Procore Technologies (PCOR) Risk Analysis

As we face increasing competition and gain a higher profile, we have become, and may in the future become, a party to litigation, claims, investigations, inquiries, proceedings, and other disputes related to, among other things, our intellectual property, commercial matters, business or employment practices, regulatory compliance (including securities law compliance), products, services, and platform. Declines in stock price, which we have experienced and may experience from time to time, can increase the risk of securities class action litigation. Such litigation can be costly and time-consuming, divert the attention of management and key personnel from our business operations, and dissuade prospective customers from subscribing to our products or services. We have become, and may in the future become, party to legal proceedings and claims alleging infringement or misappropriation of intellectual property, whether with or without merit, which have been, and could continue to be, time-consuming to defend, and have resulted, and could continue to result, in costly litigation and diversion of resources. Such legal proceedings are unpredictable, and we could receive an unfavorable outcome in pending or future proceedings. If any such proceedings are successful, or if we need to settle disputes on terms that are unfavorable to us, we could be required to change our products and business practices, indemnify our customers or business partners, pay substantial settlement costs, or refund fees. We may also have to seek a license to continue practices found to be in violation of third-party rights, which may not be available to us on reasonable terms or may not be available to us at all. Additionally, during the course of any litigation or dispute, we may make announcements regarding the results of hearings and motions and other interim developments. If securities analysts and investors consider these announcements negative, our stock price may decline. Any of the above could increase our operating expenses, and materially adversely affect our business, financial condition, results of operations, and prospects.

Continuing and increasing sales of our products and services depends to a significant extent on our ability to expand our sales and marketing capabilities, including through the evolution of our GTM operating model. It is difficult to predict customer demand, customer retention, and expansion rates, the size and growth rate of the market, the entry of competitive products and services, or the success of existing competitive products and services. Our sales efforts involve educating prospective customers about the uses and benefits of our products, services, and platform. We spend substantial time and resources on our sales efforts without any assurance that our efforts will result in a sale. We expect that we will continue to need intensive sales efforts to educate prospective customers about the uses and benefits of our construction management software and services, and we may have difficulty convincing prospective customers of the value of adopting our products and services. We plan to continue expanding our sales force, both domestically and internationally. Identifying, recruiting, and training qualified sales representatives is time-consuming and resource-intensive, and they may not be fully trained and productive for a significant amount of time following their hiring, if ever. In addition, the cost to acquire customers is high due to these considerable sales and marketing efforts. Our business will be harmed if our efforts do not generate a corresponding increase in revenue. Even if we are successful in convincing prospective customers of the value of our products and services, they may decide not to purchase our products and services for a variety of reasons, some of which are out of our control. The failure of our efforts to secure sales after investing resources in a lengthy sales process could materially adversely affect our business, financial condition, results of operations, and prospects.

In the ordinary course of our business, we, and the third parties with which we work, process substantial amounts of sensitive information. Cyberattacks, malicious internet-based activity, online and offline fraud, and other similar activities threaten the confidentiality, integrity, and availability of such sensitive information and IT systems, and those of the third parties on which we rely. Cloud-based platform providers of products and services have been targeted by such activities and are expected to continue to be targeted. The threats posed by such activities are prevalent and continue to grow, are increasingly difficult to detect, and come from a variety of sources, including traditional computer "hackers," threat actors, "hacktivists," organized criminal threat actors, personnel (such as through theft or misuse), sophisticated nation-states, and nation-state-supported actors. Some actors now engage and are expected to continue to engage in cyberattacks including, without limitation, nation-states and nation-state-supported actors for geopolitical reasons and in conjunction with military conflicts and defense activities. During times of war and other major conflicts, we, the third parties with which we work, and our customers may be vulnerable to a heightened risk of these attacks, including retaliatory cyberattacks, that could materially disrupt our systems and operations, supply chain, and ability to produce, sell, and maintain the availability of our products, services, and platform. We, the third parties with which we work, and our customers are subject to a variety of evolving threats, including, but not limited to, social-engineering attacks (including through deep fakes, which may be increasingly difficult to identify as fake, and phishing attacks), malicious code (such as viruses and worms), malware (including as a result of advanced persistent threat intrusions), denial-of-service attacks (such as credential stuffing), credential harvesting, personnel misconduct or error, break-ins, ransomware attacks, supply chain attacks, software bugs, server malfunctions, software or hardware failures, loss of data or other IT assets, adware, telecommunications failures, attacks enhanced or facilitated by AI, and other similar threats. Our products and services may also be subject to fraudulent usage and schemes, including from third parties accessing customer accounts or viewing data from our platform. In addition, remote work has become more common and has increased risks to our IT systems and data, as more of our employees utilize network connections, computers, and devices outside our premises or network, including working at home, while in transit, and in public locations. Severe ransomware attacks, including by organized criminal threat actors, nation-states, and nation-state-supported actors, are becoming increasingly prevalent and severe and can lead to significant interruptions in our operations, loss of sensitive information and income, reputational harm, and diversion of funds. While extortion payments have the potential to alleviate the negative impact of a ransomware attack, we may be unwilling or unable to make such payments for a variety of reasons, including, but not limited to, applicable laws or regulations prohibiting such payments. Any sensitive information (including confidential, competitive, proprietary, or personal data) that we input into a third-party generative AI platform could be leaked or disclosed to others, including if sensitive information is used to train the third party's AI model. Additionally, where an AI model ingests personal data and makes connections using such data, those technologies may reveal other personal or sensitive information generated by the model. We employ a shared responsibility model where our customers are responsible for using, configuring, and otherwise implementing security measures related to our products, services, and platform, and products in a manner that meets applicable cybersecurity standards, complies with laws, and addresses their information security risk. As part of this model, we make certain security features available to our customers that can be implemented at our customers' discretion, or identify security areas or measures for which our customers are responsible. For example, depending on the product implementation, our customers are responsible for adding and enforcing multi-factor authentication to access their accounts. In certain cases where our customers choose not to implement, or incorrectly implement, such features or measures, misuse our services, or otherwise experience their own vulnerabilities, policy violations, credential exposure or security incidents, even if we or our platform are not the cause of any customer security issue or incident that may result, our customer relationships, reputation, and operating results may be adversely impacted. It may be difficult and/or costly to detect, investigate, mitigate, contain, and remediate a security incident. Our efforts to do so may not be successful. Actions taken by us, or the third parties with which we work, to detect, investigate, mitigate, contain, and remediate a security incident could result in outages, data losses, and disruptions of our business. Threat actors may also gain access to other networks and systems after a compromise of our networks and systems. We rely upon third-party developers, service providers, and technologies to operate critical business systems to process sensitive information in a variety of contexts, including, without limitation, third-party providers of cloud-based infrastructure, encryption and authentication technology, employee email, and other functions. We may also rely on third-party developers, service providers, and technologies to provide other products or services to operate our business. Our ability to monitor these third parties' information security practices is limited, and these third parties may not have adequate information security measures in place. We may also share or receive sensitive information with or from third parties. If our third-party service providers experience a security incident or other interruption, we could experience adverse consequences. While we may be entitled to damages if our third-party service providers fail to satisfy their privacy or security-related obligations to us, any award may be insufficient to cover our damages or we may be unable to recover such award. In addition, supply chain attacks have increased in frequency and severity, and we cannot guarantee that third parties and infrastructure in our supply chain or our third-party partners' supply chains have not been compromised or that they do not contain exploitable defects or bugs that could result in a breach of or disruption to our IT systems (including our products, services, and platform) or the third-party IT systems that support us and our services. While we have implemented security measures designed to help protect against security incidents, there can be no assurance that these measures are or will be effective. Although we take certain steps to detect, mitigate, and remediate various vulnerabilities in our IT systems (such as our hardware and/or software, including that of third parties with which we work, and those used to operate our products), doing so takes significant time and resources and we are not able to detect, and have not been able to remediate, all vulnerabilities in our IT systems (including those that operate our products and those that are used to provide our services). Additionally, our business depends upon the appropriate and successful implementation of our services by our customers. If our customers fail to use our service according to our specifications, our customers may suffer a security incident on their own systems or other adverse consequences. Even if such an incident is unrelated to our security practices, it could result in our incurring significant economic and operational costs in investigating, remediating, and implementing additional measures to further protect our customers from their own vulnerabilities, as well as in reputational harm. For several reasons, including the introduction of new vulnerabilities, resource constraints, competing business demands, dependence on third parties, and technological challenges, a large number of high and critical unremediated vulnerabilities exist in our IT systems and will exist until our remediation efforts are completed. We have taken, and are taking, steps designed to mitigate these vulnerabilities in a prioritized manner based on our assessment of the risk posed by such vulnerabilities. Despite our efforts, there can be no assurance that these vulnerability mitigation measures will be effective. Moreover, we have experienced delays in developing and deploying remedial measures and patches designed to address any identified vulnerabilities. Vulnerabilities could be exploited and result in a security incident. Any of the previously identified or similar threats could cause a security incident or other interruption. A security incident or other interruption could result in unauthorized, unlawful, or accidental acquisition, modification, destruction, loss, alteration, encryption, disclosure of, or access to our sensitive information or IT systems, or those of the third parties with which we work (including our customers). A security incident or other interruption could disrupt our ability, and that of third parties with which we work, to provide our products, services, and platform. Our current security measures may be insufficient to prevent or deter such incidents or interruptions. We expend significant resources and have modified our business activities to try to protect against security incidents. Certain data privacy and security obligations have required us to implement and maintain security measures or industry-standard or reasonable security measures to protect our IT systems and sensitive information. In addition, business transactions, such as acquisitions or integrations, have exposed us to these same or additional cybersecurity risks and vulnerabilities, as our systems could be negatively affected by vulnerabilities present in acquired or integrated entities' systems and technologies. Furthermore, we have discovered security issues that were not found during due diligence of such acquired or integrated entities, and it has been and may continue to be difficult to integrate companies into our IT environment and security program. Applicable data privacy and security obligations, including data breach laws and contractual obligations to various customers, may require us to notify relevant stakeholders, including affected individuals, customers, regulators, and investors, of security incidents. For example, SEC rules require disclosure on Form 8-K of the material aspects of the nature, scope, and timing of any material cybersecurity incident and the material impact or reasonably likely material impact of such incident. Determining whether a cybersecurity incident is notifiable or material may not be straightforward, and any such disclosures could be costly and could lead to negative publicity, loss of customer or partner confidence in the effectiveness of our security measures, diversion of management's attention, governmental investigations, and the expenditure of significant capital and other resources to respond to or alleviate problems caused by the actual or perceived security breach. If we or third parties with which we work experience a security incident or are perceived to have experienced a security incident, we could experience significant consequences, including, but not limited to, government enforcement actions (e.g., investigations, audits, inspections, fines, and penalties), litigation (including class-related claims), additional reporting requirements and oversight, restrictions or bans on processing sensitive information (including personal data and sensitive third-party and customer data), loss of revenue or profits, loss of customers or sales, interruptions or stoppages in or modifications to our operations (including availability of data), indemnification obligations, negative publicity, and reputational harm. Security incidents and attendant consequences may also cause customers to stop using our products, services, and platform (including by declining to renew their subscriptions), deter new customers from using our products, services, and platform, and negatively impact our ability to grow and operate our business. In addition, security incidents experienced by others, such as competitors or customers, may lead to widespread negative publicity for us, our customers, or the construction software industry generally. Our contracts may not contain indemnification, limitations of liability, or other protective provisions. Even where they do, there can be no assurance that indemnification clauses, limitations of liability, or other protective provisions in our contracts are applicable, enforceable, or sufficient to protect us from liabilities, damages, or claims related to our data privacy and security obligations. We cannot be sure that our general liability insurance coverage and coverage for cyber liability or errors or omissions will be adequate or sufficient to protect us from, or to mitigate liabilities arising out of, our data privacy and security practices, that such coverage will continue to be available on commercially reasonable terms or at all, or that such coverage will pay future claims. The successful assertion of one or more large claims against us that exceed available insurance coverage, or the occurrence of changes in our insurance policies, including premium increases or the imposition of large deductible or co-insurance requirements, could materially adversely affect our business, financial condition, results of operations, and prospects. In addition to experiencing a security incident, third parties may gather, collect, or infer sensitive information about us from public sources, data brokers, or other means that reveal competitively sensitive details about our organization and could be used to undermine our competitive advantage. Furthermore,sensitive information of our company or our customers could be leaked, disclosed, or revealed as a result of, or in connection with, our employees', personnel's, or vendors' use of generative AI technologies. Our business depends upon the appropriate and successful implementation of our products by our customers. If our customers fail to use our products according to our specifications, our customers may suffer a security incident on their own systems or other adverse consequences. Even if such an incident is unrelated to our security practices, it could result in our incurring significant economic and operational costs in investigating, remediating, and implementing additional measures to further protect our customers from their own vulnerabilities and could result in reputational harm. To the extent we do not effectively address these risks, our business, financial condition, results of operations, and prospects could be materially adversely affected.

The construction management software industry is evolving rapidly. Widespread acceptance and use of construction management technology in general, and of our platform in particular, is critical to our future growth. While we believe that our construction management software addresses a significant market opportunity, demand for our products, services, and platform may develop more slowly than we expect. If that happens, our business, financial condition, results of operations, and prospects could be materially adversely affected. Demand for construction management software in general, and for our products, services, and platform in particular, is affected by a number of factors, some of which are beyond our control. Some of these factors include: general awareness of construction management software; availability, functionality, and pricing and packaging of products and services that compete with ours; ease of adoption and use; the reliability, performance, or perceived performance of our products and platform, including interruptions to the use of our products and platform; and the development and awareness of our brand. Even though we use internal data to assess the likelihood of success of introducing new products and services or changes to existing products and services, we may incorrectly calculate such risks or assume undue risks with respect to such products. Competitors may also develop and introduce new products or entirely new technologies to replace our existing products, including through the use of AI, which could make our platform obsolete or otherwise adversely affect our business. If our investments in engineering and product development do not accurately anticipate user demand or if we fail to develop our products, features, or capabilities in a manner that satisfies customer needs in a timely and cost-effective manner, we may fail to retain our existing customers or increase demand for our products, which could materially adversely affect our business, financial condition, results of operations, and prospects. Furthermore, our ability to grow our customer base and retain and increase revenue from customers depends on our ability to enhance and improve our products, services, and platform in response to changes in the construction management software industry and customer demand. In response to such shifts, we may introduce changes to our existing products and services or introduce new products and services, which may require significant expenditures in research and development and customer support, which may harm our results of operations. While we have designed our existing products for easy adoption, our customers depend on our customer success teams to provide implementation, training, and support services, especially when it comes to new products and features. If we do not provide effective ongoing support, our ability to sell additional products to existing and prospective customers could be adversely affected. As part of the evolution of our GTM operating model, we are introducing new technical roles to help our customers realize the full value of our platform and thereby create deeper relationships with our customers. If these investments do not result in increased revenue from both new and existing customers, our business, financial condition, results of operations, and prospects could be materially adversely affected. Additionally, we may experience difficulties with software development, design, or marketing that could delay or prevent our development, introduction, or implementation of new products, features, or capabilities. We have in the past experienced delays in our internally planned release dates of new products, features, and capabilities, and there can be no assurance that new products, features, or capabilities will be released according to schedule. Any delays could result in adverse publicity, loss of revenue or market acceptance, or claims by customers brought against us, all of which could harm our business.

Our future success is substantially dependent on our ability to attract, retain, and motivate the members of our management team and other key personnel throughout our organization. In particular, we are highly dependent on the services of Craig F. Courtemanche, Jr., our founder, President, and Chief Executive Officer, who is critical to our ability to achieve our vision and strategic priorities. We rely on our management team in the areas of operations, security, research and development, sales and marketing, support, and general and administrative functions. Our U.S. employees, including our executive officers, work for us on an "at-will" basis, which means they may terminate their employment with us at any time. If Mr. Courtemanche or one or more of our key personnel or members of our management team resign or otherwise cease to provide us with their services, our business, financial condition, results of operations, and prospects could be materially adversely affected. Our continued success is also dependent on our ability to attract and retain other qualified personnel possessing a broad range of skills and expertise. There is significant competition for personnel with the skills and technical knowledge that we require. To continue to enhance our products, services, and platform, develop new products and services, and add new and innovative functionality, it will be critical for us to continue to grow our research and development teams. We have in the past hired, and may in the future hire, employees from competitors or other companies. Their former employers have in the past, and may in the future, assert that we or these employees have breached such employee's legal obligations, resulting in a diversion of our time and resources. If we fail to meet our hiring needs, at all or on the timeframes we expect, including in connection with the evolution of our GTM operating model, or if we fail to successfully integrate our new hires, our efficiency and ability to meet our forecasts and our employee morale, productivity, and retention could all suffer. Any of these factors could materially adversely affect our business, financial condition, results of operations, and prospects.

Our customers depend on the continuous availability of our platform, which relies in large part on third-party data centers. We currently host our platform and serve our customers primarily using AWS. Consequently, we may be subject to service disruptions as well as failures to provide adequate support for reasons that are outside of our control, including: the performance and availability of AWS and other third-party providers of cloud infrastructure services with the necessary speed, data capacity, and security for providing reliable services; decisions by AWS and other owners and operators of the data centers where our cloud infrastructure is deployed to terminate our subscriptions, discontinue services to us, shut down operations or facilities, increase prices, change service levels, limit bandwidth, declare bankruptcy, or prioritize the traffic of other parties; and cyberattacks, including denial of service attacks, targeted at us, our data centers, or the infrastructure of the internet. The adverse effects of any service interruptions on our reputation, results of operations, and financial condition may be disproportionately heightened due to the nature of our business and the fact that our customers have a low tolerance for interruptions of any duration. To meet the performance and other requirements of our customers, we intend to continue to make significant investments to increase capacity and to develop and implement new technologies in our cloud infrastructure operations. Any renegotiation or renewal of our agreement with AWS, or a new agreement with another provider of cloud-based services, may be on terms that are significantly less favorable to us than our current agreement. Additionally, these new technologies, which include databases, application and server optimizations, network strategies, and automation, are often advanced, complex, new, and untested, and we may not be successful in developing or implementing these technologies. It takes a significant amount of time to plan, develop, and test improvements to our technologies and cloud infrastructure, and we may not be able to accurately forecast demand or predict the results we will realize from such improvements. To the extent that we do not effectively scale our infrastructure to meet the needs of our growing customer base and maintain performance as our customers expand their use of our products, or if our cloud-based server costs were to increase, our business, financial condition, results of operations, and prospects could be materially adversely affected.

The market for our products and services is highly competitive and rapidly changing. Certain features of our current platform compete with a wide variety of products, including aggregated construction management tools (some of which integrate with our platform), accounting software vendors, point solution vendors in various categories (many of which integrate with our platform and are available in our App Marketplace), and in-house specialized tools or processes built by or for existing or prospective customers. With the introduction of new products, services, and technologies by competitors, including through the use of AI, and the emergence of new market entrants in the construction management software industry, we expect competition to continue and intensify. Other companies may incorporate AI into their products more quickly or more successfully than us, which could impair our ability to compete effectively. Many of our competitors have competitive advantages over us, such as better name recognition, longer operating histories, larger marketing budgets, existing or more established relationships, greater third-party integrations, access to larger customer bases, greater financial, technical, pricing, packaging, and marketing strategies, and other resources. Some of our competitors may make acquisitions or enter into strategic relationships with third parties to offer a broader range of products and services than we do; others may have more effective sales and marketing strategies or may deploy those strategies in ways that enable them to acquire customers at a lower cost than we can. These combinations may make it more difficult for us to effectively compete. Our market and the technology landscape in general will also be impacted by the continued adoption of AI in ways that are currently unforeseeable and that could have significant benefits for our competitors. Additionally, as we introduce new products and services in the market, we may face new or different competitors who may similarly have competitive advantages over us. Such competitive pressures may erode our market share and may hinder or slow our expansion into new markets. We expect these competitive dynamics to continue as competitors attempt to strengthen or maintain their market positions. Many factors affect our pricing and packaging strategies, which we revisit from time to time. For example, the quality of our products and services allows us to sell them at a premium as compared to some of our competitors. Certain competitors offer, or may in the future offer, lower-priced or free products or services that compete with our products or may bundle and offer a broader range of products or services. We may not be able to compete at such lower price points or with such product configurations. There can be no assurance that we will not be forced to engage in price-cutting initiatives or other discounts, or to increase our marketing and other expenses, in order to attract and retain customers in response to competitive pressures, any of which could materially adversely affect our business, financial condition, results of operations, and prospects.

Substantial losses due to fraud or our inability to accept credit card payments could cause our customer base to significantly decrease and would harm our business. A significant portion of our customers authorize us to bill their credit card accounts directly for our products, and certain of our customers purchase from us directly and are required to keep their payment methods current for monthly billing purposes. Our customers provide us with credit card billing information online or over the phone, and we do not review the physical credit cards used in these transactions, which increases our risk of exposure to fraudulent activity. We have incurred charges, which we refer to as chargebacks, from credit card companies for claims that the customer did not authorize the credit card transaction for our products. We may be required to pay for unauthorized credit charges and expenses with no reimbursement from the customer. If the number of claims of unauthorized credit card transactions becomes excessive, we could be assessed substantial fines for excess chargebacks, and we could lose the right to accept credit cards for payment. Although we implement multiple fraud prevention and detection controls, we cannot assure you that these controls will be adequate to protect against fraud. In addition, credit card issuers may change merchant standards, including data protection and documentation standards, required to utilize their services from time to time. If we fail to comply with such standards, the credit card associations could fine us or terminate their agreements with us, and we would be unable to accept credit cards as payment for our products.

We believe that our brand identity and brand awareness are critical to our sales and marketing efforts. We also believe that maintaining and enhancing our brand is critical to retaining and expanding our customer base, attracting investors, and recruiting and retaining qualified personnel, and, in particular, conveying to customers and collaborators that our platform offers capabilities that address the needs of the construction ecosystem throughout the project lifecycle. We anticipate that, as our market becomes increasingly competitive, maintaining and enhancing our brand may become increasingly difficult and expensive. If we experience difficulties with software development, customer service or professional services that negatively impact new or existing products, we may experience negative publicity or lose market acceptance. In July 2024, we began to evolve our GTM operating model by, among other things, transitioning to a general manager model. As a part of this process, we are hiring new product and technical specialists into our GTM teams. While we believe this transition will result in a more effective GTM organization, we have seen and may continue to see some disruptions and adverse impacts to our financial and operating results in the near-term as we invest in and implement the evolved GTM operating model. If we fail to successfully implement the evolved GTM operating model, our ability to serve our customers and effectively address their concerns will be adversely impacted, which may result in unfavorable publicity or a negative perception of our products, services, or platform. Any unfavorable publicity or negative perception of our products, services, or platform or the providers of construction management software generally, could adversely affect our reputation and our ability to attract and retain customers. If we fail to promote and maintain our brand, or if we incur increased expenses in this effort, our business, financial condition, results of operations, and prospects could be materially adversely affected. Companies are also facing increasing scrutiny related to their environmental, social, and governance ("ESG") practices and reporting as new laws and regulations relating to ESG matters are under consideration or being adopted, and as new norms emerge with regard to ESG reporting and initiatives. Regardless of whether such claims are accurate, negative claims or publicity involving us in relation to ESG topics could damage our reputation, brand image, and ultimately impact our business, financial condition, results of operations, and prospects.

We had customers running projects in approximately 150 countries as of December 31, 2024, and 15% of our revenue in 2024 was generated from customers outside the U.S. We expect to continue to expand our international presence, which may include opening offices in new jurisdictions and providing our products, services, and platform in additional languages. Any new markets or countries into which we attempt to sell our products or services may not be receptive to our efforts. For example, we may not be able to further expand our operations in some countries if we are not able to adapt our products, services, and platform to fit the needs of prospective customers in those countries or if we are unable to satisfy certain government- and industry-specific laws or regulations. In addition, our international operations and expansion efforts require considerable management attention and the investment of significant resources, while subjecting us to new risks and increasing certain risks that we already face, including risks associated with: - providing our products, services, and platform in different languages and customizing them to support local requirements;- compliance by us and our partners with applicable international laws and regulations, including laws and regulations with respect to anti-corruption, competition, import and export controls, tariffs, trade barriers, economic sanctions, employment, construction, privacy, data protection and sovereignty, consumer protection, and unsolicited email, and the risk of penalties and fines against us and individual members of management or employees if our practices are deemed to be out of compliance;- recruiting and retaining talented and capable employees outside the U.S., including employees who speak multiple languages and come from a wide variety of different cultural backgrounds and customs, and managing an employee base in jurisdictions with differing employment regulations;- operating in jurisdictions that do not protect intellectual property rights to the same extent as the U.S. and navigating the practical enforcement of such intellectual property rights outside of the U.S.;- political and economic instability, including as a result of the Russia-Ukraine war and the Israel-Hamas war, and a shifting and uncertain geopolitical landscape;- generally longer payment cycles and greater difficulty in collecting accounts receivable; and - higher costs of doing business internationally, including increased accounting, tax, travel, infrastructure, and legal compliance costs, and costs associated with fluctuations in currency exchange rates. Compliance with laws and regulations applicable to our global operations substantially increases our cost of doing business. We may be unable to keep current with changes in laws and regulations as they occur, and there can be no assurance that we, our employees, contractors, partners, and agents will be able to maintain compliance. Any violations could result in enforcement actions, fines, civil and criminal penalties, damages, injunctions, or reputational harm. If we are unable to maintain compliance or manage the complexity of our global operations successfully, we may need to relocate or cease operations in certain foreign jurisdictions, which could materially adversely affect our business, financial condition, results of operations, and prospects. Additionally, as we continue to expand our international operations, we will become more exposed to the effects of fluctuations in currency exchange rates. Although the majority of our cash generated from sales is denominated in U.S. Dollars, a small amount is denominated in foreign currencies, and our expenses are generally denominated in the currencies of the jurisdictions in which we conduct our operations. Because we conduct business in currencies other than U.S. Dollars but report our results of operations in U.S. Dollars, we also face remeasurement exposure to fluctuations in currency exchange rates. Any of these risks could hinder our ability to predict our future results and earnings. In addition, we do not currently maintain a program to hedge exposures to non-U.S. Dollar currencies.