AustLII Home | Databases | WorldLII | Search | Feedback

Melbourne University Law Review

Melbourne Law School
You are here:  AustLII >> Databases >> Melbourne University Law Review >> 2006 >> [2006] MelbULawRw 15

Database Search | Name Search | Recent Articles | Noteup | LawCite | Help

Parker, Christine; Nielsen, Vibeke Lehmann --- "Do Businesses Take Compliance Systems Seriously? An Empirical Study of Implementation of Trade Practices Compliance Systems in Australia" [2006] MelbULawRw 15; (2006) 30(2) Melbourne University Law Review 441


DO BUSINESSES TAKE COMPLIANCE SYSTEMS SERIOUSLY? AN EMPIRICAL STUDY OF THE IMPLEMENTATION OF TRADE PRACTICES COMPLIANCE SYSTEMS IN AUSTRALIA

CHRISTINE PARKER[∗] AND VIBEKE LEHMANN NIELSEN[†]

[Since 1991, the Australian Competition and Consumer Commission has actively encouraged, and sometimes forced, Australian businesses to implement internal competition and consumer protection compliance programmes in order to improve compliance amongst a wider range of businesses than can be reached by enforcement action alone. Have Australian businesses implemented the type of internal management systems and controls that the Australian Competition and Consumer Commission, industry best practice and research evidence see as desirable for trade practices compliance? This article presents findings from a survey of 999 of the largest Australian businesses (as determined by number of employees) on the extent to which they have implemented trade practices compliance systems. Outcomes from the study demonstrate that, on the whole, the implementation of trade practices compliance systems is partial, symbolic and half-hearted. Nevertheless, enforcement action by the Australian Competition and Consumer Commission improves the level of implementation of compliance systems.]

I INTRODUCTION

Since 1991, the Australian Competition and Consumer Commission (‘ACCC’) has prodded Australian businesses to implement internal competition and consumer protection compliance programmes.[1] The aim has been to deepen businesses’ commitment to, and responsibility for, the achievement of the goals of the Trade Practices Act 1974 (Cth) (‘TPA’), and to improve compliance amongst a wide range of businesses. The ACCC cannot discover, let alone take enforcement action on, every breach of the TPA by a business. But it does expect every business to be its own enforcement agency — identifying, correcting and preventing its own noncompliance. What effect has the ACCC’s strategy had on Australian businesses’ implementation of compliance programmes? Have Australian businesses implemented the type of internal management systems and controls that the ACCC, industry best practice and research evidence see as desirable for trade practices compliance?

In recent times, many business regulation enforcement agencies and policymakers have turned their attention towards trying to change internal corporate management processes and cultures to improve internal corporate commitment to, and achievement of, regulatory goals.[2]

Laws regulating the social and economic responsibilities of businesses now frequently provide that the extent of corporate liability for damages or penalties will depend at least partly on the extent to which corporations have implemented internal systems designed to identify, correct and prevent wrongdoing or liability.[3] Licences and permits in environmental and financial services are now given, and other industry-specific regulation are applied, only after businesses have satisfied the regulator that they have appropriate internal compliance and risk management systems in place.[4] Since the United States’ implementation of the post-Enron reforms pursuant to the Public Company Accounting Reform and Investor Protection Act of 2002,[5] general corporate regulation is also increasingly requiring implementation of internal compliance controls.[6]

Regulatory reliance on the implementation of internal business compliance systems has, however, been criticised by some commentators as merely an exercise in ‘cosmetic compliance’.[7] It is suggested — and substantial evidence is available to support the suggestion — that companies will implement compliance management systems only to the extent necessary to ensure they look legitimate, or to the extent they are forced to do so. Their management changes will be partial and half-hearted, and courts and regulators will lack the skills and resources to distinguish genuine, substantive and effective compliance commitment from simply ‘ticking the boxes’.[8]

This article presents results from a survey of 999 businesses drawn from the 2500 largest Australian businesses determined by number of employees.[9] This article also draws on the results of an earlier qualitative study which involved semi-structured interviews with 100 ACCC staff, trade practices lawyers, compliance advisers, and business people who have been the subject of ACCC enforcement action.[10] The samples and methodologies for both the survey and the preparatory qualitative study are briefly explained in Part VI(A) below, including analysis suggesting no major non-response bias amongst our survey sample by size or by industry.

In this article, we first briefly describe the ways in which the ACCC seeks to encourage or enforce implementation of compliance systems, and the wider significance of the encouragement of compliance systems as a regulatory policy strategy. Second, we set out the major descriptive results from our survey indicating the extent of implementation of trade practices compliance systems by Australian businesses. We also examine the aspects of compliance systems that are most commonly implemented and the extent to which implementation is influenced by ACCC enforcement activity. Third, we discuss these empirical results to explain what they tell us about the approach to trade practices compliance system implementation adopted by Australian businesses, and whether the strategy of the ACCC of promoting trade practices compliance system implementation has been effective and wise. Finally, the article summarises the conclusions we have drawn from the data generated by the survey. The evidence presented in this article suggests that on the whole Australian businesses’ implementation of trade practices compliance systems is partial, symbolic and half-hearted. But this does not necessarily mean that the ACCC should abandon its strategy of encouraging, promoting and enforcing implementation of trade practices compliance systems by businesses. Indeed we find that ACCC enforcement action does improve compliance system implementation.

II AUSTRALIAN TRADE PRACTICES ENFORCEMENT AND THE SIGNIFICANCE OF COMPLIANCE SYSTEMS

A Compliance Not by Litigation Alone

The ACCC is the federal competition and consumer law regulator for Australia, responsible for enforcing provisions of the TPA that apply to all Australian businesses. This involves the policing of certain anti-competitive conduct (for example, price-fixing and abuse of market power),[11] unfair trading practices (especially misleading and deceptive advertising),[12] noncompliance with legislated product safety standards, and unconscionable conduct in dealings between businesses and between businesses and consumers.[13] The ACCC has powers only to investigate potential contraventions and to take alleged offenders to court for the imposition of monetary penalties, injunctions and other orders. It has no powers of its own to fine or penalise businesses. Nor does it engage in substantial proactive monitoring of business compliance with the TPA. It is a reactive enforcement agency, usually waiting to receive complaints before taking any action. Indeed the ACCC receives thousands of complaints every year, and investigates only a tiny proportion of these cases. According to ACCC Commissioner David Smith,

in the 2003–2004 financial year the ACCC received 48 724 complaints and inquiries relating to the Trade Practices Act.
Just 634, or 1.3 percent of complaints, were escalated to investigation. 220 then went to serious investigation and only 20 proceeded to litigation. These figures are not atypical of past years as well.[14]

The ACCC has long recognised that it does not have sufficient resources to rely only on enforcement litigation to promote business compliance with the TPA: ‘In the face of these numbers it’s a fact of life that the ACCC does NOT have unlimited resources and therefore needs to be selective.’[15] It has therefore used its enforcement, as well as its educative and liaison activities, to encourage the adoption of compliance systems. In doing so, the ACCC hopes to garner both deeper and wider business commitment to, and achievement of, competition and consumer protection goals than it can accomplish through litigation alone.

B ACCC Strategies for Deeper and Wider Business Compliance

1 Enforcement Activity

First, the ACCC has used its enforcement activity to make businesses implement compliance systems. The enforcement side of the ACCC’s strategy for encouraging implementation of compliance systems is aimed at deeper business commitment to, and achievement of regulatory goals. As Deputy Chair of the ACCC Louise Sylvan has stated, ‘traditional regulatory enforcement strategies (penalties, injunctions, declarations, other orders etc) — despite being a big hit on a company — have not always been able to bring about a lasting change in corporate behaviour.’[16] The ACCC has therefore sought to foster deeper, more substantive changes in business behaviour and commitment by expecting businesses to respond to ACCC investigation or prosecution by the implementation of an internal trade practices compliance system (or review their existing system).

In support of this expectation, the ACCC has successfully argued that a court should take into account whether the defendant business has implemented a compliance system in determining the level and type of penalties and orders to be granted.[17]

The test is that the business must have implemented ‘a substantial compliance program … which was actively implemented’ and that implementation must be ‘successful’.[18] Where there is no evidence to show that this is the case, the penalty will be larger, and injunctions to refrain from future contravening conduct are more likely to be granted.[19]

Where a business does not respond to investigation and prosecution by implementing a compliance programme of an adequate standard, the ACCC has also argued that the court should order the business to do so in order to prevent subsequent breaches. The ACCC has had varying degrees of success in obtaining such orders. However, at the ACCC’s recommendation, the TPA has now been amended to specifically authorise the courts to make ‘probation orders’ under s 86C, which can include orders for the implementation of compliance systems (or parts of a compliance system).[20] Moreover, where the ACCC settles potential enforcement actions through the voluntary agreement of the business under investigation, the ACCC almost always requires the business to implement a compliance system as a condition of settlement.[21]

Each of the ACCC strategies described thus far are aimed at prompting a deeper commitment to compliance amongst businesses that actually come into direct contact with the ACCC. As Sylvan stated, ‘if a company does not have an effective compliance program in place, they most certainly will have one when we catch them.’[22]

We would expect that, if the strategy of the ACCC has been successful, those organisations that have been investigated for breaches of the TPA, and had enforcement action brought against them (particularly those which have been forced to put in place a compliance system as a result of enforcement action), would have a deeper level of commitment to compliance system implementation.

2 Promotion of High Quality Compliance Management

The ACCC has also self-consciously nurtured trade practices compliance skills and standards in Australian businesses in order to promote high quality compliance management more widely than would have been possible through enforcement action alone.

The ACCC has been particularly active in creating a market for trade practices compliance advisory services, fostering the trade practices compliance industry and communicating standards and guidelines to the industry once established. In the early 1990s the ACCC established a Compliance Education Unit, which has since been disbanded,[23] and developed the Best and Fairest Compliance Manual, a model compliance programme and set of training modules for businesses to use with managers and staff.[24] The Compliance Education Unit was also available to act as compliance consultants for companies who had entered into TPA s 87B undertakings or who voluntarily wished to set up a compliance programme. The ACCC was also instrumental in educating and equipping (external and in-house) business lawyers and compliance advisers to help businesses improve their internal trade practices compliance processes. The ACCC helped set up the Society of Consumer Affairs Professionals in Business Australia in 1993 and the Association for Compliance Professionals of Australia (now the Australasian Compliance Institute (‘ACI’)) in 1996. Both organisations grew quickly in membership and status.

Together with the ACI, the ACCC also requested and helped develop AS 3806 on ‘Compliance Programs’ under the processes of Standards Australia.[25] AS 3806 provides a management system standard for ensuring internal regulatory compliance (not just with trade practices law but with any regulatory or self-regulatory obligations) and is widely accepted as the management system standard for compliance in Australia.[26]

It is promoted as such by the ACI, and also adopted by the ACCC and the Australian Securities and Investments Commission (‘ASIC’) as a useful guide for compliance systems.[27]

Previously the ACCC had also been involved in initiating and developing AS 4269 (February 1995) on ‘Complaints Handling’ under the processes of Standards Australia. The ACCC has continued to prioritise compliance education and liaison activities through small business and rural and regional outreach programmes, numerous speeches and attendances at meetings, conferences and other fora within businesses, and at industry and professional group meetings. It has also continued to develop and update numerous publications on TPA compliance issues, as well as been involved in developing or reviewing industry codes of conduct.[28]

This set of ACCC strategies is aimed at making it more likely that a greater number of organisations will adopt higher standards in the implementation of compliance systems. The hope is that the deterrent effect of ACCC enforcement activity will have a deeper impact in encouraging a wider range of businesses to implement trade practices compliance systems. The strategy is that when businesses (even those that have not had any direct contact with the ACCC) seek advice, or look for information on how to comply with the TPA (whether from lawyers, consultants, compliance advisers or industry associations), the ACCC will have already ensured that the available information and professional advice all emphasise the need to implement substantial internal compliance programmes of a high standard. As ACCC Commissioner Smith explained:

The ACCC much prefers compliance over confrontation or crackdown. But, having said that, the ACCC also sends a clear message — that message is that we will never hesitate to confront any business or crackdown on any behaviour which flouts the clear obligations all business has to comply with the Trade Practices Act.
We believe it is eminently more sensible to have business comply with the Act, instead of have them act in a way that does damage to both consumers and the business, and then have to try to undo that damage later.[29]

If this ACCC strategy is successful, we would expect to see a wide range of organisations beyond those which have had direct contact with the ACCC implementing substantial trade practices compliance systems.

C What Is (and Should Be) Expected of Australian Trade Practices Compliance Systems?

In order to evaluate whether the ACCC’s strategies have had any impact, we need to know what the ACCC does, and should, expect of business implementation of trade practices compliance systems. What are the standards or benchmarks for these systems? As we have seen, the test that the courts use to evaluate business implementation of trade practices compliance systems is that the business must have ‘a substantial compliance program … which was actively implemented’ and that implementation must be ‘successful’.[30]

AS 3806 provides a more specific set of criteria for best practice compliance programmes.[31] The ACCC also provides detailed guidance as to the features it expects of compliance systems implemented under enforceable undertakings. The ACCC sees its guidance as consistent with AS 3806.[32]

According to these guidance templates, the ACCC expects that the trade practices compliance systems of larger businesses should involve:

• appointment of a director or senior manager with suitable qualifications or experience as a compliance officer, with responsibility for ensuring that the compliance programme is effectively designed, implemented and maintained;

• a risk assessment for potential breaches of the TPA and procedures for managing those risks;

• a policy statement outlining the commitment of the company to trade practices compliance and a strategic outline of how that commitment to trade practices compliance will be realised, including a requirement for staff to report compliance issues and concerns to the compliance officer, a guarantee of protection to whistleblowers, and a statement that the company will take internal action against any persons who are knowingly or recklessly concerned in a breach and will not indemnify them for any external action taken against them;

• a trade practices complaints handling system;

• regular reports from the compliance officer to the board and/or senior management on the continuing effectiveness of the compliance programme;

• regular and practical trade practices training for all directors, officers, employees, representatives and agents whose duties may put them at risk of contravening the TPA, including their incorporation into induction training; and

• regular reviews of the operation and effectiveness of the compliance programme.[33]

This set of requirements is broadly consistent with what scholarly evaluations of corporate compliance programmes find to be effective.[34] Christine Parker has previously argued — on the basis of empirical fieldwork on best practice and a review of the literature — that at the very least a corporate self-regulation or compliance system should encompass the following:

1 That there should be clearly defined responsibility for compliance that is shared between:

• A specialised compliance function (for example, a compliance officer) with clout to determine strategies and priorities for legal and social responsibility issues, monitor compliance, receive complaints from internal and external stakeholders, and be responsible for coordinating reports on the responsibility performance of the company to government agencies and the public;[35]

and

• A clear board-level compliance/self-regulation oversight agenda. This might be achieved by a board audit or compliance committee, a designated board member, or simply by making the compliance/self-regulation programme a standing agenda item on ordinary board meetings;[36] and

• Reporting lines and job descriptions that make compliance part of everybody’s job and construct clear pathways for compliance performance and for problems to be taken directly to the top through a reporting line independent of line management[37]

2 The company should regularly evaluate its compliance processes and performance, including the extent of implementation of self-regulation processes: whether their scope and strategy remains appropriate for the organisation; verification of reports of activity and performance produced internally; and assessment of performance and outcomes of the whole approach to compliance management within the corporation;[38]

3 The internal discipline system of a company must support the compliance system. Management and employees should be regularly and swiftly disciplined for any misconduct under the compliance system (and also be rewarded via performance evaluations for positive contributions). This disciplinary system should be designed in such a way that it respects employees’ integrity, connects with employees’ values and allows the company as a whole to learn from individual mistakes and misbehaviours in order to prevent them from recurring;[39]

4 The company should have a system for engaging with external stakeholders. It should have mechanisms for identifying its obligations under law, and any other standards it wishes to voluntarily adopt (for example, broader human rights principles), and have systems that allow external stakeholders to use these principles to contest corporate actions and decision-making. These should include, at the very least, a complaints handling system with a capacity to both identify patterns of complaint and to report those issues to someone who can resolve them.[40]

The measures of compliance system implementation used in our study are based on this conception of what is required for an organisation to have a substantial, actively implemented and effective compliance system.

III EMPIRICAL EVIDENCE: LEVEL OF IMPLEMENTATION OF TRADE PRACTICES COMPLIANCE SYSTEMS

A Evidence from Qualitative Interviews with Lawyers

No previous systematic studies are available of how widespread trade practices compliance systems are in the Australian business community at present, or of how partial or committed the implementation of these systems might be. Anecdotal and qualitative evidence suggests that most large companies do have a trade practices compliance system in place. For example, submissions to a 1994 Australian Law Reform Commission inquiry on compliance with the TPA suggested that at that stage the high profile of the activities of the ACCC had already led most large companies to renew or implement programmes.[41]

In the qualitative study,[42]

trade practices lawyers reported that they always advised clients who were likely to have any trouble or contact with the ACCC that they should implement or revise a trade practices compliance programme. Indeed, they stated that they generally advised all their clients to implement such a system, and had been providing this type of advice since at least the mid-1990s. Typical comments included:

In the last 10 years companies have realised they need trade practices compliance and a compliance program is at the top of the general Counsel’s agenda.
We basically tell people whether you’re bigger or smaller, the ACCC expects you to have a live compliance program. You need to have a compliance person in place, training (face to face then online training if you can afford it) and a whistleblower policy in place. Then ascertain which people are at a higher risk and concentrate on them for ongoing training. You also need to create a culture where people aren’t afraid to ask questions.[43]

However, implementation of these systems by clients was not necessarily fulsome. A number of lawyers commented that many clients now wanted a trade practices compliance programme, but that their clients rarely bought the full compliance programme services that would actually provide them with comprehensive and effective compliance management. As one lawyer reported: ‘Not too many have really got their heads around the concept of compliance being about good management. Although some of them say that in their rhetoric. They don’t want to spend very much on compliance.’[44] Cost-conscious clients usually just wanted their lawyers to undertake some training sessions, not to conduct thorough evaluations of the management and culture of the business. One lawyer observed: ‘They don’t ask for audits. They just want people to come in as talking heads. Half-hearted is the core thing. You tell them that audit is advisable but they are generally reluctant to spend money.’[45]

Moreover, any new commitment to implementing or revamping a competition and consumer protection law compliance system generally only came about through a brush with the ACCC:

There is no doubt they revamp their compliance programs if they have a brush with the ACCC just as a strategic response … The strategy is that if we’re going to be in trouble, it’s a strategy in minimising the penalty. The companies will ask for a compliance program by and large as a result of an investigation by the ACCC. Very very large corporations will unilaterally ask for an upgrade without a particular matter, but they probably have regular dealings with the ACCC anyway. Beyond that most are reactive.[46]

The qualitative interviews suggested that it was hard to convince clients that they needed to keep their compliance programmes up-to-date in the absence of problems with the ACCC.[47]

The picture painted by these interviews suggests that implementation of compliance systems by Australian businesses is on the whole symbolic, partial and half-hearted. As one lawyer said: ‘We are keen to offer trade practices compliance programs but the companies are truly receptive only after a problem. Most of the companies do have one, what we offer is an upgrade — bells and whistles’.[48] In other words, most companies have a partial compliance system in place. But they do not meet their own lawyers’ standards as to what comprises an effective and committed trade practices compliance system, one with all the ‘bells and whistles’. They tend to think about upgrading the compliance system only when they have a problem with the ACCC. A cynic might argue that these trade practices lawyers are likely to be biased in favour of wanting their clients to buy more services — they might therefore underestimate their own clients’ implementation of compliance systems.[49]

In the following, we shall see evidence from 999 large Australian businesses[50] that, if anything, these lawyers’ views of business implementation of compliance systems might be too optimistic, and that implementation by Australian businesses of compliance systems is even less comprehensive than they suggest.

B Number of Trade Practices Compliance Staff

Businesses with a high level of commitment to compliance and compliance management are likely to need a dedicated compliance role to realise that commitment. Therefore, one simple way of finding out about a business’ level of implementation of trade practices compliance systems is to ask how many trade practices compliance staff they employ. The distribution of our respondents in terms of the number of full-time equivalent compliance staff they employ is shown in Figure 1.[51]

Figure 1: Number of Full-Time Employee Equivalents Responsible for Ensuring Compliance

As can be seen in Figure 1, 114 (13.8 per cent) of the respondents stated that that they had no full-time staff equivalent dedicated to ensuring trade practices compliance. Almost half (373 or 45.2 per cent) had fewer than one full-time employee equivalent responsible for ensuring trade practices compliance, suggesting that trade practices compliance was added on to someone else’s responsibilities for these businesses. Approximately one fifth (170 or 20.6 per cent) of the respondents had one full-time employee equivalent or more, but not two. The remaining fifth (169 or 20.4 per cent) had two or more full-time employee equivalents responsible for ensuring trade practices compliance.

These figures might suggest that trade practices compliance was not considered significant enough to merit a separate appointment in close to 60 per cent of our sample of large Australian businesses. However, while the ACCC and best practice do suggest that a senior person should be ‘made responsible for’ compliance within the organisation, they do not necessarily require employment of full-time staff to manage trade practices compliance. It is also possible that some of the firms that said they had only part-time employees responsible for ensuring trade practices compliance did actually employ full-time compliance managers or lawyers who worked on ensuring compliance with a range of regulatory requirements, not just trade practices compliance (since we specifically asked about trade practices compliance employees). The trade practices compliance system might ‘plug into’ broader compliance arrangements within the organisation. It is more informative to look at the extent to which the businesses have implemented a range of compliance system structures and procedures, not just employment of compliance staff.

C Implementation of Trade Practices Compliance System Elements

The survey asked respondents to provide ‘yes’ or ‘no’ answers to a series of 21 very specific questions about whether their organisation had implemented various procedures, actions and behaviours expected to be part of a good compliance system (‘compliance system elements’).[52]

These questions were based on the conception of a good compliance system set out above in Part II(C).[53]

The questions were designed in such a way that it should have been relatively easy for the person filling out the survey to objectively determine whether the answer should be ‘yes’ or ‘no’, eliminating as far as possible the element of subjectivity that makes it easier to respond in a socially desirable way. Table 2 displays the exact wording of each question and also the percentage answering ‘yes’ to each question.[54]

Most elements had been implemented by less than half of the respondents, with two major exceptions. Almost all businesses, 91 per cent, agreed that ‘In my organisation there is a clearly defined system for handling complaints from customers or clients’, and 87 per cent indicated that ‘In my organisation we keep records of complaints from customers, competitors and/or suppliers’.[55] As shown below in Table 1, three quarters of the respondents had implemented one half or less of the elements, and nearly half had implemented only one quarter or less. But only 3.4 per cent of the businesses did not tick ‘yes’ to implementation of any compliance system elements at all (not shown in Table 1). In other words, the vast majority of businesses had implemented some parts of a trade practices compliance system, but had done so partially by implementing only a few of the elements, most commonly complaints handling system elements.

Table 1: Respondents’ Level of Implementation of Trade Practices Compliance System Elements by Quartile[56]

Proportion of compliance system elements implemented
Survey respondents (%)
One quarter or less
46.2
One quarter to one half
28.0
One half to three quarters
19.6
More than three quarters
6.3

D Four Groups of Compliance System Elements

In order to better understand the extent to which respondents had implemented trade practices compliance systems, and the elements they more commonly implemented, we used factor analysis (and the literature and best practice on compliance systems described above) to divide the 21 compliance system elements into four groups: complaints handling; communication and training; management accountability and whistleblowing; and compliance performance measurement and discipline.[57] Table 2 below shows the division of the elements into the four groups, the percentages of respondents answering ‘yes’ to each element, and the total mean score for each group.

Our factor analysis indicated that the elements in each group were related —respondents that had implemented one aspect of each group were likely to have implemented more of the other elements in that same group than an element in other groups.[58] Implementation of compliance system elements by firms tended to cluster into implementation of these four different aspects of compliance systems. Moreover, as Table 3 below shows, we found that businesses that had implemented the least commonly implemented compliance system elements (compliance performance measurement and discipline) were more likely to have implemented all the other three groups of compliance system elements than those that had not.[59] Most of these businesses did not implement these elements in isolation, but with most of the other compliance system elements as well. This might mean that for these businesses, implementation of compliance performance measurement and discipline system elements builds upon implementation of other elements. For example, compliance performance could not be measured unless complaints were recorded.

1 Systems for Receiving and Handling Complaints

The first and by far the most commonly implemented group of compliance system elements were systems for receiving and handling complaints from customers, clients, competitors or suppliers, or compliance failures identified by people external to the organisation, as well as seeking out consumer opinion on new products and advertising. Each of these elements is concerned with obtaining and dealing with information relevant to compliance from outside the organisation. The respondents’ mean score on implementation of the complaints handling group, calculated using a paired samples ‘t-test’,[60] was significantly different from implementation of the other three, which was fairly poor by comparison.

2 Communication and Training

Communication and training includes all the ways in which the commitment to compliance and specific compliance procedures and practices by the organisation are internally communicated from the senior management down to staff through manuals, training and computer systems. This group also includes an item asking whether the organisation has a ‘dedicated compliance function taking care of trade practices compliance’. This last item fits less neatly with the other items as a measure of compliance communication and training. However, it may fit well statistically with this group of items because they all indicate that the organisation has an explicitly thought-out set of internal policies and communication strategies on trade practices compliance — for that to occur, there must be a dedicated function responsible for doing it.

In contrast with the focus of the communication and training group of elements on top-down communication, the next two groups focus on different ways in which the senior management of the organisation might discover whether management and employees are acting in accordance with the compliance commitment of the organisation, and enforce and improve the organisation’s compliance policies.

3 Management Accountability and Whistleblowing

Management accountability and whistleblowing includes mechanisms by which individual managers are made accountable for compliance through reporting, as well as through audit or review by external professionals (to check the reliability of reporting). Both compliance reporting requirements and audit or review of the compliance system indicate that senior management actively wants to find out what is happening with compliance among the lower ranks of management. Whistleblowing protections also fit here because they too suggest that senior management wants to be made aware of compliance issues and problems, and is willing to provide guarantees of confidentiality and protection to employees to ensure they are willing to report such issues.

4 Compliance Performance Measurement and Discipline

The fourth and least commonly implemented group of compliance system elements are those in the compliance performance measurement and discipline group. This includes two items showing whether the respondent organisations have set specific performance indicators for measuring individual employee and organisational compliance performance. It also includes a question asking whether any employees have actually been disciplined for a compliance breach in the past five years. Responses to this final question should reflect whether the organisation takes its compliance commitment seriously enough to identify and sanction breaches. These three elements clearly fit together as measurements of, and sanctions for, compliance performance.

Table 2: Implementation of Trade Practices Compliance System Elements[61]


Elements included in each group
Answering ‘yes’ (%)
Mean level of implementation for group (yes=1, no=0)
Complaints handling
In my organisation there is a clearly defined system for handling complaints from customers or clients.
91
0.57
In my organisation we keep records of complaints from customers, competitors and/or suppliers.
87
In my organisation there is a clearly defined system for handling compliance failures identified by staff, competitors, suppliers or the ACCC.
53
In my organisation we actively seek out consumer opinion about new advertising and/or new products.
40
In my organisation we have a hotline for complaints about our compliance with the TPA.
13
Communication and training
My organisation has a written compliance policy about trade practices compliance.
45
0.31
In my organisation employees are now and then sent to a brush-up course on how to comply with the TPA.
38
Live training sessions are a part of our training of employees in trade practices compliance.
34
In our organisation we use a compliance manual in trade practices compliance.
31
My organisation has a dedicated compliance function taking care of trade practices compliance.
30
Induction for new employees includes substantial training in trade practices compliance.
28
At least half our employees have attended an employee seminar about the TPA during the last five years.
21
In my organisation we use a computer-based training program in trade practices compliance.
17
Management accountability and whistleblowing
My organisation has written policies to encourage and protect internal whistleblowers.
43
0.30
In the last five years an external consultant has reviewed our compliance system.
35
In my organisation managers are asked to report regularly on compliance.
26
In my organisation we have systematic audits by external professionals to check for trade practices breaches.
17
Compliance performance measurement and discipline
Trade practices compliance performance indicators are included in the corporate plan.
20
0.13
Compliance performance indicators relevant for the TPA are among the individual performance indicators for our employees.
13
In my organisation in the last five years employees have been disciplined for breaching our trade practices compliance policy.
12

Table 3: Correlation between Implementation of the Four Groups of Compliance System Elements[62]


Complaints handling
Communication and training
Management accountability and
whistleblowing
Compliance performance measurement and discipline
Complaints handling
1.000



Communication and training
0.444**
1.000


Management accountability and
whistleblowing
0.454**
0.622**
1.000

Compliance performance measurement and discipline
0.369**
0.527**
0.470**
1.000

E Variation in Implementation of Compliance System Elements

In order to better understand the pattern of implementation of trade practices compliance systems by Australian businesses, we also looked at the extent to which implementation of each group of elements varied by reference to a number of factors that might affect the level of implementation.

1 ACCC Investigation

First, we looked at whether the organisation had been subject to an ACCC investigation for a potential breach of the TPA in the last six years,[63] and if so, whether the outcome of that investigation had included a requirement to implement a trade practices compliance system (or to review and upgrade its existing system).[64] This was because, as we have seen, many of our lawyer interviewees had commented that organisations only implemented or upgraded trade practices compliance systems when they were forced to do so as a result of a close encounter with the ACCC.[65]

2 Compliance Culture

Second, we looked at how compliance system implementation varied by the level of organisational awareness of trade practices compliance issues[66] and the trade practices compliance values of management (whether organisational management values tend to support compliance with the TPA or not).[67] We also looked at how implementation of formal compliance management systems correlated with compliance management in practice. Implementation of formal compliance system elements does not necessarily tell us how compliance is actually managed in practice within the organisation. The measure of compliance management in practice asked the respondent businesses to rate to what degree they agreed with 14 specific statements about what business management actually did in order to make sure they complied with the TPA.[68] We see organisational awareness, compliance values and compliance management in practice as each measuring different aspects of ‘compliance culture’ within the respondent businesses. These factors relate to the shared ‘values, attitudes, perceptions, competencies and patterns of behaviors that drive the commitment to and style and proficiency of an organisation’s[69] trade practices compliance management.

3 Size and Industry

Third, we also looked at variation in compliance system implementation by size (measured by number of employees) and industry.[70]

Size should approximately reflect the varying capacity to implement compliance systems.[71] Industry may reflect the probability of compliance scrutiny by the regulator and third parties. It may also reflect differing compliance risks and therefore differing compliance system emphases.

Rather than simply looking for correlations between each of these variables and compliance system implementation individually, it is more informative to use regression analysis to find out how much of the variation in compliance system implementation is attributable to each variable. However, since the level of implementation of each of the four different groups of elements differed significantly, we look at each of the four groups of elements separately. The results are shown as diagrams in Figures 2 to 5.[72] In the diagrams, the solid lines denote the relationships for which the analysis shows a significant positive or negative association. The figures against the lines indicate the relative size, level of significance and direction (positive or negative) of the association between each of the independent variables (around the edge of each diagram) and the dependent variable (in the centre of each diagram). The asterisks represent the extent to which each correlation coefficient is statistically significant, with the more asterisks indicating the more confidence that the result is significant: *** p < 0.001; ** p < 0.005; * p < 0.01 (two-tailed). The dotted lines indicate that no significant relationship (positive or negative) was found.

It can be seen that the pattern of implementation of complaints handling system elements was markedly different from the other three. Neither size nor the experience of an ACCC breach investigation was associated with implementation of complaints handling system elements — Australian businesses implement complaints handling systems regardless of these two factors. However, businesses were significantly more likely to have implemented the other three groups of compliance system elements — communication and training, management accountability and whistleblowing, and compliance performance measurement and discipline — if they were larger, and if they had had an ACCC breach investigation.

It was expected that larger organisations would generally have a greater capacity to implement compliance systems more fully, in terms of financial and human resources available for implementation, and also greater access to advice and information on implementation of a compliance system. This appears to be borne out by the findings.

The fact that organisations that had experienced an ACCC investigation were also generally more likely to have implemented more compliance system elements was consistent with the responses received from lawyers in the qualitative research[73] which suggested that businesses only implemented or upgraded their trade practices compliance systems once they had had a brush with the ACCC.

Industry was of little significance, except that businesses in the ‘education and other services’ grouping were significantly less likely to have implemented any of the groups of compliance system elements, with the exception of the performance measurement and discipline elements. These elements were poorly implemented by the other industries.

4 Results

Compliance awareness, but not compliance values, was positively associated with greater implementation of all four compliance system elements. It should be noted, however, that trade practices awareness might be a result of trade practices compliance system implementation, rather than a cause of it — the data collected from the survey is from one moment in time and it is difficult to determine from it whether compliance awareness causes compliance system implementation or vice versa.[74] The fact that only compliance awareness but not compliance values was positively associated with compliance system implementation for all four groups of elements suggests that ‘compliance culture’ is not very helpful in explaining the level of implementation of compliance systems, if it is taken to mean purely values that are conducive to compliance. However, we did find that compliance management in practice — a measure aimed at the practices and habits of management, not just values and attitudes — was positively associated with greater implementation of all four groups of compliance system implementation.[75]

We also conducted the same regression analysis looking at variation in the number of compliance employees. The results are shown in Figure 6 below.[76] As shown in Figure 1 above, the majority of companies had no more than one compliance employee — 13.8 per cent had no employees. Figure 6 suggests this was true regardless of size, industry or ACCC investigation or enforcement. We might have expected larger companies to be more likely to have more compliance employees than smaller ones, but there was no significant relationship between size and number of compliance employees, probably because most companies had so few compliance employees anyway. Nevertheless, there was a significant relationship between compliance management in practice and the number of compliance employees. Companies with more compliance employees scored higher for their compliance management in practice than those with less or no compliance employees.

Figure 2: Explaining Variation in the Implementation of Complaints Handling (Adjusted R2 = 0.26)

2006_1504.jpg

Figure 3: Explaining Variation in the Implementation of Communication and Training (Adjusted R2 = 0.48)

2006_1505.jpg

Figure 4: Explaining Variation in the Implementation of Management Accountability and Whistleblowing (Adjusted R2 = 0.32)

2006_1506.jpg

Figure 5: Explaining Variation in the Implementation of Compliance Performance Measurement and Discipline (Adjusted R2 = 0.20)

2006_1507.jpg

Figure 6: Explaining Variation in Number of Compliance Employees (Adjusted R2 = 0.13)

2006_1508.jpg

IV DISCUSSION: PARTIAL, SYMBOLIC AND HALF-HEARTED COMPLIANCE SYSTEM IMPLEMENTATION

A Reasons for High Implementation of Complaints Handling Systems

The results displayed above suggest that implementation of trade practices compliance systems by Australian businesses is partial. Almost all businesses had some sort of consumer complaints handling system, but implementation of the other three elements was very poor, and this was true regardless of size and industry.

The high implementation rate of complaints handling systems compared to the other compliance system elements by Australian businesses suggests that their major focus is on the reactive side of compliance management. Any business that provides products or services to consumers (or even to other businesses) is likely to receive complaints, and poorly resolved complaints can damage business.[77] Putting in place a system to deal with and keep records of those complaints is likely to be essentially a reaction to the fact that complaints have been received.

Even within the complaints handling group of elements, it is the more reactive elements that were more likely to be implemented.[78] Almost all businesses said that they had a ‘clearly defined system for handling complaints’ (91 per cent) and that they kept ‘records of complaints’ (87 per cent). Approximately half (53 per cent) also reported that they had a system for ‘handling compliance failures identified by staff, competitors, suppliers or the ACCC’. However, less than half (40 per cent) said they ‘actively’ sought out ‘consumer opinion about new advertising and/or new products’, suggesting a more proactive approach to preventing consumer complaints before they occurred. Only 13 per cent said they ‘had a hotline in place for complaints about compliance’, an initiative that would tend to actively encourage reporting and frank discussion of potential compliance problems inside the organisation.[79]

The high implementation of complaints handling compliance system elements — particularly the focus on mechanisms for handling complaints from consumers rather than hotlines encouraging internal reporting of potential compliance problems — also suggests that compliance system implementation by Australian businesses is more focused on compliance with the consumer protection aspects of the TPA than the competition provisions. Again, this reflects a more reactive, ‘business case’ focused approach to compliance system implementation. By contrast, ensuring compliance with the competition provisions of the TPA is likely to require a more proactive approach to prevent or expose breaches. Moreover, there is not necessarily any immediate financial or reputational gain for business in avoiding offences like price-fixing, abuse of market power and other anti-competitive behaviour, compared with handling external complaints well.

On the one hand, implementing even ‘reactive’ complaints handling mechanisms is an important first step in taking active internal responsibility for compliance issues, if these mechanisms are used effectively. On the other hand, just because an organisation has complaints handling mechanisms does not necessarily mean that those mechanisms are actively implemented in a way that makes a difference to the way the organisation is managed. Our questions about compliance management in practice tell us more about this. Particularly relevant are the questions asking to what extent respondents agreed that, ‘In my organisation compliance problems are quickly communicated to those who can act on them’, and ‘In my organisation systemic and recurring problems of noncompliance are always reported to those with sufficient authority to correct with them.’ Agreement with these items would suggest that complaints handling mechanisms are achieving their target. As shown above in Figure 2, there is a high correlation between implementation of a complaints handling mechanism and a high score on compliance management in practice. The same is true of all the other groups of compliance system elements.[80] This suggests that the implementation of complaints handling mechanisms and of the other groups of compliance system elements, does have some practical management significance for most businesses.[81]

B Partial Implementation of Other Compliance System Elements

The three groups of compliance system elements — other than complaints handling — are all more difficult, and probably more costly, to implement than the reactive correction of potential problems identified by complainants. They involve more proactive internal management to identify and prevent misconduct in ways that are embedded in the organisational habits of management. Communication and training, and management accountability and whistleblowing, are the two next most commonly implemented groups of compliance system elements. Compliance performance measurement and discipline, which requires the most proactive and potentially costly action, is the least implemented group of elements.

The single next most commonly implemented compliance system element after the complaints handling system elements was the easiest to implement and most purely symbolic element: this was implemented by 45 per cent of respondents: ‘My organisation has a written compliance policy about trade practices compliance’. Looking at the other elements included in communication and training, it is clear that as the items become more specific and demanding, implementation is lower. Accordingly, 38 per cent ‘now and then’ send employees to ‘a brush-up course on how to comply with the TPA’, but only 28 per cent always include TPA compliance training in their induction for new employees and only 21 per cent could say that ‘At least half our employees have attended an employee seminar about the TPA during the last five years.’[82] ACCC staff often commented that businesses that do not really take compliance management seriously will develop a compliance manual and a training video, or some other sort of training programme, but still say that they have a substantial, active compliance programme in place.[83]

The poor implementation of communication and training elements suggests that the level of compliance system implementation might be even lower than ACCC staff and trade practices lawyers and compliance professionals expected. It also suggests that our questions were specific and objective enough to force respondents to report honestly on how substantial and systematic their compliance communication and training systems were.

Most companies also have a low level of implementation of compliance system elements concerning management accountability and whistleblowing. Unsurprisingly, what little data is available on the implementation of corporate compliance programmes in other jurisdictions also tells us that this is one of the weak spots in current corporate compliance programmes internationally. Alan R Beckenstein and H Landis Gabel found in a 1983 survey of United States antitrust compliance programmes that audits were under-utilised.[84] Similarly, in a 1991 study of compliance efforts of more than 700 United States companies, Jeffrey Kaplan found that 45 per cent had no ethics auditing systems.[85] A survey conducted in 2000 by Barry J Rodger of 141 British companies about their implementation of competition compliance systems found that although 77.3 per cent claimed to have a competition compliance programme in place (as either a specific programme or part of a wider regulatory compliance programme), only 41.1 per cent undertook any evaluation of the programme.[86] In his more in-depth qualitative research with three companies on the same topics, Rodger found that each of the companies researched was ‘weakest … in terms of a comprehensive management system for the compliance programme including a regular formal audit’.[87] By comprehensive management system he means systems for reporting risky behaviour (such as contact with competitors).[88] These are processes similar to those included in our management accountability and whistleblowing analysis.[89]

Business implementation of compliance systems in a range of regulatory arenas is often criticised by academic commentators for taking the easy path of cosmetic or symbolic compliance, and avoiding substantive behavioural change.[90]

It is suggested that senior management will often make a symbolic commitment to compliance in a written statement communicated to staff and external stakeholders. However, they do not necessarily take responsibility for setting management incentives (and sanctions) as well as work procedures within the organisation in a way that promotes compliance — staff are left to work this out for themselves. Indeed, compliance systems may even be used to avoid senior management and entity responsibility for breaches, and/or to shift blame for breaches onto individual employees (workers, line managers or compliance staff).[91]

Critics argue that organisations generally make no substantive changes to their ordinary modus operandi unless they feel compelled to do so by pressure from regulators or elsewhere. In response to this pressure, they will only make symbolic compliance efforts. They will implement formal compliance management systems to the extent that it is easy, absolutely necessary in order to maintain legitimacy, and/or they are compelled to do so by regulators.[92]

As Lauren Edelman et al argue, ‘[o]rganizations … [create] symbolic structures … as visible efforts to comply with law. … [But] because the normative value of these structures … does not depend on their effectiveness, they do not guarantee substantive change’.[93]

Previous empirical studies of the extent of implementation of corporate compliance systems certainly provide some evidence to support this critique. Gary R Weaver, Linda Klebe Treviño and Philip L Cochran conducted a survey of 254 United States ‘Fortune 1000’ firms finding:

a high degree of corporate adoption of ethics policies, but wide variability in the extent to which these policies are implemented by various supporting structures and managerial activities. In effect, the vast majority of firms have committed to the lower cost, possibly more symbolic side of ethics activity: the promulgation of ethics policies and codes. But firms differ substantially in their efforts to see that those policies or codes actually are put into practice by organisation members.[94]

The very poor implementation of compliance performance measurement and discipline elements by respondents tends to confirm that this critique also applies to Australian business implementation of trade practices compliance programmes. In light of this critique it is not surprising that this is by far the least implemented group of elements. The definition and measurement of performance indicators for compliance is more difficult than setting out policies and processes, and communicating and training in compliance. In particular, it is rare for organisations to actually discipline employees for compliance failures. Only 12 per cent of respondents agreed that they had done so in the past five years, the lowest score for any compliance system element in the whole questionnaire. Yet asking respondents whether they had disciplined anyone in the past five years is a good test of how active and well implemented a compliance system they have in place. Similarly, to ask whether they have compliance performance indicators in place is a good way of determining how substantial their compliance management system is, since it is generally recognised that good management of anything requires the measurement of what is done and its impact. Here only 20 per cent of organisations had compliance performance indicators in the corporate plan, and only 13 per cent had trade practices compliance performance indicators for individual employees.

These results suggest that it is still fairly rare for organisations to do any more than promulgate a code or policy of trade practices compliance. Very few actually use a systematic methodology to measure their success in implementing that policy. As can be seen from their implementation of management accountability and whistleblowing elements, it is also fairly rare that they use an external or independent professional to systematically review their performance.

C Has ACCC Promotion of Compliance Systems Been Ineffective?

We have seen that the survey results suggest that trade practices compliance system implementation is partial. Does this mean that the promotion of deeper and wider compliance system implementation by the ACCC has been ineffective? Is the regulatory strategy of encouraging organisations to become their own enforcement agents doomed to fail?

The analysis shown in Figure 2 does suggest that ACCC enforcement activity has had little direct impact on the implementation of the most commonly implemented group of compliance system elements — complaints handling.[95] However, ACCC enforcement action probably has an indirect impact on the adoption of complaints handling systems. Apart from the fact that unresolved complaints are likely to lower the reputation of a business with its customers, another reason to implement complaints handling systems is that unresolved complaints might eventually lead to legal action, including complaints to the ACCC that could eventuate in prosecutions. Moreover, the ACCC probably contributed significantly to the diffusion of best practice in complaints handling systems in Australia through its involvement in fostering the development of the Society of Consumer Affairs Professionals in Business Australia, and the complaints handling standard of Standards Australia.

It is clear from the evidence in Figures 3 to 6 that implementation of each of the other three groups of compliance system elements, and also the number of trade practices compliance employees, is positively affected by direct contact with the ACCC.[96] If a firm has experienced an ACCC breach investigation, then it is more likely to have implemented communication and training, management accountability and whistleblowing, and compliance performance measurement and discipline processes and structures. This suggests that ACCC enforcement activity is very important for pushing firms beyond the most commonly implemented compliance system elements — those that are easiest to implement and most symbolic rather than substantive — towards deeper implementation. Firms that experience an ACCC investigation presumably feel compelled to implement or upgrade their compliance systems because the ACCC makes this expectation clear, and because the businesses’ lawyers advise them to do so. One brush with the ACCC can have a lasting impact on improving an organisation’s ongoing compliance management activities.

In relation to communication and training, and management accountability and whistleblowing elements, it does not make any difference whether firms are required to implement or upgrade a compliance system as an outcome of the investigation, beyond having an ACCC investigation. In relation to the group of elements that is least implemented and presumably most difficult and costly to implement — compliance performance measurement and discipline — being forced to implement a compliance system also improves implementation, beyond the improvement that comes merely from being investigated by the ACCC.[97]

Although compliance system implementation is partial overall, our results show that ACCC investigation and enforcement activity is a very important reason for businesses to bother with active implementation of a substantial compliance system at all.[98]

Figure 7 below represents this by comparing the mean level of implementation of each of the four groups of compliance system elements among those respondents who had not experienced an ACCC investigation and those who had. As can be seen, in all four areas, but especially in the three groups other than complaints handling, those who had experienced an ACCC investigation had implemented many more compliance system elements.

Figure 7: Comparison of Implementation of Compliance System Elements

2006_1509.jpg

D Will Courts and Regulators Be ‘Duped’ by Symbolic Compliance System Implementation?

We have already seen that critics of regulatory reliance on business implementation of compliance systems have argued that most businesses are typically likely to implement compliance systems in a partial, symbolic, and half-hearted way. Moreover, we have seen that this does seem to be true of Australian businesses’ implementation of trade practices compliance systems. Critics of regulatory encouragement of compliance system implementation argue that courts and regulators will not be able to adequately specify objective indicators for effective compliance systems, nor will they have the resources to sufficiently monitor their implementation, to be able to distinguish this type of partial, symbolic compliance system implementation from fully committed implementation.[99]

Donald C Langevoort argues that:

it is very difficult to find objective indicators associated with a good compliance program. Of course there can be a checklist of general features of such a program … But these are unlikely to go to the heart of effective compliance, and run the risk of substituting for more careful analysis in such a way that firms gain credit for good compliance simply by introducing an off-the-rack set of visible (but weak) procedures. An in-depth inquiry would require extensive and subjective expert research into the culture and operations of the firm, with severe credibility problems when translated for purposes of adjudication.[100]

Moreover, according to some critics, implementation of a formal compliance management system is in itself a meaningless process that may or may not be effective at producing better compliance. Since we are lacking evidence as to whether compliance systems are actually effective at producing better compliance and, if so, what features of compliance systems are important in improving actual compliance, it may be argued that it will be impossible for regulators to judge effective from ineffective compliance programmes.

Does this mean that regulators like the ACCC should give up promoting compliance systems because they are only likely to be duped by symbolic implementation by most businesses most of the time? The results of our survey do not support this conclusion for a number of reasons.

First, there is a high correlation between compliance management in practice and implementation of compliance systems. The critics may be right that implementation of compliance system elements on their own do not tell us much about the compliance commitment of management, or how it is actually carried out in practice throughout the organisation. However we have seen that, in general, implementation of three of the four groups of compliance system elements (all except compliance performance measurement and discipline) is highly correlated with compliance management in practice.[101] Moreover, we have also found, using the same data set as the results reported here, that compliance management in practice is significantly correlated with better actual compliance on the part of the business respondents.[102]

This suggests that measures of implementation of formal compliance system elements by firms might be a reasonable proxy for assessments of substantial, active implementation of an effective compliance system. This is probably an inadequate substitute for careful, thorough assessments in individual cases. However, in terms of setting standards and objectives for widespread implementation of compliance systems, it is not at all meaningless for a regulator (and courts) to see the implementation of formal compliance systems like those measured here as a sign of good compliance management practice.

Second, in relation to the deeper assessment of compliance systems of individual companies where they are the subject of individual enforcement action, both the ACCC and the courts have shown themselves quite capable of nuanced and sophisticated investigation after the fact. Australian courts have been quite willing to look beyond superficially convincing statements by business people about their compliance commitment, to whether a compliance system that is tailored to the trade practices compliance risks of a company has actually been implemented. Merkel J commented on the evidence presented on this issue in Wizard:

Prior to cross-examination the impression created from Wizard’s correspondence and the evidence given by Messrs Levitt [Wizard’s Head of Marketing] and Malizis [Wizard’s Chief Executive Officer] was that Wizard had implemented and formalised its own trade practices compliance program in accordance with Gilbert & Tobin’s [Wizard’s law firm] recommendations and that it had a fulltime compliance officer who was engaged in supervising that program.
After the cross-examination of Messrs Levitt and Malizis I was left with the impression that the so-called changes in Wizard’s trade practices compliance program lacked specificity and detail. There was said to be a new mandatory legal ‘sign off’ for all television advertising but that was, in substance, meant to be the situation prior to the contravening advertisement. Compliance was said to be a part, albeit a significant part, of the role of the ‘Head of Risk Management’ which encompassed the Privacy Act and the Uniform Commercial Code in addition to the Trade Practices Act. The Head of Risk Management was without legal qualifications. Evidence as to the content of the recommendations made by Gilbert & Tobin was vague and while there was evidence that Wizard’s compliance program was embodied in a written document, that document was not produced to the Court.[103]

As these cases show, the ACCC has also been capable of, and committed to, uncovering evidence of superficial compliance system implementation and presenting it to the court as the basis for penalties and orders. Consider the following extracts from the statements of facts agreed between the ACCC and two of the main defendants in the Queensland Fire Protection cartel case:

Fisher, who was the manager of Tyco’s Queensland and Northern Territory operations, was generally aware that Sproule, Waller and McCormack were attending the meetings, and of the general nature of the arrangement made at the meetings. He did not take steps to stop his employees from attending the meetings until about 1996, when he organised trade practices compliance seminars for staff. Fisher did not encourage or approve the conduct, but acquiesced by failing to take effective steps to prevent it occurring.
ODG and Wormald [the Tyco subsidiaries involved in the cartel] had trade practices manuals but did not have an active trade practices compliance training programme prior to mid-1995. They commenced development of such a programme in 1995. In late 1995 corporate counsel for Tyco conducted trade practices compliance training for its Brisbane managers. Mr McCormack did not attend that training, and continued to attend sprinkler meetings until May 1997. No adequate or proper steps were taken to ensure all managers attended. Those who did attend did not in any case inform the corporate counsel of their conduct.[104]

Similarly, the misconduct of FFE, another member of the cartel, appears to have been unaffected by a compliance programme intended to prevent or stop such conduct:

FFE’s parent company, James Hardie Industries Ltd, began to introduce a comprehensive trade practices compliance training program for its many subsidiaries in late 1993. This included the development of training manuals, seminars, and a computer training module. Corporate counsel for FFE conducted trade practices training for its Brisbane managers in about November 1995. However, none of Messrs Allen, Crosby or Lewis (the managers implicated in the cartel) attended any trade practices training in the course of the conduct. There was no system to ensure attendance at training sessions or that managers had actually read the manuals provided from time to time. Staff were not required to acknowledge or certify that they had not engaged in contravening conduct.[105]

The ACCC and the courts clearly have the capacity to distinguish between superficial and substantial trade practices compliance system implementation when the system has failed and there has been a breach. The difficulty is when the ACCC, or the court, has to assess the trade practices compliance programmes of a company prospectively to see whether they are adequate to protect against breach. This typically occurs where the ACCC has encouraged or required a company to implement (or upgrade) a trade practices compliance system as part of its response to a breach via an enforceable undertaking or a court order. Typically, the compliance system must be approved by the ACCC or meet guidelines established by the ACCC. The ACCC generally requires the company to pay for regular independent third party assessments of their compliance system and its implementation in order to reassure the ACCC and inform management. Parker has previously argued that the processes of the ACCC for reviewing these third party reviews or audits have been inconsistent and often insubstantial, and that insufficient guidance as to the standards expected of the review has been provided.[106]

In response, the ACCC has recently reformed its procedures and the guidance it offers in this area.[107]

The ACI (of which most of the people who conduct these reviews or audits are members) has also responded to concern in this area by setting out protocols for the review or audit of compliance systems.[108] Where the compliance system is to be required by court order, the court has to set out the terms and conditions for an effective, substantially implemented compliance system, something that the Federal Court has not always found appropriate to do by court order.[109]

It seems much more likely that regulators and courts will be ‘duped’ by partial implementation of compliance systems where they are trying to set criteria for effective systems in advance, or when relying on third party reviews of implementation, than when they are conducting in-depth investigations of compliance systems failures in a particular company that led to a particular breach. The recent reforms of the ACCC might improve its record in this area. As we have seen above, the compliance system elements expected by the ACCC do seem to lead to better compliance management in practice, so there is some sense in looking at whether businesses have implemented these elements in assessing their compliance system performance. However, the very fact that compliance systems need to be genuine expressions of trade practices compliance risk assessment and to be tailored to the operational circumstances of each company makes it difficult for courts and regulators to send out clear and consistent messages about the elements that businesses must implement to have effective compliance systems. Nor is it ever going to be easy to consistently assess compliance systems in advance, without an enormous commitment of resources to the task. Genuine compliance systems are particular responses to contextual factors — they cannot be generic. The difficulty of prospective assessment of compliance system effectiveness means that the ACCC and the courts should be especially vigilant and committed to making sure that they rigorously assess compliance systems — after a breach has occurred. To the extent that courts and regulators communicate abstract and generic standards for compliance systems, they are likely to be met with partial implementation. But where they make examples of companies with superficial and inadequate implementation of compliance systems through enforcement action, they demonstrate the importance of genuine commitment in the individual circumstances of each business.

V CONCLUSION

Critics argue that businesses will only partially and half-heartedly implement compliance systems. They will implement only those elements of compliance management that are easy to implement because they are cheap, or because everyone else is implementing them, or because they are forced to implement them as a result of regulatory enforcement action or other stakeholder pressure.[110]

According to this critique, regulatory policies that encourage business implementation of regulatory compliance systems, like those adopted by the ACCC, may look very useful. However, in devoting resources to the encouragement of compliance system implementation, regulators like the ACCC are just colluding in ‘window-dressing’ by businesses that avoids active, substantial and effective compliance management.

Our survey results on the extent of implementation of trade practices compliance systems by Australian businesses certainly show that implementation is overwhelmingly partial and possibly symbolic. Most businesses have implemented some, but far from all, of the compliance system elements considered by the ACCC, practitioners and scholars to be necessary for effective compliance management. Respondents tend to implement the same (relatively few) compliance elements as one another, mainly complaints handling system elements. Those who have experienced a brush with the ACCC are more likely to have put in place more compliance system elements beyond complaints handling. Those who have been forced to implement a compliance system as a result of ACCC enforcement action are also more likely to have implemented compliance performance measurement and discipline elements, which are otherwise the least implemented group of elements.

This evidence shows that commitment to compliance systems by businesses does not occur automatically. ACCC enforcement action is likely to be a very important factor in creating compliance commitment amongst businesses. It is true that most businesses have implemented some form of complaints handling system without a direct experience of ACCC enforcement action. However, it is likely that this was a response to the fear of ACCC enforcement action, or other public or private litigation and reputational damage, should those complaints remain unresolved.[111] The policy question is why Australian businesses seem to feel it is essential to have in place systems to handle and record complaints from customers, competitors and/or suppliers, as a response to the risk of bad trade practices, but do not feel that they must have in place the other more proactive elements of a best practice trade practices compliance system.

We have argued elsewhere that implementation of communication and training, and management accountability and whistleblowing compliance system elements are also important to improving compliance management in practice and actual compliance outcomes.[112]

Accordingly, business management would be wrong to believe that complaints handling systems alone are enough to ensure better trade practices compliance. More likely, businesses focus on implementation of complaints handling because it is a discrete action that can be taken to react to complaints that they will receive in any case. The challenge for the ACCC is to focus attention on delivering the message to businesses that more than this is required in order to comply with trade practices law. The ACCC and the ACI (through their advocacy of compliance systems in general and AS 3806, the standard for compliance programmes, in particular) have done much to communicate the generic standards for compliance systems over the past 10 years. Now the ACCC should run (and publicise) more high profile enforcement actions in which they are able to present evidence of inadequate, superficial compliance systems that failed to prevent major breaches in specific cases. This will send businesses the message that the type of partial and superficial implementation of compliance systems found in this survey data is a major trade practices risk factor in itself. Additionally, it might give trade practices lawyers and compliance advisers more of the clout needed to persuade businesses to go beyond superficial measures to implement a genuine, committed compliance system. Our survey results suggest that a single instance of ACCC investigation — regardless of whether it results in the forced implementation of a compliance system — is enough to make a big difference to compliance system implementation within the company that experiences it.

VI APPENDIX

A Methodology

1 Quantitative Survey[113]

The largest 2321 Australian businesses trading in 2004 which were readily contactable through publicly available sources were identified, with special efforts made to include all those large businesses that had been the target of ACCC enforcement activity since 1998.[114] The questionnaire was to be filled out by the most senior person in the organisation responsible for trade practices compliance, with a focus on contacting first the compliance manager, in-house counsel, company secretary, chief financial officer or chief executive officer as the person most able to fill out the questionnaire on behalf of the business. The businesses were surveyed with a mailed-out questionnaire. Repeated telephone follow-ups yielded 999 responses — a response rate of 43 per cent.[115] This response rate was only achieved by a large commitment of resources to quantity of contacts with potential respondents. The survey involved an average of 29 telephone calls per completed questionnaire and many additional follow-ups by email and post. The quality of phone discussions with respondents and their personal assistants, persuading them to fill out the questionnaire, was ensured through selection, training and ongoing supervision of phone operators.[116]

Forty-two per cent of those who filled out a questionnaire were chief executive officers, company secretaries or chief financial officers, and a further 20 per cent general counsel or compliance managers.

The profile of our respondents compares well with the profile of the whole list of the largest Australian businesses in terms of size and industry. Figure 8 below compares the profile of our respondents by industry[117] with the profile of the total list of the largest Australian businesses approached.[118] The percentages are very similar, indicating little non-response bias by industry. Our survey respondents were slightly smaller on average than the average company on the list of the largest 2048 Australian businesses, according to the Dun & Bradstreet data. There were fewer very large companies among our respondents than on the Dun & Bradstreet list, but companies of 300 employees or fewer are also underrepresented among our respondents compared with the Dun & Bradstreet list.[119]

The response rate from those we identified from the ACCC Annual Report records, as having been subject to ACCC enforcement in the past seven years, was lower than the overall response rate at 20.2 per cent. However, a larger number of respondents self-reported that they had been the subject of an ACCC investigation of an alleged breach by their business, including many we had not identified as having been investigated in the ACCC Annual Reports. Moreover, the proportions of alleged breaches committed by both respondents and non-respondents among those identified as having had an ACCC investigation from the ACCC Annual Reports are similar, and they are also similar to those who self-reported that they had been subject to an ACCC investigation (as distinct from those identified by the ACCC Annual Reports).[120]

2 Qualitative Research

The measures and the wording of each question were based on earlier qualitative and documentary research on the nature of the ACCC enforcement activities and its impact on business compliance, and this research was also used to help us interpret the findings.[121]

This earlier research involved 100 qualitative interviews with ACCC staff, leading trade practices lawyers, compliance advisers and business people within businesses that had faced ACCC enforcement action and other industry representatives. A great variety of ACCC policy documents and reports of enforcement activity were also read. The quotations in the text of this article, unless otherwise attributed, are from the interviews with ACCC staff, business lawyers and business people described above.

B Results of Survey

Figure 8: Industry Representativeness

Industry Grouping of Survey Respondents Compared with

Dun & Bradstreet List[122]

Table 4: Questions Included in Measure of Trade Practices Compliance Values of Management[123]

Questions
Mean responses for question

Whole index

Our organisation feels a moral obligation to observe the TPA.
4.15
Mean: 3.85
Cronbach’s Alpha: 0.77
Most managers in this organisation would feel ashamed if the organisation was caught breaching the TPA.
4.07
Most managers in this organisation would in general feel ashamed if the organisation committed a breach of the TPA.
4.04
Many senior managers in this organisation have serious doubts about aspects of the TPA.∗
2.78
The TPA interferes far too much in private enterprise.∗
2.58
It is appropriate to breach the TPA if the purpose is to protect Australian products from foreign
competitors.∗
2.13
It is appropriate to breach the TPA if the purpose is to save Australian jobs.∗
2.11
It is appropriate to breach the TPA if others are contravening the law.∗
1.91
∗ This item has been reversed for analysis.


Table 5: Questions Included in Measure of Compliance Management in Practice[124]

Questions
Mean responses for question
Whole index
In our organisation the people responsible for compliance find it easy to get access to top management.
4.10
Mean: 3.51
Cronbach’s Alpha: 0.83
In my organisation compliance problems are quickly communicated to those who can act on them.
3.99
In my organisation systemic and recurring problems of noncompliance are always reported to those with sufficient authority to correct them.
3.77
Compliance requirements of laws, regulations, codes and organisational standards are integrated into my organisation’s day-to-day operating procedures.
3.69
Managers in our organisation know what aspects of compliance they are responsible for.
3.61
Compliance failures are always investigated to understand their cause.
3.58
In our organisation everyone knows where the ‘buck stops’ for compliance.
3.58
My organisation allocates adequate resources to enable the implementation of the compliance policy.
3.40
In my organisation we review our compliance
programme on a regular basis.
3.39
My organisation is not one of those organisations that try to have the best compliance of any organisation in the country.∗
2.96
My organisation invests a lot of time and money in compliance training.∗
2.94
My organisation sometimes spends time and resources figuring out how to get what we want without directly breaching the TPA.∗
2.69
Mean: 3.51
Cronbach’s Alpha: 0.83
In my organisation compliance advice is often ignored by line managers.∗
2.14
In my organisation compliance advice is often ignored by the board (if you don’t have a board, please skip this question).
1.79
∗ This item has been reversed for analysis.


1 Statistical Information

Table 6 below displays the results of four regression analyses testing the extent to which a range of independent variables (ACCC investigation or enforcement, compliance culture, size and industry) explain variation in implementation of each of the four groups of compliance system elements identified earlier: complaints handling; communication and training; management accountability and whistleblowing; and compliance performance measurement and discipline. These results were presented in Figures 2 to 5 and discussed in Part III(D) above. The Table also shows the same analysis with number of compliance employees as the dependent variable, as represented in Figure 6 and discussed in Part III(E)(3) above. The level of implementation of each group of compliance system elements was calculated on a scale from 0–100. The figures in the cells of Table 6 are the standardised regression coefficients showing the strength, relative size, and direction (positive or negative) of correlation between each independent variable and each of the four dependent variables. The absolute value of t-statistics is shown in parentheses. The asterisks represent the extent to which each correlation coefficient is statistically significant, with the more asterisks indicating the more confidence that the result is significant: *** p < 0.001; ** p < 0.005; * p < 0.01 (two-tailed).

Table 6: Explaining Variation in Implementation of Four Groups of

Compliance System Elements and Number of Employees


[∗] BA (Hons), LLB (Hons) (Qld), PhD (ANU); Australian Research Council Research Fellow, Faculty of Law, The University of Melbourne.

[†] PhD (Aarhus); Associate Professor, Department of Political Science, University of Aarhus.

The authors wish to thank John Braithwaite and DataCol International (especially Malcolm Mearns) for helping to set up and administer the survey on which this article is based. Thanks to John Braithwaite for also providing helpful comments on an earlier draft of this article; and the Australian Competition and Consumer Commission (through its support for the Centre for Competition and Consumer Policy, The Australian National University); and the Australian Research Council and the Regulatory Institutions Network, The Australian National University for funding this research. Substantial parts of the research for this article were completed while both authors were on secondment at the Regulatory Institutions Network, The Australian National University. The article was completed while Dr Christine Parker was a Visiting Fellow at the Centre for Socio-Legal Studies, The University of Oxford.

[1] For summaries of the ways in which the ACCC has encouraged, promoted, and in some cases enforced, the implementation of trade practices compliance systems by Australian businesses, see Brent Fisse, ‘Corporate Compliance Programmes: The Trade Practices Act and Beyond’ (1989) 17 Australian Business Law Review 356; Christine Parker, ‘Evaluating Regulatory Compliance: Standards and Best Practice’ (1999) 7 Trade Practices Law Journal 62; Christine Parker, The Open Corporation: Effective Self-Regulation and Democracy (2002) 247–52.

[2] For examples and analysis of the ways in which other business regulators in Australia, the United Kingdom, the United States and other countries have also adopted regulatory strategies aimed at inducing businesses to implement internal controls, or management systems aimed at improving compliance, see Cary Coglianese and David Lazer, ‘Management-Based Regulation: Prescribing Private Management To Achieve Public Goals’ (2003) 37 Law and Society Review 691. See also Parker, The Open Corporation, above n 1, 12–23, 245–91.

[3] See Kimberly Krawiec, ‘Organizational Misconduct: Beyond the Principal–Agent Model’ (2005) 32 Florida State University Law Review 571, 584–91; Diana E Murphy, ‘The Federal Sentencing Guidelines for Organizations: A Decade of Promoting Compliance and Ethics’ (2002) 87 Iowa Law Review 697, 712–14.

[4] On the requirements for internal compliance and risk management systems in environmental regulation, see, eg, Neil Gunningham and Darren Sinclair, Leaders and Laggards: Next-Generation Environmental Regulation (2002) 111–15. On financial services regulation in Australia and the United Kingdom, see, eg, Julia Black, ‘The Emergence of Risk-Based Regulation and the New Public Risk Management in the United Kingdom’ [2005] Public Law 512; Pamela Hanrahan, ‘(Ir)Responsible Entities: Reforming Manager Accountability in Public Unit Trusts’ (1998) 16 Company and Securities Law Journal 76. On health and safety regulation in the United States, see, eg, Orly Lobel, ‘Interlocking Regulatory and Industrial Relations: The Governance of Workplace Safety’ (2005) 57 Administrative Law Review 1071. On corporate taxation, see John Braithwaite, Markets in Vice, Markets in Virtue (2005) 85–9, 156–66.

[5] Pub L No 107-204, 116 Stat 745 (‘Sarbanes-Oxley Act’).

[6] Sarbanes-Oxley Act, Pub L No 107-204, § 404, 116 Stat 745, 789, the United States Securities and Exchange Commission requires companies’ annual reports to include a management report on the company’s establishment, maintenance, effectiveness and evaluation of internal controls and procedures for financial reporting. Pursuant to § 406, the company is also required to disclose whether it has adopted a code of ethics for its principal executive officer and senior financial officers. This requirement already exists in the United Kingdom: see Financial Reporting Council, Combined Code on Corporate Governance (2003) 15 <http://www.frc.org.uk/documents/pdf/combinedcodefinal.pdf> . For a summary and discussion of the differences between the United Kingdom and United States corporate responsibility requirements, see Cynthia A Williams and John M Conley, ‘An Emerging Third Way? The Erosion of the Anglo-American Shareholder Value Construct’ (2005) 38 Cornell International Law Journal 493. There are also similar requirements in ASX Corporate Governance Council, Principles of Good Corporate Governance and Best Practice Recommendations (2003).

[7] See Kimberly Krawiec, ‘Cosmetic Compliance and the Failure of Negotiated Governance’ (2003) 81 Washington University Law Quarterly 487.

[8] See below Part IV(B).

[9] Based on a commercially available database by Dun & Bradstreet (Australia) Pty Ltd (‘Dun & Bradstreet’): see Dun & Bradstreet (Australia) Pty Ltd <http://www.dnb.com.au> . For full details of the quantitative survey and descriptive results, see Vibeke Lehmann Nielsen and Christine Parker, Centre for Competition and Consumer Policy, The ACCC Enforcement and Compliance Survey: Report of Preliminary Findings (2005) <http://cccp.anu.edu.au/projects/CCCPReport%20Final.pdf> .

[10] For full details of the qualitative study methodology and preliminary analyses of the interviews, see Christine Parker and Natalie Stepanenko, Centre for Competition and Consumer Policy, Compliance and Enforcement Project: Preliminary Research Report (2003) <http://cccp.anu.edu.au/Preliminary%20Research%20Report.pdf> .

[11] See generally TPA pt IV.

[12] See generally TPA pt V.

[13] See generally TPA pt V.

[14] David Smith, ‘The Regulator’s Approach to Compliance: Crackdown, Confrontation or Compliance Culture’ (Speech delivered at the Australian Compliance Institute, Sydney, 26 May 2005) <http://www.accc.gov.au/content/index.phtml/itemId/685876> .

[15] Ibid.

[16] Louise Sylvan, ‘Future Proofing — Working with the ACCC’ (Speech delivered at the Australian Compliance Institute, Melbourne, 1 September 2005) <http://www.accc.gov.au/content/index.

phtml/itemId/706591>.

[17] For an example of a court explicitly framing its decision as to what orders it would make in terms of the responsiveness of the business defendant to the ACCC in implementing a compliance system, see Australian Competition and Consumer Commission v Wizard Mortgage Corporation Ltd (2002) 24 ATPR 41-903, 45 426 (Merkel J) (‘Wizard’):

Prior to the hearing Wizard had been put on notice by the ACCC that it regarded Wizard’s response to the contravening advertisement as inadequate. I regard Wizard’s reliance on generalities, rather than specifics, and its failure to provide any internal documentation concerning its ‘trade practices compliance’ program as evidence of an unsatisfactory and inadequate response to the ACCC’s legitimate concern to prevent a repetition of the contravening conduct.

A court will also, of course, look at whether a compliance system had been implemented at the time that the offence was committed: at 45 426 (Merkel J). See below n 18, where the assessment of penalties in the cases listed generally turned more on whether the compliance system had been adequately reviewed (or a new compliance system implemented) in the wake of discovery of the breach and ACCC investigation, rather than the type of compliance system that was in place at the time of the contravention.

[18] Australian Competition and Consumer Commission v Australian Safeway Stores Pty Ltd [1997] FCA 450; (1997) 145 ALR 36, 48 (Goldberg J). The earliest cases in which the Trade Practices Commission (as the ACCC then was) successfully argued that the court should take into account whether the defendant business had implemented a compliance system in determining the level of penalties were in 1979 and 1980: Trade Practices Commission v Malleys Ltd [1919] ArgusLawRp 60; (1979) 25 ALR 250, 255 (Lockhart J); Trade Practices Commission v Dunlop Australia Ltd (1980) 30 ALR 469, 481 (Keely J). See more recently, Trade Practices Commission v CSR Ltd (1991) 13 ATPR 41-076, 52 155 (French J); ICI Australia Operations Pty Ltd v Trade Practices Commission (1992) 38 FCR 248, 258–9 (Lockhart J), 268–9 (French J); Trade Practices Commission v TNT Australia Pty Ltd (1995) 17 ATPR 41-375, 40 169 (Burchett J); Trade Practices Commission v Prestige Motors Pty Ltd (1994) 16 ATPR 41-359, 42 701–2 (Lee J); Trade Practices Commission v Axive Pty Ltd (1994) 16 ATPR 41-368, 42 798 (Sheppard J); Trade Practices Commission v C C (New South Wales) Pty Ltd (1995) 16 ATPR 41-406, 42 723 (Lindgren J); NW Frozen Foods v Australian Competition and Consumer Commission [1996] FCA 1134; (1996) 71 FCR 285, 294 (Burchett and Kiefel JJ); Wizard (2002) 24 ATPR 41-903, 45 426 (Merkel J); Australian Competition and Consumer Commission v Chubb Security Australia Pty Ltd (2004) 26 ATPR 42-041, 42 441–2 (Bennett J). See further Ray Steinwall, ‘Penalties and Compliance Programs That Fail’ (1998) 13 Australian and New Zealand Trade Practices Law Bulletin 1. See also Fisse, above n 1; Parker, ‘Evaluating Regulatory Compliance’, above n 1; Parker, The Open Corporation, above n 1.

[19] In a series of earlier cases, courts were willing to make orders that business defendants use ‘reasonable endeavours’ or ‘best endeavours’ to implement compliance systems: see, eg, Australian Competition and Consumer Commission v NW Frozen Foods Pty Ltd (1996) 18 ATPR 41-515, 42 448–50 (Heerey J); Australian Competition and Consumer Commission v Pioneer Concrete (Qld) Pty Ltd (1996) 18 ATPR 41-457, 41 484–5 (Lockhart J). However, in some more recent cases, courts have refused to order that businesses implement compliance systems that comply with AS 3806 (February 1998) (‘AS 3806’) (the standard set by Standards Australia on compliance systems) because, as at least one court has stated, it is ‘likely to involve vague evaluative judgments or significant debates on their interpretation’ and ‘imposes standards which are aspirational in their expression and not readily made in application’: Australian Competition and Consumer Commission v Real Estate Institute of Western Australia (1999) 161 ALR 79, 89 (French J). See also Australian Competition and Consumer Commission v Rural Press Ltd (2001) 23 ATPR 41-833, 43 293 (Mansfield J); Australian Competition and Consumer Commission v Z-Tek Computer Pty Ltd [1997] FCA 871; (1997) 78 FCR 197, 205–6 (Merkel J); Australian Competition and Consumer Commission v Office Link (Aust) Pty Ltd (1997) 19 ATPR 41-598, 44 262 (Carr J). In the latter cases, the Federal Court of Australia refused to enter agreed orders mandating enforceable general trade practices compliance systems because it held it was only appropriate to order a compliance system directed at the particular provision breached in the relevant actions. Moreover, in Wizard (2002) 24 ATPR 41-903, 45 427 (Merkel J), the Court did not see an order of compliance system implementation as necessary when it ordered an injunction not to engage in the conduct. For a summary and brief discussion of relevant cases, see Len Gainsford and Bill Dee, Policing the Australian Compliance Standard (27 April 2005) CCH Australia Ltd <http://www.cch.com.au/feature_story.asp?document_id=|59730 & topic_code=7 & category> . See also Greg D’Arville, ‘The ACCC and Rural Press: A Changing Compliance Environment?’ (October 2001) 18 Compliance News 23.

[20] See, eg, Australian Competition and Consumer Commission v Tasmanian Salmonid Growers Association Ltd (2003) 25 ATPR 41-954, 47 500 (Heerey J); Australian Competition and Consumer Commission v Econovite Pty Ltd (2003) 25 ATPR 41-959, 47 533–4 (French J); Australian Competition and Consumer Commission v Midland Brick Co Pty Ltd [2004] FCA 693; (2004) 207 ALR 329, 337–8 (Lee J); Australian Competition and Consumer Commission v Lux Pty Ltd [2004] FCA 1344 (Unreported, Nicholson J, 20 October 2004) [32]; Australian Competition and Consumer Commission v Humax Pty Ltd (2005) 27 ATPR 42-072, 43 138–9 (Merkel J). But see BMW Australia Ltd v Australian Competition and Consumer Commission [2004] FCAFC 167; (2004) 207 ALR 452, 465–6 (Gray, Goldberg and Weinberg JJ), where the Federal Court of Australia held that TPA s 86C did not authorise the Court to order that a compliance system must be externally reviewed, but left open the possibility that such an order may be authorised under TPA s 80, the general injunction power. See also Australian Competition and Consumer Commission v Anglo Estates Pty Ltd (2005) 27 ATPR 42-044, 42 547 (French J), where the Court refused to order the implementation of a compliance system for a small family company.

[21] The ACCC routinely requires this as an element of an ‘enforceable undertaking’, a settlement of a potential enforcement action, which is enforceable in court under TPA s 87B. The ACCC has now formalised its practice in this area, developing a set of four trade practices compliance system templates to be incorporated into the terms of enforceable undertakings: see ACCC, Trade Practices Compliance Program Template Undertakings (2005) <http://www.accc.gov.au/

content/index.phtml/itemId/716224/fromItemId/54418>. For an explanation of these templates from the perspective of the ACCC see Smith, above n 14. For more detailed discussion of enforceable undertakings in practice and their justification and enforcement, see Christine Parker, ‘Restorative Justice in Business Regulation?: The Australian Competition and Consumer Commission’s Use of Enforceable Undertakings’ (2004) 67 Modern Law Review 209; Karen Yeung, Securing Compliance: A Principled Approach (2004) 191. See also ACCC, Section 87B of the Trade Practices Act: A Guideline on the Australian Competition and Consumer Commission’s Use of Enforceable Undertakings (1999) 7–8.

[22] Sylvan, above n 16.

[23] The Compliance Education Unit was disbanded because lawyers complained that the ACCC was running a business offering compliance systems to businesses (in competition with lawyers and compliance professionals): see Fred Brenchley, Allan Fels: A Portrait of Power (2003) 132–3.

[24] ACCC, Best and Fairest Compliance Manual (2005) <http://www.accc.gov.au/content/index.

phtml/itemId/319187>.

[25] See generally Peter Carroll and Myles McGregor-Lowndes, ‘A Standard for Regulatory Compliance? Industry Self-Regulation, the Courts and AS 3806-1998’ (2001) 60(4) Australian Journal of Public Administration 80.

[26] For a summary and discussion of the standard, see ibid 83; Parker, The Open Corporation, above n 1, 281. Note that AS 3806 has now been revised and replaced with AS 3806 (March 2006).

[27] See ACCC, Section 87B of the Trade Practices Act, above n 21; ASIC, ‘Enforceable Undertakings: Sections 93A and 93AA of the Australian Securities and Investments Commission Act 1989’ (Practice Note No 69, 1999). ASIC has also stated that it will usually use AS 3806 as a guide when judging the compliance arrangements of licensees in relation to the various licences for financial services entities that it administers: see ASIC, Managed Investments: Compliance Plans (Policy Statement No 132, 1998); ASIC, Licensing: Organisational Capacities (Policy Statement No 164, 2001) 17–18. ASIC also recommends referring to the Australian and New Zealand Standard on ‘Risk Management’, AS/NZS 4360 (April 1999), as a benchmark for the risk management aspects of compliance arrangements: ASIC, Licensing: Organisational Capacities at 37–8. See also ASIC, Commentary on Compliance Plans Received by ASIC: Financial Asset Schemes (2000). Accreditation to AS 3806 is not available, so Standards Australia has no figures on the level of implementation of AS 3806.

[28] See Christine Parker, John Braithwaite and Natalie Stepanenko, ‘ACCC Enforcement and Compliance Project: Working Paper on ACCC Compliance Education and Liaison Strategies’ (Working Paper, Centre for Competition and Consumer Policy, The Australian National University, 2004) <http://www.cccp.anu.edu.au/projects/compliancereportapril2004.pdf> .

[29] Smith, above n 14.

[30] See above nn 1718 and accompanying text.

[31] As well as being used as a reference standard by the ACCC in settlements and court orders, AS 3806 is also championed by the ACI and therefore reflects industry best practice, notwithstanding the fact that it is undergoing revision and is likely to have a significantly different structure.

[32] See ACCC, Trade Practices Compliance Program Template Undertakings, above n 21. Note that although this guidance was issued in 2005 (after our survey was completed), it generally clarifies and formalises the existing expectations of the ACCC, rather than setting out new requirements.

[33] This outline is taken from the Level 4 template for larger businesses, as our sample was of large businesses: see ACCC, Compliance Program Undertaking and Orders: Section 87B — Level 4 (2005) <http://www.accc.gov.au/content/index.phtml/itemId/716224/fromItemId/54418> . The actual guidance provided by the ACCC is more specific than this summary.

[34] See John Braithwaite, Corporate Crime in the Pharmaceutical Industry (1984) 290–383; John Braithwaite, To Punish or Persuade: Enforcement of Coal Mine Safety (1985) 75–118; Brent Fisse and John Braithwaite, Corporations, Crime and Accountability (1993) 158–217; Fiona Haines, Corporate Regulation: Beyond ‘Punish or Persuade’ (1997); Bridget M Hutter, Regulation and Risk: Occupational Health and Safety on the Railways (2001); David McCaffrey and David Hart, Wall Street Polices Itself: How Securities Firms Manage the Legal Hazards of Competitive Pressures (1998) 176–87; Joseph Rees, Reforming the Workplace: A Study of Self-Regulation in Occupational Safety (1988).

[35] Parker, The Open Corporation, above n 1, 234.

[36] Ibid 235.

[37] Ibid.

[38] Ibid 234.

[39] Ibid 233.

[40] Ibid 233–4.

[41] Australian Law Reform Commission, Compliance with the Trade Practices Act 1974, Report No 68 (1994) 15–16.

[42] See Parker and Stepanenko, above n 10; see also below Part VI(A)(2).

[43] Parker and Stepanenko, above n 10, 49, 51.

[44] Ibid 49–50.

[45] Ibid 52.

[46] Ibid 48.

[47] Comments included: ‘They have the attitude that they will fix it when they have a problem … I haven’t come across a program that I would say, gee whiz, that is fantastic’: ibid 49.

[48] Ibid 52.

[49] See Krawiec, ‘Cosmetic Compliance’, above n 7, 528–32 on the influence of compliance professionals. See also Robert Eli Rosen, ‘Resistances to Reforming Corporate Governance: The Diffusion of QLCC’s’ (2005) 74 Fordham Law Review 1251, 1269–70 on the way requirements for internal controls constitute a ‘full employment act for lawyers’.

[50] See below Part VI(A)(1), (B).

[51] Eight hundred and twenty-six businesses provided the results for the data presented in Figure 1 below. We asked, ‘How many full-time employee equivalents did your organisation spend ensuring compliance with the Trade Practices Act last year?’ The question went on to explain: ‘(If one employee spent 50 per cent of his/her time write 0.5, if two employees spent 50 per cent of their time each write 1.)’ However, the results are still likely to have an element of estimation in them, since it is not always possible to state exact proportions of time spent by various employees in compliance management.

[52] For details of the quantitative survey and descriptive results, see Nielsen and Parker, The ACCC Enforcement and Compliance Survey, above n 9.

[53] See above nn 3540 and accompanying text.

[54] See below Part III(D) for further discussion and analysis.

[55] A third related element — ‘In my organisation there is a clearly defined system for handling compliance failures identified by staff, competitors, suppliers or the ACCC’ — had been implemented by 53 per cent of respondents.

[56] Based on results provided by 955 survey respondents.

[57] Looking at each of the four groups separately means that we do not have to assign relative weights to the groups. However, within each group, we have weighted each element equally.

[58] The division into four separate indices is supported by a factor analysis. The ‘Cronbach’s Alpha’ for each index is as follows:

1 Communication and Training = 0.87;

2 Management Accountability and Whistleblowing = 0.58;

3 Compliance Performance Measurement and Discipline = 0.54; and

4 Complaints Handling = 0.53.

Cronbach’s Alpha measures how reliably a set of items (for example, questions in a survey) measures a single uni-dimensional latent variable. The Cronbach’s Alpha for each of the last three indices is rather low. The main reason for this is that the indices each contain only three or four variables. Although these Cronbach’s Alpha are considered acceptable, it should be noted that the division into the four factors was mainly done according to what theoretically makes for effective compliance systems, as opposed to a factor analysis of the data. A very good Cronbach’s Alpha for each index is not considered necessary since we are testing the extent to which compliance elements independently thought to be important (on the basis of previous studies and theory) are implemented. One of our original 21 questions was deleted, as it did not fit well into any of the indices on theoretical and factor analysis grounds. That question was, ‘During the last five years ACCC staff members have been invited at least once to come to an organisational seminar and give a talk about the TPA’. Only six per cent of respondents answered ‘yes’ to this question.

[59] See correlations in Table 3.

[60] A paired samples t-test is used to determine whether there is a significant difference between the average values of two groups of observations.

[61] Based on results provided by 958–82 survey respondents, with some respondents not answering ‘yes’ or ‘no’.

[62] Statistics: Pearson’s Product–Moment Correlation Coefficient. ** = significance at 0.01 (two-tailed). The Pearson Correlation is a measure of strength of the linear correlation between two variables with 0.00 representing no correlation and 1.00 representing perfect correlation.

[63] This measure was based on coded answers to an open-ended question that was only to be answered by organisations that had been investigated by the ACCC in the last six years. Respondents were asked to think about ‘the ACCC’s most significant investigation of your organisation in the last six years’ and were asked, ‘What breach or alleged breach of the Trade Practices Act was the ACCC investigating during this particular investigation?’ Organisations that responded by giving details of an ACCC investigation of an alleged breach of the general anti-competitive conduct or consumer protection provisions of the Act were coded as ‘1’, and those that did not were coded ‘0’.

[64] Based on whether respondents answered ‘yes’ to the item, ‘Our organisation had to implement a compliance program or review its compliance program’ in response to the question, ‘What was the final outcome of the case?’, some of the listed outcomes could be the result of either a court order or an enforceable undertaking. Eighty-three per cent (48 respondents) of those who answered this question reported that their organisation had to implement a compliance system or review its compliance system. This was the most common outcome. Other outcomes were: ‘No breach of the law found’; ‘Company was ordered or promised not to engage in unlawful conduct for a certain period of time’; ‘Court formally declared what we had done was unlawful’; ‘Had to publish advertising that informed customers about our breach’; ‘Had to perform some “community service” obligations’; ‘Had to provide compensation, reimbursement or redress to affected parties’; ‘Had to refund consumers overseas’; ‘Organisation had to pay pecuniary penalties’; and ‘Individual from organisation had to pay pecuniary penalties’.

[65] See above Part III(A).

[66] Awareness was measured by a sum of respondents’ answers to the following three questions (adjusted to a scale of 0–100): ‘I believe our organisation and those employees who need to know are well-informed about the Trade Practices Act’ (respondents could answer on a scale of 1–5, with ‘1’ representing ‘strongly disagree’ and ‘5’ representing ‘strongly agree’); ‘How well do you believe that your organisation and its employees, who need to know, understand the philosophy and the economic principles behind the Trade Practices Act?’ (respondents could answer on a scale of 1–5, with ‘1’ representing ‘very badly’ and ‘5’ representing ‘very well’); ‘How would you rate the priority your organisation’s senior management gives to obeying the Trade Practices Act?’ (respondents could answer on a scale of 1–5, with ‘1’ representing ‘very low priority’ and ‘5’ representing ‘very high priority’).

[67] Compliance value commitment was measured by a sum of responses to eight questions (adjusted to a scale of 0–100) shown in Table 4: see below Part VI(B).

[68] The 14 questions are shown in Table 5: see below Part VI(B). The Cronbach’s Alpha for the index of these 14 questions is 0.83. This is high, indicating that it is reasonable to add the questions together into one measure. Like the questions for the formal compliance system elements, these questions were based on the qualitative literature and regulatory policy on what makes for effective compliance management. The questions were designed to be as specific as possible to avoid unnecessary subjectivity and social desirability bias in the responses. However, since our focus was on intangible habits of management — rather than the more objectively verifiable existence of formal system elements — the questions necessarily called for a more subjective response.

[69] David Lyon, ‘How Can You Help Organizations Change To Meet the Corporate Responsibility Agenda?’ (2004) 11 Corporate Social-Responsibility and Environmental Management 133, 134. See also Andrew Newton, Compliance Is Not Enough: Getting the Ethical Culture Right in Your Firm (2001); Neal Shover and Andy Hochstetler, ‘Cultural Explanation and Organizational Crime’ (2002) 37 Crime, Law and Social Change 1.

[70] See below n 117 for a description of how we measured industry.

[71] For a review of the literature on the relationship between business size and compliance, see Jonathan Batten, Samanthala Hettihewa and Robert Mellor, ‘The Ethical Management Practices of Australian Firms’ (1997) 16 Journal of Business Ethics 1261, 1263.

[72] The statistics are shown in Table 6: see below Part VI(B).

[73] See above Part III(A) and below Part VI(A)(2).

[74] It seems likely that compliance system implementation — particularly of communication and training compliance system elements — will lead to greater awareness, rather than compliance awareness leading to greater compliance system implementation.

[75] Again, however, we cannot be sure from our survey alone whether compliance management in practice improves compliance system implementation, vice versa, or a combination of both.

[76] The statistics are shown in Table 6: see below Part VI(B).

[77] See TARP Australia Pty Ltd and American Express–SOCAP Study of Complaint Handling in Australia, Report 1: Consumer Complaint Behaviour in Australia (1995) 16–22; TARP Australia Pty Ltd and American Express–SOCAP Study of Complaint Handling in Australia, Report 2: A Profile of Enquiry and Complaint Handling by Australian Business (1995).

[78] See Table 2: above Part III(D).

[79] A ‘hotline’ usually means a secure, anonymous, telephone line or internet facility for employees to raise concerns or ask questions about compliance issues within the organisation: see Greg D’Arville and Calvert Duffy, ‘The Behaviourist Manifesto — Questions for the Compliance Industry’ (June 2000) 14 Compliance News 10.

[80] See Figures 2–5: above Part III(D).

[81] See below Part IV(B) for further discussion of this point.

[82] See Table 2: above Part III(D).

[83] As reflected in the interviews conducted for the qualitative study: see Parker and Stepanenko, above n 10.

[84] Alan R Beckenstein and H Landis Gabel, ‘Antitrust Compliance: Results of a Survey of Legal Opinion’ (1983) 51 Antitrust Law Journal 459.

[85] Jeffrey Kaplan, ‘The Corporate Sentencing Guidelines: Making Compliance Programs “Effective”’ (1991) 1 Corporate Conduct Quarterly 1.

[86] Barry J Rodger, ‘Compliance with Competition Law: A View from Industry’ [2000] Commercial Liability Law Review 249, 276.

[87] Barry J Rodger, ‘Competition Law Compliance Programmes: A Study of Motivations and Practice’ (2005) 28 World Competition Law and Economics Review 349, 375.

[88] Ibid.

[89] See above Part III(D)(3).

[90] See, eg, Krawiec, ‘Cosmetic Compliance’, above n 7. For a good summary of the critiques, see Sally S Simpson, Corporate Crime, Law and Social Control (2002) 103–6. For earlier summaries of the critiques by one of the authors, see Parker, The Open Corporation, above n 1, 135–67; Christine Parker, ‘Meta-Regulation: Legal Accountability for Corporate Social Responsibility’ in Doreen McBarnet, Aurora Voiculescu and Tom Campbell (eds), The New Corporate Accountability: Corporate Social Responsibility and the Law (forthcoming).

[91] See, eg, William S Laufer, ‘Corporate Liability, Risk Shifting, and the Paradox of Compliance’ (1999) 52 Vanderbilt Law Review 1341; William S Laufer, ‘Corporate Prosecution, Cooperation and the Trading of Favors’ (2002) 87 Iowa Law Review 643; Hutter, above n 34, 145–7, which reports that British Rail employees believed the purpose of health and safety systems was to shift responsibility away from the Board and ‘pass the buck’ to staff; Matthew Weait, ‘The Role of the Compliance Officer in Firms Carrying on Investment Business’ (1994) 9 Butterworth’s Journal of International Banking and Financial Law 381, 383, which discusses the scapegoating of compliance staff in British financial services regulation.

[92] See Rodger, ‘Competition Law Compliance Programmes’, above n 87, 375. For a more positive view on the implementation of compliance management to maintain legitimacy see the discussion of businesses’ social, economic and regulatory licences to operate by Neil Gunningham, Robert A Kagan and Dorothy Thornton, Shades of Green: Business, Regulation and Environment (2003) 41–75.

[93] Lauren Edelman et al, ‘Legal Ambiguity and the Politics of Compliance: Affirmative Action Officers’ Dilemma’ (1991) 13 Law and Policy 73, 75. See also Sharon Beder, Global Spin: The Corporate Assault on Environmentalism (1997) 128–30; Lawrence A Cunningham, ‘The Appeal and Limits of Internal Controls To Fight Fraud, Terrorism, Other Ills’ (2004) 29 Journal of Corporation Law 267; Krawiec, ‘Cosmetic Compliance’, above n 7, 514–15, 542; Doreen McBarnet, ‘Legal Creativity: Law, Capital and Legal Avoidance’ in Maureen Cain and Christine B Harrington (eds), Lawyers in a Postmodern World: Translation and Transgression (1994) 73, 73–5; Steve Tombs, ‘Understanding Regulation?’ (2002) 11 Social and Legal Studies 113.

[94] Gary R Weaver, Linda Klebe Treviño and Philip L Cochran, ‘Corporate Ethics Practices in the Mid-1990’s: An Empirical Study of the Fortune 1000’ (1999) 18 Journal of Business Ethics 283, 283. They also note that 98 per cent of the firms in their sample claimed ‘to address ethics and conduct issues in some kind of formal document’: at 285. By contrast, a 1997 study of the ethical management practices of 136 large Australian firms found that most did not even have a written code of ethics (only 28.7 per cent did): Batten, Hettihewa and Mellor, above n 71, 1266, 1268.

[95] See also Table 6: below Part VI(B).

[96] See also Table 6: below Part VI(B).

[97] One reason for this might be that firms that have breached the TPA and been caught might be more likely to have disciplined an employee for breach, hence improving their score on implementation of compliance performance measurement and discipline elements.

[98] This is consistent with other research reported in the academic literature on why businesses will implement compliance systems: see Fisse and Braithwaite, above n 34; Robert A Kagan, Neil Gunningham and Dorothy Thornton, ‘Explaining Corporate Environmental Performance: How Does Regulation Matter?’ (2003) 37 Law and Society Review 51; Parker, The Open Corporation, above n 1.

[99] The ‘indicia of an effective compliance system are easily mimicked and true effectiveness is difficult for courts and regulators [we might add, researchers] to determine’: Krawiec, ‘Cosmetic Compliance’, above n 7, 491–2. See also William S Laufer, ‘Social Accountability and Corporate Greenwashing’ (2003) 43 Journal of Business Ethics 253, 254, where it is noted that ‘[w]ithout metrics for assessing compliance effectiveness, regulators and prosecutors often rely on little more than corporate representations’. For critiques of inadequate use of audits of internal management systems required by regulators, see Michael Power, The Audit Society: Rituals of Verification (1997) 82–7; Christine Parker, ‘Regulator-Required Corporate Compliance Program Audits’ (2003) 25 Law and Policy 221.

[100] Donald C Langevoort, ‘Monitoring: The Behavioral Economics of Corporate Compliance with Law’ (2002) 71 Columbia Business Law Review 71, 114 (emphasis in original) (citations omitted).

[101] See Figures 2–4: above Part III(E).

[102] Christine Parker and Vibeke Lehmann Nielsen, Do Corporate Compliance Programs Influence Compliance? (September 2006) Social Science Research Network <http://ssrn.com/abstract=930238> . For systematic, quantitative evidence that implementation of internal compliance management systems in other regulatory arenas can lead to better compliance, see Coglianese and Lazer, above n 2; Susmita Dasgupta, Hemamala Hettige and David Wheeler, ‘What Improves Environmental Compliance? Evidence from Mexican Industry’ (2000) 39 Journal of Environmental Economics and Management 39; Kagan, Gunningham and Thornton, above n 98; Gunningham and Sinclair, above n 4; Matthew Potoski and Aseem Prakash, ‘Green Clubs and Voluntary Governance: ISO 14001 and Firms’ Regulatory Compliance’ (2005) 49 American Journal of Political Science 235. See generally Simpson, above n 90, 144–5. Cf Marie McKendall, Beverly DeMarr and Catherine Jones-Rikkers, ‘Ethical Compliance Programs and Corporate Illegality: Testing the Assumptions of the Corporate Sentencing Guidelines’ (2002) 37 Journal of Business Ethics 367.

[103] (2002) 24 ATPR 41-903, 45 425–6.

[104] Joint Submission on behalf of ACCC, applicant, and Tyco Australia Pty Ltd, respondent, Queensland’s Fire Protection cartel case, [145], [157] (13 December 1999) (copy on file with authors). Note that the joint submissions go on to state that ODG and Wormald have since undertaken an upgrade of their trade practices compliance programme in consultation with the ACCC.

[105] Joint Submission on behalf of ACCC, applicant, and Tyco Australia Pty Ltd, respondent, Queensland’s Fire Protection cartel case, [168] (21 December 1999) (copy on file with authors). The joint submissions go on to state that FFE had agreed to upgrade and maintain its compliance programme in consultation with the ACCC.

[106] Parker, ‘Regulator-Required Corporate Compliance Program Audits’, above n 99, 221.

[107] For a description of the changes and the reasons for them, see Sylvan, above n 16, 5–8. See also ACCC, Trade Practices Compliance Program Template Undertakings, above n 21.

[108] ACI, CPR Protocols: Protocols for Reviewing and Assessing the Adequacy, Effectiveness and Efficiency of Compliance Programs (2005).

[109] See above nn 1821 and accompanying text.

[110] Cf Gunningham, Kagan and Thornton, above n 92, 20, who argue optimistically that in the area of environmental regulation and compliance, external pressure will set the terms of a licence to operate in such a way that companies are forced to improve their compliance or go beyond mere compliance.

[111] Further research and analysis of our data is required in order to confirm this.

[112] See Parker and Nielsen, ‘Do Corporate Compliance Programs Influence Compliance?’, above n 102.

[113] See Nielsen and Parker, The ACCC Enforcement and Compliance Survey, above n 9, for a comprehensive description of the study, including details as to the sample and response rate, as well as issues of representativeness.

[114] Of the 2321 businesses surveyed, 273 were identified in this way. The rest were identified as the largest Australian businesses based on a commercially available database by Dun & Bradstreet.

[115] One thousand and twenty-five valid questionnaires were actually received, but the number of respondents was adjusted.

[116] Our response rate compares well with average response rates for questionnaire research of businesses where the targets for filling out the questionnaire were top managers or someone acting as a representative: see Yehuda Baruch, ‘Response Rate in Academic Studies — A Comparative Analysis’ (1999) 52 Human Relations 421, 431, which reports that the average for such questionnaires published in high quality management journals in 1975, 1985 and 1995 was 35.5 per cent. See Nielsen and Parker, The ACCC Enforcement and Compliance Survey, above n 9,

9–12 for further discussion of the response rate.

[117] See Australian Bureau of Statistics, Australian and New Zealand Standard Industrial Classification, ABS Catalogue No 1292.0 (2006) 66–74 (‘ANZSIC’). For the purposes of analysis (to ensure high enough numbers in each category and to preserve anonymity) the 17 industry groups classified in ANZSIC were collapsed into seven categories: (1) primary industries (agriculture, forestry and fishing, mining); (2) manufacturing and construction; (3) wholesale trade; (4) retail trade and hospitality (accommodation, cafes and restaurants); (5) financial and insurance, property and business services (including transport and storage); (6) government (government administration and defence) and essential services (electricity, gas and water supply); and (7) education and other services (health and community services; cultural and recreational services; personal and other services; and communication services).

[118] Industry data is from the Dun & Bradstreet database which we used to identify and locate the largest Australian businesses for this survey. The final number of businesses is 2048 rather than 2321, because we do not have industry data for the 273 businesses added to the list from ACCC Annual Report records. Percentages total more than 100 because businesses could be categorised as belonging to more than one industry.

[119] See Nielsen and Parker, The ACCC Enforcement and Compliance Survey, above n 9, 13.

[120] Ibid 16.

[121] See ibid; Parker and Stepanenko, above n 10.

[122] Based on information provided by Dun & Bradstreet on 2048 business compared against a total of 999 survey respondents. See also above nn 117–18 and accompanying text.

[123] Based on results provided by 984–92 survey respondents. The question stated, ‘Mark the number closest to the opinion held by most managers in your organisation’. Respondents were required to mark a score on a scale of 1–5, with ‘1’ representing ‘strongly disagree’ and ‘5’ representing ‘strongly agree’.

[124] Based on results provided by 869–93 survey respondents. Respondents were required to mark a score on a scale of 1–5, with ‘1’ representing ‘strongly disagree’ and ‘5’ representing ‘strongly agree’.


AustLII: Copyright Policy | Disclaimers | Privacy Policy | Feedback
URL: http://www.austlii.edu.au/au/journals/MelbULawRw/2006/15.html