We are reliant on computers and digital technology, including certain technology systems from third-party vendors which we use to operate our business which are not under our control. We collect digital information on all aspects of operations. Hospitality related businesses, in particular, require the collection and retention of identifiable information of our customers, as such information is entered into, processed, summarized, and reported by the various information systems we use. All of these activities give rise to material cyber risks and potential costs and consequences that cannot be estimated or predicted and which may not be fully insured by our cyber risk insurance policy. For example, the SEC recently adopted rules requiring the disclosure of cybersecurity incidents that we determine to be "material," to be made within four business days of such determination, which can be complex, requiring a number of assumptions based on several factors. It is possible that the SEC may not agree with our determinations, which could result in fines, civil litigation or damage to our reputation.
The integrity and protection of our customer, employee and other company data, is critical to us. We make efforts to maintain the security and integrity of these networks and related systems. We have implemented various measures to manage the risk of a security breach or disruption. There can be no assurance that our security efforts and measures will be effective or that attempted security breaches or disruptions, whether through cyber-attacks or cyber intrusions over the Internet, malware, computer viruses, attachments to emails, persons inside our organization or persons with access to systems, energy blackouts, natural disasters, terrorism, war, and other significant disruptions of our networks and related systems, or disruptions would not be successful or damaging. Further, the risk of a security breach or disruption, particularly through cyber-attacks or cyber-intrusion, including by computer hackers, foreign governments or state-sponsored actors, and cyber terrorists, has generally increased as the number, intensity and sophistication of attempted attacks and intrusions from around the world have increased. In particular, there has been a spike in cybersecurity attacks as businesses have increased reliance on virtual environments and communications systems, which have been subject to increasing third-party vulnerabilities and security risks. Additionally, to the extent artificial intelligence capabilities improve and are increasingly adopted, they may be used to identify vulnerabilities and craft increasingly sophisticated cybersecurity attacks. Attachments crafted with artificial intelligence tools could directly attack information systems with greater speed and/or efficiency than a human threat actor or create more effective phishing emails. Vulnerabilities may also be introduced from the use of artificial intelligence by us, our customers, suppliers and other business partners and third-party providers. Use of artificial intelligence by our employees, whether authorized or unauthorized, increases the risk that our intellectual property and other proprietary information will be unintentionally disclosed.
Even the most well protected information, networks, systems and facilities remain potentially vulnerable because the techniques used in such attempted security breaches evolve and generally are not recognized until launched against a target, and in some cases are designed not to be detected and, in fact, may not be detected. Accordingly, we and our service providers may be unable to anticipate these techniques or to implement adequate security barriers or other preventative measures, and thus it is impossible for us and our service providers to entirely mitigate this risk. Our failure to maintain the security of the data, including via the penetration of our network security and the misappropriation of confidential and personal information, may result in business disruption, increase in costs, damage to our reputation, material legal claims, fines, penalties, regulatory proceedings and other severe financial and business implications.