Global Payments (GPN) Risk Factors

We rely on a combination of contractual rights and copyright, trademark, patent and trade secret laws to establish and protect our proprietary technology. Despite our efforts to protect our intellectual property, third parties may infringe or misappropriate our intellectual property or may develop software or technology that competes with ours. Our competitors may independently develop similar technology, duplicate our services or design around our intellectual property rights. We may have to litigate to enforce and protect our intellectual property rights, trade secrets and know-how or to determine their scope, validity or enforceability, which is expensive and could cause a diversion of resources and may not prove to be successful. The loss of intellectual property protection or the inability to secure or enforce intellectual property protection could harm our business and ability to compete. We may also be subject to costly litigation in the event our services and technology are alleged to infringe upon another party's proprietary rights. Third parties may have, or may eventually be issued, patents that could be infringed by our services or technology. Any of these third parties could make a claim of infringement against us with respect to our services or technology. We may also be subject to claims by third parties for breach of copyright, trademark or license usage rights. Any such claims and any resulting litigation could subject us to significant litigation costs and potential liability for damages. An adverse determination in any litigation of this type could limit our ability to use the intellectual property subject to these claims and require us to design around a third party's intellectual property, which may not be possible, or to license alternative technology from another party, which may be costly. In addition, such litigation is often time consuming and expensive to defend and could result in the diversion of the time and attention of our employees.

Consolidation among financial institutions, particularly in the area of credit card operations, and consolidation in the retail industry, is a risk that could negatively affect our existing customer agreements and future revenues. In addition, consolidation among financial institutions has led to an increasingly concentrated customer base, which results in a changing mix toward larger customers. Continued consolidation among financial institutions could increase the bargaining power of our current and future customers and further increase our customer concentration. Consolidation among financial institutions and retail customers and the resulting loss of any significant number of customers by us could have a material adverse effect on our financial condition, results of operations and cash flows.

As a payments technology company, our business is affected by laws and complex regulations and examinations that affect us and our industry in the countries in which we operate. Regulation and proposed regulation of the payments industry have continued to increase significantly in recent years. Failure to comply with regulations or guidelines may result in the suspension or revocation of a license or registration, the limitation, suspension or termination of service, and the imposition of civil and criminal penalties, including fines, or may cause customers or potential customers to be reluctant to do business with us, any of which could have an adverse effect on our financial condition. Interchange fees are subject to intense legal, regulatory and legislative scrutiny worldwide. For instance, the Dodd-Frank Act restricts the amounts of debit card fees that certain issuing institutions can charge merchants and allows merchants to set minimum amounts for the acceptance of credit cards and to offer discounts for different payment methods. These types of restrictions could negatively affect the number of debit transactions, which would adversely affect our business. The Dodd-Frank Act also created the CFPB, which has responsibility for enforcing federal consumer protection laws, and the Financial Stability Oversight Council, which has the authority to determine whether any nonbank financial company, like us, should be supervised by the Board of Governors of the Federal Reserve on the ground that it is "systemically important" to the U.S. financial system. Any such designation would result in increased regulatory burdens on our business, which increases our risk profile and may have an adverse effect on our business, financial condition, results of operations and cash flows. Because we directly or indirectly offer or provide financial services to consumers, we are subject to prohibitions against unfair, deceptive, or abusive acts or practices under the Dodd-Frank Act. More generally, all persons engaged in commerce, including, but not limited to, us and our merchant and financial institution customers, are subject to Section 5 of the FTC Act prohibiting unfair or deceptive acts or practices ("UDAP"). We also have businesses that are subject to credit reporting and debt collection laws and regulations in the U.S. Various federal and state regulatory enforcement agencies, including the FTC, the CFPB and the states' attorneys general, may seek to take action against nonbanks that engage in UDAP or violate other laws, rules or regulations and, to the extent we are in violation of these laws, rules or regulations or are processing payments for a merchant that may be in violation of these laws, rules or regulations, we may be subject to enforcement actions and as a result may incur losses and liabilities. We are also subject to examination by the FFIEC as a result of our provision of data processing services to financial institutions. As the regulatory environment remains unpredictable and subject to rapid change, new obligations could increase the cost and complexity of compliance. Evolving regulations also increase the risk of investigations, fines, nonmonetary penalties and litigation. Because of our services in relation to the banking industry, much of our business is obligated, either under law or via contracts with our customers, to comply with anti-money laundering regulations. Noncompliance with these regulations could lead to substantial regulatory fines and penalties or damages from private causes of action. The effect of the regulations could be detrimental to our financial condition. In addition, we and our sponsor financial institutions are subject to the laws and regulations enforced by the Office of Foreign Assets Control, which prohibit U.S. persons from engaging in transactions with certain prohibited persons or entities. Similar requirements apply in other countries. Furthermore, certain of our businesses are regulated as money transmitters or otherwise require licensing in one or more states or jurisdictions, subjecting us to various licensing, supervisory and other requirements. Continuing developments in privacy and data protection regulation globally, combined with the rapid pace of technology innovation, have created risks and operational challenges for many of our business activities as described in "Item 1 - Business." It is possible that these laws may be interpreted and applied in a manner that is inconsistent with our data privacy practices or operations model, which could result in potential liability for fines, damages or a need to incur substantial costs to modify our operations. Compliance with these laws and regulations can be costly and time consuming, adding a layer of complexity to business practices and innovation. As with other regulatory schemes, our failure to comply could result in public or private enforcement action and accompanying litigation costs, losses, fines and penalties, which could adversely affect our business, financial condition, results of operations and cash flows. In addition, U.S. banking agencies and the SEC have adopted or proposed enhanced cyber risk management standards that could apply to us and our financial institution clients and that would address cyber risk governance and management, management of internal and external dependencies, and incident response, cyber resilience and situational awareness. Several states and foreign countries also have adopted or proposed new privacy and cybersecurity laws targeting these issues. Legislation and regulations on cybersecurity, data privacy and data localization may compel us to enhance or modify our systems, invest in new systems or alter our business practices or our policies on data governance and privacy. If any of these outcomes were to occur, our operational costs could increase significantly. The rise in the use of generative artificial intelligence has dramatically altered the corporate landscape. Incorporating artificial intelligence, including machine learning technologies, into our businesses presents numerous risks and uncertainties. Furthermore, the global regulatory framework has not kept pace with the rapid developments in the generative artificial intelligence technology field, creating uncertainties regarding compliance with upcoming laws and regulations. Beyond legal considerations in the development and deployment of these models there exists an ethical consideration given the potential risk of generating misleading or harmful content. The unpredictable nature of outputs further amplifies this risk, potentially leading to unintended consequences and biases. Additionally, the absence of clear requirements pertaining to explainability and the data used to train these models, introduces the risk of intellectual property disputes, including the inability to protect or potential infringement claims regarding the artificially generated content. We are exploring opportunities to expand our portfolio with artificial intelligence capabilities to strengthen our market position, amplify our teams' capabilities, and enhance our customers'experiences. If we are unsuccessful in doing so, we may have a competitive disadvantage in developing new products and operating our business and our customers may prefer different solutions. Changes to legal rules and regulations, or interpretation or enforcement thereof, even if not directed at us, may require significant efforts to change our systems and services and may require changes to how we price our services to customers, adversely affecting our business. Even an inadvertent failure to comply with laws and regulations, as well as rapidly evolving social expectations of corporate fairness, could damage our business or our reputation. As varying or conflicting regulations come into existence across the jurisdictions in which we operate, we may have difficulty aligning our operations to comply with all applicable laws.

We are from time-to-time involved in various litigation matters and governmental or regulatory investigations or similar matters arising out of our current or future business. Our insurance or indemnities may not cover all claims that may be asserted against us, and any claims asserted against us, regardless of merit or eventual outcome, may harm our reputation. Litigation could be costly, time-consuming and divert attention of management from daily operational needs. Furthermore, there is no guarantee that we will be successful in defending ourselves in pending or future litigation or similar matters under various laws. Should the ultimate judgments or settlements in any pending or future litigation or investigation significantly exceed our insurance coverage, such judgments could have a material adverse effect on our business, financial condition, results of operations and cash flows.

Changes in tax laws or their interpretations could result in changes to enacted tax rates and may require complex computations to be performed that were not previously required, significant judgments to be made in interpretation of the new or revised tax regulations and significant estimates in calculations, as well as the preparation and analysis of information not previously relevant or regularly produced. Future changes in enacted tax rates could negatively affect our results of operations. In December 2022, the EU Member States formally adopted the EU's Pillar Two Directive, which generally provides for a minimum effective tax rate of 15%, as established by the Organization for Economic Co-operation and Development Pillar Two Framework. The EU effective dates are January 1, 2024, and January 1, 2025, for different aspects of the directive. A significant number of other countries are expected to implement similar legislation with varying effective dates in the future. We are continuing to evaluate the potential effect on future periods of the Pillar Two Framework, pending legislative adoption by additional individual countries; however, we do not expect the directive to have a material effect on our financial condition or results of operations. Our tax returns and positions are subject to review and audit by federal, state, local and international taxing authorities. An unfavorable outcome to a tax audit could result in higher tax expense, thereby negatively affecting our results of operations and cash flows. We have recognized estimated liabilities on the balance sheet for material known tax exposures relating to deductions, transactions and other matters involving some uncertainty as to the proper tax treatment of the item. These liabilities reflect what we believe to be reasonable assumptions as to the likely final resolution of each issue if raised by a taxing authority. While we believe that the liabilities are adequate to cover reasonably expected tax risks, there can be no assurance that, in all instances, an issue raised by a tax authority will be finally resolved at a financial amount not significantly more than any related liability on the balance sheet.

All of our businesses function at the intersection of rapidly changing technological, social, economic and regulatory developments that require a wide ranging set of expertise and intellectual capital. To successfully compete and grow, we must recruit, develop, retain and motivate personnel who can provide the needed expertise across the entire spectrum of intellectual capital needs. In addition, we must develop our personnel to fulfill succession plans capable of maintaining continuity in the midst of the inevitable unpredictability of human capital. However, the market for qualified personnel is extremely competitive, and we may not succeed in recruiting additional personnel or may fail to effectively replace current personnel who depart with qualified or effective successors. We cannot be assured that key personnel, including executive officers, will continue to be employed or that we will be able to attract and retain qualified personnel in the future. Failure to retain, develop or attract key personnel could disrupt our operations and adversely affect our business and future success, which could have a material adverse effect on our business, financial condition, results of operations and cash flows.

From time-to-time, the card networks, including Visa and Mastercard, increase the fees that they charge processors. We often pass these increases along to our merchant customers; however, if merchants do not accept these increases, this strategy might result in the loss of customers to our competitors, thereby reducing our revenues and earnings. If competitive practices prevent us from passing along the higher fees to our merchant customers in the future, we may have to absorb all or a portion of such increases, thereby reducing our earnings.

The global payments technology industry depends heavily on the overall level of consumer, business and government spending. We are exposed to general economic conditions, including but not limited to, recessions, inflation, rising interest rates, high unemployment, currency fluctuations, and rising energy prices, that affect consumer confidence, discretionary income and changes in consumer purchasing and spending habits. Adverse economic conditions have at times affected and may continue to negatively affect our financial performance by reducing the number or average purchase amount of transactions made using digital payments. A reduction in the amount of consumer spending could result in a decrease in our revenues and profits. If our merchants make fewer sales to consumers using digital payments, or consumers using digital payments spend less per transaction, we will have fewer transactions to process or lower transaction amounts, each of which would contribute to lower revenues. Additionally, credit card issuers may reduce credit limits and become more selective in their card issuance practices. When such conditions arise, we evaluate where we may be able to implement cost-saving measures, including those related to headcount and discretionary expenses. While economic conditions have shown moderate improvement in recent months, any of these developments could have a material adverse effect on our financial condition and results of operations. Adverse macroeconomic conditions in any of our markets could force merchants, financial institutions or other customers to cease operations or petition for bankruptcy protection, resulting in lower revenue and earnings for us and greater exposure to potential credit losses and future transaction declines. We also have a certain amount of fixed costs, including rent, debt service, and salaries, which could limit our ability to quickly adjust costs and respond to changes in our business and the economy. Changes in economic conditions could also adversely affect our future revenues and profits and have a materially adverse effect on our business, financial condition, results of operations and cash flows. In most markets, we collect our fees from our merchants on the first day after the monthly billing period, which results in the build-up of substantial receivable from our customers. If a merchant were to go out of business during the billing period, we may be unable to collect such fees, which could negatively affect our business, financial condition, results of operations and cash flows. In addition, our business, growth, financial condition or results of operations could be materially adversely affected by public health emergencies, such as the COVID-19 pandemic, political and economic instability or changes in a country's or region's economic conditions, changes in laws or regulations or in the interpretation of existing laws or regulations, whether caused by a change in government or otherwise, increased difficulty of conducting business in a country or region due to actual or potential political or military conflict or action by the United States or foreign governments that may restrict our ability to transact business in a foreign country or with certain foreign individuals or entities. Risks associated with heightened geopolitical and economic instability, include among others, reduction in consumer, government or corporate spending, international sanctions, embargoes, heightened inflation and actions taken by central banks to counter inflation, volatility in global financial markets, increased cyber disruptions or attacks, higher supply chain costs and increased tensions between countries in which we may operate, which could result in charges related to the recoverability of assets, including financial assets, long-lived assets and goodwill, and other losses, and could adversely affect our financial condition and results of operations. Climate-related events, including extreme weather events and natural disasters and their effects on critical infrastructure in the U.S. or internationally, could have adverse effects on our operations, customers or third-party suppliers. Furthermore, our shareholders, customers and other stakeholders have begun to consider how corporations are addressing sustainability matters, which include environmental and corporate responsibility issues. Government regulators, investors, customers and the general public are increasingly focused on sustainability practices and disclosures, and views on this topic are diverse and rapidly changing. These shifts in investing priorities may result in adverse effects on the trading price of the Company's common stock if investors determine that the Company has not made sufficient progress on sustainability matters. Furthermore, developing and acting on these initiatives, and collecting, measuring and reporting related information and metrics can be costly, difficult and time consuming, and are subject to evolving reporting standards and/or contractual obligations. The standards and laws by which sustainability efforts are tracked and measured are in many cases new, have not been harmonized, and continue to evolve. We could also face potential negative sustainability related publicity in traditional media or social media if shareholders or other stakeholders determine that we have not adequately considered or addressed sustainability and governance matters. We have been the recipient of proposals from shareholders to promote their corporate responsibility positions, and we may receive other such proposals in the future. Such proposals may not be in the long-term interests of the Company or our shareholders and may divert management's attention away from operational matters or create the impression that our practices are inadequate.

A portion of our indebtedness bears interest at a variable rate, and we may incur additional variable-rate indebtedness in the future. Elevated interest rates could increase our cost of debt, and reduce our operating cash flows, limit options to refinance existing debt on favorable terms or at all, and could hinder our ability to fund our operations, capital expenditures, acquisitions, share repurchases or dividends. We are also subject to risks related to the changes in currency exchange rates as a result of our investments in foreign operations and from revenues generated in currencies other than our reporting currency, the U.S. dollar. Revenues and profits generated by international operations will increase or decrease compared to prior periods as a result of changes in currency exchange rates. Volatility in currency exchange rates has affected and may continue to affect our financial results. In certain of the jurisdictions in which we operate, we may become subject to exchange control regulations that might restrict or prohibit the conversion of our foreign currencies into U.S. dollars or limit our ability to freely move currency in or out of particular jurisdictions. The occurrence of any of these factors could decrease the value of revenues we receive from our international operations and have a material adverse effect on our business. We may seek to reduce our exposure to fluctuations in interest rates or currency exchange rates through the use of hedging arrangements. To the extent that we hedge our interest rate or currency exchange rate exposures, we forgo the benefits we would otherwise experience if interest rates or currency exchange rates were to change in our favor. Developing an effective strategy for dealing with movements in interest rates and currency exchange rates is complex, and no strategy can completely insulate us from risks associated with such fluctuations. In addition, a counterparty to the arrangement could default on its obligation, thereby exposing us to credit risk. We may have to repay certain costs, such as transaction fees or breakage costs, if we terminate these arrangements.