As every compliance practitioner is well aware, third parties still present the highest risk under the Foreign Corrupt Practices Act. The Department of Justice Evaluation of Corporate Compliance Programs devotes an entire prong to third party management. It begins with the following:
Risk-Based and Integrated Processes – How has the company’s third-party management process corresponded to the nature and level of the enterprise risk identified See more +
As every compliance practitioner is well aware, third parties still present the highest risk under the Foreign Corrupt Practices Act. The Department of Justice Evaluation of Corporate Compliance Programs devotes an entire prong to third party management. It begins with the following:
Risk-Based and Integrated Processes – How has the company’s third-party management process corresponded to the nature and level of the enterprise risk identified by the company? How has this process been integrated into the relevant procurement and vendor management processes?
This first set of queries clearly specifies the DOJ expects an integrated approach that is operationalized throughout the company. This means your compliance must have a process for the full life cycle of third party risk management. There are five steps in the life cycle of third party management. See less -