62 added · 16 removed between the two most recent 10-Ks. The risks a company starts — or stops — disclosing are often the story.
Newly disclosed
For example, the EU’s Artificial Intelligence Act, or AI Act, originally entered into force on August 1, 2024, and is expected to undergo amendments as introduced in the EU’s November 2025 Digital Omnibus.
For example, if the content, recommendations or analyses that AI applications assist in producing are or are alleged to be deficient or inaccurate, or if the data used to train these applications are or are alleged to be deficient or 15 inaccurate or legally impermissible to train on, we could be subject to competitive risks, potential legal liability, and reputational harm.
At the federal level, the Trump Administration has endorsed a federal moratorium on the enforcement of state AI laws, including through a December 11, 2025 executive order on “Ensuring a National Policy Framework for Artificial Intelligence.” Federal efforts have thus far have not been successful in curtailing state action on AI regulation, which has contributed to an increasingly complicated regulatory landscape.
While AI and machine learning present opportunities for enhanced productivity, AI also introduces cybersecurity, data privacy, IT, intellectual property, regulatory, legal, operational, competitive, reputational and other risks that could adversely impact our business.
Furthermore, the integration of third-party AI models, including Large Language Models, within our products and services may rely, in part, on certain safeguards implemented by the third-party developers of the underlying AI models, including those related to the accuracy, bias, and other variables of the data, and these safeguards may be insufficient.
Further, given the early stage of generative AI, the evolving regulatory landscape surrounding AI also poses a risk, as new laws and regulations could impose additional compliance burdens, resulting in increased operational costs to comply with U.S. and non-US laws concerning the use of AI.
As enacted, the AI Act imposes significant obligations on providers and deployers of high-risk AI systems and encourages providers and deployers of AI systems to account for EU ethical principles in their development and use of these systems.
The rapid adoption of AI technologies may create an “arms race” dynamic in our industry, in which competitors leverage AI to develop more efficient, automated, or lower-cost alternatives to our offerings or to disrupt traditional subscription-based software models.
Any breach that compromises our AI infrastructure or the sensitive data utilized therein could result in the loss of intellectual property, material financial costs for remediation, and loss of customer trust in the security of our products.
Furthermore, if our AI processes inadvertently process sensitive guest or employee data in a manner that violates privacy standards (such as GDPR or CCPA), we could be subject to fines, litigation, and regulatory enforcement actions.
Additionally, the AI models we use may be subject to novel attack vectors, such as "prompt injection" or "data poisoning," where attackers attempt to manipulate the model's logic or access underlying training data.
Likewise, within the United States, the regulatory landscape is rapidly evolving as evidenced by several U.S. states introducing or enacting legislation that is designed to govern the development or use of AI.
No longer disclosed
Although judgement was entered for us and against Ameranth on all claims in that suit in 2022, the litigation resulted in substantial expenses, even though it did not have a material adverse effect on our business, financial condition, and results of operations. 21 If we fail to meet our customers’ performance expectations, our reputation may be harmed, and we may be exposed to legal liability.
For example, on April 6, 2012, Ameranth, Inc. filed a complaint against us in the U.S.
For example, we use Progress Software’s MOVEit Transfer application to enable file transfers with some of our customers.
All impacted customers were notified in June 2023, and the incident has not had a material adverse effect on our business, financial condition, or results of operation.
On May 31, 2023, Progress Software disclosed that it had identified a previously unknown vulnerability in its MOVEit Transfer application.
However, we identified unauthorized file downloads from our MOVEit Transfer application impacting about 130 customers who used our InfoGenesis POS, Eatec and Agilysys Analyze products.
Any general weakening of, and related declining corporate confidence in, the global economy or the curtailment in corporate spending could cause current or potential customers to reduce or eliminate their information technology budgets and spending, which could cause customers to delay, decrease or cancel purchases of our products and services; cause customers not to pay us; or to delay payment for previously purchased products and services. 14 Our business may be impacted by decreases in travel and leisure activities resulting from weak economic conditions, increases in energy prices and changes in tariffs and currency values, political instability, heightened travel security measures, travel advisories, disruptions in air travel, and concerns over disease, violence, war, and/or terrorism.
Our long-term strategy is focused on continually investing in and growing our business and operations, both organically and through acquisitions. 15 Investments in new markets, solutions, and technologies, research and development, infrastructure and systems, geographic expansion, and talent are critical components for executing our strategy.
District Court for the Southern District of California, alleging that certain of our products infringe patents owned by Ameranth directed to configuring and transmitting hospitality menus (e.g., restaurant menus) for display on electronic devices, and synchronizing the menu content between the devices.
If a significant number of customers file for bankruptcy or otherwise fail to pay amounts owed to us, our revenues and liquidity could be adversely affected. 22 Risks Relating to Our Finances and Capital Structure Our stock has been volatile, and we expect that it will continue to be volatile.
When we cease to have net operating losses available to us in a particular tax jurisdiction, either through their expiration, disallowance, or utilization, our cash tax liability will increase in that jurisdiction. 23 We are exposed to foreign currency exchange rate fluctuations that could negatively impact our financial results.
Our business, markets, growth prospects and business model could be materially impacted or altered as a result of adverse changes in travel and leisure activities due to a pandemic or other wide-ranging and sustained events.