Home / Expertise / Compliance
highway intersection with modern city skyline at dusk in shanghai



CMS Compliance & Forensic Services: Experienced in compliance management, prevention and crisis management

Compliance management is an indispensable part of responsible corporate management. Regulatory requirements are on the increase, anti-corruption laws and codes of conduct are becoming ever more complex. The financial consequences of violations can be extremely serious, both for you (board of directors, management or employees) and for your company. Tailored to the company, a compliance management system can not only help to prevent violations of the law, but also minimise the liability risk of the company (and its management) in the event of a crisis.

Our legal experts will develop a bespoke compliance management system for your company. Our service covers the following areas:

  • Practical compliance-consulting for the development and successful optimisation of compliance management systems;
  • Supporting management to establish a compliance culture;
  • Risk management (compliance due diligence, business partner screenings, compliance clauses in contracts);
  • Implementation and ongoing support of whistle-blower systems (whistle-blower hotline, ombudsman); and
  • Advice on the creation of a compliance management system and the drafting of corresponding compliance guidelines; provision of training (e.g. on anti-corruption, antitrust law, money laundering prevention, IT security and data protection, capital market law, product safety, public procurement law and competition law).

Compliance-relevant areas of law

The development of an effective compliance management system covers a wide range of legal areas in your company. Our compliance team, consisting of legal experts from various disciplines, understands the relevant issues in the following compliance-relevant legal areas:

  • anti-corruption laws,
  • labour law,
  • foreign trade and export law,
  • data protection,
  • company law,
  • intellectual property rights,
  • money laundering and terrorist financing,
  • capital markets law,
  • antitrust law,
  • medical and pharmaceutical law,
  • product liability law,
  • tax law,
  • criminal law,
  • environmental law, and
  • public procurement law and competition law.

Our Forensic Services: Safely weather the crisis with CMS

Operational risks, bribery and corruption, labour law conflicts, antitrust violations or breaches of data protection regulations—the triggers that lead to a compliance crisis are complex and require highly qualified legal advice to successfully guide your company through it. CMS Forensic Services take a holistic approach to crisis management. We offer you a team of experienced attorneys who are available straight away for large internal investigations. We also bring together specialists from various disciplines for companies in crisis: criminal defence, e-discovery providers, crisis PR consultants, auditors or business detectives, who we can involve in internal investigations to uncover and clarify violations.

Decisive for you: Our CMS Forensic Services offer you a single contact partner who has an eye on all relevant compliance aspects and who will navigate you through the crisis efficiently.

Our Forensic Services include:

  • Informing management and supervisory bodies about duties to act in the event of a compliance crisis, and developing a crisis management concept;
  • Design, management and execution of internal investigations (forensic investigations);
  • Processing facts, searching documents and e-mails with the help of forensic tools, conducting employee interviews;
  • If necessary, asset repatriation and of payment-flow tracking;
  • Development of solution strategies and immediate measures;
  • Immediate provision of a team of lawyers to accompany official on-site investigations in the company;
  • If necessary, involvement of defence lawyers and control of all aspects relevant to criminal law;
  • Management of auditors, e-discovery service providers, economic detective agencies and crisis PR consultants, who may be called in if necessary;
  • Advice on cooperation with the investigating authorities;
  • Coordination and negotiation of the investigation with the works council;
  • Accompaniment before and during an official search (“dawn raid”);
  • Contingency plans for suitable dawn raid behaviour;
  • Dawn raid training;
  • Real-time help with house searches with the CMS Dawn Raid Assistant App;
  • On-site support during a dawn raid: through our international CMS Dawn Raid Network, suitable lawyers worldwide are available to you straight away, either from one of our 71 CMS offices or from the offices of our partner law firms.
  • Representation in subsequent official or court proceedings; and
  • Assertion of claims for damages.

International Compliance Management Consulting

Benefit from our extensive experience with international anti-corruption laws, in particular the USA (FCPA) and Great Britain (UK Bribery Act). The applicability of foreign anti-corruption laws is particularly important for internationally active companies. We advise you on investigations into compliance violations of international regulations, in cooperation with other CMS offices.

Our Compliance and Forensic Services practice covers not only Austria, but also the 10 countries in which we have offices: Bosnia and Herzegovina, Bulgaria, Croatia, Macedonia, Montenegro, Serbia, Slovakia, Slovenia, Turkey and Ukraine.

Austria and CEE references

The following are some anonymous compliance mandates that give you an overview of our experience:

Get to know our team of compliance experts here!

Read more Read less


Show only
17 Feb 20
Opin­ion on stand­ard con­trac­tu­al clauses: more a com­pli­ance head­ache...
A re­cent non-bind­ing Opin­ion of the Ad­voc­ate Gen­er­al has sig­nalled that the stand­ard con­trac­tu­al clauses can con­tin­ue to be used as a safe­guard for trans­fer­ring per­son­al data out­side the EEA. However,...
30 Jan 20
New European rules for on­line plat­forms
A new Reg­u­la­tion, known as the Plat­form to Busi­ness Reg­u­la­tion or the On­line In­ter­me­di­ation Ser­vices Reg­u­la­tion, will come in­to force on 12 Ju­ly 2020. It ap­plies to on­line in­ter­me­di­ation ser­vice pro­viders,...
17 Jan 20
New guid­ance on cy­ber­se­cur­ity for med­ic­al devices pub­lished
In Decem­ber 2019, the Med­ic­al Device Co­ordin­a­tion Group (“MD­CG”) is­sued a new guid­ance to help med­ic­al device man­u­fac­tur­ers meet the cy­ber­se­cur­ity re­quire­ments in the Med­ic­al Devices Reg­u­la­tion (“MDR”)...
29 Nov 19
Gibral­tar’s status with­in the EU
AG opin­ion ad­voc­ates strict in­ter­pret­a­tion of EU dir­ect­ive, but con­firms dis­crim­in­at­ory nature of Bul­gari­an le­gis­la­tion con­trary to free­dom of es­tab­lish­ment The opin­ion of Ad­voc­ate Gen­er­al Hogan (the...
15 Nov 19
Brexit and data pro­tec­tion: what to do next (when you don’t know what’s...
Whilst the threat of a no-deal Brexit has been aver­ted for now, the fu­ture is by no means cer­tain. We have high­lighted some of the key is­sues for UK-based or­gan­isa­tions, and the EEA or­gan­isa­tions that...
05 Nov 19
Whis­tleblow­ing Dir­ect­ive ad­op­ted by the EU Coun­cil
On 7 Oc­to­ber 2019, the EU Coun­cil ap­proved the word­ing of the "Dir­ect­ive of the European Par­lia­ment and of the Coun­cil on the pro­tec­tion of per­sons who re­port breaches of Uni­on law", also known as the...
24 Oct 19
Busi­ness now feel­ing the ef­fects of GDPR in M&A trans­ac­tions
Auto­mot­ive, health­care and fin­an­cial ser­vices are prime ex­amples of sec­tors that are un­der­go­ing rap­id di­git­al change. This trans­form­a­tion in the di­git­al en­vir­on­ment is caus­ing busi­ness mod­els to be rad­ic­ally...
12 Sep 19
UK food and cos­met­ic pro­du­cers to the EU to face new reg­u­la­tions after...
As Brexit draws near­er and with the like­li­hood of an un­reg­u­lated exit still not off the table, EU-27 com­pan­ies im­port­ing or selling food or cos­met­ics from Great Bri­tain face li­ab­il­ity risks if they con­tin­ue...
17 Oct 18
Chin­a's courts pass con­tro­ver­sial rul­ings on open-source li­cen­cing
In a re­cent de­cision that could have leg­al im­plic­a­tions on the use of open-source soft­ware in China, the Beijing In­tel­lec­tu­al Prop­erty Court (BIPC) used a con­tro­ver­sial test to de­term­ine wheth­er soft­ware...
30 Jul 18
How to ad­dress mal­prac­tice in sports: The is­sue of com­pli­ance
Sports en­able in­di­vidu­als to ex­er­cise their phys­ic­al tal­ents. It gal­van­ises com­munit­ies, en­er­gises in­di­vidu­als, forms an out­let for com­munity ex­pres­sion, shapes na­tion­al and loc­al iden­tit­ies, pro­duces...
26 Mar 18
McHardy with­draws in­junc­tion re­quest – Is this a vic­tory for open...
After the with­draw­al of re­quest for in­ter­im in­junc­tion in Co­logne High­er Re­gion­al Cour­ton March 7, can users of open source soft­ware breathe a sigh of re­lief or does this with­draw­al give rise to false...
19 Mar 18
Open Source Com­pli­ance
Open source com­pli­ance fail­ures can pose a ser­i­ous threat to af­fected com­pan­ies. Here is an over­view. After the first open source li­cense was en­forced by a Ger­man court in 2004, there is no longer any...