Anti-Bribery Compliance

An anti-bribery compliance program is a mandatory legal and operational framework under the US Foreign Corrupt Practices Act (FCPA) and international conventions that prohibits companies and their agents from offering anything of value to foreign government officials to obtain business advantages.

The Foreign Corrupt Practices Act and its two pillars

The FCPA contains two main prohibitions: the anti-bribery provision forbids payments to foreign officials to obtain or retain business; the books and records provision requires accurate accounting of all transactions. A $10 million bribe to a foreign customs official to waive import duties violates both. The law covers direct bribes and offers made through third parties (consultants, distributors, joint-venture partners). US courts have interpreted “anything of value” expansively—gifts, travel, charitable donations to the official’s preferred cause all trigger the statute if the intent is to influence.

Scope: who is covered and why

Any US company (public or private) and any foreign company trading on US exchanges must comply. A European pharma firm selling vaccines in Nigeria through a US subsidiary faces FCPA rules. An Israeli tech startup listing on NASDAQ must implement controls. The statute reaches anyone using US mail or wire transfers—triggering jurisdiction even for overseas transactions. This creates practical leverage: competitors or business partners using FCPA-free jurisdictions gain cost advantages, but US firms accept the compliance burden for access to US capital and markets.

Distinguishing lawful facilitating payments from bribes

A $50,000 payment to a foreign customs official to speed up paperwork has been deemed a “facilitating payment”—expediting routine, non-discretionary acts—and is technically exempt under the FCPA. But the line is blurry and shrinking. The SEC and DOJ increasingly challenge facilitating payments, arguing few government acts are truly “routine.” Many US companies now treat all payments to foreign officials as prohibited, requiring explicit advance approval from legal counsel. Industry practice has converged on near-zero-tolerance policies rather than relying on the facilitating payment defense.

Risk assessment and due diligence requirements

Before entering a relationship (hiring an agent, forming a joint venture, acquiring a company), firms must conduct enhanced due diligence on counterparties. FCPA enforcement guidance specifies that companies should understand:

• The counterparty’s ties to government officials
• Nature of services to be rendered
• Reasonableness of compensation
• Track record and reputation

Large deals in high-risk jurisdictions (some African, Middle Eastern, and Southeast Asian nations) incur deeper vetting, third-party audits, and compliance certifications. This can delay deals by months and cost hundreds of thousands; the calculus often determines deal viability.

Compliance program design and components

The Department of Justice and SEC expect companies to maintain:

1. Written anti-bribery policy articulating prohibitions and consequences
2. Tone at the top: board/executive commitment to compliance
3. Training: regular, documented training for all employees, especially sales and operations staff
4. Auditing and monitoring: routine reviews of high-risk transactions and vendors
5. Disciplinary procedures: clear consequences for violations
6. Reporting mechanisms: anonymous hotlines and safe channels for concerns
7. Remediation: swift investigation and corrective action when violations surface

The SEC and DOJ publish deferred prosecution agreements (DPAs) showing what regulators view as robust programs; companies study these to calibrate their own.

Enforcement trends and landmark cases

Early FCPA cases focused on egregious bribes (e.g., Siemens’ $1.6 billion in bribes across 40+ countries, 2008). Recent enforcement highlights subtle violations—gifts to officials’ family members, sponsorships of events attended by officials, inflated consulting fees to shell companies controlled by officials or their relatives. In 2020, Total SA settled for $246 million; in 2023, JPMorgan Chase and Goldman Sachs faced SEC scrutiny for hiring practices that may have amounted to conditional job offers to foreign officials’ children in exchange for business. These cases show the enforcement agencies are tightening standards.

International convergence: UK Bribery Act and OECD anti-corruption conventions

The UK Bribery Act (2010) is stricter than the FCPA in some respects: it covers bribes to any person (not just foreign officials), includes a “commercial purpose” test, and assigns corporate liability for active company knowledge even if no single agent is guilty. The OECD Anti-Corruption Convention commits 44 countries to criminalize foreign official bribery; most have enacted laws. Multinational firms operating across jurisdictions must comply with the strictest regime—effectively the UK Bribery Act or FCPA requirements.

Red flags and risk hotspots

Internal compliance training emphasizes red flags: unusually high commissions, requests for cash payments, vague invoices, counterparties insisting on a specific third party, frequent changes of agents, and business in jurisdictions with high corruption indices. Certain industries (defense contracting, pharmaceuticals, oil & gas, infrastructure projects in developing nations) face heightened scrutiny. A single red flag doesn’t prove wrongdoing; clusters warrant investigation.

Penalties, disgorgement, and debarment

Criminal FCPA convictions carry fines up to $250,000 per individual and $2 million per company, plus up to 20 years imprisonment. Civil penalties under the anti-bribery provision reach $10,000 per violation. Companies also face disgorgement of profits earned through the bribery scheme—if a bribe secured a $100 million contract with 20% margin, $20 million must be repaid. Debarment from government contracts or procurement can be devastating for defense and infrastructure contractors. Reputational harm (media coverage, analyst downgrades, customer loss) often exceeds the legal penalty.