GoPro (GPRO) Risk Analysis

We are dependent on information systems to develop our products and services, process transactions, manage our supply chain and inventory, ship goods on a timely basis, maintain cost-efficient operations, complete timely and accurate financial reporting, operate GoPro.com, and respond to customer inquiries. In the ordinary course of our business, we electronically collect, use and store sensitive data, including our intellectual property, our proprietary business information and that of our customers and suppliers, and personally identifiable information of our customers and employees. Moreover, many of our employees, service providers and third parties work more frequently on a remote or hybrid arrangement basis, which may also result in heightened risks related to consumer privacy, network security and fraud. Cyber-attacks may threaten our information systems and are increasing in their frequency, sophistication, and maleficence, and have become increasingly difficult to detect. As artificial intelligence capabilities improve and are increasingly adopted, we may see cyber-attacks utilizing or exploiting artificial intelligence. Despite the implementation of security measures designed to protect against such threats, our information technology systems, and those of our strategic partners and third parties on whom we rely, are vulnerable to cyber-attacks, security breaches, computer viruses damage, unauthorized access, natural disasters, terrorism, theft or exposure of confidential data, war and other acts of foreign governments, and failures of telecommunication, electrical and other critical systems. If malicious actors compromise our products and services, including without limitation hacking or breach of such products and services, our business and our reputation will be harmed. While we maintain industry standard cybersecurity insurance, our insurance may be insufficient for a particular incident or may not cover all liabilities incurred by any such attacks.

We are subject to income taxes in the United States and various jurisdictions outside the United States. Our effective tax rate could be adversely affected by changes in, or our interpretation of, tax law changes and related new or revised guidance and regulations, changes in our geographical earnings mix, unfavorable government reviews of our tax returns, material differences between our forecasted and actual annual effective tax rates, or by evolving enforcement practices. We are subject to the examination of our income tax returns by the United States Internal Revenue Service and other domestic and foreign tax authorities. We regularly assess the likelihood of outcomes resulting from these examinations to determine the adequacy of our provision for income taxes and other taxes and have reserved for adjustments that may result from the current examinations. The final determination of tax audits and any related legal proceedings could materially differ from amounts reflected in our income tax provisions and accruals. In such case, our income tax provision and cash flows in the period or periods in which that determination is made could be negatively affected.

Personal privacy, data protection and information security are significant issues in the United States and the other jurisdictions where we offer our products and services. The regulatory framework for privacy and security issues worldwide is rapidly evolving and is likely to remain uncertain for the foreseeable future. Our handling of data is subject to a variety of laws and regulations, including regulation by various government agencies, including the United States Federal Trade Commission (FTC) and various state, local and foreign regulators, and agencies. Our agreements with certain customers and business partners may also subject us to certain requirements related to our processing of personal information, including obligations to use industry-standard or reasonable security measures to safeguard personal information. The United States and various state and foreign governments have adopted or proposed limitations on the collection, distribution, use and storage of personal information of individuals, including end-customers and employees. In the United States, the FTC and many state attorneys general are applying federal and state consumer protection laws to the online collection, use, processing, storage, deletion, and dissemination of personal information. Further, all states have enacted laws requiring companies to notify individuals, regulatory authorities and others of security breaches involving personal information. We also expect that there will continue to be new proposed laws, regulations and industry standards concerning privacy, data protection and information security in the United States, the EU and other jurisdictions, and we cannot always predict the impact of such future laws, regulations, and standards may have on our business. We expect that existing laws, regulations, and standards may even be interpreted differently or inconsistently relative to each other in the future. California initiated the first wave of state consumer privacy laws by enacting the California Consumer Privacy Act (the CCPA), as amended by the California Privacy Rights Act (the CPRA). Following California's lead, several other states have enacted privacy laws. Failure to comply with these new state regulations may result in significant civil penalties, injunctive relief, or statutory or actual damages. Complying with this new privacy legislation may result in additional costs and expenses. Additionally, many foreign countries and governmental bodies, including Australia, the EU, the U.K., India, Japan, and numerous other jurisdictions in which we operate or conduct our business, have laws and regulations concerning the collection, use, processing, storage, and deletion of personal information obtained from their residents or by businesses operating within their jurisdiction. These laws and regulations often are more restrictive than those in the United States. For example, in the EU and the U.K., the respective EU or U.K. General Data Protection Regulation (GDPR) imposes more stringent data protection requirements, provides an enforcement authority, and imposes large penalties for noncompliance. If we fail to comply with the respective GDPR or if regulators assert that we have failed to comply with the GDPR, we may be subject to fines of up to 4% of our worldwide annual revenue under EU GDPR requirements and up to 4% of our worldwide annual turnover under the UK's implementation of GDPR. Among other requirements, both the EU and U.K. GDPR regulates transfers of personal data outside of the EU to countries that have not been found to provide adequate protection to personal data, including the United States, requiring that certain steps are taken to legitimize those transfers. We have undertaken certain efforts to conform transfers of personal data from the EU to the United States and other jurisdictions based on our understanding of current regulatory obligations and the guidance of regulators and data protection authorities. Despite this, we may be unsuccessful in establishing or maintaining conforming means of transferring such data from the European Economic Area or the U.K. particularly as a result of continued legal and legislative activity that has challenged or called into question the legal basis for existing means of data transfers to countries that have not been found to provide adequate protection for personal data. We continue to monitor these regulatory and legal developments. In addition to government regulation, privacy advocates and industry groups may propose new and different self-regulatory standards. These and other industry standards may legally or contractually apply to us, or we may elect to comply with such standards. It is possible that if our practices are not consistent, or are viewed as not consistent, with legal and regulatory requirements, including changes in laws, regulations and standards or new interpretations or applications of existing laws, regulations and standards, we may become subject to audits, inquiries, whistleblower complaints, adverse media coverage, investigations, loss of export privileges, fines, awards, penalties, injunctions, judgments, or criminal or civil sanctions, all of which may have a material adverse effect on our business, operating results, reputation, and financial condition. Future laws, regulations, standards and other obligations, as well as changes in the interpretation of existing laws, regulations, standards and other obligations could impair our ability to collect, use or disclose information relating to individuals, which could decrease demand for our products, require us to restrict our business operations, increase our costs, and impair our ability to maintain and grow our customer base and increase our revenue.

Seasonal consumer shopping patterns significantly affect our business. We have traditionally experienced greater revenue in the fourth quarter of each year due to demand related to the holiday season, and in some years, greater demand associated with the launch of new products heading into the holiday season. Fourth quarter revenue comprised 25%, 29%, and 29% of our 2024, 2023 and 2022 revenue, respectively. Given the strong seasonal nature of our sales, appropriate forecasting is critical to our operations. We anticipate that this seasonal impact is likely to continue and any shortfalls in expected fourth quarter revenue due to macroeconomic conditions, the inflationary impact on consumers' share of wallet, product release patterns or delays, declines in the effectiveness of our promotional activities, changes in product mix, charges incurred against new products to support promotional activities for such new products, pricing pressures, supply chain disruptions, shipping delays, or for any other reason, could cause our annual results of operations to suffer significantly. For example, during the fourth quarter of 2023, our sell-through fell short of our projections partially due to consumers' expectation of holiday season promotions even after the Thanksgiving Black Friday and Cyber Monday events in combination with the U.S. consumer share of wallet shifting away from consumer electronic products in the month of December which impacted our results of operations. Generally, we have experienced lower revenue in the first half of the year as a percentage of total revenue for the year, as compared to second half revenue. First half revenue comprised 43%, 41%, and 43% of our annual 2024, 2023, and 2022 revenue, respectively.

We have experienced high subscriber growth over the past several years, but we may not be able to sustain such growth in the future. For example, our subscriber growth slowed to 1% from 12% when comparing subscriber count for the twelve months ending on December 31, 2024 and 2023, respectively. Our subscription service is the highest gross margin product we offer. Our revenue growth and profitability are dependent on our ability to continuously attract and retain subscribers, and we cannot be certain that efforts to do so will be successful. Any changes to our subscription offerings, or increases to the offering costs, could have an adverse effect on the success and profitability of our subscription service, attracting new subscribers and retaining existing subscribers. There are many factors that could lead to slowing subscriber growth or a decline in subscribers, including a decline in camera sales, attach rates or retention rates, our failure to introduce new features, benefits, products, or services that customers desire, changes to existing products, services, and pricing that are not favorably received by our customers, or changes in the perceived value of our offerings. If the attach rate is less than what we forecasted, this could have a negative impact on our overall subscriber growth plans. A decline in subscribers could have an adverse effect on our business, financial condition, and operating results.

Our success depends on the value and reputation of our brand, including our primary trademarks "GOPRO," "HERO," and the GoPro logos. The GoPro brand is integral to the growth of our business and expansion into new markets. Maintaining, promoting and positioning our brand will largely depend on the success of our marketing and merchandising efforts, including through establishing relationships with high profile sporting and entertainment events, venues, sports leagues and sports associations, athletes and celebrity personalities, our ability to provide consistent, high quality products and services, and our consumers' satisfaction with the technical support and software updates we provide, each of which requires significant expenditures. Failure to grow and maintain our brand, launch new products on schedule and free of defects or negative publicity related to our products, our consumers' user-generated content, the athletes we sponsor, the celebrities we are associated with, or the labor policies of any of our suppliers or manufacturers could adversely affect our brand, business and operating results. Maintaining and enhancing our brand also requires substantial financial investments, although there is no guarantee that these investments will increase sales of our products or positively affect our operating results.

We generally provide a 12-month warranty on all of our cameras, except in the European Union (the EU), where we provide a two-year warranty. For certain mounts and accessories, where permitted, we provide a lifetime or limited lifetime warranty. The occurrence of any material defects in our products could make us liable for damages and warranty claims in excess of our current reserves. In addition, we could incur significant costs to correct any defects, warranty claims or other problems, including costs related to product recalls. Any negative publicity related to the perceived quality and safety of our products could affect our brand image, decrease retailer, distributor and consumer confidence and demand, and adversely affect our operating results and financial condition. Additionally, if defects are not discovered until after consumers purchase our products, they could lose confidence in the technical attributes of our products and our business could be harmed. Also, while our warranty is limited to repairs or returns and replacement, warranty claims may result in litigation, the occurrence of which could adversely affect our business and operating results. Based on our historical experience with our camera products, we have an established methodology for estimating warranty liabilities with respect to cameras and accessories; however, this methodology may not accurately predict future rates of warranty claims.

Our ability to meet customer demand depends, in part, on our ability to obtain timely and adequate delivery of components for our products. We do not have internal manufacturing capabilities and rely on several contract manufacturers, located in China and Thailand, to manufacture our products. All of the components that go into the manufacturing of our hardware products and accessories are sourced from third-party suppliers. We do not control our contract manufacturers or suppliers, including their capacity, bandwidth, or costs of their labor, environmental or other practices. Some of the key components used to manufacture our products come from a limited or single source of supply, or from a supplier that could potentially become a competitor. For our camera designs, we incorporate system-on-chips, sensors, lens, batteries and memory solutions that critically impact the performance of our products. These components have unique design and performance profiles, and as a result, it is not commercially practical to support multiple sources for these components for our products. We are subject to the risk of shortages and long lead times in the supply of these components and the risk that our suppliers discontinue or modify components used in our products. In addition, the lead times associated with certain components are lengthy and preclude rapid changes in quantities and delivery schedules, and such lead times could increase as a result of shipping disruptions, global conflicts, including any escalations or expansions of those conflicts, or other factors. If we lose access to components from a particular supplier or experience a significant disruption in the supply of products and components from a current supplier, we may be unable to locate alternative suppliers or submit orders directly through supplier's vendors of comparable quality at an acceptable price, or at all, and our business could be materially and adversely affected. In addition, if we experience a significant increase in demand for our products, our suppliers might not have the capacity or elect not to meet our needs as they allocate components to other customers. Developing suitable alternate sources of supply for these components may be time-consuming, difficult and costly, and we may not be able to source these components on terms that are acceptable to us, or at all, which may adversely affect our ability to meet our development requirements or to fill our orders in a timely or cost-effective manner. Although we have policies and procedures in place requiring our contract manufacturers and major component suppliers to comply with applicable federal, state, local and international requirements, we cannot confirm with certainty that our manufacturers and suppliers consistently comply with these requirements. In addition, if there are changes to these or other laws (or their interpretation) or if new similar laws are passed in other jurisdictions, we may be required to re-engineer our products to use components compatible with these regulations. Any re-engineering and component substitution could result in additional costs to us or disrupt our operations or logistics. Additionally, we rely on third parties such as Amazon Web Services to provide software and enterprise services.

Our business requires us to coordinate the manufacture and distribution of our products, including our ability to properly stock inventory adequate for our demand. If we do not successfully coordinate with our service providers, we may have insufficient supply of products to meet customer demand or face increased or additional costs, and as a result, we could lose sales, and our financial performance may be adversely affected. To ensure adequate inventory supply and meet the demands of our retailers and distributors, we must forecast inventory needs and place orders with our contract manufacturers and component suppliers based on our estimates of future demand for particular products as well as accurately track the level of product inventory in the channel to ensure we are not in an over or under supply situation. To the extent we discontinue the manufacturing and sales of any products or services, we must manage the inventory liquidation, supplier commitments and customer expectations. No assurance can be given that we will not incur charges in future periods related to our inventory management or that we will accurately forecast sales in a future period. Our ability to accurately forecast demand for our products is affected by many factors, including product introductions by us and our competitors, channel inventory levels, unanticipated changes in general market demand, macroeconomic conditions, including inflation or recession, and consumer confidence. If we do not accurately forecast customer demand for our products, we may in future periods be unable to meet consumer, retailer, or distributor demand for our products, or may be required to incur higher costs to secure the necessary production capacity and components, and our business and operating results could be adversely affected.

Revenue from outside the United States comprised 64%, 61%, and 59% of our revenue in 2024, 2023, and 2022, respectively, and we expect international revenue to continue to be significant in the future. As a result, we may be negatively impacted by foreign currency exchange rate fluctuations, which could have a material negative effect on our future operating results. Further, we currently have foreign operations in Australia, China, France, Germany, Hong Kong, Japan, Netherlands, Philippines, Romania, the United Kingdom (U.K.) and a number of other countries in Europe and Asia. Operating in foreign countries requires significant resources and considerable management attention, and we may enter new geographic markets where we have limited or no experience in marketing, selling, and deploying our products. International expansion has required and will continue to require us to invest significant funds and other resources and we cannot be assured our efforts will be successful. Our focus on international operations may expose us to a number of risks in addition to domestic operations, including but not limited to: - burdens of complying with a wide variety of laws and regulations or risk of non-compliance, including environmental, packaging and labeling laws or regulations, which can change based on new political conditions;- delays or disruptions in our supply chain;- adverse tax effects and foreign exchange controls making it difficult to repatriate earnings and cash;- the effect of foreign currency exchange rates and interest rates, including any fluctuations caused by, inflation, recessionary concerns, or the strengthening of the U.S. dollar relative to the foreign currencies in which we conduct business including relative to the Eurozone;- political conditions, economic instability, geopolitical turmoil, civil disturbances, or social unrest in a specific country or region in which we operate, which could have an adverse impact on our operations in that location, for example, the effects of China-Taiwan relations or conflict in the Middle East;- pandemics; wars and global conflicts, including the ongoing conflicts around the world;- trade restrictions;- the imposition of government controls;- lesser degrees of intellectual property protection;- tariffs and customs duties and the classifications of our goods by applicable governmental bodies;- a legal system subject to undue influence or corruption; and - a business culture in which illegal sales practices may be prevalent. The occurrence of any of these risks could negatively affect our international business and consequently our business, operating results, and financial condition.

Our headquarters are located in the San Francisco Bay Area of California, an area susceptible to earthquakes. A major earthquake or other natural disaster, fire, threat of fire, act of terrorism, public health issues or other catastrophic event in California or elsewhere that results in the destruction or disruption of any of our critical business operations or information technology systems could severely affect our ability to conduct normal business operations and, as a result, our future operating results could be harmed. Our key manufacturing, supply and distribution partners have global operations in, among other countries, China, Thailand, Hong Kong, Japan, Netherlands, Taiwan, and the United States. Political instability, global conflicts, public health issues, crises, pandemics, or other catastrophic events in any of those countries, including as a result of climate change, could adversely affect our business in the future, our financial condition and operating results.

The United States and other countries in which our products are produced or sold internationally have imposed and may impose additional quotas, duties, tariffs, or other restrictions or regulations, or may adversely adjust prevailing quota, duty, tariff levels, or export or other licensing requirements. Countries impose, modify and remove tariffs and other trade restrictions in response to a diverse array of factors, including global and national economic and political conditions, which make it impossible for us to predict future developments regarding tariffs and other trade restrictions. We do not have internal manufacturing capabilities and rely on several contract manufacturers, including component vendors, located in China, Thailand and in other countries to manufacture our products. Our contract manufacturer locations expose us to risks associated with doing business globally, including risks related to changes in tariffs or other export and import restrictions, and increased security costs. Additionally, changes in U.S. administrative policy from the recent U.S. presidential and congressional elections may lead to significant changes in tariffs for imported goods among other possible changes. Any announcement by the United States Trade Representative (USTR) to impose additional or increased tariffs on GoPro products could have a material adverse effect on our United States bound production, business, and results of our United States operations. If these duties are imposed on our products, we may be required to raise our prices, which may result in the loss of customers and harm our business and results of operations, or we may choose to pay for these tariffs without raising prices which may negatively impact our results of operations and profitability. We continue to explore manufacturing capabilities outside of China and currently manufacture certain cameras in Thailand to mitigate risks of additional tariffs, duties or other restrictions on our products destined for the United States and may choose to transition more manufacturing outside of China. Sales of our products in China are material to our business and represent a significant portion of our revenue. This revenue stream from China is at risk in the event China imposes retaliatory tariffs impacting in-bound sales of our products or imposes any other export restrictions on our products. While we have proactively moved our U.S. bound camera production outside of China, the risk that tariffs are imposed on other countries could have an impact on our U.S. bound production costs.