The EC New Alert Mechanism to Detect Cartels: A Teaser Before a European General Framework for Whistleblowing

by Kramer Levin Naftalis & Frankel LLP

Kramer Levin Naftalis & Frankel LLP

Whistleblowing has been part of the U.S. legal tradition, if not since the resolution passed by the Continental Congress in 1778, at least since the adoption of the 1863 False Claims Act. With regard to the disclosure of antitrust violations, the well-known 2013 Criminal Antitrust Anti-Retaliation Act reinforced whistleblower protections for employees who report information to federal prosecutors. 

Whistleblowing is a much more recent development in the European Union (EU), but an increasing number of member states are adopting relevant laws, and the practice has begun to be addressed by the EU legislature.
Trade secrets and immunity of whistleblowers
The first-ever EU legislation to mention whistleblowers with a view toward protecting them against retaliatory measures is the EU Trade Secrets Directive of June 8, 2016, which ensures the protection of undisclosed know-how and business information against their unlawful acquisition, use and disclosure. Against the current context of cyberattack threats, this Directive was approved by a rather large majority of 503 of the 766 members of the EU Parliament, and was subsequently unanimously approved by the Council.
In the aftermath of Snowden’s recent revelations, the notorious Luxleaks scandal and the publication of the Panama Papers, it comes as no surprise that the issue of whistleblowing was a major point of controversy during the parliamentary debate. This debate resulted in the adoption of Article 5 b of the Directive, which obliges member states to ensure that trade secrets’ protective measures are dismissed where the alleged acquisition, use or disclosure of a trade secret was carried out by a whistleblower “for revealing misconduct, wrongdoing or illegal activity, provided that the respondent acted for the purpose of protecting the general public interest.”
This provision, being part of a directive (versus a regulation directly applicable in all member states), requires national implementation and provides member states the discretion to define the legal framework applicable to whistleblowing.
The recent French anti-corruption law and whistleblowing
The legal framework for addressing whistleblowing in France is set forth under the December 2016 Act on Transparency, and Fight against Corruption (SAPIN II Act), and the Decree implementing this law published on April 20, 2017. This legislation greatly enlarges the scope of whistleblowing which may relate to all kind of misdemeanors, including anti-competitive practices. It also sets up a general status for whistleblowers. According to this new harmonized status, a whistleblower is exempt from the application of sanctions or from retaliation measures for having duly disclosed confidential information on the functioning of his/her company or on the conduct of employees or managers. In case of a dispute between a whistleblower and his/her company on the application of the new regime of whistleblowing, it is up to the company to prove that the sanction inflicted or any other measure taken against the employee concerned is justified based on concrete elements.
However, the following criteria must be met to allow the whistleblower to benefit from this protective status:

  • The whistleblower can only report on facts that he or she knows personally, without any intermediary.    
  • The whistleblower must be “disinterested.” This implies on the one hand that he or she must not act in pursuit of financial incentives, and on the other hand that he or she cannot have a regular activity of disclosure of misconduct or alert.
  • The whistleblower must act in a “bona fide manner.”

With regard to the procedure of whistleblowing, the SAPIN II Act integrates into French law the European Court of Human Rights (ECHR) case law’s established principles. In line with the 2008 case Guja v. Moldova, whistleblowers must respect a three-step scale: the SAPIN II Act states that (i) the alert reporting “shall be brought to the attention of the direct or indirect supervisor, or to the employer or to a contact designated by him”; (ii) in the event of inertia by the employer, the whistleblower may petition the authorities, e.g., administrative authorities (labor inspectors, for instance), courts or even professional bodies; and (iii) as a last resort, in the event the authorities abstain from processing the case beyond a period of three months, the whistleblower may make his or her report public.
EU new antitrust hotline and the necessity to reinforce companies’ compliance programs
The fundamental principles derived from the ECHR’s case law are usually applied in the different EU member states where whistleblowing is becoming a common practice in the public and private sectors. In response, the EU Commission (EC) is currently contemplating the drafting of a directive to harmonize whistleblowing national legal frameworks.
In parallel, in her field of competence, Mrs. Margrethe Vestager, the competition EU commissioner, decided to launch, on March 16, 2017, the first-ever EU whistleblowing mechanism as a tool to alert about cartels and other antitrust violations (

The specificity of this mechanism is that it is totally anonymous. To protect anonymity, the system is encrypted and managed by an external service provider.
Anonymous mechanisms dedicated to antitrust alerts have been established in a few member states, such as Germany since 2012, Denmark and Romania. But other countries are quite reluctant to accept such anonymity.
This is the case in the U.K. In principle, anonymous whistleblowers who report antitrust violations to the Competition and Markets Authority are not accepted. However, whistleblowers are assured that their identity is not disclosed to third parties. In France, there is no alert system specifically dedicated to the disclosure of antitrust violations, but the SAPIN II whistleblowing system based on the recommendations of the National Data Protection Authority requires whistleblowers to reveal their identity, which, as in the U.K., may not be revealed to anyone else; the  law “ensures the strict confidentiality of the authors of the alert” but also of “the persons targeted by it and the information gathered by all the recipients of the alert.” This provision is based on the idea that identification of whistleblowers is a necessary safeguard against malicious accusations. In addition, one may wonder whether a judge could legally authorize visits and seizures in the course of an investigation solely based on anonymous denunciations. In this event, such an order would certainly be challengeable.

Apart from the fact that EU member states have different views concerning anonymity versus identification of whistleblowers, the new EC alert tool created to facilitate the collection of evidence of antitrust practices raises serious concerns.
Indeed, this system risks jeopardizing leniency programs. Once the EC is alerted about a cartel by a whistleblower, how will it be possible for companies which provide proofs of the practices to the EC to benefit from immunity? The EC should urgently clarify the issue to ensure legal certainty.
In any case, to avoid suffering detrimental consequences of such a mechanism, which would make it very easy for competitors or former employees, for instance, to report real or alleged antitrust violations, companies must consider as a priority putting in place efficient internal compliance programs, including hotlines.

[View source.]

Written by:

Kramer Levin Naftalis & Frankel LLP

Kramer Levin Naftalis & Frankel LLP on:

Readers' Choice 2017
Reporters on Deadline

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up using*

Already signed up? Log in here

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
Custom Email Digest
Privacy Policy (Updated: October 8, 2015):

JD Supra provides users with access to its legal industry publishing services (the "Service") through its website (the "Website") as well as through other sources. Our policies with regard to data collection and use of personal information of users of the Service, regardless of the manner in which users access the Service, and visitors to the Website are set forth in this statement ("Policy"). By using the Service, you signify your acceptance of this Policy.

Information Collection and Use by JD Supra

JD Supra collects users' names, companies, titles, e-mail address and industry. JD Supra also tracks the pages that users visit, logs IP addresses and aggregates non-personally identifiable user data and browser type. This data is gathered using cookies and other technologies.

The information and data collected is used to authenticate users and to send notifications relating to the Service, including email alerts to which users have subscribed; to manage the Service and Website, to improve the Service and to customize the user's experience. This information is also provided to the authors of the content to give them insight into their readership and help them to improve their content, so that it is most useful for our users.

JD Supra does not sell, rent or otherwise provide your details to third parties, other than to the authors of the content on JD Supra.

If you prefer not to enable cookies, you may change your browser settings to disable cookies; however, please note that rejecting cookies while visiting the Website may result in certain parts of the Website not operating correctly or as efficiently as if cookies were allowed.

Email Choice/Opt-out

Users who opt in to receive emails may choose to no longer receive e-mail updates and newsletters by selecting the "opt-out of future email" option in the email they receive from JD Supra or in their JD Supra account management screen.


JD Supra takes reasonable precautions to insure that user information is kept private. We restrict access to user information to those individuals who reasonably need access to perform their job functions, such as our third party email service, customer service personnel and technical staff. However, please note that no method of transmitting or storing data is completely secure and we cannot guarantee the security of user information. Unauthorized entry or use, hardware or software failure, and other factors may compromise the security of user information at any time.

If you have reason to believe that your interaction with us is no longer secure, you must immediately notify us of the problem by contacting us at In the unlikely event that we believe that the security of your user information in our possession or control may have been compromised, we may seek to notify you of that development and, if so, will endeavor to do so as promptly as practicable under the circumstances.

Sharing and Disclosure of Information JD Supra Collects

Except as otherwise described in this privacy statement, JD Supra will not disclose personal information to any third party unless we believe that disclosure is necessary to: (1) comply with applicable laws; (2) respond to governmental inquiries or requests; (3) comply with valid legal process; (4) protect the rights, privacy, safety or property of JD Supra, users of the Service, Website visitors or the public; (5) permit us to pursue available remedies or limit the damages that we may sustain; and (6) enforce our Terms & Conditions of Use.

In the event there is a change in the corporate structure of JD Supra such as, but not limited to, merger, consolidation, sale, liquidation or transfer of substantial assets, JD Supra may, in its sole discretion, transfer, sell or assign information collected on and through the Service to one or more affiliated or unaffiliated third parties.

Links to Other Websites

This Website and the Service may contain links to other websites. The operator of such other websites may collect information about you, including through cookies or other technologies. If you are using the Service through the Website and link to another site, you will leave the Website and this Policy will not apply to your use of and activity on those other sites. We encourage you to read the legal notices posted on those sites, including their privacy policies. We shall have no responsibility or liability for your visitation to, and the data collection and use practices of, such other sites. This Policy applies solely to the information collected in connection with your use of this Website and does not apply to any practices conducted offline or in connection with any other websites.

Changes in Our Privacy Policy

We reserve the right to change this Policy at any time. Please refer to the date at the top of this page to determine when this Policy was last revised. Any changes to our privacy policy will become effective upon posting of the revised policy on the Website. By continuing to use the Service or Website following such changes, you will be deemed to have agreed to such changes. If you do not agree with the terms of this Policy, as it may be amended from time to time, in whole or part, please do not continue using the Service or the Website.

Contacting JD Supra

If you have any questions about this privacy statement, the practices of this site, your dealings with this Web site, or if you would like to change any of the information you have provided to us, please contact us at:

- hide
*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.