Foreign Corrupt Practices Act Compliance Policy
A Foreign Corrupt Practices Act compliance policy template that sets anti-bribery rules, books-and-records controls, and reporting steps for employees, contractors, and third parties.
Trusted by frontline teams 15 years of frontline software AI customization in seconds
Built for: Manufacturing · Technology · Pharmaceuticals · Logistics · Professional Services
Overview
This Foreign Corrupt Practices Act Compliance Policy template sets the rules your company uses to prevent bribery, improper payments, and inaccurate accounting entries in domestic and cross-border business. It is built for organizations that interact with foreign officials, use agents or distributors, sponsor events, make charitable contributions abroad, or rely on finance teams to record international transactions correctly.
The template includes a Purpose section, Scope, Definitions, Policy Statement, Procedures, Roles & Responsibilities, Compliance, Investigation, and Discipline, Exceptions, and Review & Revision. It is designed to be adapted for companies that want a clear anti-bribery standard, a practical approval process for gifts and travel, a documented escalation path for concerns, and a books-and-records control framework that finance can actually administer.
Use this policy when your business needs a formal anti-corruption baseline, especially before entering a new market, onboarding a high-risk intermediary, or responding to audit findings. Do not use it as a substitute for transaction-level controls, due diligence, or local law review. It is also not enough by itself if your company needs a separate gifts and entertainment policy, third-party due diligence procedure, or accounting control matrix. The strongest use is as the governing policy that connects those documents and tells employees what to do before any payment, approval, or engagement goes forward.
Standards & compliance context
- The policy should align with the FCPA anti-bribery provisions and the books-and-records and internal controls requirements for issuers.
- If the company is public or has SEC reporting obligations, finance controls should be written to support accurate, timely, and complete accounting entries.
- The policy should also reflect related U.S. enforcement expectations under Title VII, ADA, ADEA, NLRA, FLSA, and FMLA only where employee conduct, reporting, or discipline intersects with those laws, such as retaliation or protected activity.
- State law overlays may affect reporting, whistleblower protections, document retention, and discipline procedures, so California, New York, Illinois, and Washington operations should be checked separately.
- If the policy covers personal data in investigations or due diligence, it should be coordinated with GDPR and CCPA data handling requirements.
General regulatory context for orientation only — verify current requirements with counsel or the relevant agency before relying on this template for compliance.
What's inside this template
Purpose
Explains why the policy exists and what risks it is meant to prevent.
-
This policy establishes the Company's requirements for compliance with the Foreign Corrupt Practices Act (FCPA) and related anti-corruption laws. It is designed to prevent bribery, improper influence, inaccurate accounting entries, and other conduct that could expose the Company, its policy holder, employees, officers, directors, contractors, and third parties to civil or criminal liability. The policy also sets expectations for good-faith reporting, prompt escalation, and accurate documentation of business activities.
Scope
Defines who and what the policy covers, including employees, contractors, and third parties.
-
This policy applies to all employees, officers, directors, temporary workers, contractors, consultants, agents, distributors, resellers, intermediaries, and other third parties acting on behalf of the Company. It applies to all business activities involving foreign government officials, state-owned or state-controlled entities, customs officials, licensing authorities, public procurement, permits, inspections, import/export matters, and any transaction where something of value could be offered, promised, authorized, or given to influence a decision. California employees: this policy does not limit rights protected by California law, including wage and hour protections, whistleblower rights, or leave rights, and it will be administered consistently with applicable California law. All jurisdictions: where local law is stricter than this policy, the stricter rule controls.
Definitions
Clarifies terms like foreign official, thing of value, facilitation payment, and books and records.
-
For purposes of this policy: - **Foreign official** means any officer, employee, or person acting in an official capacity for a foreign government, department, agency, instrumentality, public international organization, or state-owned enterprise. - **Anything of value** includes cash, gifts, meals, travel, entertainment, discounts, favors, jobs, internships, charitable donations, political contributions, loans, or other benefits. - **Facilitation payment** means a small payment made to a government official to expedite or secure routine governmental action. - **Third party** means any agent, consultant, distributor, broker, customs broker, freight forwarder, lobbyist, or other intermediary acting for or on behalf of the Company. - **Books and records** means all accounting entries, invoices, expense reports, ledgers, receipts, contracts, and supporting documentation that reflect Company transactions.
Policy Statement
States the company’s core anti-bribery rule and its expectations for accurate accounting.
-
The Company prohibits bribery and corruption in any form. No employee or third party may directly or indirectly offer, promise, authorize, give, or provide anything of value to a foreign official or any other person for the purpose of improperly obtaining or retaining business, securing an improper advantage, or influencing an official act. The Company also prohibits: - false, misleading, incomplete, or off-book accounting entries; - use of slush funds or undisclosed accounts; - payments routed through third parties to conceal the true recipient or purpose; - gifts, travel, entertainment, or hospitality that are excessive, unusual, or intended to influence; - charitable or political contributions made to obtain business or favorable treatment. Facilitation payments are prohibited, even if customary or locally tolerated, unless a narrow exception is approved in advance by Legal or Compliance and the payment is necessary to protect life or safety in an emergency. Any such exception must be documented immediately and reviewed after the fact. Employees must use good-faith judgment and seek approval before offering anything of value where there is any risk of corruption, conflict of interest, or improper influence.
Procedures
Shows the step-by-step approval, due diligence, reporting, and recordkeeping process.
-
1. **Pre-approval requirements** - Obtain written approval from Legal or Compliance before offering gifts, travel, hospitality, charitable donations, sponsorships, internships, or anything of value to a foreign official or a third party acting on behalf of the Company. - High-risk transactions require enhanced review, including due diligence on the counterparty, beneficial ownership, scope of services, compensation, and red flags. 2. **Third-party due diligence** - Conduct risk-based due diligence before onboarding agents, distributors, consultants, customs brokers, and other intermediaries. - Verify qualifications, reputation, ownership, government connections, compensation structure, and contractual anti-corruption commitments. - Escalate red flags such as requests for cash, offshore payments, vague services, unusual commissions, refusal to certify compliance, or pressure to ignore controls. 3. **Books and records controls** - Record all transactions accurately, completely, and in reasonable detail. - Describe the true business purpose, recipient, amount, date, and supporting documentation for each expense. - Never misclassify payments, split transactions to avoid review thresholds, or create false invoices or receipts. - Finance and Accounting must retain records in accordance with the Company retention schedule and applicable law. 4. **Reporting and escalation** - Report suspected violations immediately to Compliance, Legal, HR, or through the ethics hotline. - Employees must cooperate fully with investigations and preserve relevant documents and communications. - If a government official requests an improper payment, employees must refuse, if safe to do so, and escalate promptly. 5. **Training and certification** - Employees in high-risk roles must complete periodic anti-corruption training. - Relevant personnel may be required to certify compliance annually and upon material role changes.
Roles & Responsibilities
Assigns ownership so employees know who approves, monitors, investigates, and updates the policy.
-
- **Employees** must comply with this policy, complete required training, and report concerns in good faith. - **Managers** must model compliant conduct, ensure controls are followed, and escalate red flags promptly. - **Finance and Accounting** must maintain accurate books and records, review supporting documentation, and reject unsupported or misleading entries. - **Legal / Compliance** must advise on approvals, due diligence, investigations, and remediation. - **Procurement / Sales / Business Leaders** must ensure third parties are vetted and that commercial pressure does not override compliance requirements. - **HR** must support training, acknowledgment tracking, and discipline administration where policy violations occur.
Compliance, Investigation, and Discipline
Explains how concerns are investigated and what happens when the policy is violated.
-
Violations of this policy may result in corrective action up to and including termination of employment or contract, cancellation of business relationships, referral to law enforcement, and other remedies permitted by law. The Company will investigate reported concerns promptly, fairly, and confidentially to the extent practicable. Retaliation against any person who raises a concern in good faith, participates in an investigation, or refuses to engage in improper conduct is prohibited. Documented warnings, performance improvement plans (PIPs), suspension, demotion, termination, or contract termination may be used depending on the severity, intent, prior history, and impact of the violation.
Exceptions
Sets the narrow circumstances, if any, under which a deviation may be approved and documented.
-
Any exception to this policy must be approved in writing by Legal or Compliance before the activity occurs, except where immediate action is necessary to protect life or safety. Emergency exceptions must be documented as soon as practicable and reviewed after the event. No exception may be granted for conduct that would violate applicable law.
Review & Revision
Creates the annual update cycle and ensures the policy stays aligned with law and business changes.
-
This policy will be reviewed at least annually and updated as needed to reflect changes in law, business operations, risk profile, enforcement trends, or internal controls. The policy holder is responsible for coordinating revisions, obtaining approvals, and communicating material changes to affected employees and third parties.
How to use this template
- 1. Fill in the effective_date, version, review_frequency, applicable_jurisdictions, and applicable_roles so the policy clearly states who it covers and when it applies.
- 2. Customize the Definitions and Policy Statement sections to match your company’s stance on bribery, facilitation payments, gifts, travel, charitable giving, and third-party payments.
- 3. Assign approval owners in the Procedures section for high-risk spend, due diligence, and accounting entries, and make sure the workflow matches your actual finance and legal process.
- 4. Publish the reporting and investigation steps so employees know how to raise concerns, who investigates, and what documentation must be preserved.
- 5. Review the Exceptions and Compliance, Investigation, and Discipline sections with legal and finance to ensure any carve-outs, escalation paths, and disciplinary actions are realistic and enforceable.
Best practices
- State a clear prohibition on offering, promising, authorizing, or paying anything of value to a foreign official for an improper business advantage.
- Require pre-approval for gifts, travel, hospitality, charitable donations, sponsorships, and anything routed through an agent or consultant.
- Treat facilitation payments as prohibited unless your company has expressly approved a narrow exception and documented the legal basis.
- Require finance to record transactions with enough detail that the purpose, recipient, and approver are clear from the ledger and supporting documents.
- Use risk-based due diligence for third parties before onboarding and again when the relationship, country, or payment pattern changes.
- Preserve evidence of approvals, invoices, receipts, and communications so investigations can reconstruct the decision trail.
- Escalate red flags immediately, including requests for cash, vague services, split invoices, offshore accounts, or refusal to sign compliance terms.
What this template typically catches
Issues teams running this template most often surface in practice:
Common use cases
Frequently asked questions
Who should use a Foreign Corrupt Practices Act compliance policy template?
Use this template if your company does business outside the United States, uses foreign agents or distributors, or records international transactions. It is also useful for U.S.-based companies with overseas sales, customs, logistics, government-facing work, or third-party intermediaries. The policy helps set expectations for employees, contractors, and vendors who may interact with foreign officials or maintain accounting records.
What does this template cover that an ad hoc anti-bribery memo does not?
This template covers the policy statement, procedures, reporting channels, roles, investigation steps, discipline, exceptions, and annual review. It also ties conduct rules to books-and-records accuracy, which is a core FCPA issue that ad hoc reminders often miss. A reusable policy is easier to assign, acknowledge, audit, and update than a one-off email or training slide.
How often should this policy be reviewed?
Review it at least annually and again when your company enters a new country, adds a high-risk third party, changes accounting systems, or updates its gift and hospitality rules. Annual review is the standard baseline, but higher-risk operations may need interim updates. The review should confirm that the policy still matches actual approval workflows and reporting channels.
Who should own and enforce the policy?
Compliance, legal, finance, and HR usually share ownership, with a designated policy holder accountable for updates and administration. Finance should own books-and-records controls, while legal or compliance should handle investigations and third-party due diligence. Managers must enforce the policy in day-to-day approvals, especially for gifts, travel, charitable donations, and intermediary payments.
Does the FCPA allow facilitation payments?
The FCPA has a narrow exception for certain routine governmental action payments, but many companies prohibit facilitation payments entirely because they create enforcement and reputational risk. This template lets you state a stricter company rule if you choose, which is common in global compliance programs. If your policy permits any exception, it should require prior approval and documentation.
How does this policy address third parties and agents?
The template should require risk-based due diligence, written contracts, anti-corruption representations, and monitoring for agents, consultants, distributors, and customs brokers. Third parties are a common source of FCPA exposure because improper payments can be routed through intermediaries. The policy should also require escalation if a third party refuses audit rights, transparency, or compliance certifications.
What records and controls should be included?
The policy should require accurate, timely, and complete entries in the books and records, with no off-book accounts, vague descriptions, or unsupported cash disbursements. It should also require receipts, approvals, and supporting documentation for gifts, travel, entertainment, charitable contributions, and sponsorships. Finance controls matter because even a legitimate payment can become a compliance issue if it is misclassified or hidden.
How should the policy be rolled out across the company?
Publish the policy, assign acknowledgments, train employees in relevant roles, and add approval checkpoints for higher-risk spend categories. Rollout should prioritize sales, procurement, finance, logistics, government-facing teams, and anyone managing third parties. A good rollout also includes a reporting path for concerns and a reminder that retaliation for good-faith reporting is prohibited.
Related templates
Ready to use this template?
Get started with MangoApps and use Foreign Corrupt Practices Act Compliance Policy with your team — pricing built for small business.
