Getty Images Holdings (GETY) Risk Factors

Media, internet and technology companies are frequently the target of litigation based on allegations of infringement, misappropriation or other violations of intellectual property rights or rights related to their use of technology. Some internet, technology and media companies, including some of our competitors, own large numbers of patents, copyrights, trademarks, trade secrets and other intellectual property rights, which they may use as a basis to assert claims against us. We have developed proprietary technology and a robust infrastructure to power our products and services, and this technology is critical to our business. Third parties may in the future assert that the technology we have developed or the content that we display and distribute infringes, misappropriates or otherwise violates their intellectual property rights, and as we face increasing competition, the possibility of intellectual property rights claims against us grows. Such litigation may involve patent holding companies or other adverse patent owners who have no relevant product revenue, and therefore our own issued and pending patents may provide little or no deterrence to these patent owners in bringing intellectual property rights claims against us. Existing laws and regulations are evolving and subject to different interpretations, and various federal and state legislative or regulatory bodies may change current laws or regulations or enact new ones. We cannot guarantee that our technology is not infringing or violating any third-party intellectual property rights or rights related to the use of technology, or that it will not infringe or violate such rights in the future. We license a significant majority of the content in our library from third parties, and we cannot guarantee that each supplier holds the rights or releases he or she claims or that such rights and releases are adequate. From time to time we receive notices from third parties claiming that certain content that we license infringes their intellectual property rights. In such circumstances, we may not be able to obtain licenses to use those rights on commercially reasonable terms or at all, we may have to stop selling such content, and we may have to pay damages or satisfy indemnification commitments to our customers, or we may incur significant expense to defend against claims of infringement. While we offer our customers indemnification for only certain specified amounts of legal costs and direct damages arising from the use of images, video or music licensed through us, our contractual liability limitations with respect to such indemnification obligations may not be enforceable in all jurisdictions. We maintain insurance policies to cover potential intellectual property disputes; however, such insurance does not cover all exposures, including the potential damages associated with any willful infringements. We cannot predict whether assertions of third-party intellectual property rights or any infringement or misappropriation or other claims arising from such assertions will substantially harm our business or results of operations. If we are forced to defend against any infringement or misappropriation or other claims, whether they are with or without merit, are settled out of court, or are determined in our favor, we may be required to expend significant time and financial resources on the defense of such claims. Furthermore, an adverse outcome of a dispute may require us to: pay damages, potentially including statutory damages and attorneys' fees if we are found to have willfully infringed a party's intellectual property rights; expend additional development resources to redesign our technology; enter into potentially unfavorable royalty or license agreements in order to obtain the right to use necessary technologies, content, or materials; and/or indemnify our partners and/or other third parties. Royalty or licensing agreements, if required or desirable, may be unavailable on terms acceptable to us, or at all, and may require significant royalty payments and other expenditures. In addition, any lawsuits regarding intellectual property rights, regardless of their success or merit, could be expensive to resolve, cause harm to our reputation, and would divert the time and attention of our management and technical personnel. Although we have insurance to cover indemnification claims, we have incurred, and will continue to incur, legal fees and other expenses, as well as a diversion of management time and resources related to such claims and related settlements, which may increase over time, and adversely affect our financial condition and results of operations.

Much of the software and technologies used to provide our services incorporate, or have been developed with, "open source" software. Such "open source" software may be subject to third-party licenses that impose restrictions on our software and services depending on how such software is used, including whether it is modified, distributed or made available. Under certain open source licenses, if certain conditions were met, we could be required to publicly release or license aspects of the source code of our software or to make our software available under open source licenses free of charge. Few courts have interpreted open source licenses, and the way these licenses may be interpreted and enforced is therefore subject to some uncertainty. To avoid the public release of the affected portions of our source code, we could be required to expend substantial time and resources to re-engineer some or all of our software, which could reduce or eliminate the value of our services and technologies and materially and adversely affect our ability to sustain and grow our business. If an author or other third-party that distributes open source software were to allege that we had not complied with the conditions of one or more of these licenses, we could be required to incur significant legal expenses defending against such allegations and could be subject to significant damages, enjoined from the sale of our services that contained the open source software and required to comply with the foregoing conditions, which could disrupt the distribution and sale of some of our services. In addition, use of open source software can lead to greater risks than use of third-party commercial software because open source licensors generally do not provide warranties or controls on the origin of the software. The use of open source software can also carry security risks arising from unknown vulnerabilities that can be exploited by malware in unanticipated ways, which can lead to disruption and/or harm to operations and protected data. Additionally, because any software source code we contribute to open source projects is publicly available, while we may benefit from the contributions of others, our ability to protect our intellectual property rights in such software source code may be limited or lost entirely, and we will be unable to prevent our competitors or others from using such contributed software source code. Similarly, we may be subject to third-party intellectual property claims as a user of or contributor to such open source software. Any of these risks could be difficult to eliminate or manage and, if not addressed, could adversely affect our business, financial performance, and growth.

Existing or future laws and other regulations that may materially affect our business include, but are not limited to, those that govern or restrict: - privacy and biometric issues and data collection, processing, retention and transmission;- data and cybersecurity;- subscriptions practices, including automatic contract or subscription renewal, billing and cancellation;- credit card fraud and processing;- consumer protection;- advertising, marketing and sales of our content and services;- pricing and taxation of goods and services offered over the internet;- website content, or the manner in which products and services may be offered, paid for and/or marketed over the internet;- sources of liability for companies involved in internet services or e-commerce;- piracy and intellectual property rights;- the development and use of AI generated content;- internet neutrality and internet access;- controls on overseas suppliers and other similar anti-terrorism controls, anti-bribery and anti-corruption conduct and policies; and - outsourcing, contracting and employment. For example, we are subject to numerous laws and regulations at the international and United States national and state level, including the following: - The United States Foreign Corrupt Practices Act and the U.K. Anti-Bribery Act (and similar global legislation), which prohibits corporations and individuals from engaging in specified activities to obtain or retain business or to influence a person working in an official capacity. Under these acts, it is generally illegal to pay, offer to pay, or authorize the payment of anything of value to any foreign government official, government staff member, political party, or political candidate in an attempt to obtain or retain business, or to otherwise influence a person working in an official capacity. - The U.K. Modern Slavery Act, which prohibits corporations and individuals from engaging in the trafficking of or facilitation of trafficking of humans. Under this Act, it is illegal to engage in or do business with any individual or entity that engages in such trafficking and obligates companies and individuals to put in place appropriate controls to mitigate against such risks. - OFAC regulations, under which all U.S. individuals and businesses are prohibited from engaging in transactions with countries subject to comprehensive trade embargoes (such as Cuba and Iran) unless a specific exemption from the regulations exists (such as those for information, all materials and people-to-people exchanges) or a license is obtained from OFAC. Transactions with persons, groups or entities designated as terrorists or as their supporters or associates are also prohibited. A list of Specially Designated Nationals consisting of "drug kingpins," terrorists and others considered a danger to the United States, is maintained by the Treasury Department's Office of Foreign Assets Control. Known as the "OFAC List," it contains over 5,000 names and is updated often. No U.S. person, individual or business in the United States, or, in some instances, the foreign subsidiaries of U.S. companies, may conduct any kind of business with anyone on the OFAC List, and companies are expected to keep track of all changes to this list. Penalties for violations of these rules can be severe, including having the violator's assets frozen or forfeited and up to $250,000 or twice the transaction value per violation in fines. - The CCPA regulates the collection and processing of personal data of California residents, and grants residents certain rights in connection with such collection and processing. - The CPA regulates the collection and processing of the personal data of Colorado residents, and grants residents certain rights in connection with such collection and processing. - The CTDPA regulates the collection and processing of personal data of Connecticut residents, and grants residents certain rights in connection with such collection and processing. - The UCPA regulates the collection and processing of personal data of Utah residents, and grants residents certain rights in connection with such collection and processing. - The VACDPA regulates the collection and processing of personal data of Virginia residents, and grants residents certain rights in connection with such collection and processing. - The BIPA regulates the collection, use, safeguarding, and storage of "biometric identifiers" by private entities. While the statute specifically excludes photographs from its scope to date there has been no dispositive judicial interpretations of that language. - The H.B. 1493, which oversees the collection, use and storage of "biometric identifiers," which include fingerprints, voiceprints, eye retinas, irises and other unique biological identifiers or characteristics used to identify a specific individual, while specifically excluding photographs from its scope. - The CUBI regulates the capture, receipt, possession, sharing and retention of "biometric identifiers," which include retina or iris scans, fingerprints, voiceprints, or records of hand or face geometry. - Several foreign jurisdictions and U.S. states have adopted, and other jurisdictions are expected to enact, statutes that regulate the collection, use, transmission and storage of personal information and require reporting certain breaches of the security of personal information. - Several jurisdictions, including the United Kingdom and the United States, are in the process of adopting or reforming or expected to adopt or reform legislation that impacts the content we distribute, including the E.U. Copyright Directive, the Copyright Act, the Digital Millennium Copyright Act, and various statutes and regulations impacting rights of publicity for those depicted in imagery. - Several foreign jurisdictions and U.S. states have adopted, and other jurisdictions are expected to enact, statutes that purport to void or substantially limit automatic renewal provisions of certain free or discounted trial incentives. - President Biden issued an Executive Order on the Safe, Secure, and Trustworthy Development and Use of Artificial Intelligence, and several U.S. states have adopted or proposed regulations governing the use of AI. - Several foreign jurisdictions have adopted, and other jurisdictions are expected to enact legislation or regulation, that governs AI and the development and use of AI, including the E.U. AI Act. We currently license content to customers in virtually every country in the world, excluding Sanctioned Countries, and the different laws that apply in each of those foreign countries may be more or less restrictive than those that apply to companies operating solely within the United States, creating tension in compliance obligations across borders. The adoption, modification or interpretation of laws or regulations in any of these countries relating to our business could adversely affect the manner in which we conduct our business or the overall popularity or growth in use of the internet. Further, the current legislative and regulatory landscape regarding the regulation of the internet is subject to uncertainty. For example, in January 2018, the Federal Communications Commission ("FCC") released an order that repealed the "open Internet rules," often known as "net neutrality," which could affect the services used by us and our customers. In response to this decision California and a number of states implemented their own net neutrality rules which mirrored parts of the repealed federal regulations. In October 2023, the FCC voted to begin the process of reinstating substantially all of the net neutrality rules that had been in place prior to the 2018 repeal. We cannot predict the actions the FCC may take, whether any new FCC order or state initiatives regulating providers will be modified, overturned, or vacated by legal action, federal legislation, or the FCC itself, or the degree to which further regulatory action - or inaction - may adversely affect our business. Users who access our marketplace through devices such as smart phones, laptops, and tablet computers must have a high-speed internet connection, such as Wi-Fi, 3G, 4G, or 5G to use our services. Currently, this access is provided by telecommunications companies and internet access service providers that have significant and increasing market power in the broadband and internet access marketplace. If the repeal of net neutrality remains in effect, these providers could take measures that affect their customers' ability to use our products and services, such as degrading the quality of the data packets we transmit over their lines, giving our packets low priority, giving other packets higher priority than ours, blocking our packets entirely, or attempting to charge their customers more for using our products and services. To the extent that internet service providers implement usage-based pricing, including meaningful bandwidth caps, or otherwise try to monetize access to their networks, we could incur greater operating expenses and customer acquisition and retention could be negatively impacted. Furthermore, to the extent network operators were to create tiers of internet access service and either charge us or their customers for availability of our services through these tiers, our business could be negatively impacted. In addition, the rapid growth of the internet and the proliferation in the use of content therein has created tensions and instability in the application of traditional intellectual property law concepts to such uses. Compliance with new regulations or legislation or new interpretations of existing regulations or legislation could cause us to incur additional expenses, lose the ability to transact business in the way we have historically done or, make it more difficult to renew subscriptions automatically, make it more difficult to attract new customers or otherwise require us to alter our business model, or cause us to divert resources and funds to address government or private investigatory or adversarial proceedings. Any of these outcomes could have a material adverse effect on our business, financial condition or results of operations.

Our future success depends in large part upon the continued service of the members of our executive management team and key employees. All members of our executive management team are subject to employment agreements. In addition, our success also depends on our ability to attract and retain qualified technical, sales and marketing, customer support, financial and accounting, legal and other managerial personnel, as well as high quality photographers for our product line covering entertainment, sports and news ("Editorial"). The competition for skilled personnel in the industries in which we operate is intense. Our personnel generally may terminate their employment at any time for any reason. We may incur significant costs to attract and retain highly skilled personnel, and we may lose new employees to our competitors before we realize the benefit of our investment in recruiting them. As we move into new geographies, we will need to attract and recruit skilled personnel across functional areas. Some of our employees in Brazil, Germany, France and Spain are subject to collective bargaining agreements and employees in other jurisdictions may unionize. If we fail to attract new personnel or if we suffer increases in costs or business operations interruptions as a result of a labor dispute, or fail to retain and motivate our current personnel, we might not be able to operate our businesses effectively or efficiently, serve our customers properly or maintain the quality of our content and services.

Our success depends on our ability to attract customers in a cost-effective manner. With respect to our marketing channels, we rely heavily on relationships with providers of online services, search engines, social media, and affiliate websites and e-commerce businesses to provide content, advertising banners and other links that direct customers to our websites. We rely on these relationships to provide significant sources of traffic to our website. In particular, we rely on search engines as important marketing channels. Search engine companies change their natural search engine algorithms periodically, and our ranking in natural searches have been in the past, and may be in the future, adversely affected by such changes. Search engine companies may also determine that we are not in compliance with their guidelines and consequently penalize us in their algorithms as a result. If search engines change or penalize us with their algorithms, terms of service, display and featuring of search results, or if competition increases for advertisements, we may be unable to cost-effectively drive consumers to our websites. Our relationships with our affiliate websites are not long term in nature and often do not require any specific performance commitments. As competition for online advertising has increased, the cost for some of these services has also increased. A significant increase in the cost of the affiliate websites could adversely impact our ability to attract customers cost effectively and harm our business, results of operations, financial condition and prospects.

Non-payment or late payments of amounts due to us by customers could significantly and negatively affect our business and financial performance. A portion of our customers typically purchase our products on payment terms, and therefore we assume a credit risk for non-payment in the ordinary course of business. We evaluate the credit-worthiness of new customers and perform ongoing financial condition evaluations of our existing customers; however, there can be no assurance that our allowances for uncollected accounts receivable balances will be sufficient. As of December 31, 2023, our allowance for doubtful accounts was $6.5 million. If the volume of sales to enterprise customers continues to grow, we expect to increase our allowance for doubtful accounts primarily as the result of changes in the volume of sales to customers who pay on payment terms. We accept payments using a variety of methods, including credit cards and debit cards, which are subject to additional regulations and compliance requirements and are susceptible to incidences of fraud. For certain payment methods, including credit and debit cards, we pay interchange and other fees, which may increase over time and raise our operating costs and lower profitability, and rely on third parties to provide processing services, who may be unwilling or unable to provide these services to us. We are also subject to payment card association operating rules, certification requirements and rules governing electronic funds transfers, which could change or be reinterpreted to make it difficult or impossible for us to comply. We may be required to provide cash deposits to our credit card processors. If we fail to comply with these rules or requirements, we could be subject to civil and criminal penalties or forced to cease our operations, fines and higher transaction fees or we could lose our ability to accept credit and debit card payments from consumers or facilitate other types of online payments. To date, we have experienced minimal losses from credit card fraud, but we continue to face the risk of significant losses from this type of fraud, which could adversely affect our financial condition and results of operations. We are also subject to, or voluntarily comply with, several other laws and regulations relating to money laundering, international money transfers, privacy and information security and electronic fund transfers. If we were found to be in violation of applicable laws or regulations, we could be subject to civil and criminal penalties or forced to cease our operations.