Frequent or persistent interruptions could cause existing or prospective customers to believe that our platform is unreliable, leading them to switch to our competitors, which could materiallyadversely affect our reputation and brand, business, financial condition, results of operations and prospects. In addition, the Internet infrastructure that we and trades businesses rely on in any particular geographic area may be unable to supportthe demands placed upon it and could interfere with the speed and availability of our platform. Any such failure in Internet or mobile device or computer accessibility, even for a short period of time, could adversely affect our results ofoperations.
The collection, processing, storage, use and disclosure of personal information are governed by a rapidly evolvingframework of privacy, data protection, cybersecurity, data transfers or other laws or regulations worldwide and limit the use and adoption of our services and adversely affect our business.
We receive, store, process and use a large volume of personal information and other customer information from a wide range of sources,including customers, potential customers, vendors and employees. There are numerous federal, state, local and international laws and regulations regarding privacy, data protection, cybersecurity, marketing and telemarketing activities and thestoring, sharing, use, processing, transfer, disclosure and protection of personal information and other information, the scope of which are changing, subject to differing interpretations, and may be inconsistent among jurisdictions, or conflictwith other rules or other actual or asserted obligations. We also post privacy policies, which we are legally obligated to comply with and are subject to contractual obligations to third parties related to privacy, data protection and cybersecurity.As a result, we are subject to federal, state, local and international laws regarding data protection, privacy, cybersecurity, and the storing, sharing, use, disclosure and protection of personal information. The regulatory framework for dataprotection, privacy and cybersecurity worldwide is, and is likely to remain, uncertain for the foreseeable future, and it is possible that these or other actual or alleged obligations may be interpreted and applied in a manner that is inconsistentfrom one jurisdiction to another and may conflict with other rules or obligations or our practices.
Regulation of data protection,privacy and cybersecurity in the United States has increased, particularly at the state level. Several states in which we operate or may in the future operate have begun enacting new data privacy laws. For example, Californias Consumer PrivacyAct of 2018, as amended by the California Privacy Rights Act of 2020, collectively, the CCPA, introduces new rights for California residents and obligations for covered businesses collecting, using, disclosing and processing personal information.The enactment of the CCPA has prompted a wave of similar legislative development in numerous U.S. states, including laws in Virginia, Colorado, Connecticut, and Utah. These new laws, and others that will be effective in the coming years, includingprivacy laws in Delaware, Florida, Indiana, Iowa, Montana, New Jersey, Oregon, Tennessee and Texas, could further complicate compliance efforts and increase legal risk and compliance costs for us, the third parties upon whom we rely, and ourcustomers. In addition, the development of numerous U.S. state laws creates the potential for a patchwork of overlapping but different state law requirements. For example, in order to comply with the varying state laws around breaches involvinginformation, we must maintain adequate security measures, which require significant investments in resources and ongoing attention. We also may record phone calls with our customers, and with respect to the use of personal information for directmarketing purposesboth via telephone calls and email and text-based messaginglaws, regulations, and standards covering marketing, advertising, and other activities conducted by telephone, email, mobile devices, and the internet may be orbecome applicable to our business, such as the Federal Communications Act, the Federal Wiretap Act, the Electronic Communications Privacy Act, the Telephone Consumer Protection Act, the CAN-SPAM, and use ofpersonal information in relation to other state consumer protection and communication privacy laws, such as Californias Invasion of Privacy Act. In particular, the Telephone Consumer Protection Act, the Telemarketing Sales Rule as interpretedand implemented by the Federal Communications Commission, or FCC, and U.S. courts, or, collectively, the TCPA, impose significant restrictions on the use of telephone calls and text messages to residential and mobile telephone numbers as a means ofcommunication when prior consent of the person being contacted has not been obtained. Additionally, the CAN-SPAM establishes specific requirements for commercial email messages and specifies penalties for thetransmission of commercial email messages that are intended to deceive the recipient as to source or content, and obligates, among other things, the sender of
51