Getting Started with Corporate Open Source Governance: A Case Study Evaluation of Industry Best Practices

Ope​n source software usage in companies is on the rise, often resulting in lower development costs, higher quality, and quick availability of code. However, using open source software in products comes with legal, business, and technical risks. Experienced companies prevent and address these risks through corporate open source governance. In our previous work, we studied how top-tier companies got started with corporate open source governance. We proposed a set of industry best practices on the topic, using the practical format of interconnected context-problem-solution patterns. In this study, we put the proposed state-of-the-art practices to the test by evaluating their real-life application in a case study at a Germany-based multibillion-dollar corporation with products in four distinct industries and more than 17000 employees worldwide. In the course of two and a half years, we conducted 35 semi-structured employee interviews and workshops in five divisions of the company to assess the initial situation of open source governance, the process of getting started with governance following our recommendations, and the outcomes. In this paper, we report the results of this longitudinal case study by presenting the artifacts created while getting started with open source governance, as well as the transferability evaluation of the proposed best practices, both individually and collectively

Business Critical: Understanding a Company’s Current and Desired Stages of Corporate Responsibility Maturity

It’s been a while since the Corporate Responsibility profession took stock of its collective wisdom on where we have been, and where we are going on running businesses responsibly. Meanwhile hardly a week goes by without a helpful suggestion from the outside world on how an organisation should improve its economic value, social usefulness and environmental efficiency; and it is very easy to spot businesses that get their social, environmental and economic decisions out of balance: these organisations hit the headlines seemingly within nanoseconds. On the upside, businesses are increasingly taking an approach that builds an Environmental, Social and Governance (ESG) premium into the core economic valuation. This is achieved by those organisations which bring in a diverse set of views to inform risk and reputation management activities, and to build a research and development pipeline for the future. This is managing both the negative and the positive social, environmental and economic impacts

Anti-Corruption as Strategic CSR: A Call to Action for Corporations

Corruption is not a peripheral social concern that corporations can ignore or passively address -- it is a bottom-line issue that directly affects companies' ability to compete. Widespread in emerging markets, corruption is becoming an increasingly important issue for business to address. Furthermore, it inflicts enduring harm on disadvantaged populations by diverting resources for critical services like education, clean water and health care into the pockets of dishonest public officials. This white paper presents a critical assessment of corporate anti-corruption efforts in the developing world and offers a guide for corporations to move beyond traditional ethics and compliance activities to strategic anti-corruption efforts. Sponsored by The Merck Company Foundation and developed in collaboration with the Ethics Resource Center, the paper reveals opportunities for corporations to engage in more comprehensive and effective anti-corruption reform as a business imperative

The organization of anticorruption: Getting incentives right!

Governments and private firms try to contain corruption among their staff mostly in a top-down, rules-based approach. They limit discretion, increase monitoring or impose harsher penalties. Principles-based, bottom-up approaches to anticorruption, instead, emphasize the importance of value systems and employee's intrinsic motivation. This embraces the invigorating of social control systems, encouraging whistle-blowing, coding of good practice and alerting to red flags. This paper investigates how some top-down measures run counter to bottom-up contributions. Examples range from penalties imposed with zero-tolerance, debarment or the nullity of contracts. While top-down elements are indispensable for containing corruption they must be designed well in order to avoid discouraging the bottom-up endeavors. --Corruption,whistle-blowing,contract penalties,debarment,nullity

Performative Work: Bridging Performativity and Institutional Theory in the Responsible Investment Field

Callon’s performativity thesis has illuminated how economic theories and calculative devices shape markets, but has been challenged for its neglect of the organizational, institutional and political context. Our seven-year qualitative study of a large financial data company found that the company’s initial attempt to change the responsible investment field through a performative approach failed because of the constraints posed by field practices and organizational norms on the design of the calculative device. However, the company was subsequently able to put in place another form of performativity by attending to the normative and regulative associations of the device. We theorize this route to performativity by proposing the concept of performative work, which designates the necessary institutional work to enable translation and the subsequent adoption of the device. We conclude by considering the implications of performative work for the performativity and the institutional work literatures

Implementing section 404 of the sarbanes oxley act: Recommendations for information systems organizations

Section 404 of the Sarbanes Oxley (SOX) Act addresses the effectiveness of internal controls, which in most organizations are either fully or partially automated due to the pervasiveness and ubiquity of information technologies. Significant or material control deficiencies have to be reported publicly. The adverse impact on organizations declaring deficiencies can be severe, for example, damage to reputation and/or market value. While there are many practitioner-led manuals and methods for dealing with 404, there has been little published in the academic research literature investigating the role of Information Systems organizations in implementing Section 404. The paper addresses this gap in knowledge. We used institutional theory as the lens through which to examine the experiences of Section 404 implementation in three global organizations. We used the case study method and an abductive strategy to gather and analyze data respectively. Our findings are summarized in six recommendations. We found that institutional pressures play a critical role in the implementation of Section 404. In particular, organizations face coercive pressure to achieve Section 404 compliance, without which punitive sanctions can be imposed by regulators. Organizations tend to imitate one another in the methods they use so that each is perceived to be in line with their competitive environment. Organizations face normative pressures to act in ways that are socially acceptable, which is to achieve compliance. Failure to do so would be a signal to the market that the organization does not take controls seriously. We expand these findings in terms of power and influence tactics that IS organizations can use when implementing Section 404. Our findings provide directions for practice and lines of enquiry for further research

Corporate governance practices in Fiji: An empirical investigation

This study investigates the nature and extent of compliance to the principle-based corporate governance initiatives by the listed companies in the South Pacific Stock Exchange (SPSE) in Fiji. Three important questions are addressed: (i) whether listed companies in Fiji have complied with the principle-based governance practices: (ii) did compliance with principle based recommendations lead to an improvement in the listed company‟s financial performance? and (iii) how the institutional factors have contributed towards corporate governance practices in Fiji? Panel data for the SPSE companies over the period 2008-2010 are analysed using ordinary least squares (OLS) regression. Tobin‟s Q, Return on Assets (ROA), Return on Equity (ROE) and Earnings Before Interest, Tax, Depreciation and Amortisation to Total Revenue (EBITDA2REV) metrics are used as dependent variables. Findings indicate that listed companies have adopted the Capital Market Development Authority‟s (CMDA) recommendations, establishing subcommittees for audit and remuneration, and having nonexecutive/ independent directors on the board. The result supports the view that the CMDA recommendations of board sub-committees (Audit and Remuneration) have had positive influence on company performance measured by Tobin‟s Q. The findings of this study give support to the principle-based corporate governance practices adopted in Fiji. The results of this study provide useful insights to both regulators and policy analysts (in Fiji and internationally) seeking to enhance both governance and firm performance in their own jurisdiction

Corporate Governance in the Financial Sector of Pakistan

La Porta et al. (1998) assign Pakistan, a common-law country, the maximum score of 5 for their anti-director rights index. Pakistan should therefore be a country with good investor protection attracting large amounts of investments. However, the reality could not be more different. Pakistan has been lagging behind other, comparable Asian economies in terms of incoming foreign direct investment as well as GDP-per-capita growth. This paper focuses on the Pakistani banking sector. The paper analyses the banks ownership and control structure. It finds that Pakistan has its own idiosyncrasies, which are difficult to associate with La Porta et al.s characterisation of corporate governance and investor protection in common-law countries. The paper also reviews the recent reforms of corporate governance.Corporate governance, corporate control, Banks, Pakistan, Emerging Markets, investor protection

AI management an exploratory survey of the influence of GDPR and FAT principles

As organisations increasingly adopt AI technologies, a number of ethical issues arise. Much research focuses on algorithmic bias, but there are other important concerns arising from the new uses of data and the introduction of technologies which may impact individuals. This paper examines the interplay between AI, Data Protection and FAT (Fairness, Accountability and Transparency) principles. We review the potential impact of the GDPR and consider the importance of the management of AI adoption. A survey of data protection experts is presented, the initial analysis of which provides some early insights into the praxis of AI in operational contexts. The findings indicate that organisations are not fully compliant with the GDPR, and that there is limited understanding of the relevance of FAT principles as AI is introduced. Those organisations which demonstrate greater GDPR compliance are likely to take a more cautious, risk-based approach to the introduction of AI