Sweetgreen (SG) Risk Analysis

Labor is a significant component in the cost of operating our restaurants. We may experience increased labor costs because of increased competition for employees and inflation, higher employee turnover rates, inefficiency in scheduling our employees, increases in the federal, state, or local minimum wage, or increases in other employee benefits costs (including costs associated with health insurance coverage). If we experience increased labor costs, our operating expenses would increase and our growth could be negatively impacted. For example, as of April 1, 2024, the State of California increased its minimum wage for certain restaurant chains, including Sweetgreen, to $20.00 per hour, and a state-appointed council may further increase this minimum wage annually. We have, and in the future we may seek to, offset the increased labor costs from this legislation by increasing our menu prices, but our customers may be unwilling to pay higher prices in the future. If we are unable to offset any further increases in our labor costs by increasing our menu prices, this legislation may negatively impact our Restaurant Level Profit Margin. Our success depends in part upon our ability to attract, motivate, and retain a sufficient number of well-qualified restaurant operators and management personnel, as well as a sufficient number of other qualified employees, including customer service and kitchen staff, to align with our expansion plans and multi-channel approach. In the event we cannot sufficiently staff our restaurants, we may from time to time have to temporarily close some of our channels (including potentially certain of our Owned Digital Channels) or close for certain portions of the day and/or days of the week. Because of the busy nature of our restaurants, it is critical that we have a high level of labor productivity and if we do not maintain high engagement or deployment in our restaurants (including in new restaurants and in new markets), it could have an adverse effect on our business. Our ability to recruit and retain restaurant employees may delay the planned openings of new restaurants, limit the operations of our existing restaurants or result in higher employee turnover in existing restaurants, which could have an adverse effect on our business, financial condition, and results of operations. Competition for these employees could require us to pay higher wages, which could result in higher labor costs. In addition, if we fail to adequately monitor and proactively respond to employee dissatisfaction or complaints, it could lead to poor employee satisfaction, higher turnover, litigation, and unionization efforts, which have started to become more prevalent in the hospitality industry. Although none of our employees are currently covered under collective bargaining agreements, if any of our restaurants were to become unionized and collective bargaining agreement terms were significantly different from our current compensation arrangements, it could adversely affect our business, financial condition, and results of operations, and lead to significant management distraction. In addition, a labor dispute involving some or all of our employees may harm our reputation, disrupt our operations, and reduce our revenue, and the resolution of any such disputes may increase our costs. If we are unable to continue to recruit and retain sufficiently qualified individuals, our business and our growth could be adversely affected.

In 2019, our subsidiary, SG Logistics, LLC ("SG Logistics"), commenced engaging drivers to deliver products for certain of our Outpost and Catering orders through our technology platform. SG Logistics may become involved in legal proceedings and investigations that claim that members of its delivery network who it treats as independent contractors for all purposes, including employment tax and employee benefits, should instead be treated as employees. In addition, there can be no assurance that legislative, judicial, or regulatory (including tax) authorities will not introduce proposals or assert interpretations of existing law and regulations, that would mandate that SG Logistics' change its classification of the drivers. In the event of a reclassification of members of SG Logistics' independent contractor driver network as employees, SG Logistics could be exposed to various liabilities and additional costs. These liabilities and costs could have an adverse effect on our business, financial condition, and results of operations for our Outpost and Catering business and/or make it cost prohibitive for SG Logistics to deliver orders using its driver network, particularly in geographic areas where we do not have significant volume. These liabilities and additional costs could include exposure (for prior and future periods) under federal, state, and local tax laws, and workers' compensation, unemployment benefits, labor, and employment laws, as well as potential liability for penalties and interest. Additionally, in the event a courier that contracts with SG Logistics commits a serious crime in connection with providing services on the SG Logistics platform, we could potentially be responsible for any losses as a result of such incident, and such incident could have a material adverse impact on our brand. Although we expect that, beginning in fiscal year 2025, SG Logistics will engage a third-party service provider to deliver Outpost and Catering orders and will no longer directly engage drivers to deliver those orders, there can be no assurance that this transition will occur.

The profitability of our restaurants depends in part on our ability to anticipate and react to changes in commodity costs, including food, paper, supplies, fuel, utilities, and other operating costs. Additionally, prices in certain of the commodity markets, including markets for key items, such as chicken, kale, and avocado, will likely continue to increase over time and may also become volatile due to climate conditions, disease outbreaks, and other macroeconomic and geopolitical conditions, all of which are beyond our control and, in many instances, extreme and unpredictable (such as more frequent and/or severe fires and hurricanes). We can only partially address future price risk due to climate change through hedging and other activities, and therefore increases in commodity costs, particularly due to climate change, could have an adverse impact on our ability to achieve or maintain profitability. The profitability of our restaurants is also adversely affected by increases in the price of utilities, such as natural gas, electricity, and water, whether as a result of inflation, shortages, interruptions in supply, or otherwise. There can be no assurance that future cost increases can be offset by increased menu prices or that current or future menu prices will be fully absorbed by our guests without any resulting change to their demand for our products. In addition, there can be no assurance that we will generate revenue growth in an amount sufficient to offset inflationary or other cost pressures, particularly in light of the high rates of inflation in recent years. Our ability to respond to increased costs by increasing prices or by implementing alternative processes or products will depend on our ability to anticipate and react to such increases and other more general economic and demographic conditions, as well as the responses of our competitors and guests. All of these things may be difficult to predict and beyond our control. In this manner, increased costs could adversely affect our results of operations.

We have faced, and may in the future face, claims by third parties that one or more of our names, logos, designs, creative works, or technology, including our Infinite Kitchen technology, has infringed, diluted, misappropriated, or otherwise violated their intellectual property rights. For example, in fiscal year 2023, Chipotle filed a lawsuit against us (which lawsuit was subsequently settled) in connection with our use of the word "Chipotle" as part of the name of one of our menu items. Any such litigation may be costly and could divert other resources from our business. If we are unable to successfully defend against such claims, we may be subject to injunctions that could require expensive changes to our business operations or prevent or delay us from using our names, logos, designs, creative works, or technology, and we may be liable for damages, which in turn could have an adverse effect on our business, financial condition, and results of operations. Similarly a third party may allege that technology that we license infringes upon or misappropriates that third party's intellectual property rights, and we may lack sufficient contractual rights from the licensor to fully indemnify us for any loses, costs, or expenses that we incur in relation to any such allegation. We may also be subject to an injunction with respect to any such allegation, which could prevent us from using licensed technology that is critical to our business operations and may require expensive changes to those operations. Accordingly, such third-party claims could have an adverse effect on our business, financial condition, and results of operations.

In 2021, we acquired Spyce primarily to further develop and deploy Spyce's kitchen automation technology, which we refer to as the Infinite Kitchen. In fiscal year 2023, we deployed Infinite Kitchen units in two of our restaurants, and in fiscal year 2024 we deployed an additional 10 units in our restaurants. We expect to deploy additional Infinite Kitchen units in new and existing Sweetgreen restaurants. Our operations in restaurants that use the Infinite Kitchen heavily depend on the seamless functioning of those systems. Any technical malfunctions, software glitches, hardware failures, or other disruptions to the operations of the Infinite Kitchen could result in reduced efficiency, dissatisfaction amongst our customers, physical harm to our customers or employees, harm to our reputation, food loss and its associated costs, and revenue loss. A significant and continuing malfunction or failure of, or a safety concern with respect to, one or more Infinite Kitchen units may require us to close the stores containing those units, and we may not be able to repair those units and reopen those stores in a timely manner or at all. We have limited operating experience with the Infinite Kitchen technology so as to determine its reliability, and we have limited experience conducting maintenance activities and repairs with respect to this technology. Any store closures caused by the significant malfunction or failure of, or a safety concern with respect to, one or more Infinite Kitchen units could have an adverse effect on our business, financial condition, and results of operations. Our growth plan contemplates the deployment of additional Infinite Kitchen units in new and existing Sweetgreen restaurants. We may be unable to manufacture and deploy Infinite Kitchen units in the time, and in the quantity, necessary to meet that growth plan. We rely on third party vendors and suppliers for the manufacture of Infinite Kitchen units. Any issues with these vendors and suppliers, such as supply chain disruptions, contractual disputes, or business continuity issues, could adversely affect our ability to manufacture and deploy Infinite Kitchen units in a timely manner or at all. Further, the costs associated with Infinite Kitchen technology components, and the manufacturing and assembly thereof, may increase in the future, including but not limited to as a result of any new or increased taxes, tariffs, or duties that the United States government may impose upon the importation of those components from non-U.S. countries. We currently import certain components of our infinite kitchen units from China, and we expect the cost of such components to increase as a result of the additional tariff of 10% on all imports from China imposed by the United States government, effective February 4, 2025. Any such cost increases may cause the manufacture and deployment of additional Infinite Kitchen units to become cost-prohibitive for our business. If we fail to manufacture and deploy Infinite Kitchen units in a timely manner, we may cause delays in the opening of new restaurants that are designed for those units, which may result in delays in the realization of revenue from those new restaurants, a failure to achieve our growth plan, and adverse impact on our financial condition and results of operations. The kitchen automation industry is characterized by rapid technology advancements and innovation. Several third parties have developed, or are seeking to develop, technology that competes with our Infinite Kitchen technology. If any of those third parties are successful in developing and deploying such technology, and if that technology is made available to our competitors at a lower price than what we pay for Infinite Kitchen units, or if that technology offers significant additional benefits to our competitors, our business may suffer. Additionally, if any third party owns or acquires intellectual property rights related to kitchen automation technology, those intellectual property rights may limit our ability to develop, manufacture, and deploy our Infinite Kitchen technology, and may result in one or more disputes with that third party with respect to our Infinite Kitchen technology.

We collect, use, receive, store, process, generate, transfer, make accessible, protect, secure, dispose of, transmit, share, and disclose personal information and other sensitive information about customers, personnel, business contacts, and others; proprietary and confidential business data; trade secrets; intellectual property; and sensitive third-party data and financial information in the course of operating our business. These activities are or may become regulated by a variety of domestic and foreign laws, regulations, guidance, industry standards, external and internal data privacy and security policies, contractual requirements, and other obligations relating to data privacy and security, which are complex, rapidly evolving, and increasingly stringent. In the United States, federal, state, and local governments have enacted numerous data privacy and security laws, including data breach notification laws, personal information privacy laws, consumer protection laws (e.g., Section 5 of the Federal Trade Commission Act), and other similar laws (e.g., wiretapping laws). Additionally, numerous U.S. states have enacted comprehensive data privacy and security laws that impose certain obligations on covered businesses, including providing specific disclosures in privacy notices and affording residents with certain rights concerning their personal information. As applicable, such rights may include the right to access, correct, or delete certain personal information, and to opt-out of certain data processing activities, such as targeted advertising, profiling, and automated decision-making. The exercise of these rights may impact our business and ability to provide our products and services. Certain states also impose stricter requirements for processing certain personal information, including sensitive information, such as conducting data privacy impact assessments. These state laws allow for statutory fines for noncompliance. For example, the CCPA applies to personal information of consumers, business representatives, and employees who are California residents, and requires covered businesses to provide specific disclosures in privacy notices and honor requests of California residents to exercise certain privacy rights related to their personal information. The CCPA also created restrictions on "sales" of personal information that allow California residents to opt-out of certain sharing of their personal information and may restrict the use of cookies and similar technologies for advertising purposes. Our platform relies on such technologies for advertising purposes and could be adversely affected by the CCPA's restrictions if users opt-out of certain information sharing on which our advertising relies, which would impair our ability to advertise. This could decrease the effectiveness of our marketing and adverting strategies and decrease our level of customer acquisition and/or retention, may cause us to seek new avenues to market and advertise, and may cause us to increase our marketing and advertising expenditures. The CCPA provides for civil penalties of up to $7,988 per intentional violation and allows private litigants affected by certain data breaches to recover significant statutory damages. Similar laws have been proposed in several other states, as well as at the federal and local levels, and we expect more states to pass similar laws in the future, reflecting a trend toward more stringent privacy legislation in the United States. The enactment of such laws complicates compliance efforts, and increases legal risk and compliance costs for us and the third parties with whom we work. We are also subject to new laws governing the privacy of consumer health data. For example, Washington's My Health My Data Act ("MHMD") broadly defines consumer health data, places restrictions on processing consumer health data (including imposing stringent requirements for consents), provides consumers certain rights with respect to their health data, and creates a private right of action to allow individuals to sue for violations of the law. In addition to the risks we face under emerging privacy laws, the restrictions on text message communications imposed by the Telephone Consumer Protection Act ("TCPA") have long been a source of potential liability for our business. The TCPA imposes various consumer consent requirements and other restrictions on certain telemarketing activity and other communications with consumers by phone, fax, or text message. TCPA violations can result in significant financial penalties, including penalties or criminal fines imposed by the Federal Communications Commission or fines of up to $1,500 per violation imposed through private litigation or by state authorities. Claims that we have violated the TCPA could be costly to litigate and could expose us to substantial statutory damages or settlement costs. We are also subject to the Controlling the Assault of Non-Solicited Pornography and Marketing Act of 2003 ("CAN-SPAM"), which imposes specific requirements on our email communications with current or potential customers. Additionally, under various privacy laws and other obligations, we may be required to obtain certain consents to process personal information. For example, some of our data processing practices may be challenged under wiretapping laws, if we obtain consumer information from third parties through various methods, including chatbot and session replay providers, or via third-party marketing pixels. These practices may be subject to increased challenges by class action plaintiffs. Our inability or failure to obtain consent for these practices could result in adverse consequences, including class action litigation and mass arbitration demands Foreign laws and regulations pertaining to data privacy and security – including in Europe, China, Brazil, and Japan – are also undergoing rapid change, have become increasingly stringent, and proposals for similar laws and regulations are being considered in several major foreign countries. Restrictions relating to data privacy and security in these countries may limit the products and services we can offer in them, which in turn may limit demand for our services in such countries and our ability to enter into and operate in new geographic markets. Privacy advocates and industry groups have regularly proposed, and may propose in the future, self-regulatory standards by which we are or may become legally or contractually bound. For example, certain privacy laws, such as the CCPA, require us to impose specific contractual restrictions on our service providers. If we fail to comply with these contractual obligations or standards, we may face public and regulatory scrutiny, substantial liability, and fines. Additionally, under various data privacy and security laws and other obligations, we may be required to obtain certain consents to process personal information. Our inability or failure to do so could result in adverse consequences. We also publish privacy policies and other documentation regarding our collection, processing, use, and disclosure of personal information and/or other confidential information. If these policies, materials, or statements are found to be deficient, lacking in transparency, deceptive, unfair, or misrepresentative of our practices, we may be subject to investigation, enforcement actions by regulators, or other adverse consequences. Additionally, our business is reliant on revenue from customers acquired through behavioral, interest-based, or tailored advertising. Consumer resistance to the collection and sharing of the data used to deliver targeted advertising, increased visibility of consent or "do not track" mechanisms as a result of industry regulatory or legal developments, the adoption by consumers of browser settings or "ad-blocking" software, and the development and deployment of new technologies could impact our ability to collect data or engage in marketing and advertising, which could have an adverse effect on our business, financial condition, or results of operations. Further, we are subject to the Payment Card Industry ("PCI") Data Security Standard, a security standard applicable to companies that collect, store, or transmit certain data regarding credit and debit cards, holders and transactions. We rely on vendors to handle PCI matters and to ensure PCI compliance. Despite our compliance efforts, we may become subject to claims that we have violated the PCI Data Security Standard based on past, present, and future business practices. Our actual or perceived failure to comply with the PCI Data Security Standard can subject us to fines, termination of banking relationships, and increased transaction fees. In addition, there is no guarantee that PCI Data Security Standard compliance will prevent illegal or improper use of our payment systems or the theft, loss, or misuse of payment card data or transaction information. Our employees and personnel use generative AI technologies to perform their work, and the disclosure and use of personal information in generative AI technologies is subject to various data privacy and security laws and other obligations. Governments have passed and are likely to pass additional laws regulating generative AI. Our use of this technology could result in additional compliance costs, regulatory investigations and actions, and lawsuits. If we are unable to use generative AI, it could make our business less efficient and result in competitive disadvantages. Obligations related to data privacy and security (and consumers' data privacy expectations) are quickly changing, becoming increasingly stringent, and creating uncertainty. Additionally, these obligations may be subject to differing applications and interpretations, which may be inconsistent or conflict among jurisdictions. Preparing for and complying with these obligations requires us to devote significant resources. These obligations may necessitate changes to our services, information technologies, systems, and practices and to those of any third parties that process personal information on our behalf. Despite our efforts, we may not be successful in complying with the rapidly evolving data privacy and security requirements discussed above. Moreover, despite our efforts, our personnel or third parties with whom we work may fail to comply with such obligations, which could negatively impact our business operations. If we or the third parties with whom we work fail, or are perceived to have failed, to address or comply with applicable data privacy and security obligations, we could face significant consequences, including but not limited to: government enforcement actions (e.g., investigations, fines, penalties, audits, inspections, and similar actions); litigation (including class claims); additional reporting requirements and/or oversight; bans on processing sensitive information (including personal information); orders to destroy or not use personal information; indemnification obligations; negative publicity; reputational harm; monetary fund diversions; diversion of management attention; interruptions in our operations (including availability of data); and financial loss. Such occurrences could have a material adverse effect on our reputation, business, or financial condition, including but not limited to: loss of customers; inability to process personal information or to operate in certain jurisdictions; limited ability to develop or commercialize our products; expenditure of time and resources to defend any claim or inquiry; adverse publicity; or substantial changes to our business model or operations.

There has been increasing public focus by investors, environmental activists, the media, and governmental and nongovernmental organizations on a variety of environmental, social, and other sustainability matters. With respect to the restaurant industry, concerns have been expressed regarding energy management, water management, food and packaging waste management, food safety, nutritional content, labor practices, and supply chain and food sourcing management. Through our mission, we have committed to supporting small and mid-size growers who are farming sustainably, to creating transparency around what's in our food and where it came from, and to creating more accessibility to healthy, real food for more people. Any environmental, social, and governance initiatives we may pursue, could be costly to implement, and we may not be successful. If we are not effective in addressing environmental, social, and other governance matters affecting our industry, setting and meeting relevant environmental, social, or governance goals, or fulfilling our mission or sustainability plans, our brand image may suffer. We may experience increased costs in order to execute upon our sustainability goals and measure achievement of those goals, which could have an adverse impact on our business and financial condition. Conversely, maintaining focus on our environmental sustainability goals may also expose us to scrutiny from members of the investment community or enforcement authorities who may disagree with aspects of our approach to such matters.

If our new restaurants do not perform as planned, our business and future prospects could be harmed. In addition, an inability of our new restaurants to achieve our expected Average Unit Volumes, Same-Store Sales Change, or Restaurant-Level Profit Margin would have an adverse effect on our business, financial condition, and results of operations. We may find that our restaurant concept has limited appeal in new markets, or we may experience a decline in the popularity of our restaurant concept in the markets in which we already operate. Newly opened restaurants in our current markets or our future markets may not be successful, which could have an adverse effect on our business, financial condition, and results of operations. Further, the customer target area of our restaurants varies by location, depending on a number of factors, including population density, other local retail and business attractions, area demographics, and geography. The opening of a new restaurant in or near markets in which we already have restaurants could adversely impact sales at existing restaurants, particularly in markets where we have a highly concentrated number of restaurants, such as New York City, Los Angeles, Boston, Chicago, and the Washington, D.C./Maryland/Virginia metropolitan area. Existing restaurants could also make it more difficult to build our customer base for a new restaurant in the same market. We may selectively open new restaurants in and around areas of existing restaurants that are operating at or near capacity to effectively serve our customers. Sales cannibalization among our restaurants may become significant in the future as we continue to expand our operations and could affect our sales growth, in particular if the delivery radius of an existing restaurant overlaps with that of a new restaurant, which could, in turn, adversely affect our business, financial condition, and results of operations. Additionally, our restaurants and locations must be able to support growth of not only our In-Store and Pick-Up Channels, but also, depending on location, orders through our Native Delivery, Outpost and Catering, and Marketplace Channels. While we attempt to select our locations to match our geographic sales channel strategy, we may not be effective in doing so (particularly as a result of the difficulty in forecasting potential changes in customer behavior, such as may be the case with respect to companies' return-to-office plans following the COVID-19 pandemic), which could lead certain restaurants to be under capacity and other restaurants to be at, or over, capacity. We are developing and implementing store concepts that incorporate our Infinite Kitchen automation technology, and may also prioritize the development, or future development, of new restaurant formats, such as walk-up or drive-thru formats. We do not have significant experience in operating such new restaurant formats (including any store formats incorporating the Infinite Kitchen), and we may not be able to operate them as efficiently as we operate our traditional restaurant formats. We have in the past determined to close certain restaurants due to performance and may do so again in the future, which may adversely affect our business, financial condition, and results of operations.