Foreign Corrupt Practices Act

The Foreign Corrupt Practices Act (FCPA) is US federal legislation that makes it illegal for American persons and entities—and certain foreign companies listed on US exchanges—to offer, promise, or pay bribes to foreign government officials in order to obtain or retain business. Enacted in 1977 and enforced by the SEC and Department of Justice, the FCPA has become the global benchmark for corporate anti-corruption compliance, reshaping how multinational firms operate in emerging markets.

The dual offence: antibribery and books-and-records

The FCPA comprises two main prohibitions. The antibribery provision outlaws any offer, promise, authorisation, or payment of anything of value to any foreign official with the intent to obtain or retain business or secure an improper advantage. Critically, the law does not require proof that the bribe was actually paid or that the official agreed—only that an offer or promise was made with corrupt intent. A US executive need not directly hand over cash; facilitating the transaction through intermediaries, shell companies, or local agents does not shield the company from liability.

The second pillar, the accounting provision, requires publicly-listed companies to maintain accurate books and records and institute a system of internal controls sufficient to prevent and detect prohibited payments. The accounting requirement applies even where no actual bribe has occurred—it is a forward-looking mandate to build compliance infrastructure. A breach of the books-and-records or internal-controls requirements need not involve any bribery allegation; sloppy financial controls alone can trigger enforcement.

Scope and the “foreign official” standard

The Act defines a foreign official broadly: any officer or employee of a foreign government, a foreign political party, an international organization (such as the IMF or World Bank), or a candidate for foreign political office. Crucially, this includes employees of state-owned enterprises—so a purchasing manager at a Chinese government-controlled bank, or an executive at Russia’s state oil company, qualifies as a foreign official. Employees of nominally private companies do not fall under the statute, even if those companies are majority-owned by foreign governments.

The definition also ensnares third-party intermediaries: if a US company knows, or is deliberately indifferent to the fact, that a payment to an agent, consultant, or distributor will be passed through to a foreign official, the company is liable. The legal standard is not strict knowledge but rather a reckless disregard (“knowing or having a high probability of knowledge”). Deliberately avoiding the truth—failing to conduct due diligence—can satisfy this standard.

Facilitation payments and the narrow exception

One contested detail: the Act permits “facilitation payments” to foreign officials for routine governmental actions—issuance of permits, processing of papers, scheduling inspections, or other ministerial tasks that do not involve discretionary decisions. The rationale is that payments to speed up non-discretionary functions differ in kind from bribes meant to corrupt a decision-maker’s judgment. In practice, the distinction is fluid. A payment to a customs officer to process a cargo clearance faster is facilitation; a payment to ensure a government contract award is corruption. Multinational firms operating in countries where small unofficial fees are endemic must calibrate carefully: legitimate expediting can slip into prohibited inducement if the official’s act becomes sufficiently discretionary.

Most major firms have begun restricting facilitation payments anyway, viewing the legal grey zone as not worth the compliance risk. The trend is toward zero-tolerance policies for all government payments outside formal channels.

Enforcement and liability

The SEC brings civil actions against public companies, typically alleging violations of the antibribery provision or accounting standards under the Securities Exchange Act. The DOJ Criminal Division prosecutes both individuals and corporations, bringing felony charges that can result in substantial prison time for executives and nine-figure fines for companies. Parallel criminal and civil enforcement is common: the company faces a fine and must strengthen its controls; executives face personal criminal liability.

A company may avoid criminal prosecution if it demonstrates that it had robust anti-corruption controls in place, discovered the violation itself, promptly reported it to authorities, and cooperated fully with the investigation. This incentive structure has spawned industry-wide compliance programs: background checks on agents and distributors, periodic anti-corruption training, financial transaction monitoring, and third-party audits. The compliance infrastructure is often more costly than any bribe would have been, yet it has become a table-stakes requirement for any firm with material foreign operations.

Real-world impact and boundary cases

Since 2008, enforcement has accelerated sharply. Major prosecutions have involved corruption schemes in oil and gas (Angola, Kazakhstan), telecommunications (Nigeria), pharmaceuticals (various emerging markets), and construction and engineering (Middle East, Africa). Several multinational corporations have paid half-billion-dollar settlements: Siemens ($800M), Daimler ($185M), JPMorgan ($100M+). These cases are not victimless technical violations; they document systematic bribery rings spanning years and involving dozens of officials.

The extraterritorial reach—prosecution of US nationals anywhere on Earth, and of foreign companies listed in the US—has proven controversial. Foreign governments argue that the US enforces its values globally; American firms argue they face unequal competition against European or Chinese rivals with less stringent home-country controls. The UK Bribery Act mirrors and in some respects exceeds FCPA standards, and the OECD’s Anti-Bribery Convention has pushed many countries toward their own anti-corruption regimes, but enforcement intensity varies widely.

Design flaws and evolution

Critics note that the FCPA, by its 1977 design, predates many modern enforcement tools. “Knowledge” and “intent” are subjective; corporate cultures can mask direct knowledge while maintaining plausible deniability. Enforcement has begun to rely on corporate compliance monitors—independent third parties appointed to oversee a company’s controls for years—as a form of quasi-regulatory presence within major firms. The practice is effective but generates ongoing debate about the proper boundary between law enforcement and corporate governance.

The statute has also been tested by changing technology and business models. Does a cryptocurrency payment to an official’s wallet count? Does an offshore account used by a foreign distributor trigger liability if the company suspected but did not confirm the payment’s destination? These questions remain unsettled, and enforcement agencies continue to adapt their interpretation as new fact patterns emerge.

See also