May 6, 2024 by Mike Manazir – (4-5 minutes)

In 2018, it was revealed that the political consulting firm Cambridge Analytica harvested the personal data of millions of Facebook users without their consent. This data was then used to target political advertisements and influence voter behavior in various elections including the 2016 U.S. presidential election.

Facebook faced intense scrutiny and backlash for its lax data privacy policies and inadequate procedures for monitoring third-party access to user data. The scandal led to regulatory investigations, congressional hearings, and significant damage to Facebook’s reputation.

Once hailed as a rising star in the fintech industry, Wirecard, a German payment processing company, collapsed in 2020 amidst one of Europe’s biggest accounting scandals. The company faced allegations of widespread fraud and mismanagement, including inflating its revenue and fabricating financial statements to deceive investors and regulators. Wirecard’s downfall highlighted serious deficiencies in regulatory oversight and auditing practices, as well as, the importance of robust internal controls and transparency in financial reporting.

The e-cigarette company Juul Labs faced intense scrutiny and legal challenges in recent years due to concerns over its marketing practices and the youth vaping epidemic. Critics accused Juul Labs of targeting underage users with its sleek design, flavored nicotine pods, and aggressive advertising campaigns on social media. In 2019, the company became the subject of multiple investigations by federal and state authorities for its role in fueling a surge in youth vaping. Juul’s lack of adequate age verification measures and responsible marketing policies contributed to growing public health concerns and regulatory crackdowns on the vaping industry.

It’s been said that the last act of a dying company is to rewrite its policies and procedures. However, Michael Gerber, author of The E-Myth makes the case for well thought out SOPs (Standard Operating Procedures). He makes the point that if company leadership embeds their experience and best practices into SOPs, they can reduce labor costs by empowering lower level employees to deliver high quality results because best practices are inherent in the SOPs. SOPs are effective…if they are followed.

Assuming your employees are trained to follow your SOPs, let’s examine how to build effective policies and procedures to guide their behavior. Properly implemented, a set of SOPs can ensure compliance with regulations, promote consistency in application, and mitigate risks to your organization.

Below are some key factors that contribute to SOP’s effectiveness:

1. Policies and procedures should be clearly written, easily understandable, and cover all relevant aspects of an organizations operations. They should leave no room for ambiguity, ensuring that employees know what is expected of them and how to perform their duties correctly.

2. Effective policies and procedures are aligned with the organization’s mission, vision, and strategic objectives. They should support the achievement of organizational goals and promote a culture of accountability and excellence.

3. Policies and procedures should be regularly reviewed and updated to reflect changes in internal and external factors such as, new regulations, technological advancements, or organizational restructuring. Periodic reviews ensure SOP’s remain relevant and effective over time.

4. Employees should be adequately trained on policies and procedures and regularly reminded of their importance. This helps to reinforce compliance and ensure that everyone is aware of their responsibilities.

5. Policies and procedures should be enforced consistently and mechanisms should be in place to hold individuals accountable for compliance. This sends a clear message that adherence to policies is non-negotiable and helps deter unethical behavior.

Policies and procedures can fail to be effective when the following factors exist in an organization:

1. Overly complex or redundant policies and procedures can confuse employees and lead to non-compliance.

2. An organization lacks the necessary resources, such as time, expertise, or technology to implement and enforce policies and procedures effectively.

3. Employees resist new policies and procedures if they perceive them as unnecessary, overly restrictive, or incompatible with existing workflows. It’s important to involve employees in the development process and address their concerns to foster buy-in and acceptance.

4. Without proper monitoring and oversight, policies and procedures may not be followed consistently, leading to compliance gaps and increased risk exposure.

5. Organizational leaders do not prioritize compliance with policies and procedures or fail to set a positive example themselves.

You will need to review your policies and procedures if there are changes to relevant regulations or industry standards; changes in the organization due to mergers, acquisitions, restructuring or leadership; advancements in technology and cybersecurity; complaints, suggestions for improvement, or patterns of non-compliance. Additionally, incidents, accidents, or near-misses may reveal gaps in your policies and procedures.

The frequency of reviews and updates will depend on the nature of your organization, the pace of change in your industry, and the level of risk associated with your operations. As a general rule, it’s advisable to conduct regular reviews at least annually.

“The purpose of procedures is to guide, not to inhibit, and to facilitate, not to obstruct.
Good procedures are liberating, not confining.“

-Peter Senge

Lead from your heart. Lead to Win.

Take Action

---

Mike’s Leadership Forum

• Do you have a comment or question to make on today’s blog?
• Do you have a leadership issue you would like us to process in a future blog?
• Do you need a speaker for an upcoming leadership event?
• Click CONTACT for comments.