Abstract
This article has two aims. First, it critically considers the responses towards tackling corporate financial crime in the USA. Secondly, it analyses the UK’s efforts to tackle corporate financial crime and then compares them with the USA. The USA presents an interesting case study for this article due to its robust and aggressive stances towards tackling financial crime and also because it is one of the largest financial markets. Similarly, the UK has adopted a strong stance towards tackling financial crime and is also regarded as one of the most important global financial centres. Therefore, by comparing the two contrasting approaches towards corporate financial crime, it is hoped that the best practices from each country could be adopted. The first section of the article concentrates on the judicial response towards corporate financial crime in the USA and it then moves onto highlight and critique the decision of the US Department of Justice (DoJ) to alter its enforcement policy by moving away from indicting corporations to using deferred prosecution agreements (DPAs). Here, the continued use of DPAs is questioned because they have had a limited impact on the future conduct of corporations who are persistent reoffenders. The article sets out a wide range of arguments for why DPAs should not be the enforcement weapon of choice for the DoJ. The final part of this section critiques the ability of law enforcement and financial regulatory agencies to impose financial penalties and bring civil actions for a wide range of financial crimes under the Financial Institutions Reform, Recovery and Enforcement Act 1989. The second part of the article concentrates on the UK and concisely assesses the doctrine of corporate criminal liability, thus identifying the contrasting judicial approaches with the USA. The next section discusses the use of DPAs for breaches of the Bribery Act 2010 by the Serious Fraud Office. The section advocates that in the UK, DPAs must be utilised for a broader range of financial crime offences, thus drawing on the US model. The penultimate segment of the article identifies and comments on several alternative enforcement measures which could be used to counteract the limitations of the doctrine of corporate criminal responsibility in financial crime cases. This distinctively includes the Financial Conduct Authority’s Senior Managers and Certification Regime, its ability to impose financial penalties and to revoke the authorisation of a regulated corporation. The article concludes by making a number of recommendations and suggested reforms, thus further developing the scope of this research.
Keywords
Introduction
Financial crime is synonymous with the seminal work of Professor Edwin Sutherland who famously and somewhat controversially used the term ‘white-collar crime’ in his 1939 presidential lecture to the American Sociological Society. 1 He defined white-collar crime as ‘a crime committed by a person of respectability and high social status in the course of his occupation’. 2 Sutherland concluded that financial crime was committed by ‘merchant princes and captains of finance and industry’ while working for a wide range of corporations including those involved in ‘railways, insurance, munitions, banking, public utilities, stock exchanges, the oil industry [and] real estate’. 3 White-collar crime has also been referred to as ‘financial crime’, ‘economic crime’ and ‘illicit finance’. 4 The early interpretation offered by Sutherland has attracted a great deal of debate among criminologists and commentators. Some have expressed their support for the definition such as Benson and Simpson, 5 while a majority of others have disputed the accuracy of Sutherland’s definition including Bookman, 6 Podgor 7 and Freidrichs. 8 Brody and Kiehl concluded that ‘many scholars continue to redefine and develop a more useful and working definition of the term’. 9
While commentaries on Sutherland’s definitions have concentrated on crimes committed by individuals who are an employee, representative or agent of a corporation, very few have considered financial crime committed by corporations. Corporations are juridical persons that through the legal process of incorporation are endowed with a legal identity, which distinguishes them from its creators. The common law provides that corporations are qualified to breach certain offences under the criminal law largely because of this legal procedure. 10 A number of common law rules have evolved in order to limit disproportionate abuse of power by corporations, including breaches of criminal law. 11 A detailed discussion of the incorporation process and a general commentary on the criminal liability of corporations are beyond the scope of this article. This research seeks to provide an original commentary by comparing and contrasting the approaches in the USA and the UK towards corporate financial crime. Corporate financial crime has been referred to as a ‘complex subject on many levels and efforts at strict definitional exactitude rapidly become self-defeating’. 12 Since the seminal definition of white-collar crime by Sutherland, financial crime has attracted a great deal of research and commentary. For instance, detailed research and related literature has been published on money laundering, 13 terrorist financing, 14 fraud, 15 market manipulation 16 and more recently bribery. 17 However, there is a deficiency of literature on corporate financial crime within the UK and little that compares its enforcement mechanisms with those in the USA. Most of the literature in this area initially concentrated on the development of the doctrine of corporate criminal responsibility. 18 Subsequent literature has focused on the liability of corporations for breaching the Corporate Manslaughter and Corporate Homicide Act 2007, 19 the creation of the failure to prevent bribery offences under the Bribery Act 2010 20 and the use of deferred prosecution agreements (DPAs) by the Serious Fraud Office (SFO). 21 There is little published research on the Ministry of Justice (MoJ) call for evidence which has only recently been covered by Wells. 22
The international profile of corporate financial crime has substantially increased during the last three decades. This is due, in part, to instances of corporate financial crime in the USA including the Savings and Loans Crisis, 23 the collapse of several large corporations including Enron and WorldCom, 24 the Bernard Madoff Ponzi fraud scheme 25 and the ‘Great Wall Street Rip-Off’. 26 Similarly, the UK has experienced wide-scale corporate financial crime including Barlow Clowes International, 27 the Bank of Credit and Commerce International, 28 Barings Bank, 29 market manipulation by financial institutions 30 and money laundering. 31 It is within this context that this article addresses the disparity in the literature and compares the approaches towards corporate financial crime in the USA and the UK and suggests a number of reforms.
The first section of the article begins by providing a brief overview of the US approach towards tackling financial crime, which is traditionally seen as the international benchmark given its robust enforcement policy and its influence in international efforts to tackle money laundering and terrorist financing. 32 The evolution of the doctrine of corporate criminal liability by the US judiciary is discussed and how the Department of Justice (DoJ) initially prosecuted the employees of corporations and how they moved towards targeting prosecuting corporations. This culminates in a review of the impact of the acquittal of Arthur Andersen, which resulted in the DoJ prioritising DPAs as opposed to corporate prosecutions. The appropriateness of DPAs is questioned in light of the actions of HSBC and the final part of this section moves on to analyse the use of financial sanctions. 33 The second part of the article critically compares the approach towards corporate financial crime in the UK with the USA and highlights the restrictive judicial interpretation of the doctrine of corporate criminal liability. The article then critiques the evolution of the failure to prevent bribery offences created under the Bribery Act 2010 and the use of DPAs by the SFO. The next section discusses the enforcement stance of the Financial Conduct Authority (FCA) and notes that the Senior Managers and Certification Regime (SMCR) could go some way to rectify the problems associated with the identification doctrine.
The USA’s Approach to Corporate Prosecution
The USA has adopted an aggressive stance towards financial crime. In particular, it has been at the forefront of the global fight against money laundering as part of the ‘War on Drugs’ and it played an integral part in the evolution and implementation of the ‘Financial War on Terrorism’ following the al-Qaeda terrorist attacks in September 2001. Additionally, the USA has also embraced a robust enforcement policy towards fraudulent activities as illustrated following the Savings and Loans Crisis, the collapse of several corporations due to fraud and financial crime associated with the 2007/2008 financial crisis. 34 The latter of which resulted in the Securities and Exchange Commission (SEC) and the Federal Bureau of Investigation securing record financial penalties and convictions for fraudulent behaviour. Examples would include the Ponzi fraud convictions of Bernard Madoff and over 1,100 convictions for mortgage fraud. Nevertheless, it is the evolution of its efforts to criminalise the conduct of corporations that is of significance here.
The Doctrine of Corporate Criminal Liability in the USA
The US approach can be traced back to the seminal decision of the Supreme Court in New York Central & Hudson River Railroad Company v US. 35 The key issue in this case was whether the defendant corporation could be held liable for the illegal acts of its agent, who was acting within the scope of his authority. Here, the defendants, in conjunction with an agent of the company, were convicted for breaching the Elkins Act 1903, 36 which proscribed the payment of rebates. In its unanimous opinion, the Supreme Court boldly declared that ‘the old and exploded doctrine that a corporation cannot commit a crime’ was no longer appropriate. 37 Specifically, the Supreme Court held that a corporation could be held criminally responsible for the illegal acts of its agent. The US judiciary has adopted the respondent superior model to deal with the doctrine of corporate criminal liability. 38 This is a variation of the vicarious liability doctrine, and it allows the extension of civil liability on employers for the actions committed by their agents. 39 It is important to note that the Supreme Court in New York Central did not offer any specific guidance in what circumstances this model could be imposed. The decision of the Supreme Court has since been broadened to comprise the actions of agents of corporations who are acting without authority or breaching specific directions. 40 Therefore, a corporation could be held liable for the conduct of ‘low-level employees who acted contrary to the corporate policy and to the compliance program of its firm’. 41
The Prosecution of Corporations
The instigation of criminal proceedings in financial crime cases initially concentrated on persons and not corporations. This was illustrated following the 1980s Savings and Loans Crisis, which resulted in the collapse of over 2,100 financial institutions and losses exceeding $150 billion 42 and resulted in over 1,000 senior executives being convicted of fraud and receiving lengthy custodial sentences. 43 However, it was not until the later that decade that the DoJ began to indict corporations for breaches of financial crime legislation. For example, in 1987, the stock brokerage firm EF Hutton, which was initially accused of ‘check kiting’, 44 revealed that some of the firm’s brokers had laundered money for the Patriarca Crime Family. 45 In light of this disclosure, EF Hutton was indicted and eventually convicted of 2,000 counts of mail and wire fraud. 46 As a result of the conviction, EF Hutton entered into a plea bargain with the DoJ and it was ‘forced to merge with a competitor’. 47 Interestingly, none of the employees of EF Hutton were prosecuted and only the company was held criminally responsible.
Whether this move away from the prosecution of individuals towards the prosecution of corporations is merited needs to be ascertained in light of the impact of such prosecutions. The prosecution of the investment banking corporation Drexel Burnham Lambert undoubtedly illustrates well the impact of a corporate conviction. After the firm’s managing director, Dennis Levine, who had a history of illegal conduct, pleaded guilty to several insider trading charges, 48 the US Attorney for the Southern District of New York launched an investigation into Drexel Burnham Lambert under the Racketeering Influenced and Corruption Organisations Act 1970. 49 As a result of the threat of prosecution, Drexel Burnham Lambert entered into an ‘Alford plea’ 50 for several market manipulation charges and agreed to pay a fine of $650 million to the SEC. 51 In consequence, Drexel Burnham Lambert was forced to close several of its departments which resulted in the loss of 5,000 jobs. This illustrates the far-reaching consequences of a corporate conviction, almost to the point of a corporate death penalty.
The Move Towards DPAs
A DPA is a contractual agreement between a financial regulatory agency or government agency and a corporation, who is under investigation for breaching the law. The main purpose of a DPA is to permit the offending corporation to illustrate good conduct, to cooperate with the investigating agencies, pay a fine and improve its internal corporate governance procedures. Additionally, DPAs have imposed substantial financial compliance costs for offending companies of £30 million in some cases. 52 DPAs are granted for a number of years and once the corporation is able to demonstrate that they have complied with the terms of the DPA, the charges are dropped. Conversely, if a corporation breaches the terms of the agreement, the investigation will be restarted. One way to mitigate the impact of corporate conviction is by using DPAs, which was illustrated by the ‘1990s Treasury Bond scandal’. Here, the investment banking corporation Salomon Brothers was investigated for breaches of the False Claims Act 1986 53 and the Sherman Act 1890 for making unlicensed bids for Treasury bonds. 54 The corporation submitted to a DPA where it agreed to pay a large fine 55 to continue assisting investigators and to introduce a new compliance structure. 56 This was followed by the imposition of another DPA on Prudential Securities Incorporated which defrauded 400,000 investors of $8 billion. 57 Prudential Securities Corporation agreed to pay a $330 million fine, continued to cooperate with the investigation and made several corporate governance alterations including the appointment of an independent director. 58 Here, the aim of DPAs was to discipline the offending corporations and eliminate the financial advantage derived from the illegal conduct. If the financial penalty imposed as part of the DPA is too high or excessive, that the corporation folds the impact is then on employees, customers and supply chain. This has been referred to as the collateral consequences (as outlined below) of a corporation losing its licence. These two cases can clearly be contrasted with the damaging impact of the corporate convictions of EF Hutton and Drexel Burnham Lambert.
Undoubtedly, the use of DPAs is fraught with legal, ethical and political concerns. It was not until the conviction of Arthur Anderson LLP, one of the ‘Big Five’ accounting firms, that the DoJ reconsidered the indictment of corporations and fully used DPAs. 59 Arthur Andersen had acted as an outside accountant for Enron, which collapsed in 2001 due to wide-scale fraudulent activities. 60 Arthur Andersen was accused of shredding audit documents during the DoJ investigation into Enron’s conduct and subsequently agreed to surrender its practising licence as a Certified Public Accountant following its conviction for obstruction of justice. It is important to note here that the DoJ didn’t seek to impose a DPA on Arthur Andersen. As a result, Arthur Andersen filed for bankruptcy and approximately 30,000 employees were made redundant. The impact of the conviction on Arthur Andersen was catastrophic and ‘there was nothing left of the firm to be salvaged’. 61 Subsequently, the Supreme Court overturned the conviction of Arthur Andersen in 2005 due to inaccurate jury instructions by federal prosecutors. 62 On the other hand, ‘Andersen was at least negligent of…fraudulent accounting’ 63 and it had previously been subject to several fines for similar schemes by the SEC. 64
In the wake of this judgment, the DoJ decided to rethink its use of corporation prosecution and increase its use of the safer, generous and more flexible option, the DPA with a view to minimising the impact of corporate death.
65
To ensure consistency in the use of this option, the Deputy Attorney General published the Federal Prosecution of Corporations or ‘Holder Memo’.
66
The Holder Memo (later amended by the ‘Thompson Memo’,
67
the ‘McNulty Memo’
68
and most recently the ‘Filip Memo’
69
) contained factors that prosecutors are required to consider before deciding to commence criminal proceedings against a corporation,
70
one of which being that the potential ‘collateral consequences’ must be considered before any financial crime charges are brought against corporations.
71
This includes the likely impact of a prosecution on employees, investors and the economy more generally.
72
However, not all commentators are convinced by the collateral consequences argument. For instance, Clarkson noted: With regard to the argument that punishing companies amounts to punishment of innocent shareholders and creates risks of redundancies, it must be borne in mind that such persons are not themselves subject to the stigma of conviction and criminal punishment. Those who take the benefits should also shoulder the burdens. A company should not be permitted to cut corners in its desire to make profits for its shareholders, and in particular it must not cut overhead costs at the expense of safety.
73
Despite this questionable use of DPAs, US federal prosecutors are too scared to indict corporations following the collapse of Arthur Andersen. The way HSBC was treated is an excellent point in case. In December 2012, the DoJ announced that it had reached an agreement with HSBC for violating US anti-money laundering (AML) laws, the United Nations (UN) sanctions regime and related criminal offences.
74
In particular, HSBC admitted to breaching the Bank Secrecy Act 1970,
75
the International Emergency Economic Powers Act 1977
76
and the Trading with the Enemy Act 1917.
77
The DoJ noted that HSBC’s blatant failure to implement proper AML controls facilitated the laundering of at least $881 m in drug proceeds through the US…[its] willful flouting of US sanctions laws…resulted in the processing of hundreds of millions of dollars in OFAC-prohibited transactions.
78
There are two factors which contributed to the DoJ agreeing a DPA in this instance and both relate to the wider consequences of corporate prosecution. First, HSBC was not indicted because a criminal conviction would weaken an already fragile financial system that was still recovering from the most recent financial crisis. This factor was acknowledged by the former Attorney General Eric Holder who stated that a prosecution ‘will have a negative impact on the national economy, perhaps even the world economy’. 83 In this regard, the prosecutors followed the Holder Memo that required them to examine the collateral consequences. Secondly, HSBC was not prosecuted due to unprecedented levels of political interference from the UK. The House of Representatives Committee on Financial Services published several correspondences from the Financial Services Authority (FSA) and HM Treasury who pleaded with the DoJ ‘against a prosecution, [because] it was clear they were very concerned about the reverberations such an action could have within the financial system’. 84 Their report continued ‘an official in the UK government reached out to a US official to complain that US regulators were taking aggressive action against UK banks in an effort to make British banks a less attractive place to do business’. 85 Remarkably, again the justification of the wider consequences of corporate prosecution was used, though by the UK, as a way to block indictments.
One of the aims of punishment is deterrence. HSBC, like Arthur Andersen, was a repeat offender who had previously been sanctioned by law enforcement agencies in France, 86 the UK, 87 Switzerland, 88 the USA 89 and Hong Kong. 90 Therefore, it could be suggested that DPAs are an inadequate enforcement tool against corporations for financial crime offences because they do not prevent future breaches by these offending corporations.
Interestingly, Eric Holder noted that ‘the greatest deterrent effect is not to prosecute a corporation…[it] is to prosecute the individuals in the corporations that are responsible for those decisions’. 91 In spite of this, the DoJ has declined to prosecute any employee or agent of HSBC since entering the DPA and comparisons can be drawn with the collapse of Arthur Andersen as outlined above, where no prosecutions were brought against any of its employees either. Conversely, there are some instances of corporations entering into a DPA and the DoJ instigating criminal proceedings and securing convictions of the corporations’ employees. For example, in 2005, KPMG entered into a DPA after the firm ‘admitted that it engaged in a fraud that generated at least $11bn in phony tax losses’. 92 In 2013, Michael Parker pleaded guilty to conspiracy to defraud and was sentenced to 54 months’ imprisonment for his role in the KPMG tax fraud, 93 yet a majority of the indictments brought against KPMG’s employees were thrown out by the courts. 94 The use of criminal proceedings against employees has been questioned because an individual’s conviction will ‘seldom affect the way the corporation…will behave itself’. 95 The indictment of employees or agents of a corporation must be used in conjunction with a DPA if they are to act as a deterrent for future misconduct. The combination of these two forms of punishment would present a stronger deterrent than if they were used separately. The DoJ has been crippled, not by ineffective legislation, but by its weak enforcement stance and the ‘fear of that the collateral consequence would have on the economy’. 96 The evidence is clear that the rattling of sabres by the DoJ merely amounts to no more than entering into high-profile and media-friendly DPAs with corporations for breaches of financial crime legislation.
The DoJ can make use of a variety of other measures to punish corporations for failing to abide by the law. First, it can impose financial penalties in pursuance of the Sentencing Reform Act and secondly, it can instigate civil proceedings under the Financial Institutions Reform, Recovery and Enforcement Act 1989. It is argued that a combination of criminal prosecution, possibly using DPAs, as well as use of these measures is likely to yield the most appropriate results in terms of deterring illegal conduct by corporations.
Civil Sanctions
As an alternative form of enforcement mechanism to tackle corporate financial crime, the Sentencing Reform Act was introduced as part of the Comprehensive Crime Control Act of 1984. 97 The Act allows law enforcement and financial regulatory agencies to impose civil financial penalties on corporations for a wide range of criminal activities. With this in mind, the SEC has imposed a record number of financial penalties. 98 The Commodity Futures Trading Commission (CFTC) has adopted a similar enforcement strategy since the introduction of the Sentencing Reform Act 1984. 99 The introduction of the Sentencing Reform Act 1984 has permitted law enforcement and financial regulation agencies to impose a number of large financial penalties on corporations who have breached financial crime legislation. This is the most frequently used enforcement power against corporations in the USA and it is regularly used in association with a DPA, as was illustrated in the HSBC case outlined above.
Another important legislative measure that has been used against corporations is the Financial Institutions Reform, Recovery and Enforcement Act 1989. 100 The Act was introduced as a response to the Savings and Loans Crisis in the 1980s and permits law enforcement and financial regulatory agencies to instigate civil proceedings against corporations for a wide range of financial crimes. This includes mail fraud, wire fraud, providing false statements and bank fraud. The 1989 Act provides that prosecutors are only required to illustrate a civil burden of proof and not a criminal burden in order to impose civil liability on the offending corporation. 101 This civil measure has been used by the DoJ on numerous occasions for corporate financial crime offences and it has generated billions of dollars in financial penalties and compensation for victims where identifiable. For example, the DoJ reached an agreement with Bank of America who settled the ‘the largest civil settlement ($16.65bn) with a single entity in American history’ under the 1989 Act. 102 Other examples include the largest settlement for robo-signing, 103 fair lending settlements with Countrywide Financial Corporation 104 and Wells Fargo Bank. 105 The importance of the 1989 Act is further illustrated by figures published by the DoJ in December 2016 when it announced that it had collected more than $15.3 billion in civil sanctions. 106
The introduction of financial penalties and civil proceedings are to be broadly welcomed as these measures have imposed some form of liability on corporations for financial crime breaches. Then again, the impact of financial penalties on corporations is negligible as they are often smaller than administrative actions and related civil actions and therefore did little to prevent misconduct. 107 Similarly, Jones noted that ‘corporate fines are both ineffective and ill-conceived…the sanctioned firms are so wealthy that even a fine running into the hundreds of millions of dollars is often viewed as a mere cost of doing business’. 108 It is recommended that financial penalties and civil proceedings should be used in conjunction with DPAs to act as a greater deterrent against corporations.
Conclusion
The criminal liability of corporations in the USA has evolved since the Supreme Court decision in New York Central. However, the application of the respondent superior doctrine in financial crime cases has not fully materialised as the DoJ tended to favour prosecuting the employees of corporations. Subsequent attempts to indict corporations have resulted in DoJ abandoning its efforts to impose the corporate death penalty and moving towards a negotiated settlement via DPAs. The impact of DPAs on corporate behaviour has been queried because they had done little to repeat further financial crime breaches, such as those committed by Arthur Andersen and HSBC. The DoJ must not use DPAs in isolation and they must be used with financial penalties, civil litigation and the prosecution of errant employees. The next part of the article moves on to discuss the approach adopted in the UK and seeks to determine if any lessons could be learned from the US experience.
The UK’s Approach to Corporate Prosecution
The UK’s legislative efforts to tackle financial crime came to fruition with the enactment of the Prevention of Fraud (Investments) Acts of 1939 and 1958. Previous legislative efforts included the Public Bodies Corrupt Practices Act 1889 and the Prevention of Corruption Act 1906, while the common law criminalised conspiracy to defraud and the offences of bribing and accepting a bribe. It was not until the creation of the SFO via the Criminal Justice Act 1987 that there was a concerted effort to tackle financial crime. 109 Its establishment was sandwiched between the Financial Services Act 1986 and the Banking Act 1987 during an unprecedented era of banking deregulation, 110 which contributed towards increasing the UK’s exposure to financial crime. 111 Efforts to tackle financial crime were revisited following the introduction of the Financial Services and Markets Act 2000 and the statutory objective of the FSA to reduce financial crime. 112 This, combined with their investigative and enforcement powers, was an innovative attempt to tackle financial crime that arose from, within or targeted the financial corporations. In 2002, the Proceeds of Crime Act 2002 was introduced, a piece of legislation that effectively codified the existing AML legislations contained within the Drug Trafficking Offences Act 1986 and the Criminal Justice Act 1993. In 2006, the fraud legislation was overhauled by the introduction of the Fraud Act 2006 and this was followed by the extension of the enforcement powers of the new city regulator, the FCA, by the Financial Services Act 2012. The measures tackled financial crime committed by individuals and not corporations. The only mechanism to tackle corporate financial crime was the unsatisfactory doctrine of corporate criminal liability. In order to address this problem, the Bribery Act 2010 and the Criminal Finances Act 2017 have introduced two new corporate criminal offences: failing to prevent bribery 113 and failure to prevent the facilitation of tax evasion. 114 This section begins by outlining the development of the doctrine of corporate criminal liability.
The Doctrine of Corporate Criminal Liability in the UK
The doctrine of corporate criminal liability has attracted a great deal of criticism from within the existing literature, most of which has been directed at the common law rules that have considered the imposition of corporate criminal liability. The courts began to consider the restrictive application of criminal law to companies in the 19th century, which included cases involving public nuisance, criminal libel and breach of statutory duty. 115 The doctrine was further extended by three Court of Appeal decisions in 1944, which concluded that a corporation could be held directly accountable, as opposed to vicariously liable, for the actions of their employees. For example, in DPP v Kent and Sussex Contractors Ltd, the Court of Appeal concluded that a company could be held criminally liable where it had produced false documents and provided false information. 116 The Court of Appeal reached a similar conclusion in R v ICR Haulage Co Ltd, where it held that a company could be held criminally accountable for conspiracy to defraud by the acts of one of its directors. 117 The final case was Moore v Bresler Ltd where the secretary of the company, who was also the general manager of a branch of the company, was accused of defrauding the company. Here, the company was found criminally liable because one of its officers was acting within the scope of his responsibilities. 118
The leading authority on the doctrine of criminal liability of corporations is the House of Lords decision in Tesco Supermarkets v Nattrass. 119 This decision has become synonymous with the evolution of the identification doctrine, yet this had already been considered by the House of Lords in Lennard’s Carrying Co Ltd v Asiatic Petroleum Ltd, 120 where the court concluded that the owner of a vessel was the ‘directing mind and will of the company’ because ‘he was the alter ego of the company’. 121 In Tesco Supermarkets v Nattrass, the House of Lords concluded that a company is allowed to provide a defence to a prosecution under the Trade Descriptions Act 1968 provided the company had established an effective procedure to avert the commission of a criminal offence. While giving the leading opinion, Lord Diplock stated that when the court considers how it will identify who has the directing mind of the company it can refer to its memorandum and articles of association, thus also to the directors of the company and other senior company officers. 122 Therefore, in order for a company to be found guilty of a criminal offence, a person who has the directing mind of the company and the self-determination of the company must also have criminal intent. This decision in Tesco resulted in the creation of the ‘identification doctrine’, the test to determine whether corporations are to be held liable for breaches of criminal law.
It is argued that this test has become the principal reason that prevents prosecutors bringing criminal proceedings against corporations. 123 It has been correctly asserted that the identification doctrine ‘does not reflect modern corporate practice, particularly in larger companies. The doctrine ignores the reality of modern corporate decision-making’. 124 For example, the restrictive interpretation and the nature of large corporations have been highlighted by several subsequent cases including the Herald of Free Enterprise, 125 the Clapham rail disaster, 126 the Transco gas explosion, 127 the Hatfield Disaster 128 and the sinking of the Marchioness. 129 As a result, the Corporate Manslaughter and Corporate Homicide Act 2007, which criminalised harm that leads to a person’s death, was adopted. 130 However, the impact of the Act is negligible as there have only been 19 criminal charges brought under the 2007 Act between 2008 and 2016. 131 The decision in Tesco and the subsequent judicial interpretation as well as the lack of success of the 2007 Act were unsatisfactory and resulted in the publication of a consultation paper by the MoJ which presented five options for reform, 132 which additionally seeks to build on the failure to prevent offences under the Bribery Act 2010.
The Success of the Bribery Act 2010
This section concentrates on providing a brief discussion of the aim of s. 7 of Bribery Act 2010 and notes that the offence has resulted in a number of prosecutions. The Bribery Act 2010 introduced a new form of corporate criminal liability where a corporation can be found guilty of an offence if a person associated with the organisation bribes another, intending to obtain or retain business or a business advantage for that organisation. 133 In essence, it creates an additional direct rather than alternative vicarious liability, when the commission of a s. 1 or s. 6 bribery offence has taken place on behalf of an organisation. However, for there to be any liability, the organisation must be stipulated as a ‘relevant commercial organisation’. 134 An ‘associated person’ is seen as an individual who ‘performs services for or on behalf of’ the organisation, 135 with the person being, for example, the organisation’s agent, subsidiary or employee. 136 This has been stated to be a ‘matter of substance rather than form’, 137 with it being necessary for all surrounding circumstances to be taken into account, although a presumption will exist if the associated person is an employee of the organisation. The scope of s. 7 is broad, so as to encompass the whole range of individuals who may be committing bribery on behalf of a third-party organisation. To be held as an ‘associated person’, ‘the perpetrator of the bribery must be performing services for the organisation in question and must also intend to obtain or retain business or an advantage in the conduct of business for that organisation’. 138 Section 7 has been described as a significant move ‘away from the current [identification doctrine] approach’, 139 with the MoJ stating that under this section ‘a commercial organisation will be liable to prosecution if a person associated with it bribes another person intending to obtain or retain business or an advantage in the conduct of business for that organisation’. 140 Moreover, the existence of the s. 7 offence does not affect the common law principle which governs the liability of corporate bodies for criminal offences. Under this provision, prosecuting bodies must prove a mens rea or fault element in addition to the actus reus or conduct element. This common law principle, also known as the identification principle, should still be used instead of s.7 where it is possible to prove ‘that a person who is properly regarded as representing the “directing mind” of the body in question possessed the necessary fault element required for the offence’. 141
Interestingly, the introduction of the failing to prevent bribery offence has been enforced by the SFO which has used DPAs by virtue of the Crime and Courts Act 2013. 142 According to the SFO, DPAs only apply to corporations, they are concluded under the supervision of the judiciary and they seek to avoid expensive and time-consuming trials. 143 Therefore, the UK’s adoption of DPAs can be contrasted with that in the USA where DPAs were used to avoid the negative consequences, or collateral consequences, of prosecuting corporations. The UK is largely using DPAs for their expediency.
Although s. 7 of the Bribery Act 2010 was introduced to address the limited application of criminal law to corporations, it has resulted in the use of DPAs, which as discussed above is questionable as such. The SFO obtained its first DPA for breaches of the failing to prevent bribery offence against Standard Bank Plc, which was ‘ordered to pay financial orders of $25.2m and required to pay the government of Tanzania a further $7m in compensation’. 144 This was followed by a second DPA against XYX Ltd who agreed to ‘pay financial orders of £6.5m, comprised of a £6.2m disgorgement of gross profits and a £352,000 financial penalty’. 145 In 2017, Rolls-Royce agreed to enter into a DPA that ‘involve[d] payments of £497m…[and] Rolls-Royce [were] also reimbursing the SFO’s costs in full’. 146 In April 2017, the SFO announced that it had entered into a DPA with Tesco which was required to pay a fine of £129 million for overstating its profits. 147 The MoJ asserted that the s.7 offence has provided a ‘powerful incentive for the inclusion of bribery prevention procedures as a component of corporate good governance. Its utility as an enforcement tool has been recently demonstrated’. 148 Interestingly, in each of the four DPAs obtained by the SFO, no criminal prosecutions have been brought against any of the offending corporation’s employees or agents, thus drawing similar comparisons with the US approach as outlined above. This is not surprising given the initial lack of enthusiasm shown by the SFO and Crown Prosecution Service towards prosecuting individuals under the Bribery Act 2010. It is somewhat disappointing that no prosecutions have been brought in each of the four DPAs agreed between the corporations and the SFO, thus similarities exist between the approach in the USA and the UK. If prosecutions were pursued against the employees or agents by the SFO for breaches of the Bribery Act 2010, it would represent an additional form of deterrent and would go some way to avoid any more ‘profound apologies’. The UK’s approach towards DPAs can be differentiated from their use in the USA. In the UK, DPAs have been used because they are cost-effective and avoid lengthy trials. Another similarity between the use of DPAs in the UK and the USA is that no employees of the offending corporations have been prosecuted for related offences. Therefore, the same recommendation applies to the UK, when a DPA is agreed with the SFO, prosecutions should also be pursued in conjunction with the DPA.
Financial Regulation
The final section of the article provides a critical review of the enforcement powers of the FCA towards corporations who have breached financial crime legislation. This is important and necessary due to the regulator’s statutory objective to reduce financial crime. As a result of the Financial Services Act 2012, the FSA was replaced by the FCA, and its statutory objective to reduce financial crime now forms part of its integrity objective.
149
This section concentrates on the ability of the FCA to impose financial penalties for breaches of its financial crime rules and the obligations under the SMCR. The most frequently used power against corporations for financial crime breaches by the FCA are financial penalties. For example, in January 2017, the FCA imposed a record financial penalty of £163 million on Deutsche Bank for failing to maintain an adequate AML system.
150
Specifically, the FCA determined that Deutsche Bank had performed inadequate customer due diligence, had deficient AML policies and procedure and it concluded that the ‘failings of Deutsche Bank are simply unacceptable’.
151
The decision by the FCA to impose this record financial penalty can be contrasted with the stance of its predecessor, the FSA, towards HSBC when the regulator decided not to take any action. This must be questioned and criticised given the contrasting content of each case. For instance, HSBC flouted US AML laws and the UN sanctions regime, which resulted in no enforcement action by the FSA. Conversely, Deutsche Bank was fined £163.1 million for not having adequate AML rules as proscribed by the FCA Handbook, even though there was no evidence of any money laundering. The FCA has imposed large financial penalties for breaches of its money laundering rules, even though there was no evidence of money laundering. For example, such fines were imposed on Turkish Bank (UK) Ltd,
152
Habib Bank AG Zurich
153
and Coutts & Company.
154
Writing in 1996, Clarkson concluded that it is the individuals within the company that are most amenable to deterrence and that in order to deter a company the fines would need to be massive. A company will only be deterred if its expected costs exceed its expected gains.
155
The introduction of the SMCR by the FCA presents an opportunity to possibly overcome the problems associated with the identification doctrine, as highlighted above. The SMCR has two objectives: to encourage all staff within the financial services sector to take responsibility for their actions and that authorised firms and employees can clearly illustrate where the responsibility lies.
159
The introduction of the SMCR was heavily influenced by the recommendations of the Parliamentary Commission for Banking Standards that had been asked to investigate how standards could be improved following the market manipulation scandals of LIBOR and FOREX.
160
The SMCR provides that a corporation’s senior management is responsible for the policies, systems and controls that are designed to reduce the threat posed by financial crime. Therefore, the SMCR places the obligation of the regulated corporations to limit the risk posed by financial crime on its senior management. The FCA stated that the extension of the SMCR is key to driving forward culture change in firms…this is about individuals not just institutions…the regime will also ensure that senior managers are accountable both for their own actions, and for the actions of staff in business areas they lead.
161
Conclusion
This article is situated in an era of unprecedented scrutiny of the relationship between the corporations and financial crime and the USA is generally regarded as a role model in the prevention, detection and prosecution of financial criminals. The article has illustrated that the US approach towards corporate financial crime has a number of flaws, yet it still merits a model that must be explored by the UK. The US judiciary has adopted a flexible and innovative approach towards the doctrine of corporate criminal responsibility, which can be contrasted with the UK. The DoJ initially targeted prosecuting employees rather than corporations as illustrated following the Savings and Loans Crisis and has subsequently secured the conviction of several corporations for fraud. However, each case has illustrated the collateral consequences of obtaining a criminal corporate conviction. These collateral consequences resulted in the DoJ abandoning its prosecution of corporations in favour of DPAs. DPAs are aimed at preventing collateral consequences but they have done little to deter future criminal misconduct by corporations as illustrated by HSBC. The DoJ declined to prosecute any staff in either HSBC or Arthur Andersen, who had been associated with major financial crime breaches committed by both of these companies. Therefore, DPAs must be used in conjunction with the prosecution of employees who are responsible for the implementation of corporation’s financial crime obligations. The additional value presented by financial penalties is minimal because they are often less than the illegal gain made by the corporation. This situation was partly rectified by the introduction of the Financial Institutions Reform, Recovery and Enforcement Act 1989, which has resulted in the imposition of larger financial penalties by the DoJ, the SEC and the CFTC. It is recommended that the DoJ combines the DPA, with the prosecution of employees and the financial penalty provisions of the Financial Institutions Reform, Recovery and Enforcement Act 1989 to tackle corporate financial crime. These combined measures would act as a greater deterrent than their current isolated use.
The UK’s efforts to tackle financial crime concentrated on targeting individuals as opposed to corporations, thus adopting a similar model to the USA. The unsatisfactory nature of this stance, led to the introduction of the failure to prevent bribery corporate offence. This has secured several DPAs against corporations, but there have been no related prosecutions and UK authorities have adopted a similar approach to their counterparts in the USA. This position is unsatisfactory. DPAs must be used in conjunction with criminal proceedings against employees and/or agents of corporations if they are to have a deterrent effect to reduce future misconduct. The introduction of the SMCR by the FCA is the most significant mechanism that could be used to overcome the restrictive interpretation of the doctrine of corporate criminal. By placing the management of financial crime control within the remit of a corporation’s ‘senior management’, this will allow the courts to identify the person who within a corporate structure meets the controlling mind test. The ability to recognise the person who has the controlling mind could go some way to redress this problem. However, in order for this approach to be adopted, it would require the FCA to liaise with the SFO and other prosecutors to implement this innovative mechanism. The ability of the FCA to instigate financial penalties draws unfavourable comparisons with the provisions in the USA, and it is recommended that the UK should introduce legislation based on the Financial Institutions Reform, Recovery and Enforcement Act 1989. Such a move would provide the FCA and other related enforcement agencies with the ability to pursue a series of civil actions against corporations for financial crime. The window of self-reform is closing and I hope that corporations will learn to self-regulate. However, the evidence presented in this article suggests otherwise and corporations will continue to operate in an ecosystem of deviance.
Footnotes
Acknowledgements
The author would like to thank Dr Noelle Quenivet, Dr Lorenzo Pasculli, Professor Phil Rumney and Professor Umut Turksen for their very helpful comments on early drafts of this article. This article is based on a conference presentation entitled ‘Corporate Liability for Economic Crime—merely window dressing or a statement of intent’ at the 17th Annual Conference of the European Society of Criminology on 14 September 2017 at Cardiff University.
Declaration of Conflicting Interests
The author(s) declared no potential conflicts of interest with respect to the research, authorship, and/or publication of this article.
Funding
The author(s) received no financial support for the research, authorship, and/or publication of this article.