Twenty percent of Canadian executives say bribery or corrupt practices are widespread in domestic businesses, according to EY’s latest Global Fraud Survey.
“That’s disturbingly high,” says Mike Savage, EY partner and Canadian Fraud Investigation and Dispute Services leader. “Corruption interferes with fair competition for business. To overcome that, companies really need to create a culture where ethical behaviour is at the core of their operations – not just at home in Canada, but also at their overseas operations. They also need to encourage people to speak up if they think something isn’t right.”
The survey finds that while 74% of Canadian organizations have whistleblowing hotlines, that number is still much lower than countries like the U.S. (96%) and the U.K. (82%).
“The good news is that recent public enforcement action by Canadian authorities does appear to have raised awareness of bribery and corruption here,” says Savage.
“A full 90% of Canadian respondents said there are clear penalties for breaking the anti-bribery/anti-corruption policies. That’s up from 78% two years ago, and higher than the global average of 73%.”
The survey also finds 30% of Canadian organizations see cybercrime as a significant risk.
While the pressure on companies for timely disclosure of breaches is rising in many jurisdictions, EY’s survey found 74% of businesses globally did not disclose a public breach of security.
The report identifies the following strategies for companies to address fraud in their organizations:
- Board engagement. Boards need to appropriately challenge management and request regular updates regarding fraud, bribery and corruption risk assessments.
- Big data. Mining big data using forensic data analytics tools can improve compliance and investigation outcomes and can help management provide useful summary information to the board.
- Anti-corruption due diligence. Specialized due diligence should be the norm, not the exception.
- Escalation procedures. Companies should have clearly defined escalation procedures, whether to respond to a whistleblower or a cyber incident, to minimize the damage.
- Training. Companies should have tailored training programs; business unit leaders should be evaluated on participation levels, and C-suite executives need to lead from the front.
- Budget support for internal audit and compliance functions. These play essential roles in both improving standards of business conduct and in keeping the company out of trouble.