Internal Investigations

Internal Investigation Report Stresses Lack of Intentional Misconduct – But the Investigation May Broaden

Westpac Banking Corporation (“Westpac”), Australia’s second largest retail bank, has been besieged by serious allegations of violating Australia’s Anti-Money Laundering (“AML”) and Counter-Terrorism Financing (“CTF”) Act. Just as Westpac was attempting to put some of these problems behind it, new potential AML/CTF problems have come to light.

In this post, we discuss what to expect for Westpac going forward, and the potential broadening of Australian regulator’s investigation into Westpac – a recent revelation quickly coming on the heels of Westpac’s public release on June 4 of the findings by the bank’s own internal investigation report into allegations that systemic compliance failures resulted in Westpac committing over 23 million breaches of Australia’s AML/CTF laws, pertaining in part to financial transactions involving alleged child exploitation. We previously have blogged on these alleged breaches (and the Statement of Claim brought by AUSTRAC, Australia’s AML/CTF regulator, stemming from those breaches), as well as on the private securities suits that followed these serious revelations.

The headline finding in the internal investigation report — which has been criticized — was its conclusion that the significant AML/CTF violations and failures it admitted were “due to technology failings and human error,” and that “[t]here was no evidence of intentional wrongdoing.” Consistent with a theme that emerges in many AML scandals, the lack of adequate and sufficiently trained personnel has been a key factor here.  Likewise, the Westpac internal investigation report also underscores the limits of automated AML/CFT systems.  Ultimately, any AML/CFT program is only as good as the people running it.
Continue Reading Westpac’s Alleged AML Failures Back in the News

Second Post in a Two-Post Series

On March 19, 2020, Swedbank received its first sanction at the conclusion of parallel investigations by Swedish and Estonian authorities for its role in the seemingly non-stop Anti-Money Laundering (“AML”) debacle centered around Danske Bank and its now-notorious Estonian Branch. In the first of what will likely be multiple sanctions, Swedbank AB was ordered to pay a record 4 billion Swedish Krona ($38 million) and its subsidiary, Swedbank AS, has been ordered to improve its AML risk control systems to comply with applicable requirements.

In our first post, we discussed the various public AML-related investigations and enforcement actions plaguing Swedbank. In this post, we discuss the details and implication of the report of internal investigation regarding Swedbank’s alleged deficiencies in its AML processes performed by an outside law firm at the request of Swedbank, which has made the report publically available.

The Report is lengthy and detailed.  As we discuss, however, the Report highlights some basic, evergreen issues in AML compliance and enforcement: the need to implement adequate systems to manage high-risk customers; the need to identify beneficial ownership; the need for top management to understand and truly respect AML compliance; the need for transparency with regulators; and the need for transparency by financial institutions with investors and the public.


Continue Reading AML Problems Plague Swedbank: The Internal Investigation Report

Danske Bank: “If we’re going down, you’re coming with us.”

First Post in a Two-Post Series

On March 19, 2020, Swedbank received the first of what will likely be multiple sanctions regarding alleged deficiencies in its Anti-Money Laundering (“AML”) processes and mishandling of information exchanges with public investigations. At the conclusion of parallel investigations by Swedish and Estonian authorities, Swedbank AB must now pay a record 4 billion Swedish Krona ($38 million) and its subsidiary, Swedbank AS, has been ordered to improve its AML risk control systems to comply with the applicable requirements. These penalties are all prelude to the ongoing investigations by the Latvian Police Department, European Central Bank, Swedish Economic Crime Authority, several United States authorities and, presumably, the inevitable private securities litigation to come.

In this post, we will discuss the various public AML-related investigations and enforcement actions plaguing Swedbank.  In our next post, we will discuss the details and implications of the report of internal investigation regarding these problems performed by an outside law firm at the request of Swedbank, which has made the report publicly available.  The bigger picture: the saga of Swedbank is just part of the larger and seemingly non-stop AML debacle centered around Danske Bank and its now-notorious Estonian Branch.
Continue Reading AML Problems Plague Swedbank

In February 2017, we blogged about a whistleblower complaint filed against Bank of the Internet (“BofI”) by its former internal auditor. The blog post addressed what the whistleblower believed was BofI’s wrongdoing in relation to responding to a subpoena from the Securities and Exchange Commission (“SEC”), and when dealing with a certain loan customer in potential violation of the Anti-Money Laundering (“AML”) rules of the Bank Secrecy Act (“BSA”).

Less than two months after our blog post, three BofI stockholders brought a putative class action complaint against BofI seeking to represent a class of individuals who purchased BofI stock, in a case captioned Mandalevey v. BofI Holding, Inc. These plaintiffs alleged BofI violated the Securities Exchange Act through, among other alleged misrepresentations, falsely denying the company was under investigation for money laundering violations.  A federal court recently dismissed all claims against BofI.

This post focuses on that decision, the allegations relating to the federal investigation of BofI, and the Court’s interesting reasoning in dismissing these plaintiffs’ claims. Although the bank won this latest round, the saga involving BofI underscores how financial institutions face an increasing risk that alleged AML and Counter-Terrorism Financing (“CTF”) violations will lead to follow-on allegations of securities law violations – allegations brought not only by the government (see here), but also by investor class action suits (see here, here and here).
Continue Reading When A Purported Money Laundering Investigation Turns Into a Class Action Complaint: The Latest Round in BofI’s Fight to Put Money Laundering Allegations in the Rearview Mirror

The Western Union Company (“Western Union”) entered into a deferred prosecution agreement (“DPA”) on January 19th with the Department of Justice, based on alleged willful failures to maintain an effective AML program and the aiding and abetting of wire fraud.  The DPA involved a combined $586 million monetary penalty and also involved related civil enforcement actions by the Federal Trade Commission and FinCEN.  The agreement has been well-publicized and its details will not be repeated here; very generally, the DPA rests on allegations involving conduct stretching from 2004 through 2012 and an overall failure by Western Union to detect and prevent a kaleidoscope of illicit behavior by customers, from structured transactions to an international consumer fraud scheme to potential drug distribution.  To be sure, this is a significant agreement – but it echoes the same general sort of facts and allegations which have become almost standard in large AML enforcement actions. However, the Western Union action contains at least one interesting wrinkle.
Continue Reading The Western Union DPA and the Need to Investigate One’s Own