Corruption is a global phenomenon and not restricted to any one country. In recent years, the fight against corruption of public officials has gained momentum due to globalisation, active media and role played by international groups and organisations.
In 1977, the United States (U.S.) enacted a federal law, the Foreign Corrupt Practices Act (FCPA), that prohibits the payment of bribes to foreign officials by the U.S. organisations, acting anywhere in the world, directly or indirectly, in order to obtain or retain business. The FCPA also requires the organisations to maintain accurate books and records. They should also have a system of internal controls sufficient to provide reasonable assurances where transactions are executed, and assets are accessed and accounted for, in accordance with management's authorisation. The sanctions and penalties for FCPA violations can be significant. Organisations may also be subject to oversight by an independent consultant.
The United Kingdom (U.K.) introduced the Bribery Act 2010. Internationally, it is among one of the strictest legislations on bribery in the world. Other European governments and emerging economies, including China and Brazil, have implemented anti-corruption regulations too.
India is no exception to the ill-effects of corruption. Historically, India has been ranked low in the corruption perception index published by Transparency International. India currently has the Prevention of Corruption Act, 1988 (PCA) that prohibits public officials from accepting bribes. The amendments to the PCA in 2018, prevent an organisation from taking the plea that bribery and corruption instances are individual offences, except when it can prove that it had adequate compliance procedures and safeguards in place to prevent its associated persons from such conduct. For more details, please refer to our thought leadership on “The Prevention of Corruption (Amendment) Act, 2018: Key Highlights”.
With globalisation, there has been a growth in international organisations operating in multiple jurisdictions. The biggest challenge for these organisations is to meet the compliance requirements of applicable international and local legislations. It is critical that companies establish a compliance system that can identify and elevate potential red flags.
Adequate and effective Corporate Compliance Programme (CCP)
Enough guidance is available from regulators and international bodies on how organisations can build an adequate and effective CCP. An effective compliance programme is expected to be tailored according to a company’s specific business and its associated risks. It should also be constantly improved and adapted to corporate changes. Hallmarks of an effective compliance programme are as follows:
KPMG in India’s experience shows that organisations in India, especially in the mid and small size segment, have a compliance programme which is good on paper but lacks proper risk assessment, staffing and resources for effective implementation and monitoring of the CCP. Compliance procedures are mostly manual and unstructured which may not identify and elevate potential red flags. Data retention is disorganised, which creates challenges in data retrieval for compliance audits and is also prone to loss of data.
Organisations can leverage technology to improve efficiency and effectiveness of CCP by:
Now, it is imperative for organisations to understand that simply creating a compliance programme is not enough. Compliance programmes and internal controls must be well designed and effectively implemented and also tailored to a company’s risk profile for managing bribery and corruption.
 Some of the key guidance notes are as follows: