MENLO PARK, Calif., July 9, 2014 /PRNewswire/ -- Protiviti ( www.protiviti.com), a global consulting firm, has released the Protiviti Governance Portal for Third-Party Anti-Corruption, enabling companies to develop and manage a risk-based, third-party anti-corruption program that supports compliance with the U.S. Foreign Corrupt Practices Act (FCPA) and other anti-corruption laws. The Governance Portal for Third-Party Anti-Corruption v4.1 is a new module of the Protiviti Governance Portal, a GRC (governance, risk and compliance) platform that helps organizations efficiently support multiple GRC activities. With the new module, companies can manage corruption risk across their third-party ecosystem from a single, centralized platform. Protiviti also provides consulting services to support anti-corruption programs with anti-corruption strategy, due diligence and remediation activities.
"For large companies, the most common source of FCPA violations comes from third parties acting on their behalf," said Scott Moritz, managing director and global lead of Protiviti's Investigations and Fraud Risk Management practice and former FBI special agent. "Acknowledging the unique risks these 'intermediaries' present and having a well-conceived policy to combat them simply aren't enough. To fully operationalize an anti-corruption program, organizations must have the technology and content to manage the underlying processes and align them with their internal controls and audit programs."
Third-party Due Diligence In November 2012, the Criminal Division of the U.S. Department of Justice along with the U.S. Securities and Exchange Commission jointly released " A Resource Guide to the Foreign Corrupt Practices Act." The guide outlines 10 "Hallmarks of an Effective Compliance Program," one of which relates to third-party due diligence and payments. According to the guide, "DOJ's and SEC's FCPA enforcement actions demonstrate that third parties, including agents, consultants, and distributors, are commonly used to conceal the payment of bribes to foreign officials in international business transactions. Risk-based due diligence is particularly important with third parties and will also be considered by the DOJ and SEC in assessing the effectiveness of a company's compliance program."
The Protiviti Governance Portal for Third-Party Anti-Corruption enables companies to:
- Create a centralized repository for all program data and activity.
- Gather responses to third-party anti-corruption questionnaires prior to contract approval.
- Establish a risk-scoring model that aligns with the company's overall anti-corruption policy and create scorecards for its vendors and business partners.
- Identify third parties with heightened risk, allowing organizations to allocate resources on a risk basis for additional investigation and follow-up.
- Manage overall workflow, investigative cases and approvals.
- Maintain a complete audit trail of activities.
- Continuously monitor third parties against watch lists