges to hide the proceeds from those bribes.
Like Luis Carlos De Leon Perez, whose separate guilty plea is discussed in greater detail above, Castillo on one of several individuals who have been convicted of money laundering and FCPA charges in connection with the PdVSA bribery scheme, including several U.S.-based businessmen. Notably, Castillo and Camacho were the thirteenth and fourteenth guilty pleas that the DOJ has obtained out of its PdVSA investigation.
On September 25, 2018, the former CEO of the Chilean mining company Sociedad Química y Minera de Chile, S.A. (SQM) agreed to pay $125,000 to resolve SEC civil charges that he had violated the FCPA's books-and-records and internal-accounting-controls provisions. Patricio Contesse González was the CEO of SQM from 1990 to 2015. According to the SEC's order, from 2008 to 2015 Contesse caused SQM to make illegal payments of approximately $14.75 million to various Chilean politically exposed persons (PEPs) and inaccurately record them as legitimate business expenses — actions that the order states directly caused the company to violate the FCPA's accounting provisions. As discussed in our FCPA Spring Review 2017, SQM paid over $30 million to resolve parallel DOJ and SEC enforcement actions related to those payments.
The SEC stated that Contesse disguised the bribes as payments to third-party vendors, which were made from a discretionary "CEO Account," and directed those vendors to submit sham contracts, invoices, and other false documentation to create the appearance that the payments were for legitimate business services. The Order states that he then directed that the payments be falsely recorded in the company's books and records. The SEC also alleged that Contesse lied to the company's independent auditor when questioned about the payments, signed false management representation letters, and signed false certifications for the company's SEC filings. Under the terms of the settlement, Contesse agreed to pay the financial penalty without admitting or denying the SEC's findings and agreed to cease and desist from any future U.S. securities law violations.
Second Circuit Limits Exterritoriality of FCPA Conspiracy and Complicity Charges Against Foreign Nationals
On August 24, 2018, the United States Court of Appeal for the Second Circuit held in United States v. Hoskins that the U.S. government cannot use theories of complicity or conspiracy to charge a foreign national with violating the FCPA where the foreign national is not otherwise within the FCPA's jurisdiction. So, the FCPA's extraterritorial limits also constrain charges for FCPA conspiracy and aiding or abetting. Therefore, only foreign nationals who are within the categories of persons covered by the FCPA's provisions – United States issuers and their agents; American "domestic concerns" (including individual persons) and their agents; and foreign persons or businesses that take actions within the United States – can be prosecuted for conspiracy to violate the FCPA or aiding and abetting a violation of the FCPA.
The case arose from the DOJ's prosecution of Alstom S.A. (Alstom), a French power and transportation company, which pled guilty to two counts of violating the FCPA and paid a $772 million criminal penalty. Alstom's former senior vice president of sales for the Asia region, Lawrence Hoskins, was charged individually on July 30, 2013 with one count of conspiracy to violate the FCPA, six counts of violating the FCPA, one count of conspiracy to commit money laundering, and four counts of money laundering. Mr. Hoskins is a British national who was based in Paris at the time. Crucially, the DOJ does not allege that Mr. Hoskins was in the United States when he committed the alleged conduct.
Hoskins moved to dismiss the first count of the indictment charging him with conspiracy to violate the FCPA because he never worked with the U.S. subsidiary of Alstom and never traveled to the United States during the bribery scheme. The Second Circuit held that "the presumption against extraterritoriality bars the government from using the conspiracy and complicity statutes to charge Hoskins with any offense that is not punishable under the FCPA itself because of the statute's territorial limitations."
Because the FCPA contains extraterritorial limitations, the Second Circuit examined whether those limits likewise constrain conspiracy or complicity liability. The Second Circuit examined the affirmative-legislative-policy exception to conspiracy and complicity liability, finding that "[i]n certain cases it is clear from the structure of a legislative scheme that the lawmaker must have intended that accomplice liability not extend to certain persons whose conduct might otherwise fall within the general common-law or statutory definition of complicity." The Second Circuit reasoned that this exception applies because the FCPA's statutory text and legislative history "evince an affirmative legislative policy to leave the category of defendants omitted from the statutory framework unpunished." The Second Circuit further noted that even if there were no affirmative policy limiting criminal liability, the statue does not contain "'clearly expressed congressional intent to allow conspiracy and complicity liability to broaden the extraterritorial reach of the statute." Thus, the Second Circuit affirmed the dismissal of count one of the indictment.
The Second Circuit did, however, reverse a portion of the district court's opinion, and will let the government proceed with the first count of the indictment if the government can prove that Mr. Hoskins was an agent of a United States company pursuant to 15 U.S.C. § 78dd-1. The government has not pursued an appeal of the Second Circuit's decision; however, the government has asserted that the Second Circuit's decision creates a circuit split with the Seventh Circuit's conspiracy law for classes of individuals in a recent filing in the matter against Dmitry Firtash in the Northern District of Illinois.
In June, the Supreme Court held that the SEC's five administrative law judges (ALJs) are "officers" under the Appointments Clause of the Constitution (see FCPA Summer Review 2018), and thus their appointments were constitutionally flawed. Concurrent to that decision in Lucia v. Securities and Exchange Commission, the SEC announced a stay of all "pending administrative proceedings initiated by an order instituting proceedings that commenced the proceeding and set it for hearing before an administrative law judge, including any such proceeding currently pending before the Commission." The SEC lifted that stay on August 22, remanding "all proceedings currently pending before the Commission to the Office of Administrative Law Judges" and vacating "any prior opinion we have issued in the matter" in order to provide parties "with the opportunity for a new hearing before an ALJ who did not previously participate in the matter." The Order sets the stage for new hearings in over 125 matters listed in an attachment to that Order and, further, allows matters currently pending before ALJs to move forward. The Order tracks the remedy outlined by the Supreme Court for Mr. Lucia, who the Court emphasized should receive a hearing before a constitutionally-appointed ALJ and, crucially, not the ALJ who heard his original case. The SEC Order also referred back to its November 2017 Order "ratifying" the appointment of its ALJs (see FCPA Winter Review 2018), stating that, "[i]n an abundance of caution and for avoidance of doubt, we today reiterate our approval of their appointments as our own under the Constitution." This language seems aimed at addressing a footnote in Lucia, in which the Supreme Court explicitly declined to address the validity of the SEC's earlier ratification Order.
Argentinian Officials Launch Investigation Based on "Bribery Notebooks" Kept by Former Government Chauffer
On August 5, 2018, the Argentinian newspaper La Nacion reported that a former government chauffer had admitted to driving the former Argentinian Minister of Planning, his deputy, and others around Buenos Aires to collect tens of millions of dollars of bribes in cash for delivery to current and former government officials, including Argentina's last two ex-presidents, Cristina Kirchner and her predecessor and late husband, Nester Kirchner. The chauffer also turned over to journalists eight spiral-bound notebooks, in which he had recorded each of his trips collecting and delivering cash over a ten-year period from 2005 to 2015. The chauffer and nearly two dozen other witness have reportedly asked for leniency in exchange for cooperation with authorities.
As a result of the chauffer's admissions and notebooks, Argentinian authorities have since launched an investigation into approximately 40 individuals, including former President Cristina Kirchner.
The La Nacion article breaking the story was entitled "Cuadernos de las Coimas" story – Spanish for "The Bribery Notebooks" – which has since become the unofficial name for the corruption scandal. Argentinian and international press have since compared the Bribery Notebooks scandal to the "Lava Jato" or "Operation Carwash" corruption scandal in Brazil, which began in 2014 and has since resulted in 179 indictments of high-level former Brazilian government officials, including the former presidents Luiz Inácio Lula da Silva and Dilma Rousseff.
Whether the Bribery Notebooks scandal grows to the size of Operation Carwash remains to be seen. However, the scandal does present investigative risk to companies who had operations in Argentina from 2005 to 2015 and are subject to the FCPA – including issuers whose shares are publicly traded in the U.S. and domestic concerns incorporated under U.S. law. Notably, as a result of Operation Carwash, several such companies have had to pay significant fines to U.S. authorities for FCPA violations, including, as noted above: the Brazilian national oil company Petrobras (whose shares are publicly traded in the United States), the Netherlands-based SBM Offshore (whose Netherlands- and U.S.-based executives were sentenced this quarter for criminal FCPA charges), and the U.S. firm Rolls-Royce Energy Systems, Inc. (RRESI), a subsidiary of the U.K. engineering firm Rolls-Royce, to just name a few.
On August 14, 2018, new amendments to the Russian Code on Administrative Offences (Administrative Code) related to bribery by legal entities went into effect. The new provisions establish conditions exempting companies from liability for bribery if those companies assist authorities in uncovering and investigating misconduct. The amendments also enable courts to freeze assets of companies under investigation for bribery. These new rules are likely to have an impact on how companies operating in Russia approach bribery perpetrated by employees.
While the Russian Criminal Code (Criminal Code) establishes individual criminal liability for receiving and giving bribes, as well as acting as an intermediary (Articles 290, 291, 291.1), the Administrative Code establishes non-criminal (i.e., "administrative") corporate liability for bribery, applicable to Russian legal entities and foreign legal entities registered in Russia. Specifically, pursuant to Article 19.28 of the Administrative Code, the administrative offence of "bribery on behalf of a legal entity" is defined as giving or offering bribes (i.e., money, securities, anything of value) – in the interest or on behalf of a legal entity – to an official with managerial functions, foreign official, or an official of an international organization in return for an act or omission in connection with their official roles. The penalty for this administrative offense varies from three to one hundred times the amount of the given or offered bribe's value.
One of the recently enforced amendments to the Administrative Code establishes mandatory exemptions from corporate liability for bribery. Specifically, in accordance with Article 19.28 (subparagraph 5) of the Administrative Code, a legal entity will be exempted from liability for bribery of a domestic official if it provides assistance in i) uncovering the misconduct, ii) conducting an administrative investigation, and iii) detecting and investigating a related criminal offense. It is important to note that legislators excluded bribery of foreign officials and officials of international organizations from this potential exemption for legal entities, consistent with Russia's obligations under the OECD Convention on Combating Bribery of Foreign Officials in International Business Transactions.
The amendments that recently entered into force also include a new rule that enables Russian courts to impose an asset freeze on a legal entity under bribery investigation, based on a substantiated motion requesting such a measure filed by a prosecutor. According to Article 27.20 of the Administrative Code, this measure would ensure that legal entities pay penalties for bribery imposed by Russian courts. Under the new rule, the value of assets subject to the freeze must not exceed the potential penalty. If the party disagrees with the court's decision to impose an asset freeze, it can move for the court to re-consider its decision or appeal the court's decision.
According to the recently published inaugural Europe-Caucasus-Asia (ECA) Corruption Survey, 65 percent of respondents on Russia note that corruption is a significant obstacle for companies doing business in the country and only 25 percent of respondents are confident in the effectiveness of the Russian anti-corruption laws. These results are reflective of regional problems in the area of corruption and are consistent with the Transparency International's Corruption Perception Index (CPI) ranking Russia 135th out of 180 in 2017 (with the score of 29 on a scale from 100, very clean, to zero, highly corrupt) together with Papua New Guinea, Kyrgyzstan, Honduras, and others. At the same time, the Russian government is undertaking the new legislative initiatives targeting corporate liability for bribery and providing companies with additional incentives to exercise a more transparent and proactive anti-corruption approach. While it is too early to evaluate the practical impact of these regulatory changes, companies operating in Russia now potentially have a stronger incentive to report bribery by employees and should focus on reflecting these regulatory changes in their anti-corruption compliance programs and approaches.
On September 4, 2017, ING Groep N.V. (ING) announced that it had entered into a settlement agreement with the Dutch Public Prosecution Service regarding a previously disclosed investigation relating to client on-boarding and prevention of financial economic crimes. According to ING's public filings, ING agreed to pay a fine of €675 million and €100 million in disgorgement. ING reported that the investigation identified "serious shortcomings in the execution of customer due diligence policies to prevent financial economic crime" and "these shortcomings enabled customers to misuse accounts." The shortcomings included, among others, missing or incomplete client due diligence files, assignment of incorrect risk classifications, failure to conduct periodic review, and failure to exit business relationships in a timely manner. These shortcomings "resulted in clients having been able to use their bank accounts for, inter alia, money laundering practices for a number of years." ING also disclosed that, because of the investigation, it has initiated actions against former senior employees responsible for client due diligence and financial economic crimes. ING said that it has been cooperating with the SEC and expects to resolve this matter with the SEC without further payment or conditions.
English Appellate Court Reverses Lower Court Opinion Regarding Attorney Client Privilege in Internal Investigations
On September 5, 2018, an appellate court in England handed down its judgment reversing the trial court decision in SFO v. Eurasian Natural Resources Corporation Ltd., which had substantially curtailed the applicability of attorney-client privilege in internal investigations conducted under UK law. The appellate court determined that the litigation privilege should apply to attorney notes prepared during an internal investigation, even where a criminal prosecution had not begun, at least where allegations were known to the company and investigation by the SFO was anticipated. The appellate court also criticized the use of a "control group" test for purposes of determining whether the legal advice privilege applies to notes from interviews of low-level employees.
As we have previously reported, the Eurasian Natural Resources Corporation Ltd. (ENRC) case concerned interview notes prepared by outside counsel during an internal investigation of potential fraud and corruption. Though the investigation was conducted in parallel with disclosures to the SFO, the trial court held that litigation was not "reasonably in contemplation" as required to fall under the litigation privilege. In addition, the trial court held that an internal investigation and disclosure to the SFO does not constitute adversarial litigation and that the dominant purpose of the interviews performed by ENRC's counsel was to avoid criminal prosecution rather than defend a criminal prosecution. For all those reasons, the court said that the interview memoranda prepared by outside counsel during the investigation were not subject to the litigation privilege.
The appellate court reversed the trial court's determination that the litigation privilege did not apply. The court first found that, under the facts of this case, prosecution was reasonably in contemplation. The court disagreed with ENRC's argument that once an SFO criminal investigation is reasonably in contemplation, a criminal prosecution is also automatically reasonably in contemplation. However, the court's "primarily factual" analysis found that litigation in the specific case under review was reasonably in contemplation based on the contemporaneous correspondence with the SFO and opinions of the lawyers for ENRC. The court also held that legal advice given "to head off, avoid or even settle reasonably contemplated proceedings is as much protected by litigation privilege as advice given for the purpose of resisting or defending such contemplated proceedings," and noted that documents intended for disclosure to the SFO still deserved the protection of the litigation privilege prior to the company waiving that privilege.
Regarding the legal advice privilege, English courts follow a control group test, as set out in a 2003 decision in Three Rivers District Council and Others v. Governor and Company of the Bank of England (No. 5). That case held that the legal advice privilege only applies to communications between lawyers for a company and employees of that company if the employees are part of a "control group" specifically tasked with seeking and receiving legal advice on behalf of the company. The appellate court in the ENRC case said that only the Supreme Court could reverse that finding, but the court also made clear that it thought the existing rule was antiquated, borne out of a 19th century paradigm when investigations were more likely to be conducted on behalf of small businesses. The court also noted that "English law is out of step with the international common law on this issue" and said that it made sense for there to be commonality between the laws of common law countries on this issue, "particularly when so many multinational companies operate across borders and have subsidiaries in numerous common law countries."
This opinion will be a welcome change for companies and outside counsel conducting internal investigations, as the appellate court's opinion gives significantly more protection to documents prepared during an internal investigation but in contemplation of litigation. However, because the court's analysis was fact-based, counsel will still need to carefully analyze the likelihood not only of investigation by a government entity, but also prosecution by that entity. The litigation privilege may not protect internal investigations where the government has not interacted with the company about the allegations. Ultimately, the court's criticism of the scope of the legal advice privilege may end up being the more significant aspect of the opinion if it results in the Supreme Court reconsidering the long-standing control group test used in England but not in other parts of the world, such as the United States.
Upcoming Speaking Engagements
Contributors: Gregory W. Bates, Marc Alain Bohn, Amelia Hairston-Porter, Katherine E. Pappas, Ann Sultan, Sarah A. Dowd, Nina C. Gupta, Ian A. Herbert, Alice C. Hsieh, Ivo K. Ivanov, Maryna Kavaleuskaya, Michael Skopets
This, and related communications, are protected by copyright laws and treaties. You may make a single copy for personal use. You may make copies for others, but not for commercial purposes. If you give a copy to anyone else, it must be in its original, unmodified form, and must include all attributions of authorship, copyright notices, and republication notices. Except as described above, it is unlawful to copy, republish, redistribute, and/or alter this presentation without prior written consent of the copyright holder.