Category Archives: Compliance Verification

Wells Fargo, again

“Wells Fargo Gets New Warning,” The Wall Street Journal, November 30, 2017 B1.  Feds may take enforcement action over the company’s auto-insurance and mortgage operations.

Will the shoes ever stop dropping at Wells Fargo?  Once you are shown to be non-compliant, do you get stuck under the regulatory microscope?

How’s that suit against the directors going?

Advertisements

Leave a comment

Filed under Board, Compliance, Compliance, Compliance Verification, Controls, Corporation, Culture, Directors, Duty, Duty of Care, Employees, Governance, Internal controls, Oversight, Oversight

Breach at PayPal

“PayPal Discloses Breach At Its TIO Unit,” The Wall Street Journal, December 2, 2017 B11.  Upwards of 1.6 million users affected at newly acquired company that has kiosks in retail stores.

When you acquire a company, make sure their cybersecurity is up to snuff.  From Day One.

Leave a comment

Filed under Board, Compliance, Compliance Verification, Controls, Corporation, Duty, Duty of Care, Governance, Internal controls, IT, Oversight, Oversight, Protect assets, Protect information assets, Security, Supervision

Wells Fargo, continued, again

“Wells Fargo Bankers, Chasing Bonuses, Overcharged Clients,” The Wall Street Journal, November 28, 2017 A1.  Only 35 of 300 companies had been charged only what they had agreed to.  Four foreign-exchange bankers fired.

Who is surprised?  The culture at the company was potentially fatally defective.

Why hasn’t the Board been held liable?  The directors utterly failed in their fiduciary duties.

Leave a comment

Filed under Board, Compliance, Compliance, Compliance Verification, Controls, Corporation, Culture, Culture, Directors, Duty, Duty of Care, Employees, Governance, Internal controls, Oversight, Oversight, Protect assets, To report

Another one bites the dust

“Steinhoff’s CEO Resigns Amid Accounting Probe,” The Wall Street Journal December 7, 2017 B3.  Off-balance sheet accounting leads to resignation of CEO of parent company of Sleepy’s (a mattress brand), and a drop of 62% in share value.

Where was the Board?  Where were the auditors?  Trying out the company product?

Who pays the price of management’s failure?

Leave a comment

Filed under Accuracy, Compliance, Compliance, Compliance Verification, Controls, Corporation, Culture, Duty, Employees, Governance, Information, Internal controls, Oversight, Oversight, To report, Value

Swiss cheese, revisited

I am reminded of the Swiss cheese model for managing risk.  See https://infogovnuggets.com/2014/10/02/swiss-cheese/.

The awful shooting at the church outside San Antonio.  How many controls to manage the risk of a lunatic buying a gun failed?  Certainly, the Air Force failed by not recording the circumstances of his dishonorable discharge and related matters. (Was this systemic?  What about other branches?  Were there incentives/disincentives?)  And the fact that he had been in a mental institution wasn’t in the data base either. Who else failed?

And what about the self-certification, where a gun buyer needs to certify that he/she hasn’t done a bunch of bad things, which in turn is confirmed by the background check?  Do self-certifications work?  How much do you rely on having your employees sign an annual certification that they’ve read and understood (and don’t know of any violations of) your Code of Conduct?  Does that provide any protection?  Or does it just give you false comfort and a metric to measure?

 

Leave a comment

Filed under Compliance Verification, Risk

Trending

“Fidelity Is Hit by Employee Conduct Problems, The Wall Street Journal October 23, 2017 A1.  Several high-level employees canned following sexual harassment allegations.

Who knew Harvey W. would start a trend that reached beyond entertainment into high-finance?

Did these companies not have policies against sexual harassment and bullying?  Had compliance with the policies been audited?  What’s the compliance history?

Leave a comment

Filed under Board, Compliance, Compliance, Compliance Verification, Controls, Corporation, Culture, Directors, Duty, Employees, Governance, Internal controls, Oversight, Oversight

Mulligan

This is a straight compliance piece, where a corporation is held liable for the misdeeds of its employees (agents).

“Wells Fargo to Pay $3.4 Million Over Advisers’ Flub,” The Wall Street Journal, October 17, 2017 B10.  Apparently, some of the bank’s financial advisers recommended volatility ETFs when they shouldn’t have.  The advisers also didn’t have adequate training.

This is straightforward.  Should some manager be fired or disciplined?  Maybe.  This would not seem the type of event that calls into question the Board’s duty to supervise, unless this is the third time this same compliance issue has arisen.  This is only the second time.  The bank paid nearly $3 million in fines and restitution in 2012 for a similar violation.

Leave a comment

Filed under Board, Compliance, Compliance, Compliance Verification, Controls, Corporation, Directors, Duty, Duty of Care, Employees, Governance, Internal controls, Oversight, Oversight, Requirements