Compliance News #342
Compliance out of control, where is the limit?
In today’s corporate environment, internal controls have evolved into a cornerstone of effective compliance management. Gianfranco Barchiesi, a legal expert specializing in Compliance, currently pursuing doctoral research in Germany, explores how the expansion of Compliance into new areas like cybersecurity and quality control has raised critical questions about the scope and limits of this function. While these controls are essential for safeguarding assets and ensuring financial integrity, their proliferation across various domains must be handled with care to avoid inefficiencies and unnecessary bureaucracy.
Barchiesi emphasizes that the success of compliance hinges on finding the right balance. Internal controls should support organizational operations without stifling creativity or slowing down processes. By working closely with other departments and fostering a culture that values compliance, companies can ensure that these controls not only protect against legal and regulatory risks but also contribute to long-term success.
Summary of the latest Videos, Podcasts, and Articles of interest to the Compliance community
Videos
Why don't people speak up? The Power of Framing (Learning from Accidents Ep.1)
In January 2012, the Costa Concordia went aground and capsized off the coast of Italy. One of the most disturbing aspects of this accident was that a group of competent officers and an experienced captain on the bridge were not able to detect that the ship was heading straight into the rocks.
In this session, the power of framing using the story of the Costa Concordia accident is presented. Dr. Anand interviewed the captain before he was sentenced to prison, and was surprised by how the captain responded to my open-ended questions during the course of the interview and how it led o a completely different view of the accident and learning than the one presented in the public domain.
In this episode, we will focus on the following questions:
1. Why was the Costa Concordia accident framed as a problem of ‘speaking up’ and the failure of ‘bridge resource management’?
2. What are the parallels between concepts such as ‘psychological safety’, ‘crew resource management’, ‘non-technical skills’ and ‘soft skills’?
3. Why do these concepts appeal so much to the risk and safety industry?
4. What are the alternative frameworks to think about ‘speaking up’?
5. And importantly, why we should never underestimate the power of framing?
This is the first in a series of episodes based on my recent book, ‘Are We Learning from Accidents?’. In the next few weeks, I will post more videos on a range of topics including 1) normalisation of risk, 2) collective sensemaking in a crisis, 3) understanding safety culture, 4) the power of scapegoating (blame), 5) what is learning, and 6) how do human beings learn, unlearn, relearn and make decisions.
How Malcolm Gladwell, Simon Sinek, And Walter Isaacson Play Games With Research | SVIC Podcast #39
Alex Edmans, author of "This Book May Contain Lies" (https://amzn.to/3LPGd3D). His book uses colorful examples—from a wellness guru’s tragic but fabricated backstory to the blunders that led to the Deepwater Horizon disaster to the diet that ensnared millions yet hastened its founder’s death—Edmans highlights the biases that cause us to mistake statements for facts, facts for data, data for evidence, and evidence for proof.
Show hosts Joe (Eng VP) and Jordan (M&A Deal Lead) worked at various companies from Google, Apple, Facebook, Microsoft, Salesforce, Slack, Carta, Splunk, Wealthfront, Adobe, and more.
5th International Collective Action Conference highlights
Around 200 leading anti-corruption professionals from the public and private sectors, civil society and academia gathered in Basel, Switzerland at the 5th International Collective Action Conference on 24 to 25 June 2024. Their goal: to amplify the growing momentum for Collective Action and to put business integrity on the global anti-corruption agenda.
The agenda featured panel discussions, interactive breakout sessions, an exhibition and networking breaks to facilitate exchanges among thought leaders on cross-cutting Collective Action themes.
The conference included the prestigious International Anti-Corruption Collective Action Awards, recognising two initiatives from Brazil that have demonstrated exceptional outcomes, emerging best practices, and innovative strategies in tackling integrity challenges.
21st International Anti-Corruption Conference (IACC)
A delegation from the Basel Institute attended the 21st International Anti-Corruption Conference in Vilnius, Lithuania on 18–21 June 2024. See below for the recordings of the workshops and high-level events in which we participated.
Podcasts
A Life in Pictures: Gretchen Haskins- Bringing breakthroughs in safety performance
This webinar series delves into the lives and careers of inspirational people who have made a significant difference to the safety and performance of safety-critical industries. Our guest is Gretchen Haskins, who will reflect on ten pictures to tell the story of her life. Hosted by Steven Shorrock.
Creativity and Compliance: Nudges and Compliance Training
Where does creativity fit into compliance? In more places than you think. Problem-solving, accountability, communication, and connection – they all take creativity. Join Tom Fox and Ronnie Feldman on Creativity and Compliance, part of the award-winning Compliance Podcast Network.
Ronnie’s company, Learnings and Entertainment, utilizes the entertainment devices that people use to consume information in their everyday, non-work lives, and apply it to important topics around compliance and ethics. It is not only about being funny. It is about changing the tone of your compliance communications and messaging to make your compliance program, policies and resources more accessible.
In this episode of Creativity and Compliance, hosts Tom Fox and Ronnie Feldman discuss the concept of nudges in compliance.
Ronnie defines nudges as positive reinforcements or gentle pushes that influence behavior and decision-making. They explore how nudges can extend learning, influence culture, and promote ethical behavior. They emphasize the importance of reinforcing learning over time and using effective communication channels to nudge employees. They also discuss the unconscious nature of nudges and the role of leaders in influencing behavior. The episode concludes with a discussion on the Newcastle honesty box study, which demonstrates the power of subtle nudges.
Key Highlights:
· What are nudges?
· Nudges can extend learning, influence culture, and promote ethical behavior
· Reinforcing learning over time is key to successful nudges
· Nudges can be unconscious and rely on automatic default thinking
· Leaders play a crucial role in influencing behavior and promoting a culture of compliance
Artificial Intelligence, Data & Tech
Digital Platforms, Competition Law, and Regulation
This open access book offers a comparative and inter-disciplinary perspective on the unique competition law challenges presented by the converged digital markets. Following the digitalisation of even the most traditional bricks-and-mortar sectors of the economy, a well-functioning internal market can only be guaranteed by ensuring the competitiveness of the digital markets. What role do intellectual property law and competition law play in this digital world? How can a more economic analysis strengthen innovation policies to achieve a truly competitive digital single market? The book provides a rigorous discussion of the many reasons why the regulatory responses, not just in Europe but in other jurisdictions too, may fall short. It addresses an array of procedural, substantive and other issues that are generating intense debate across the antitrust community. This includes the scope and objectives of digital regulation, whether the application of ex-ante rules would result in fragmentation and inconsistencies, and whether such regulatory regimes are an appropriate tool for substantive assessment. The book explores whether the application of these rules would effectively tackle the competition enforcement challenges seen under the competition laws, whether they can be applied without undermining other rights such as privacy, and whether they are appropriate for this digital age as well as the new digital era ahead of us. Part 1 offers a detailed inter-disciplinary perspective on the most recent legislative solutions in the European Union, namely, the Digital Services Act, the Digital Markets Act, and the Data Act. Part 2 offers competition and regulatory responses to these ever-emerging digital challenges by the UK, Latin American, Indian and Chinese regulators. The ebook editions of this book are available open access under a CC BY 4.0 licence on bloomsburycollections.com.
The AI Risk Repository: A Comprehensive Meta-Review, Database, and Taxonomy of Risks From Artificial Intelligence
The risks posed by Artificial Intelligence (AI) are of considerable concern to academics, auditors, policymakers, AI companies, and the public. However, a lack of shared understanding of AI risks can impede our ability to comprehensively discuss, research, and react to them. This paper addresses this gap by creating an AI Risk Repository to serve as a common frame of reference. This comprises a living database of 777 risks extracted from 43 taxonomies, which can be filtered based on two overarching taxonomies and easily accessed, modified, and updated via our website and online spreadsheets. We construct our Repository with a systematic review of taxonomies and other structured classifications of AI risk followed by an expert consultation. We develop our taxonomies of AI risk using a best-fit framework synthesis. Our high-level Causal Taxonomy of AI Risks classifies each risk by its causal factors (1) Entity: Human, AI; (2) Intentionality: Intentional, Unintentional; and (3) Timing: Pre-deployment; Post-deployment. Our mid-level Domain Taxonomy of AI Risks classifies risks into seven AI risk domains: (1) Discrimination & toxicity, (2) Privacy & security, (3) Misinformation, (4) Malicious actors & misuse, (5) Human-computer interaction, (6) Socioeconomic & environmental, and (7) AI system safety, failures, & limitations. These are further divided into 23 subdomains. The AI Risk Repository is, to our knowledge, the first attempt to rigorously curate, analyze, and extract AI risk frameworks into a publicly accessible, comprehensive, extensible, and categorized risk database. This creates a foundation for a more coordinated, coherent, and complete approach to defining, auditing, and managing the risks posed by AI systems..
IOE and Deloitte Release AI Readiness Report
IOE and Deloitte publish a comprehensive analysis of AI readiness within G20 countries.
Historical Analogues That Can Inform AI Governance
The increasing capabilities of artificial intelligence (AI) have raised questions about how to maximize its benefits while minimizing the risks that it may pose. Similar questions regarding governance have arisen for four technologies in recent decades: nuclear technology, the Internet, encryption products, and genetic engineering. The histories of their governance illustrate three themes: the need for consensus on norms for the technology, important differences in the governance of physical and nonphysical assets, and the role of partnerships between the public and private sectors in governance. These technologies vary in terms of the resources they require to compete in their development, whether their uses are primarily in the public or private sector, the security risks they pose, consensus on these risks, their physical assets that can be controlled, whether they can foster a community of shared interests for governance, and whether public or private governance is best suited for minimizing risks and maximizing benefits.
Key Findings:
· AI that poses serious risks of broad harm, requires substantial resources to acquire and use, and has physical assets that can be monitored and controlled may be suited to a broad international structure for governance similar to that created for nuclear technology.
Recommended by LinkedIn
· AI that poses minimal risks may be suited to a governance model like that created for the Internet.
· AI that is accessible but may pose great risks might be suited to a governance model similar to that used for genetic engineering, but stakeholders should be cautious about applying governance models similar to that used for encryption.
Landmark EU AI Act Takes Effect; Here’s What You Need to Know
The European Union’s landmark AI Act formally went into effect Aug. 1, changing the way artificial intelligence is regulated across Europe — and, indeed, around the world. This first-ever comprehensive legal framework aims to ensure that AI systems released in the EU market and used in the EU are safe. Punter Southall partner Jonathan Armstrong explores the details of the regulation and what corporations around the globe need to know.
DEI and AI: Building systems without bias
Key takeaways: Chief diversity, equity and inclusion (DEI) officers are uniquely positioned to lead effective and equitable AI use in their organizations. Bringing together the best of DEI and AI, chief DEI officers can contribute to the implementation and assessment of AI systems, prioritize DEI commitments, educate the workforce, and evolve organizational strategy.
Compliance News
Emerging Risks Initiative – Major Trends and Emerging Risk Radar 2024
The CRO Forum’s Emerging Risk Initiative continually scans the horizon to identify and communicate emerging risks facing the insurance industry which are expected to have a significant impact on the insurance sector within 1 to 10 years. Emerging Risks are risks which may newly develop or which already exist and are continuously evolving. They are characterised by a high degree of uncertainty in terms of impacts and likelihood and may have a substantial potential impact on underwriting, investments and/or operations of an insurance company.
The following new risks have been added to the Radar in 2024:
· Social Fragmentation
· Economic Trade Conflicts and Sanctions
The following changes were made to risks that were already included in 2023:
· Blockchain Technology and Digital Currencies and New insurance competition have been removed.
· Climate engineering and Energy storage systems have been merged.
Even Good People Make Bad Decisions
Few people involved in corporate scandals actively set out to do harm. So then why are corporate scandals so common? Ethics advocate Anna Romberg explores the human psychology explanations at the heart of why good people sometimes make bad choices.
Three steps to thinking more like a behavioural scientist
In the first of a new series, Ogilvy UK’s Dan Bennett shares his first three secrets to thinking like a behavioural scientist, from keeping context top of mind to not always doing what the customer wants.
Chief Compliance Officer Pay Rises, but at a Slower Pace
Chief compliance officers continue to rake in more money, but increases in most sectors have slowed, according to a new survey.
Median compensation—which includes base salary plus bonus—for compliance chiefs at public companies rose 7% to $419,000 in 2024, while it climbed 12% to $250,000 at nonprofits, according to a March survey of compliance heads conducted by boutique executive search firm BarkerGilmore. The median CCO salary and bonus at private companies dropped 1% to about $300,000.
The Napoleon Complex in Professional Football Refereeing
A recent study by Callegaro, Lackner and Sonnabend confirms that physical attributes, particularly height, can subtly influence decision-making, even among highly experienced soccer referees. This is called the Napoleon Complex :-)
Taller players are more likely to be penalized when the referee is shorter, with up to a 9.4% increase in fouls called against them. Conversely, shorter players are less likely to be sanctioned.
High-status players (those with higher market values) experience less bias, as referees are more cautious about imposing sanctions that could lead to high conflict costs.
While more experienced referees show some reduction in bias, it’s not completely eliminated. So, even in high-stakes environments with rigorous oversight, subtle biases can persist which impact fairness and outcomes.
How might this translate to corporate boardrooms, hiring committees, and performance evaluations?
Five Ways to Tap Into Other People’s Wisdom
This wonderful article on a book about tapping into other people's wisdom provides an easy to follow roadmap for that:
1. Choose curiosity and never assume to know what is going on for other people.
2. Make it safe that people tell you about compliance challenges by explicitly stating that you do not expect things to be perfect.
3. Ask quality questions like "what do you think I might be missing?"
4. Listen to learn, not to win.
5. Reflect on what you learned and keep your partner up to date on what you learned and what you plan to do.
Where Data-Driven Decision-Making Can Go Wrong
When considering internal data or the results of a study, often business leaders either take the evidence presented as gospel or dismiss it altogether. Both approaches are misguided. What leaders need to do instead is conduct rigorous discussions that assess any findings and whether they apply to the situation in question.
Such conversations should explore the internal validity of any analysis (whether it accurately answers the question) as well as its external validity (the extent to which results can be generalized from one context to another). To avoid missteps, you need to separate causation from correlation and control for confounding factors. You should examine the sample size and setting of the research and the period over which it was conducted. You must ensure that you’re measuring an outcome that really matters instead of one that is simply easy to measure. And you need to look for—or undertake—other research that might confirm or contradict the evidence.
By employing a systematic approach to the collection and interpretation of information, you can more effectively reap the benefits of the ever-increasing mountain of external and internal data and make better decisions.
Why You Should Always Switch: The Monty Hall Problem (Finally) Explained
One of the most famous television game shows from the heyday of the genre from the 1950s to the 1980s was Let’s Make a Deal. Its host, Monty Hall, achieved a second kind of fame when a dilemma in probability theory, loosely based on the show, was named after him. A contestant is faced with three doors. Behind one of them is a sleek new car. Behind the other two are goats. The contestant picks a door, say Door 1. To build suspense, Monty opens one of the other two doors, say Door 3, revealing a goat. To build the suspense still further, he gives the contestant an opportunity either to stick with their original choice or to switch to the unopened door. You are the contestant. What should you do?
Ignorance: the last Hiding Place for Risks
Recent Corporate Governance failures show that we need to radically rethink our approaches to risk and its management.
Seeking to Incentivize Voluntary Disclosure, DOJ Rolls Out New Whistleblower Pilot Program
Earlier this month, the DOJ officially unveiled its corporate whistleblower awards pilot program, which is designed to encourage and incentivize both individual whistleblowers and companies that voluntarily disclose information. With employees more likely than ever to report misconduct, a group from Cadwalader, Wickersham & Taft say companies need to work quickly to adapt.
Why Don’t People Intervene When They See Unethical Conduct?
A psychological phenomenon known as the intention-action gap could help explain why your employees are hesitant to speak up when they see unethical behavior. Compliance consultant Vera Cherepanova explores this phenomenon and how companies can work against it.