Misconduct does not end with a fine. Trust, once damaged, becomes an annual invoice in the form of the cost of capital. That is the true price of a breach of norms. This piece takes the view that sees only a single penalty and stretches it out to the capitalist's time horizon, then reads it again.

01The Illusion That "It Was Settled With a Fine"

In the reporting of misconduct, the figure that comes first is the surcharge or the damages. So we are tempted to measure the harm by "how much was paid to make it go away." But the capitalist is not looking there. A single payment vanishes into one line of the financial statements, whereas lost trust keeps riding on the price for years afterward.

To the capitalist, a company is a bundle of future cash flows, and what determines its value is the rate at which that bundle is discounted. That discount rate is the cost of capital. If misconduct pushes up the cost of capital, the same future plan quietly loses corporate value. A fine is a matter for the income statement; the cost of capital is a matter for corporate value itself. Confuse the two, and you will misjudge the price of a breach of norms by an order of magnitude.

02The Daiwa Bank Shareholder Derivative Suit — Control Is Not a "Cost" but a Duty

What showed that responsibility for a breach of norms can turn not outward, away from the company, but inward, toward its own directors, was the Daiwa Bank shareholder derivative suit (Osaka District Court judgment of September 20, 2000). The court held that directors have a duty to build a risk-management system (an internal control system), and that this duty falls within the content of their duty of care. Damage suffered by the company as a result of a failure to put such a system in place may be charged to those directors as their liability.

Here is the crux. Whether you see internal control as "a cost you can cut by paying" or as "a duty for which you are held liable if you do not pay" changes management's judgment entirely. The choice to trim controls and free up this period's expenses is also the choice to pile up another liability: the non-performance of a duty. The materials-review system is part of this internal control. Management that sees review only as "a shackle on sales" is overlooking the duty side of it.

03Cut Off the Path Before the Accident — Article 362 of the Companies Act and COSO ERM

So when must the duty be fulfilled? The design of the system is that cleaning up after an accident has happened is too late. Article 362, paragraph 4, item 6 of the Companies Act makes the decision on building a system to ensure the propriety of operations an exclusive matter for the board of directors, and paragraph 5 obliges large companies to make that decision. The concrete content of the system is enumerated in Article 100 of the Ordinance for Enforcement of the Companies Act. The decision is made before anything happens.

The framework for how to actually assemble that system is COSO ERM. Identify the risks, set the tolerable range, and run control activities and monitoring. The idea of blocking, at the design stage, the path by which a deviation occurs lives here. That merely "having built" a system is not enough — that there is also a separate duty to monitor whether it is in fact functioning — is a reach we take up next time (Vol. 10).

One-time cost

Surcharges and damages

However large, a penalty or damages award is in principle a one-off. It is processed in a single line of the accounts and fades from view with time.

Duty

Building internal controls

As the Daiwa Bank suit showed, building the system is part of directors' duty of care. Cut it and you free up expense, but the non-performance of a duty remains as a liability.

Recurring cost

A higher cost of capital

Damaged trust turns into a risk premium and keeps riding on the cost of capital every year. The fine is once; this is an invoice that keeps being reissued.

04The Annual Invoice — How the Risk Premium Rises

Why does losing trust raise the cost of capital? Because investors demand a higher return from a riskier counterpart — the risk premium. A company that has once deviated is seen as one that might deviate again. That mark-up for uncertainty is reflected in both the cost of equity and the cost of debt.

As a result, even for the same business plan the discount rate rises and the present value falls. A fine is a single outlay, but a higher cost of capital keeps being reissued as an annual burden. And in an industry like pharmaceuticals, where trust is the premise of the business, a single deviation easily spreads to trust in the entire product line, and the mark-up comes out large. The true price of a breach of norms is not the penalty figure that gets reported, but the total cost of capital that accumulates afterward.

05To the Materials-Review Floor — The Front Line That Blocks the Path

This path connects directly to the practice of materials review. Inappropriate provision of information is, as the Ministry of Health, Labour and Welfare's report on the monitoring of sales-information-provision activities shows, a deviation that actually occurs (company names are published anonymously). A single deviation erodes trust and, by way of the risk-premium path traced above, rides onto the cost of capital. Review carries the role of blocking that path before anything happens.

So what the reviewer should say to management is not "we are sending it back because the rules say so." It is the language of the capitalist's yardstick: "this is the preservation of trust, an intangible asset, and an investment that prevents a rise in the cost of capital." Whether a path exists for escalating a deviation upward is what separates a working function from a failing one — and that is itself a matter of designing friction and collaboration on the management side. When you can show value in the other side's yardstick, review is understood not as a cost center but as an investment that holds down the cost of capital. That is what it means to read a management decision at high resolution and return your own judgment in the other side's words.

Key Points — Four to Take Away
  1. The Daiwa Bank shareholder derivative suit established directors' duty to build an internal control system. Control is not a cost to be cut but a duty for which neglect brings liability.
  2. Article 362, paragraph 4, item 6 and paragraph 5 of the Companies Act oblige large companies to decide on building internal controls, and COSO ERM supplies the framework for implementation. The decision comes before anything happens.
  3. Damaged trust pushes up the risk premium and rides on both the cost of equity and the cost of debt. When the discount rate rises, corporate value shrinks.
  4. The fine is once; the cost of capital is every year. Review blocks the path of deviation in advance and stands at the front line that prevents a rise in the cost of capital.
Sources & References
  1. Daiwa Bank Shareholder Derivative Suit (Osaka District Court judgment of September 20, 2000). Held that directors' duty to build a risk-management system (internal control system) falls within the content of the duty of care, and that liability may arise where the system is not put in place.
  2. Companies Act, Article 362, paragraph 4, item 6 and paragraph 5 (Establishment of an Internal Control System). Makes the decision on building a system to ensure the propriety of operations an exclusive matter for the board of directors and obliges large companies to make it. The concrete content is enumerated in Article 100 of the Ordinance for Enforcement of the Companies Act.
  3. COSO ERM (Enterprise Risk Management). Integrates risk identification, assessment, control activities, and monitoring, providing an implementation framework for cutting off the path of deviation before an accident occurs.
  4. Ministry of Health, Labour and Welfare. Report on the Monitoring of Sales-Information-Provision Activities. Presents, by type and with company names anonymized, cases of deviation in sales-information-provision activities for prescription drugs.