In an era where regulatory scrutiny is increasingly global and aggressive, the United States Department of Justice (DOJ) has fundamentally altered the landscape of corporate criminal liability. With the introduction of a department-wide Corporate Enforcement and Voluntary Self-Disclosure Policy (CEP), federal prosecutors have moved away from a fragmented, agency-by-agency approach toward a streamlined, predictable, and incentivized framework.
For legal departments and corporate boards, the message is clear: the benefits of proactive disclosure have never been more quantifiable, but the window to act is shrinking. As Stinson LLP attorneys Bernadette Sargeant, Reginald Harris, and Alexandra Stanley emphasize, the time to build a robust voluntary disclosure infrastructure is long before a crisis hits the boardroom.
The Evolution of Federal Enforcement: A Unified Framework
For years, companies navigating potential misconduct faced a "patchwork" of policies that varied significantly between the DOJ’s Criminal Division, various U.S. Attorneys’ Offices, and specialized departments. This lack of uniformity often created uncertainty, discouraging companies from coming forward due to the unpredictable nature of how their cooperation would be evaluated.
In March, the DOJ introduced the CEP, a first-of-its-kind policy governing how federal prosecutors evaluate corporate self-disclosure, cooperation, and remediation. With the exception of criminal antitrust matters, the CEP establishes a standardized set of rules that apply across all corporate criminal matters. By replacing disparate policies with a cohesive structure, the DOJ has signaled that it intends to reward transparency and punish foot-dragging with newfound consistency.
The Three-Tiered Incentive Structure
The core of the CEP is a three-tiered framework that dictates the severity of consequences based on the company’s conduct:
- Part I: The Gold Standard (Declination). If a company voluntarily self-discloses misconduct, fully cooperates with the government, and takes timely, appropriate remedial actions—all in the absence of aggravating circumstances—the DOJ will generally decline to prosecute. While the company is still required to pay disgorgement and restitution, the avoidance of criminal charges, monitors, and the associated reputational damage is a massive incentive.
- Part II: The Mitigation Tier. For companies that self-report in good faith but fail to meet the "full" standard, or for those facing aggravating circumstances, the DOJ offers a path to leniency. This includes the potential for a non-prosecution agreement (NPA) of less than three years, the exclusion of a government-appointed compliance monitor, and a substantial fine reduction of 50% to 75% off the low end of the sentencing guidelines.
- Part III: The Discretionary Tier. For situations that do not meet the criteria for the first two tiers, prosecutors retain broader discretion. However, even here, the policy caps potential penalty reductions at 50%, ensuring that cooperation remains a factor in the final outcome.
The Balt SAS Resolution: A Case Study in Speed
The effectiveness of the CEP was put to the test just nine days after its implementation. The DOJ announced a formal declination of prosecution for Balt SAS, a French medical device company, in connection with alleged Foreign Corrupt Practices Act (FCPA) violations.
The resolution of the Balt case provides a blueprint for future corporate responses. Balt discovered potential bribery within its ranks and initiated an internal investigation. Crucially, they did not wait for the investigation to reach a final, comprehensive conclusion before approaching the DOJ. By reporting the misconduct at the earliest possible juncture, providing all relevant facts, and identifying the specific individuals involved, Balt satisfied the DOJ’s requirements for "full cooperation."
While the company received a clean slate, the DOJ simultaneously indicted two individuals associated with the bribery scheme. This underscores a critical nuance: the CEP provides a shield for the corporation, not for the rogue actors within it. As Assistant Attorney General A. Tysen Duva noted, the resolution confirms that self-reporting is a high-value strategy for companies looking to mitigate systemic risk.
The Intersection with Whistleblower Programs
The DOJ has simultaneously intensified the pressure on companies by launching its Corporate Whistleblower Awards Pilot Program. This program provides financial incentives for individuals to report corporate wrongdoing directly to the government.
This creates a "race to the door." If a whistleblower reports misconduct internally and the company does not follow up with a voluntary self-disclosure to the DOJ within 120 days, the company risks losing its eligibility for the most favorable treatment under the CEP. In this new landscape, internal reporting mechanisms must be linked directly to the legal department’s ability to conduct an investigation and prepare a disclosure package in record time.
Strategic Implications for Internal Investigations
The Balt resolution and the CEP framework collectively demand a fundamental shift in how internal investigations are conducted. They can no longer be treated as reactive, siloed exercises; they must be integrated into a strategic corporate response plan.
Building the Infrastructure
To survive this new regulatory climate, companies must develop:
- Rapid Response Protocols: Pre-defined procedures for recognizing "red flag" findings that trigger a disclosure assessment.
- Counsel Engagement: Early involvement of both internal and external counsel to ensure that investigations remain privileged while maintaining the flexibility to pivot to a voluntary disclosure strategy if the facts warrant it.
- Rolling Disclosure Capabilities: The ability to provide the DOJ with information in real-time as an investigation evolves, rather than waiting for a "final report."
Redefining Cooperation
Under the CEP, "cooperation" has been redefined. It is no longer enough to be responsive to government subpoenas. To maximize credit, a company must be proactive. This includes attributing facts to specific sources, providing evidence of the internal "root cause" of the misconduct, and making key employees available for interviews without undue delay.
Furthermore, remediation should be viewed as an ongoing process rather than a post-investigation conclusion. Companies that take immediate disciplinary action, terminate problematic business relationships, and upgrade compliance systems while the investigation is still ongoing are significantly better positioned to argue for a declination under Part I of the CEP.
When to Pull the Trigger on Disclosure
Determining when to disclose is perhaps the most difficult decision a General Counsel will face. However, the CEP provides clear signposts. Evidence of criminal conduct—specifically bribery, fraud, or systemic corruption—should immediately raise the probability of self-disclosure.
Additionally, companies must assess the risk of "independent discovery." If the conduct is likely to surface through regulatory audits, media inquiries, or civil litigation, the value of self-disclosure is multiplied. The CEP requires that disclosure occur before there is an "imminent threat" of discovery; waiting until a government subpoena arrives effectively disqualifies a company from the most favorable, "clean" declination.
Conclusion: Compliance as a Strategic Asset
The DOJ’s shift toward a unified, predictable, and incentivized enforcement policy represents a maturation of federal oversight. While the threat of prosecution remains, the pathway to leniency is now more transparent than at any point in recent history.
The Balt SAS case serves as a proof of concept: the DOJ is willing to reward companies that are fast, transparent, and cooperative. However, this level of responsiveness is impossible to manufacture in the heat of an active crisis. It requires the pre-existence of a robust compliance infrastructure and a corporate culture that views internal investigations as a strategic function.
As the regulatory environment continues to tighten, the cost of inaction will only increase. By investing in the tools, processes, and legal expertise necessary to navigate the CEP today, corporations can transform their compliance programs from a cost center into a powerful strategic shield against the risks of tomorrow. The rules of the game have changed; for those who build the necessary infrastructure now, the benefits of the new DOJ framework are well within reach.
