The spread of COVID-19, which has caused a broad impact globally, may materially affect us economically. While the potential economic impact brought by, and the duration of, the COVID-19 pandemic, may be difficult to assess or predict, it is currently resulting in significant disruption of global financial markets. This disruption, if sustained or recurrent, could make it more difficult for us to access capital, which could in the future negatively affect our liquidity. In addition, a recession or market correction resulting from the spread of COVID-19 could materially affect our business and the value of our common stock.
The global pandemic of COVID-19 continues to rapidly evolve. The ultimate impact of the ongoing COVID-19 pandemic or a similar health pandemic or epidemic is highly uncertain and subject to change. We do not yet know the full extent of potential delays or impacts on our business, our clinical trials, healthcare systems or the global economy as a whole. These effects could have a material impact on our operations, and we will continue to monitor the COVID-19 situation closely.
Our internal computer systems, or those of our collaborators, service providers or other contractors or consultants, may fail or suffer security breaches, which could result in a significant disruption of our product development programs and our ability to operate our business effectively, and adversely affect our business, financial condition, results of operations and prospects.
Our internal computer and information technology systems, cloud-based computing services and those of our current and any future collaborators, service providers and other contractors or consultants are potentially vulnerable to malware, computer viruses, data corruption, cyber-based attacks, natural disasters, public health pandemics or epidemics (including, for example, the ongoing COVID-19 pandemic), terrorism, war and telecommunication and electrical failures that may result in damage to or the interruption or impairment of key business processes, or the loss or corruption of confidential information, including intellectual property, proprietary business information and personal information. We have in the past experienced security breaches of our information technology systems. Any significant system failure, accident or security breach could have a material adverse effect on our business, financial condition and results of operations. The costs to us to mitigate network security problems, bugs, viruses, worms, malicious software programs and security vulnerabilities could be significant, and while we have implemented security measures to protect our data security and information technology systems, our efforts to address these problems may not be successful, and these problems could result in unexpected interruptions, delays, cessation of service and other harm to our business and our competitive position. If such an event were to occur and cause interruptions in our operations, it could result in a disruption of our development programs and our business operations, whether due to a loss of our trade secrets or other proprietary information or other similar disruptions. For example, the loss of clinical trial data from completed or future clinical trials could result in delays in our regulatory approval efforts and significantly increase our costs to recover or reproduce the data.
In addition, our internal computer and information technology systems, cloud-based computing services and those of our current and any future collaborators, service providers and other contractors or consultants are potentially vulnerable to data security breaches, whether by employees, contractors, consultants, malware, phishing attacks or other cyber-attacks, that may expose confidential information, intellectual property, proprietary business information or personal information to unauthorized persons. For example, we have experienced phishing attacks in the past and we may be a target of phishing attacks or other cyber-attacks in the future. In addition, our software systems include cloud-based applications that are hosted by third-party service providers with security and information technology systems subject to similar risks. If a data security breach affects our systems, corrupts our data or results in the unauthorized disclosure or release of personally identifiable information, our reputation could be materially damaged. In addition, such a breach may require notification to governmental agencies, supervisory bodies, credit reporting agencies, the media or individuals pursuant to various federal, state and foreign data protection, privacy and security laws, regulations and guidelines, if applicable. These may include state breach notification laws, and the GDPR. Accordingly, a data security breach or privacy violation that leads to unauthorized access to, disclosure or modification of personal information (including protected health information), that prevents access to personal information or materially compromises the privacy, security, or confidentiality of the personal information, could result in fines, increased costs or loss of revenue and we could incur liability, our competitive position could be harmed and the further development and commercialization of our product candidates could be delayed. Furthermore, federal, state and international laws and regulations, such as the GDPR, can expose us to enforcement actions and investigations by regulatory authorities, and potentially result in regulatory penalties and significant legal liability, if our information technology security efforts fail.
46
