CW 2020 Annual Report

our business, financial condition and results of operations. In addition, it is possible that in some jurisdictions, regulations could be changed to limit our ability to act for parties where conflicts exist even with informed consent, which could limit our market share in those markets. There can be no assurance that conflicts of interest will not arise in the future that could cause material harm to us. Failure to maintain and execute information technology strategies and ensure that our employees adapt to changes in technology could materially and adversely affect our ability to remain competitive in the market. Our business relies heavily on information technology, including on solutions provided by third parties, to deliver services that meet the needs of our clients. If we are unable to effectively execute and maintain our information technology strategies or adopt new technologies and processes relevant to our service platform, our ability to deliver high-quality services may be materially impaired. In addition, we make significant investments in new systems and tools to achieve competitive advantages and efficiencies. Implementation of such investments in information technology could exceed estimated budgets and we may experience challenges that prevent new strategies or technologies from being realized according to anticipated schedules. If we are unable to maintain current information technology and processes or encounter delays, or fail to exploit new technologies, then the execution of our business plans may be disrupted. Similarly, our employees require effective tools and techniques to perform functions integral to our business. Our payroll and compensation technology systems are important to ensuring that key personnel, in particular commission-based personnel, are compensated accurately and on a timely basis. Failure to pay professionals the compensation they are due in a timely manner could result in higher attrition. Failure to successfully provide such tools and systems, or ensure that employees have properly adopted them, could materially and adversely impact our ability to achieve positive business outcomes. Failure to maintain the security of our information and technology networks, including personally identifiable and client information, intellectual property and proprietary business information could significantly adversely affect us. Security breaches and other disruptions of our information and technology networks could compromise our information and intellectual property and expose us to liability, reputational harm and significant remediation costs, which could cause material harm to our business and financial results. In the ordinary course of our business, we collect and store sensitive data, including our proprietary business information and intellectual property, and that of our clients and personally identifiable information of our employees, contractors and vendors, in our data centers and on our networks. The secure processing, maintenance and transmission of this information is critical to our operations. Despite our security measures, and those of our third-party service providers, our information technology and infrastructure may be vulnerable to attacks by third parties or breached due to employee error, malfeasance or other disruptions. An increasing number of companies that rely on information and technology networks have disclosed breaches of their security, some of which have involved sophisticated and highly targeted attacks on portions of their websites or infrastructure. The techniques used to obtain unauthorized access, disable, or degrade service, or sabotage systems, change frequently, may be difficult to detect, and often are not recognized until launched against a target. A significant actual or potential theft, loss, corruption, exposure, fraudulent use or misuse of client, employee or other personally identifiable or proprietary business data, whether by third parties or as a result of employee malfeasance or otherwise, non-compliance with our contractual or other legal obligations regarding such data or intellectual property or a violation of our privacy and security policies with respect to such data could result in significant remediation and other costs, fines, litigation or regulatory actions against us. Such an event could additionally disrupt our operations and the services we provide to clients, harm our relationships with contractors and vendors, damage our reputation, result in the loss of a competitive advantage, impact our ability to provide timely and accurate financial data and cause a loss of confidence in our services and financial reporting, which could adversely affect our business, revenues, competitive position and investor confidence. Additionally, we rely on third parties to support our information and technology networks, including cloud storage solution providers, and as a result have less direct control over our data and information technology systems. Such third parties are also vulnerable to security breaches and compromised security systems, for which we may not be indemnified, and which could materially adversely affect us and our reputation. Furthermore, our, or our third-party vendors’, inability to detect unauthorized use (for example, by current or former employees) or take appropriate or timely steps to enforce our intellectual property rights may have an adverse effect on our business.

17