Asia-Pacific Compliance Enforcement

This is an Insight article, written by a selected partner as part of GIR's co-published content. Read more on Insight


This chapter provides an overview of trends in relation to legislative and regulatory compliance enforcement in the Asia-Pacific (APAC) region. Comprising dozens of jurisdictions with diverse business cultures and economies, the region presents unique challenges, given the disparate enforcement authorities and the varying compliance standards. The chapter focuses on key areas of enforcement priorities, including anti-bribery and anti-corruption (ABC), anti-money laundering (AML) and other key criminal offences affecting multinational corporations, and provides an overview of emerging compliance issues and enforcement trends that will be of relevance to multinational corporations and other commercial organisations with cross-border businesses and investments in the region.

Overview of compliance enforcement in APAC

There are no uniform laws that apply to all jurisdictions across the APAC region. Accordingly, we have selected five key jurisdictions to use as examples of the types of enforcement policies, procedures and activity across the region: Australia, China, Hong Kong, Japan and Singapore.


Enforcement bodies: their enforcement policies, focus and priorities

The Australian federal government has taken a multi-agency approach to combating corruption. The main enforcement and prosecuting agencies responsible for investigating and prosecuting bribery and corruption cases are the Australian Federal Police (AFP), the Commonwealth Director of Public Prosecutions (CDPP) and the various state-based and territory-based police and anti-corruption bodies that investigate public sector corruption, such as the Independent Commission Against Corruption in New South Wales.

The new National Anti-Corruption Commission (NACC) commenced operation on 1 July 2023.[2] The NACC is an independent agency headed by a commissioner and up to three deputy commissioners. It is empowered to detect, investigate and report on serious or systemic corrupt conduct affecting the federal public sector.[3] It will also work closely with pre-existing enforcement agencies, such as by referring evidence of criminal conduct for investigation by the AFP and prosecution by the CDPP.

With respect to listed issuers, the Australian Securities Exchange’s (ASX) Corporate Governance Principles and Recommendations require that listed issuers have, and publicly disclose, ABC policies.[4] The ASX’s Listing Rules provide that listed issuers that do not follow the recommendation must explain the reasons for not doing so in a corporate governance statement.[5]

The Australian Transaction Reports and Analysis Centre (AUSTRAC), as Australia’s AML and counter-terrorism financing (CTF) regulator, adopts a risk-based approach as part of its enforcement to focus its resources on areas of urgent priority. Multi-agency investigations in 2022 found money laundering through electronic gaming machines (EGMs) in pubs and clubs to be a serious problem, with few effective controls and data collection methods in place to identify and prosecute those involved.[6] Australia has made continuous efforts in this area, however, with AUSTRAC releasing several ‘pubs and clubs’ resources in mid-2023 as part of its nationwide education campaign to help EGM operators understand and discharge their AML/CTF obligations.[7]

The Anti-Money Laundering and Counter Terrorism Financing Act 2006 (Cth) also imposes a positive obligation on reporting entities, which broadly include financial institutions (FIs) or providers of designated services, to put in place an adequate programme to identify, mitigate and manage AML/CTF-related risks.[8] Generally, all FIs, and certain other entities subject to local AML/CTF requirements, have obligations to report to AUSTRAC any reasonable suspicion or knowledge of any persons or transactions linked to a crime.

The Australian Securities and Investments Commission (ASIC) regulates the financial services, consumer credit and domestic licensed equity, derivatives and futures markets operating in Australia. ASIC’s enforcement work is guided by a set of strategic priorities as set out in its Corporate Plan 2021–2025.[9] In a speech given in March 2023 to the Australian Institute of Company Directors, the ASIC chair focused on the roles and responsibilities of individual directors, as well as its interaction with and impact on good corporate governance. He also noted two key areas posing non-financial risks: cyber resilience and the issue of greenwashing and sustainability-related disclosures.[10]

Self-disclosure and reporting

Self-disclosure and cooperation may be relevant considerations for Australian authorities in deciding whether to proceed with an investigation or prosecution, and for the courts in sentencing; however, except for cartel conduct and to the extent noted below, there is no requirement for the authorities to consider these factors with respect to white-collar offences.

ASIC published an immunity policy for contraventions of Part 7.10 of the Corporations Act,[11] including the offences of insider trading and market manipulation. Under this policy, an individual may make an application for immunity by requesting ASIC to place a marker. The marker allows an applicant a limited amount of time to gather and provide the information necessary, on a full-disclosure basis, to demonstrate that it satisfies the requirements for conditional immunity. ASIC is not able to grant immunity from criminal prosecution, although it will make recommendations in this regard to the CDPP, which will then make its own assessment according to the Prosecution Policy of the Commonwealth.

Enforcement outcomes

Possibly as a result of recent actions undertaken to combat corruption, Australia’s 2022 score on Transparency International’s Corruption Perceptions Index (CPI)[12] is two marks higher than that for 2021, showing a stop to a years-long trend of decline.[13] Australia has made a number of prosecutions against violations of ABC laws, with the relevant individuals sentenced to imprisonment, fines or other court sanctions, although it has only more recently enforced laws against foreign bribery.[14]

The Crimes Legislation Amendment (Combatting Corporate Crime) Bill, which contained a strict-liability ‘failure to prevent’ foreign bribery offence for companies, was introduced into Parliament in December 2019, but lapsed in July 2022 when Parliament was prorogued ahead of the Australian federal election. On 22 June 2023, the Crimes Legislation Amendment (Combatting Foreign Bribery) Bill 2023 was introduced into Parliament and read for the first and second time. As at the time of writing, it has not yet been passed.[15]


Enforcement bodies: their enforcement policies, focus and priorities

The prosecution of financial crimes, including bribery and corruption offences, and money laundering-related offences are generally administered by the Supreme People’s Procuratorate (SPP). Authorities that enforce ABC laws include the Ministry of Public Security (MPS), the National Supervisory Commission (NSC) and the National Audit Office. The Central Commission for Discipline Inspection of the Communist Party of China (CCDI), the highest internal control institution of the Chinese Communist Party, also has ABC functions.

Although China has not implemented a comprehensive or stand-alone enforcement policy, domestic regulators have continued to strengthen their commitment to investigating commercial bribery offences, as indicated by two recent legislative documents: the Guiding Opinions on Establishing a Mechanism for Third-Party Supervision and Evaluation of the Compliance of Enterprises Involved in Cases (for Trial Implementation)[16] and the Opinions on Further Promoting the Investigation of Bribery and Acceptance of Bribes.[17] These documents indicate that the government’s latest enforcement priorities continue to target those who give bribes and commercial bribery, while balancing the need to protect legitimate business interests.

The Supreme People’s Court and the SPP are also responsible for developing judicial interpretations on AML/CTF laws. The People’s Bank of China (PBOC) is the primary regulator with respect to AML/CTF compliance, and is responsible for enforcing local AML/CTF requirements. Under the Law on Combating Telecom and Online Fraud, which came into effect on 1 December 2022, the PBOC is obliged to coordinate the establishment of a unified monitoring system to counter money laundering across banking and non-banking financial institutions and, in collaboration with the MPS, improve reporting systems for suspicious transactions.[18] The China Banking and Insurance Regulatory Commission (CBIRC) and the China Securities Regulatory Commission also have supervisory roles, assisting the PBOC with enforcing certain administrative sanctions in the banking, insurance and securities sectors.

In August 2022, the CBIRC published the Measures for the Internal Control and Management of Wealth Management Companies.[19] Under the Measures, wealth management companies must comply with relevant AML/CTF laws and establish monitoring, preventive and feedback systems to combat money laundering.

In January 2022, China launched a three-year campaign to fight money laundering and to safeguard national security and social stability. The campaign will run until the end of 2024 and is being led by the PBOC and the MPS.[20]

Self-disclosure and reporting

On discovering a crime or a criminal suspect, any individual or entity has the right and duty to report the case to a public security agency, a people’s procuratorate or a people’s court.[21] All FIs and certain other entities must report to the PBOC any suspicious transactions that (1) relate to money laundering, terrorism financing or other criminal activities, (2) jeopardise national security or social stability or (3) are linked to other serious situations or emergencies.

The Criminal Law provides that individuals and entities who voluntarily report to enforcement authorities may receive a lighter sentence.[22] The Interpretation on Certain Issues concerning the Application of Law in Handling Criminal Cases Involving Embezzlement and Bribery[23] specifically states that self-reporting may mitigate or exempt a party from its liability for bribery-related violations, in particular when the underlying crimes are relatively minor.

Enforcement outcome

In terms of enforcement against bribery and corruption, the CCDI and the NSC have begun compiling a blacklist of offenders. For instance, as at April 2022, six companies and about 130 individuals (mainly from the construction industry in Hunan Province) were blacklisted for corruption-related conduct and punished with various types of penalties for up to one year, such as a prohibition against participating in bids for government contracts, limits on access to government subsidies, and additional and more frequent inspections by enforcement authorities.[24]

In 2020, the PBOC reported in its AML report that it had imposed fines totalling 526 million yuan on 537 institutions and 24.68 million yuan on 1,000 individuals, and strengthened its work in supervising regulated entities’ AML systems during the year.[25] In May 2022, the PBOC, the MPS, the SPP, the State Administration of Taxation, the General Administration of Customs and the State Administration of Foreign Exchange held a conference discussing their work in cracking down on fraudulent value-added tax (VAT) credits and refunds. In the month following that conference, relevant local departments worked together and successfully resolved five cases of tax fraud, prosecuting numerous individuals and organisations.[26]

Hong Kong

Enforcement bodies: their enforcement policies, focus and priorities

The Hong Kong government’s Department of Justice is the main legal authority responsible for prosecution. The main authorities with powers of investigation, prosecution and enforcement for bribery and corruption offences are the Hong Kong Police Force (HKPF) and the Independent Commission Against Corruption (ICAC). The ICAC has not publicly released a stand-alone enforcement policy but has published annual reports that provide enforcement statistics. Building management, construction, finance and insurance have traditionally been the industry sectors that have attracted complaints and reports, which have led to an increased level of enforcement.[27]

There are also certain individuals and institutions (e.g., licensed persons, financial services and listed companies) that are subject to regulatory requirements and that may be implicated when bribery and corruption occur. For example, under the Code of Conduct for Persons Licensed by or Registered with the Security and Futures Commission (SFC), intermediaries must comply with and implement appropriate measures to ensure compliance with the law, rules, regulations and codes administered or issued by the SFC (and any requirements of the applicable regulatory authority). When a breach occurs, enforcement action may be undertaken by the SFC’s enforcement arm.

Similarly, under the Listing Rules of the Stock Exchange of Hong Kong Limited (SEHK) – namely, the Corporate Governance Code and the Corporate Governance Report – the board of directors of a listed company is responsible for establishing and maintaining appropriate and effective risk management and internal control systems. When a breach occurs, enforcement action may be taken by the SEHK.

The Joint Financial Intelligence Unit (JFIU), which is operated jointly by the HKPF and the Customs and Excise Department, is the primary enforcement body for investigating money laundering activities in Hong Kong. The JFIU may also work with the ICAC when the predicate offence is bribery or corruption.

With respect to FIs and financial service providers specifically, the Hong Kong Monetary Authority (HKMA) and the SFC are also responsible for investigating potential violations of AML/CTF laws, administering related sanctions and monitoring ongoing AML/CTF compliance. Following the enactment of the Hong Kong National Security Law, the authorities have also undertaken AML/CTF enforcement actions relating to offences under this Law.

Self-disclosure and reporting

There is generally no positive obligation to report crimes in Hong Kong; however, the reporting of any knowledge or suspicion of money laundering is a statutory requirement, and a failure to do so is a criminal offence.[28] This requirement is applicable to all persons and also has extraterritorial effect in that it applies even if the predicate offence is committed outside Hong Kong. It is a defence for a person who has dealt with incriminating funds to prove that he or she had disclosed his or her knowledge or suspicion of money laundering prior to the dealing, or as soon as it was reasonable to do so after the dealing.

Hong Kong does not have any formal programme for leniency or reduced penalties on the basis of cooperation with investigation authorities; however, authorities do consider leniency or immunity based on the mitigating factors of each case, such as self-reporting. For instance, the SFC and the HKMA have emphasised that they will recognise and give credit for cooperation during an enforcement investigation in determining the applicable sanction.[29]

Enforcement outcome

Hong Kong ranks 12th of 180 countries and regions included in the CPI 2022, which illustrates that the territory continues to perform strongly in detecting, deterring and remediating violations of ABC and AML laws. In 2022, the overall number of corruption reports received by the Operations Department of the ICAC decreased by 19 per cent.[30]

In the financial services industry, both the SFC and the HKMA continue to take robust enforcement actions. For instance, as at 18 May 2023, a series of ongoing extensive investigations by the SFC and HKPF into suspected ramp-and-dump stock investment schemes has led to 24 individuals being charged with money laundering and related offences.[31] In September 2022, the HKMA imposed a fine of HK$11 million against the Hong Kong branch of a large Taiwan commercial bank for breaches of the Anti-Money Laundering and Counter-Terrorist Financing Ordinance (AMLO).[32]


Enforcement bodies: their enforcement policies, focus and priorities

Public prosecutors are the sole authority for the prosecution of crimes in Japan, except where the Committee for the Inquest of Prosecution elects to compel prosecution of a case following a public prosecutor’s refusal to do so. There is no designated authority that enforces ABC laws or AML laws in Japan; however, public prosecutors can and will often investigate white-collar crimes and may instruct the National Police Agency to provide investigative assistance.

Certain administrative authorities have investigative powers. For instance, the Securities and Exchange Surveillance Commission (SESC) can investigate securities fraud and other violations of securities regulations. Further, Japan’s Financial Services Agency (FSA), as an administrative authority, is empowered to impose surcharges (kachokin) and other sanctions on specific violations of securities regulations after recommendation from the SESC.

Both the SESC and the FSA publish their strategic priorities regularly,[33] but Japan observes the AML/CTF enforcement priorities broadly set out in the Financial Action Task Force (FATF) Recommendations, which include a wide application of money laundering offences to target more serious predicate offences.[34] Following Japan’s reporting back to the FATF on the actions it has taken since a 2021 assessment on its AML/CTF measures,[35] the FATF has re-rated Japan with regard to its compliance with the FATF Recommendations, commending Japan on its improvements.[36]

There is no publicly available stand-alone enforcement policy on ABC, but Japan may undertake actions in response to media attention and the criticism against it in the latest report by the Organisation for Economic Co-operation and Development (OECD), as discussed below.

Self-disclosure and reporting

Specified business operators, including banks and insurance companies, are required by statute,[37] or the FSA’s annually updated Guidelines for Anti-Money Laundering and Combating the Financing of Terrorism, to report to competent authorities (such as the FSA) any suspicious transactions involving criminal proceeds. If a specified business operator fails to comply with this requirement, a competent administrative agency such as the FSA may order the specified business operator to take necessary measures to rectify the violation.[38]

According to the Penal Code, self-reporting is a factor in reductions to the penalties imposed on individuals.[39] With the introduction of the new plea bargaining system in 2018,[40] companies are now able to take advantage of this option by voluntarily reporting the bribery or corruption-related misconduct and agreeing to cooperate with the prosecutors. In the past five years, the procedure has only been applied in three cases, but company executives were found guilty at trial in all of them.[41]

Enforcement outcome

There have been a significant number of enforcement cases involving former government officials, or Diet members who had committed domestic bribery, in recent years. Although the government reported that 12 foreign bribery cases were under formal investigation as at June 2019, in its report, the OECD Working Group criticised Japan for its weak enforcement against foreign bribery.[42] In response, the government revised its Guidelines for Prevention of Bribery of Foreign Public Officials.[43]


Enforcement bodies: their enforcement policies, focus and priorities

The Singapore Attorney General (AG), in his role as public prosecutor, is responsible for all criminal prosecution in Singapore. In practice, officers of the Crime Division of the AG’s Chambers act as deputy public prosecutors and assistant public prosecutors under the authority of the AG to conduct criminal prosecutions. The government agency that investigates ABC offences, and other related offences, under Singapore’s Prevention of Corruption Act 1960 is the Corrupt Practices Investigations Bureau (CPIB). The CPIB has not publicly released its enforcement priorities, but a review of enforcement statistics has shown that 86 per cent of cases registered for investigations in 2022 were from the private sector, with 14 per cent of these involving public sector employees who have rejected bribes offered by private sector individuals.[44]

The Commercial Affairs Department (CAD) of the Singapore Police Force is primarily responsible for investigating and taking enforcement action in respect of commercial fraud and abuse, including money laundering offences. The CAD may also work with the CPIB or the Singapore Central Narcotics Bureau when the predicate offence involves bribery or corruption, or drug trafficking, respectively.

With respect to FIs and financial service providers, the Monetary Authority of Singapore (MAS) is also responsible for investigating potential violations of AML/CTF laws, administering related sanctions (such as monetary penalties for AML/CTF control breaches) and monitoring ongoing AML/CTF compliance. AML/CTF compliance continues to be one of MAS’s enforcement priorities.[45]

Self-disclosure and reporting

Similar to other APAC jurisdictions, the reporting of a reasonable suspicion of money laundering is a statutory requirement, and a failure to do so is a criminal offence.[46] This requirement is applicable to all persons. Banks and other entities in the regulated industries are also subject to further requirements on customer due diligence, record-keeping and internal controls, and training should follow the relevant industry specific guidelines so as to manage AML/CTF risks. Suspicious transaction reports should also be proactively made as and when required.

Singapore adopts a two-pronged approach for leniency or reduced penalties based on cooperation with investigation authorities, with a distinction drawn between corporate offenders and non-corporate offenders (i.e., individuals). Corporate offenders may be extended deferred prosecution agreements (DPAs),[47] which, while not applicable to every offence, are available to AML/CTF offences.[48]

Under a DPA, the public prosecutor agrees to hold off prosecution in exchange for the offender’s compliance with certain conditions, which could include requiring the corporate offender to cooperate in any investigation of the underlying offence.[49] DPAs are nevertheless subject to strict statutory control. For instance, a DPA comes into force only with the approval of the General Division of the Singapore High Court, after the High Court is satisfied that the DPA is in the interests of justice and that its terms are fair, reasonable and proportionate.[50] Further, the corporate offender must be represented by an advocate at the time it enters into a DPA.[51]

Self-reporting and cooperation during the course of investigations may be considered as relevant mitigating factors that may help to reduce any sentence that is ultimately imposed by the court.

Enforcement outcome

Singapore has a low number of public sector complaints and a high conviction rate for corruption-related offences,[52] owing to the CPIB’s active investigative and enforcement actions and the strong commitment of the AG to prosecute these offences. The state ranks fifth in the CPI 2022, dropping one place from 2021, and has the highest score of the APAC jurisdictions discussed in this chapter. Singapore also takes a proactive role in investigating foreign bribery cases with Singaporean links by joining the International Anti-Corruption Coordination Centre.[53]

The Attorney General, CAD and MAS also continue to work closely with US authorities in taking action against the FIs and individuals involved in the 1MDB scandal. Singapore authorities are keen on preventing a repeat, with Parliament passing the Financial Services and Markets (Amendment) Bill in May 2023. This paved the way for MAS to set up and maintain the ‘Collaborative Sharing of ML/TF Information and Cases’ platform, allowing FIs to securely share with each other information on customers who exhibit multiple ‘red flags’ that may indicate financial crime concerns.[54]

In terms of AML/CTF enforcement, MAS imposed a total of S$2.4 million in combined penalties against four FIs in 2020–2021.[55]

Emerging trends

ESG compliance, disclosure and monitoring requirements

Businesses are increasingly subject to compliance relating to environmental, social and governance (ESG) matters and disclosure requirements in a number of jurisdictions in the region. Although listed companies and other large organisations tend to be subject to stricter ESG-related regulations in many jurisdictions, overall market pressure to address ESG has heightened, driven mainly by developments and regulatory enforcement in overseas jurisdictions, such as those led by the US Securities and Exchange Commission. By way of example:

  • in Hong Kong, all companies (both public and private) are generally required to disclose their environmental policies and performance in an annual directors’ report, unless they fall within one of the stated exemptions.[56] For listed issuers, the SEHK recently published an ESG Reporting Guide[57] and an updated Corporate Governance Code.[58] The latter, which was updated in January 2022, introduced various board composition and other corporate governance requirements, as well as best practices recommendations, including guidance on board member matters such as term, independence, diversity and remuneration;
  • in Malaysia, all listed issuers are required to include a narrative statement to comply with Bursa Malaysia’s ‘Sustainability Reporting Guide’ in their annual reports; those listed on the Main Market are subject to additional ESG disclosure obligations.[59] The Malaysian Code on Corporate Governance, which is targeted at listed issuers but which small and medium-sized enterprises and other non-listed entities are also encouraged to follow, was updated in April 2021 to introduce best practices and guidance on various topics, including the integration of sustainability considerations in business strategy, and board selection and diversity; and
  • in Japan, various environmental protection laws require businesses in certain industries to disclose environmental and climate impact information, such as energy consumption and greenhouse gas emission levels.[60] The Japanese Corporate Governance Code, which was updated in 2021, broadly requires listed issuers to ‘take appropriate measures to address sustainability issues, including social and environmental matters’ on a comply-or-explain basis; those listed on the Prime Market are subject to additional disclosure requirements concerning climate-related risks.[61] These environmental disclosure requirements are expected to extend to all FIs and service providers that submit annual securities reports to the FSA after 31 March 2024.[62]

Regulation of virtual assets

Virtual assets are increasing in popularity in the APAC. A June 2022 report by Accenture noted that 52 per cent of investors in Asia already hold virtual assets and a further 21 per cent expect to invest in them by the end of 2022.[63] Although regulation of virtual assets still varies greatly across the region, we are seeing significant developments in this space and expect regulatory regimes to become more sophisticated and targeted.

The PRC’s new Law on Combating Telecom and Online Fraud contains provisions prohibiting individuals or entities from assisting fraudsters in laundering money, such as by transacting with them using virtual assets.

There has also been a number of significant regulatory developments in Hong Kong during the past year affecting the digital assets market. In May 2021, the Financial Services and the Treasury Bureau (FSTB) published its consultation conclusions on extending the SFC’s existing regulatory regime to cover exchanges that offer virtual assets that do not qualify as securities.[64] This is now supported under the amended AMLO, passed by the Legislative Council in December 2022 and effective from 1 June 2023. It introduces a licensing regime for virtual asset providers, as well as a two-tier registration regime for dealers in precious metals and stones.[65]

In January 2022, the SFC, the HKMA and the Insurance Authority released comprehensive guidance to FIs, intermediaries and related entities looking to engage in virtual asset-related activities.[66] In June 2022, the SFC clarified that non-fungible tokens that constitute investment products would also fall within its regulatory scope.[67]

Singapore has a well-established virtual asset regulatory regime. MAS is the key regulator in this space and is responsible for licensing, regulation and enforcement. The Singapore Financial Services and Markets Act 2022, which was passed by Parliament in April 2022, expanded the scope of MAS’s authority and oversight to cover virtual currency exchanges created in Singapore, even if they only conduct business overseas. The introduction of this Act closes a crucial regulatory gap with respect to these entities, aligning the existing regime with FATF’s enhanced AML/CTF standards.[68]

Corporate liability

Corporate liability for bribery-related offences is also emerging as a trend in APAC. Although many enforcement regimes apply in principle to both individuals and corporate entities, high standards with respect to requisite criminal knowledge and intent mean that from a practical standpoint, prosecutions are mainly brought against individuals.

The Malaysian Anti-Corruption Commission has ramped up enforcement against corporate entities for bribery since the introduction of corporate liability in 2020 through the insertion of Section 17A to the Malaysian Anti-Corruption Commission Act 2009. Pursuant to Section 17A, commercial organisations, their directors and management may be penalised for the corrupt practices of associated persons, such as agents and employees. The only statutory defence available is for the commercial organisation to prove that it had implemented ‘adequate procedures’ to prevent the corrupt practice. In August 2021, a company involved in a corruption probe by the Malaysian Anti-Corruption Commission agreed to pay a fine of 1 million ringgit to settle the case.[69]

Australia introduced the Crimes Legislation Amendment (Combatting Foreign Bribery) Bill 2023 in June 2023 after the previous Crimes Legislation Amendment (Combatting Corporate Crime) Bill lapsed. This Bill contains a strict liability corporate offence of failing to prevent foreign bribery by an associate of the corporation. The effect of this is that a corporate body will be automatically liable for foreign bribery committed by agents and employees, unless it can establish that there were ‘adequate procedures’ in place.[70]

Key challenges facing compliance

The challenges in the APAC region will vary depending on the industry and jurisdictions in which companies operate; however, we have set out below three key challenges that have been faced by organisations across the region.

Navigating conflicting laws and regimes

A continuous challenge for multinational companies is the extraterritorial application of laws to their business operations. Most jurisdictions generally do not prohibit an organisation from implementing or complying with the laws or restrictions of a foreign jurisdiction, unless the performance of those requirements would offend public policy or otherwise be illegal. For instance, many multinational corporations, including those that are not US-incorporated, adhere to the requirements of US sanctions laws as a result of their contractual obligations towards their FIs or other counterparties, or owing to the possibility that other factors may trigger a jurisdictional nexus (such as the use of US dollars in a transaction that is routed through the US financial system). In certain jurisdictions, however, there are blocking statutes that may affect how multinational corporations and funds are able to ensure compliance with competing legal requirements. For instance, China’s Anti-Foreign Sanctions Law works to counter any unilateral foreign sanctions imposed by foreign states against China.

Similarly, the expansion of the territorial scope of certain data privacy requirements, such as China’s Personal Information Protection Law (PIPL), poses particular challenges from a regulatory enforcement perspective. The PIPL extends China’s ‘long-arm’ jurisdiction towards personal information processing activities that may occur outside China and also provides certain data localisation requirements that may run counter to those of other jurisdictions. Furthermore, recently regulatory changes in China, such as the newly revised Anti-Espionage Law, raises additional compliance considerations for multinationals with operations in the country.

As a result, multinational businesses and investment funds will need to continue implementing appropriate due diligence measures, compliance guidance, comprehensive data classification and management systems and contractual protections to ensure that their compliance risks are adequately mitigated and to ensure that they do not inadvertently terminate or otherwise cause damage to a counterparty through their efforts to comply with the requirements of extraterritorial laws.

Corporate accountability and liability

Companies are facing increased scrutiny of their corporate behaviour, in the form of both changes to corporate liability schemes around the region, and an expansion of the types of liability to which they are exposed. In particular, companies are facing increased scrutiny in respect of ESG and sanctions risks.

The result is that companies are being held to an increasingly higher standard when it comes to ensuring the effectiveness of their compliance programmes. A number of jurisdictions in the region have already introduced, or are intending to introduce, mandatory whistleblowing requirements on certain companies. For example, in Hong Kong, the SEHK has updated its Listing Rules to introduce a code provision for issuers to implement a whistleblowing policy and system for employees and those who deal with the issuer (e.g., customers and suppliers) to raise concerns of impropriety, anonymously and in confidence, with the audit committee or other appropriately designated body.

In Japan, amendments were made to the Whistleblower Protection Act. The revised Act, effective from 1 June 2022, now includes a mandatory obligation for companies of a certain size to establish a whistleblowing system, with the aim of ensuring the protection of whistleblowers.[71]

In addition to scrutiny by regulators and authorities, companies are also facing an increasing challenge of potential civil liability. This is particularly evident in the increased enforcement relating to ESG breaches − particularly ‘greenwashing’ and other claims from shareholders and investors relating to misstatements made by the company. As more jurisdictions introduce mandatory ESG reporting obligations, and encourage complaints to be raised, companies face liability from multiple directions.

To meet this challenge, many companies are taking steps to review and enhance their compliance programmes. These steps include reviewing their existing policies and procedures, particularly in relation to corporate governance, ABC, ESG and whistleblowing. This review must not only ensure that the correct policies, standards and controls are in place, but also that any issues identified are properly investigated and remediated. It is no longer sufficient to engage only in a ‘tick box’ exercise of having the documents in place. Companies must ensure that their ethical and compliance standards are being implemented and enforced.

Counter-terrorism and proliferation financing trends

Increasing emphasis has been placed on counter-terrorism and proliferation financing (PF) efforts in the APAC region.

In December 2022, AUSTRAC released Australia’s first national proliferation financing risk assessment, aimed at strengthening domestic and international efforts to combat this serious criminal activity. [72] Results of that assessment found that Australia is primarily targeted by state-based or linked procurement networks operating on behalf of North Korea and Iran, among other countries of proliferation concern.

The Hong Kong government also assessed PF risks faced by the city for the very first time in its July 2022 Money Laundering and Terrorist Financing Risk Assessment Report (the ML/TF RA Report). According to the report, Hong Kong is exposed to a medium–low level of PF risk, owing to the robust counter-proliferation system underpinned by a comprehensive sanctions framework imposed by the United Nations Security Council. The Law Society of Hong Kong made further revisions to the Practice Direction P (PDP), including provisions regarding proliferation financing, to better align with the amended AMLO and the FATF Recommendations.

With regard to terrorism financing, individuals have been arrested for their alleged involvements in ‘terrorist plots’[73] and ‘terrorist activities’[74] following the enactment of the National Security Law (NSL) in 2020. In October 2022, the Hong Kong Association of Banks, with input from the HKMA, issued an updated document listing and answering frequently asked questions in relation to AML/CTF in Hong Kong (the Updated FAQs). Questions 69 to 71 of the Updated FAQs provide for suspicious transaction reporting requirements under the NSL.[75] In the ML/TF RA Report, the FSTB noted that the implementation of the NSL largely reduced terrorism threats in Hong Kong, thereby also diminishing threats of terrorist financing.


[1] Mini vandePol is the head of the firm’s Asia-Pacific investigations, compliance and ethics group, Christine Cuthbert is a special counsel, Gerald Lam is a senior associate, and Andrea Kan and Yuki Yung are associates at Baker McKenzie. The authors wish to thank the following colleagues for their contributions to the chapter: Henry Chen (partner), Georgie Farrant (partner), Gareth Austin (senior associate), Eddie Chua (partner), Takeshi Yoshida (partner), Celeste Ang (principal) and Pradeep Nair (local principal).

[2] Attorney-General’s Department, ‘National Anti-Corruption Commission’, (accessed 9 August 2023).

[3] Attorney-General’s Department, ‘What is the NACC?’, (accessed 9 August 2023).

[4] ASX Corporate Governance Council, Corporate Governance Principles and Recommendations, 4th edn., February 2019, Recommendation 3.4.

[5] Australian Securities Exchange, Listing Rule 4.10.3.

[6] New South Wales Crime Commission, Media Release, ‘NSW Crime Commission Outlines Recommendations to Crack Down on Significant Criminal Gaming Activity in Pubs and Clubs’, 26 October 2022, (accessed 9 August 2023).

[7] Australian Transaction Reports and Analysis Centre (AUSTRAC), ‘New pubs and clubs resources and video now available’, 20 April 2023, (accessed 9 August 2023).

[8] The Anti-Money Laundering and Counter Terrorism Financing Act 2006, Section 165.

[9] Australian Securities and Investments Commission (ASIC), Corporate Plan 2021–25.

[10] ASIC, ‘Chair’s remarks at the AICD Australian Governance Summit 2023’, 3 March 2023, (accessed 9 August 2023).

[11] ASIC, ASIC immunity policy, February 2021.

[12] Transparency International, ‘Corruption Perceptions Index: Australia’, (accessed 9 August 2023).

[13] Transparency International, ‘CPI 2022 for Asia Pacific: Basic Freedoms Restricted as Anti-Corruption Efforts Neglected’, 31 January 2023, (accessed 9 August 2023).

[14] For Australia’s first successful foreign bribery prosecution was in 2011, see Attorney-General’s Department, ‘Australia’s enforcement of the foreign bribery offence’, (accessed 9 August 2023).

[15] Parliament of Australia, ‘Crimes Legislation Amendment (Combatting Foreign Bribery) Bill 2023’, (accessed 9 August 2023).

[16] Supreme People’s Procuratorate, ‘关于建立涉案企业和规第三方监督评估计制的指导一件 (试行)’, 3 June 2021, (accessed 9 August 2023).

[17] The Opinions are not publicly available but their release has been reported on the website of the Central Commission for Discipline Inspection (CCDI). See CCDI, ‘中央纪委国家监委会同有关单位联合印发《关于进一步推进受贿行贿一起查的意见》’, 8 September 2021, (accessed 9 August 2023).

[18] 中华人民共和国反电信网络诈骗法, (accessed 9 August 2023).

[19] 理财公司内部控制管理办法, (accessed 9 August 2023).

[20] People’s Bank of China (PBOC), ‘中国人民银行、公安部等11部门联合开展打击治理洗钱违法犯罪三年行动’, 26 January 2022, (accessed 9 August 2023).

[21] Criminal Procedure Law, Article 110.

[22] Criminal Law, Article 67.

[23] 最高人民法院 最高人民检察院关于办理贪污贿赂刑事案件适用法律若干问题的解释,; 三湘风纪网, ‘关于工程建设项目招投标严重失信行为第四批名单的通报’, 25 April 2022, (web pages accessed 9 August 2023).

[24] CCDI, ‘让行贿人一次违法处处受限’, 16 March 2022, (accessed 9 August 2023).

[25] PBOC, China Anti-Money Laundering Report 2020, (accessed 9 August 2023).

[26] PBOC, ‘国家税务总局、公安部、最高人民检察院、海关总署、中国人民银行、国家外汇管理局六部门公布5起骗取留抵退税等案件’, (accessed 9 August 2023).

[27] See, e,g., Independent Commission Against Corruption (Hong Kong), Annual Report 2022 (ICAC Annual Report).

[28] Organized and Serious Crimes Ordinance, Section 25A.

[29] Guidance Note on Cooperation with the SFC, 1 June 2023; Guidance Note on Cooperation with the HKMA in Investigations and Enforcement Proceedings, August 2018.

[30] ICAC Annual Report.

[31] Securities and Futures Commission (SFC), ‘Ramp-and-dump suspect arrested for breaches of court bail conditions’, 18 May 2023, (accessed 9 August 2023).

[32] Hong Kong Monetary Authority, Press Release, ‘The Monetary Authority takes disciplinary action against Cathay United Bank Company, Limited, Hong Kong Branch for contraventions of the Anti-Money Laundering and Counter-Terrorist Financing Ordinance’, 23 September 2022, (accessed 9 August 2023).

[33] The latest strategic priorities of the Securities and Exchange Surveillance Commission (SESC) and the Financial Services Agency (FSA) can be found in the ‘Strategy & Policy of the SESC 2020-2022’ and ‘The JFSA Strategic Priorities July 2021-June 2022: Overcoming COVID-19 and Building the Financial System for Greater Vibrancy’ (the JFSA Strategic Priorities), respectively.

[34] Financial Action Task Force (FATF), ‘International Standards on Combating Money Laundering and the Financing of Terrorism and Proliferation: The FATF Recommendations’, updated February 2023.

[35] FATF, ‘Anti-money laundering and counter-terrorist financing measures: Japan – Mutual Evaluation Report’, August 2021.

[36] FATF, ‘Anti-money laundering and counter-terrorist financing measures: Japan – Follow-up Report & Technical Compliance Re-Rating’, September 2022.

[37] Act on Prevention of Transfer of Criminal Proceeds, Article 8.

[38] Act on Prevention of Transfer of Criminal Proceeds, Article 18.

[39] Penal Code, Article 42.

[40] Code of Criminal Procedure (Act No. 131 of 1948), Articles 350-2 to 350-15, Chapter IV.

[41] Shinpei Suzuki and Yuina Takada, ‘Only 3 Cases of Plea Bargaining in 5 Years Since Its Introduction in Japan’, The Japan News, 7 June 2023, (accessed 9 August 2023).

[42] Organisation for Economic Co-operation and Development, ‘Implementing the OECD Anti Bribery Convention – Phase 4 Report: Japan’.

[43] 外国公務員贈賄防止指針, (accessed 9 August 2023).

[44] Corrupt Practices Investigations Bureau (CPIB), ‘Public Vigilance Critical In Fighting Corruption ‘, 28 April 2023, (accessed 9 August 2023).

[45] Monetary Authority of Singapore (MAS), ‘Enforcement Report: July 2020 to December 2021’ (the MAS Enforcement Report) (reports are published every 18 months).

[46] Section 45(1) read with Section 45(3) of the Corruption, Drug Trafficking and Other Serious Crimes (Confiscation of Benefits) Act 1982.

[47] Criminal Procedure Code 2010 (CPC), Part 7A. ‘Corporate offenders’ here refers to a body corporate, a limited liability partnership, a partnership or an unincorporated association, but not an individual: see CPC, Section 149D(1).

[48] Section 149A read with Sixth Schedule of the CPC.

[49] CPC, Section 149E(3)(g).

[50] ibid., Section 149F.

[51] ibid., Section 149D(4).

[52] CPIB, ‘Corruption Situation in Singapore Firmly Under Control’, 5 May 2022, (accessed 9 August 2023).

[53] CPIB, ‘International Engagement’, (accessed 9 August 2023).

[54] ‘Singapore readies roll out of anti-money-laundering platform to prevent a 1MDB repeat’, South China Morning Post, 10 May 2023,; MAS, ‘COSMIC’, (web pages accessed 9 August 2023).

[55] MAS Enforcement Report.

[56] Companies Ordinance (Cap. 622), Schedule 5.

[57] Main Board Listing Rules, Appendix 27: Environmental, Social, Governance Reporting Guide.

[58] In December 2021, the Stock Exchange of Hong Kong Limited published Update No. 135, with most amendments taking effect as of 1 January 2022 (Amendments to the rules governing the listing of securities (the ‘Listing Rules’), Update No. 135); Main Board Listing Rules, Appendix 14: Corporate Governance Code.

[59] Main Market Listing Requirements, Paragraph 1.2A , Appendix 9C and Practice Note 9.

[60] For instance, the Act on Promotion of Global Warming Countermeasures (Law No. 117 of 1998) requires certain business operators to disclose information about greenhouse gas emissions, and the Act on Rational Use of Energy (Act No. 49 of 22 June 1979) requires certain business operators, freight carriers and consignors to submit periodical reports on energy consumption and energy efficiency.

[61] Japan Exchange Group, ‘JPX Publishes “Survey of TCFD Disclosure in Japan”’, 30 November 2021, (accessed 9 August 2023).

[62] JFSA Strategic Priorities.

[63] Accenture, ‘Providing Advisory Services is Increasingly Critical for Wealth Management Firms Looking to Seize Growth Opportunities in Asia, Accenture Report Finds’, 6 June 2022, (accessed 9 August 2023).

[64] Financial Services and the Treasury Bureau (FSTB), ‘Public Consultation on Legislative Proposals to Enhance Anti-Money Laundering and Counter-Terrorist Financing Regulation in Hong Kong: Consultation Conclusions’, May 2021.

[65] Anti-Money Laundering and Counter-Terrorist Financing Ordinance (Cap. 615).

[66] SFC, ‘Joint circular on intermediaries’ virtual asset-related activities’, 28 January 2022, at; Hong Kong Monetary Authority, Arthur Yuen to the chief executives of all authorised institutions, ‘Regulatory approaches to Authorized Institutions’ interface with Virtual Assets and Virtual Asset Service Providers’, 28 January 2022,; Insurance Authority, circular, Tony Chan to the chief executives of all authorised insurers, ‘Regulatory Approaches of the Insurance Authority in Relation to Virtual Assets and Virtual Asset Service Providers’, 28 January 2022, (web pages accessed 9 August 2023).

[67] SFC, ‘SFC reminds investors of risks associated with non-fungible tokens’, 6 June 2022, at (accessed 9 August 2023).

[68] MAS, ‘Explanatory Brief for Financial Services and Markets Bill 2022’, 14 February 2022, (accessed 9 August 2023).

[69] Adam Aziz, ‘Deleum Primera issued RM1m compound by MACC over illegal scheme involving directors’, The Edge Malaysia, 19 August 2021, (accessed 9 August 2023)

[70] Crimes Legislation Amendment (Combatting Foreign Bribery) Bill 2023, Section 70.5A(5).

[71] 公益通報者保護法, (accessed 9 August 2023).

[72] AUSTRAC, Proliferation Financing in Australia - National Risk Assessment.

[73] Danny Mok, ‘Hong Kong national security police arrest man suspected of being involved in terrorist plots to bomb infrastructure, courts and set alight Covid test centres’, South China Morning Post, 25 October 2022, (accessed 9 August 2023).

[74] Ng Kang-chung and Clifford Lo, ‘Hong Kong activist arrested again for allegedly violating bail terms over acts, remarks that could endanger national security’, South China Morning Post, 12 January 2022, (accessed 9 August 2023).

[75] The Hong Kong Association of Banks, ‘Frequently Asked Questions in relation to Anti-Money Laundering and Counter-Financing of Terrorism’, last updated 5 October 202, (accessed 9 August 2023).

Unlock unlimited access to all Global Investigations Review content