This post  last week highlighted the recent activity in SEC v. Mark Jackson & James Ruehlen (a Foreign Corrupt Practices Act enforcement action scheduled for trial this summer). As noted in the post, among other things, the SEC is seeking to exclude various defense expert witnesses on a variety of issues including internal controls issues.
If you read the SEC’s motions (see here  – condensed into one document) you will see that a primary basis for exclusion is the SEC’s argument that the experts are merely offering their own naked ipse dixit.
I must confess – arcane latin phrases not being in my strike zone – I had to look up the meaning of ipse dixit.
Ipse Dixit – Latin for He himself said it – an unsupported statement that rests solely on the authority of the individual who makes it.
The term ipse dixit appears approximately 30 times in the SEC’s motions – and related to it – is the SEC’s argument that the experts’ internal controls opinions should be excluded because the experts fail to define certain terms and/or there is no discernible methodology underlying their opinions.
For instance, in seeking to exclude Alan Bell (CPA – regarding, among other things, internal controls) the SEC states:
“Bell could not define what constitutes a “circumvention” of an internal control.”
“Bell concedes that there are no written standards to evaluate what constitutes, in his view, a “circumvention” of an internal control.”
“Bell’s opinions are not the product of a reliable methodology applied to the facts of this case. In fact, Bell employed no methodology at all; instead, his opinions are “based on [his] 40 years of experience.”
In seeking to exclude Gary Goolsby (CPA – regarding, among other things, internal controls issues) the SEC states:
“There is also no discernible methodology underlying his opinion on Jackson’s purported reliance [on Noble’s internal controls], other than Goolsby’s own naked ipse dixit. Goolsby’s methodology reduces to the proposition that “I know what I’m looking at.” Yet, in deposition, he could not explain what his opinion means, as a practical matter, with reference to the conduct at issue in this case. Goolsby’s testimony thus confirms what is apparent from his report – his factual findings are based on nothing more than his subjective say-so.”
In seeking to exclude Lowell Brown (regarding various FCPA compliance issues) the SEC states:
“There is no discernible analysis or methodology underlying Brown’s opinion as to Jackson’s purported reliance, other than Brown’s own naked ipse dixit – a manifestly improper basis for expert testimony.”
In seeking to exclude Professor Ronald Gilson (regarding, among other things, internal controls issues) the SEC states:
“There is no genuine methodology here, other than Gilson’s own ipse dixit based on his subjective interpretation of the evidence
In the final analysis, Gilson is an advocate for the defense who proffers nothing but his ipse dixit in the place of rigorous analytical connection between his deficient methodology (reading deposition transcripts and exhibits) and his expert conclusion (the inference that if Ruehlen told others at Noble what he was doing, he lacked the corrupt intent to violate the FCPA, as opposed to simply colluding to bribe foreign officials).”
The irony of course is that while attacking the defendants’ experts for their own ipse dixit, many of the SEC’s FCPA internal controls enforcement theories are nothing more than ipse dixit.
For instance, as noted in this  prior post, the SEC alleged that Oracle violated the FCPA’s internal control provisions. The only allegations against Oracle itself is that it failed to audit distributor margins against end user prices and that it failed to audit third party payments made by distributors. The SEC did not allege any red flags to suggest why Oracle should have done this. Thus, how did Oracle violate the FCPA’s internal controls provisions? What was the methodology the SEC used?
Indeed, in a pointed critique of the SEC’s Oracle enforcement theory, the former Assistant Chief of the DOJ’s FCPA unit stated:
“Oracle is the latest example of the SEC’s expansive enforcement of the FCPA’s internal controls provision, and it potentially paints a bleak picture—one in which the provision is essentially enforced as a strict liability statute that means whatever the SEC says it means (after the fact).” (See here  for the prior post).
In many SEC FCPA enforcement actions, the SEC merely makes conclusory statements for why the company allegedly violated the FCPA’s internal controls provisions. For instance, in the Philips enforcement action (see here  for the prior post) the SEC states:
“Philips failed to devise and maintain a system of internal accounting controls sufficient to provide reasonable assurances that transactions were properly recorded by Philips in its books and records. Philips also failed to implement an FCPA compliance and training program commensurate with the extent of its international operations. Accordingly, Philips violated [the internal control provisions].”
As noted in my recent article “Why You Should Be Alarmed by the ADM FCPA Enforcement Action ” one reason, among others, why you should be alarmed by the action is because of the “failure to prevent” standard invoked by the SEC for why ADM violated the FCPA’s internal controls provisions. As noted in the article, this standard does not even exist in the FCPA and is inconsistent with actual legal authority. (See here  for the previous post regarding SEC v. World-Wide Coin – the only judicial decision to directly address the FCPA’s internal controls provisions).
Moreover, as noted in the article, the “failure to prevent standard” is inconsistent with SEC guidance relevant to the internal-controls provisions. (See also this  prior post). The SEC’s most extensive guidance on the internal controls provisions states, in pertinent part, as follows:
“The Act does not mandate any particular kind of internal controls system. The test is whether a system, taken as a whole, reasonably meets the statute’s specified objectives. ‘‘Reasonableness,’’ a familiar legal concept, depends on an evaluation of all the facts and circumstances.
Private sector decisions implementing these statutory objectives are business decisions. And, reasonable business decisions should be afforded deference. This means that the issuer need not always select the best or the most effective control measure. However, the one selected must be reasonable under all the circumstances.
Inherent in this concept [of reasonableness] is a toleration of deviations from the absolute. One measure of the reasonableness of a system relates to whether the expected benefits from improving it would be significantly greater than the anticipated costs of doing so. Thousands of dollars ordinarily should not be spent conserving hundreds. Further, not every procedure which may be individually cost-justifiable need be implemented; the Act allows a range of reasonable judgments.
The test of a company’s internal control system is not whether occasional failings can occur. Those will happen in the most ideally managed company. But, an adequate system of internal controls means that, when such breaches do arise, they will be isolated rather than systemic, and they will be subject to a reasonable likelihood of being uncovered in a timely manner and then remedied promptly.”
What is the source for the “failure to prevent” standard in ADM? What is the methodology?
In short, while attacking the defendants’ experts for their lack of defined methodology regarding internal controls issues, the SEC itself has long recognized that the FCPA’s internal controls lack a defined methodology.
As noted in this  post, in a 2013 speech SEC Chair Mary Jo White reminded us why trials are important. Among other things, White stated that “trials allow for more thoughtful and nuanced interpretations of the law in a way that settlements and summary judgments cannot.”
The SEC’s enforcement action against Jackson and Ruehlen represents an extremely rare instance in which the SEC is being forced to articulate its FCPA positions in the context of an adversary proceeding.
The SEC’s motions seeking to exclude defendants’ experts – while primarily based on ipse dixit – reminds us that a large portion of the SEC’s (and DOJ’s) FCPA enforcement program is nothing more than ipse dixit – and subjective say so.