Rethinking compliance: essential cornerstones for more effectiveness in compliance management

Grüninger, Stephan, Schöttl, Lisa

04 September 2017

In the past Compliance Management has often failed, the Volkswagen emissions scandal just being one prominent example. Not everything has to be reinvented, and not everything that companies have done in the past regarding Compliance is wrong. But it is about time to think Compliance in new ways. What does “Compliance Management 2.0” really depend on? The following article aims at laying out the cornerstones for enduring effective Compliance which amongst others comprises sincerity and credibility and a moral foundation. Furthermore, the commitment and role model behavior of top managers and the training of line managers are crucial for the effectiveness of any Compliance Management System (CMS). Ultimately, for Compliance to function efficiently the efforts must be adequate for the respective company and realistic regarding the achievable goals.

Compliance

compliance, compliance management

info:eu-repo/classification/ddc/343

ddc:343

How to implement an effective Criminal Compliance Management system

Schönborn, Elias, Keimelmayr, Robert

18 June 2023

As the number of government investigations in the corporate and public sectors increases worldwide, the interest in implementing effective internal rules to avoid non-compliance with the law and its many negative consequences is growing. In this context, one may think primarily of the general concept of Compliance, without considering its various forms in different areas of law. In particular, Compliance with regard to criminal law - also referred to as 'Criminal Compliance' – has received greater attention in recent years. What applies in general to Compliance is particularly true for Criminal Compliance: Only a Compliance Management System tailored to the individual company can effectively prevent criminal offences.

info:eu-repo/classification/ddc/343

ddc:343

Trends in regulatory expectations and their impact on compliance management in companies

Trossbach, Stephanie

03 November 2022

Compliance requirements for companies are growing, especially in the fields of ESG (Environmental, Social, and Corporate Governance) and data privacy. The phenomenon can be observed not only within the EU, but also many other areas of the world. Within the regulatory environment, fostering ESG practices has long since developed from a voluntary commitment to a “real” compliance issue which lawmakers are driving forward with serious sanctions and which courts are also shaping within the framework of the evolving laws. These laws are very complex, often unclear, and intrude deeply into the areas of risk analysis and risk management, which traditionally represent a core responsibility of companies. Many regulations emphasize development and implementation of internal processes within companies. This greatly reduces companies’ discretionary powers, since responsible use of leeway is a core area of entrepreneurial decision-making governed by the business judgment rule. Structurally, we are seeing increased legalization of risks, through which the legislator de facto takes away companies' leeway to make entrepreneurial decisions. Also, the threat of severe fines and uncertainty about the interpretation of legal terms makes it difficult for companies to decide what needs to be done to meet the laws’ requirements and to avoid risk. Looking at the char acter of the regulations, we see value-driven and symbolically-charged laws. However, these laws are anything but “dead letters” - they intervene deeply in companies’ risk management, aim at changing behavior, and have sharp “teeth” in the form of sanctions. The EU may be a particularly fertile source of symbolic legislation, which can serve to create political identity. Companies can, however, choose different ways to deal with these challenges, and they are free to find the right path. Even if lawmakers are increasingly intervening in the way companies carry out risk analyses and the priorities they set in that context, companies should defend their leeway and use it wisely. It is of utmost importance to know the real risks well and to use leeway responsibly. A diligent risk analysis, carefully aligned to a company’s circumstances and needs, is always a good starting point. Perfect knowledge of applicable laws and the company’s operations is a prerequisite for a professional risk assessment and building an effective Compliance Management System (CMS). There is always room for balanced decision-making regarding risk assessment and prioritization in accordance with the business judgment rule and entrepreneurial responsibility.

info:eu-repo/classification/ddc/343

ddc:343

Compliance Elliance Journal

Stefano, Michele de, Papathanasiou, Konstantina, Schneider, Hendrik

03 November 2022

The period of crisis is ongoing and still poses challenges for companies. In the aftermath of Covid-19 pandemic, the effects of the Russian war of aggression and inflation increase economic pressures. This might lead to less expenses on Compliance and increase the vulnerability to Compliance-violations. At the same time, legal policy trends are moving toward a stronger commitment to Compliance and transparency (e.g., the German Act on Corporate Due Diligence Obligations in Supply Chains or implementation laws of EU Whistleblower Directive). In this edition, our authors address some of these legislative trends as well as the question of the limits of “Creative Compliance”.

info:eu-repo/classification/ddc/343

ddc:343