Item 1. Business.
We are a tech-forward financial services company that provides simple, personalized payment, lending and saving solutions. We create opportunities for our customers and partners through digitally enabled choices that offer ease, empowerment, financial flexibility and exceptional customer experiences. Driven by a digital-first approach, data insights and white-label technology, we deliver growth for our partners through a comprehensive product suite, including private label and co-brand credit cards and buy now, pay later products such as installment loans and our “split-pay” offerings. We also offer direct-to-consumer solutions that give customers more access, choice and freedom through our branded Bread CashbackTM American Express® Credit Card and Bread SavingsTM products.
Our partner base consists of large consumer-based businesses, including well-known brands such as (alphabetically) AAA, Academy Sports + Outdoors, Caesars, Michaels, the NFL, Signet, Ulta and Victoria’s Secret, as well as small- and medium-sized businesses (SMBs). Our partner base is also well diversified across a broad range of industries, including specialty apparel, sporting goods, health and beauty, jewelry, home goods and travel and entertainment. We believe our comprehensive suite of payment, lending and saving solutions, along with our related marketing and data and analytics, offers us a significant competitive advantage with products relevant across customer segments (Gen Z, Millennial, Gen X and Baby Boomers). The breadth and quality of our product and service offerings have enabled us to establish and maintain long-standing partner relationships.
On November 5, 2021, we completed the spinoff of our former LoyaltyOne® segment, consisting of the Canadian AIR MILES® Reward Program and Netherlands-based BrandLoyalty businesses, into an independent, publicly traded company, Loyalty Ventures Inc. (LVI), which is listed on Nasdaq under the symbol “LYLT”. The spinoff was completed through the pro rata distribution of 81% of the outstanding shares of LVI common stock to holders of our common stock at the close of business on the record date of October 27, 2021, with Bread Financial Holdings, Inc. retaining the remaining 19% of the outstanding shares of LVI common stock. Our stockholders of record received one share of LVI common stock for every two and one-half shares of Bread Financial Holdings, Inc. common stock held on the record date.
Unless otherwise noted, all discussion below, including amounts and percentages for all periods, reflect the results of operations and financial condition of Bread Financial Holdings, Inc.’s continuing operations. As such, the LoyaltyOne segment, which was classified as discontinued operations as of November 5, 2021, has been excluded from all presentations below, unless otherwise noted. Prior to the spinoff of the LoyaltyOne segment, we had two reportable operating segments (Card Services and LoyaltyOne). We now operate as a single segment that includes all of our continuing operations.
Business Strategy & Transformation
Beginning in 2018, our Board of Directors undertook a series of strategic initiatives based on an evaluation of the portfolio of businesses that constituted our company at that time. Subsequently, we completed the sale of our former Epsilon business in July 2019, the sale of our Precima® business in January 2020, and the spinoff of our LoyaltyOne segment in November 2021. Through these transactions and other initiatives, we have simplified our business model as a leading tech-forward financial services company providing payment, lending and saving solutions, while also reducing debt and improving leverage and capital ratios. As we have transformed the business, we have made strategic investments in assets with the highest growth potential, focused on expanding our product suite and direct-to-consumer offerings, diversifying our customer base, developing key strategic relationships, enhancing our core technology, and digital capabilities, and increasing our emphasis on environmental, social and governance (ESG) initiatives. Below is a timeline of key milestones in our business transformation since 2020:
We continue to make strategic investments in technology, people, data management tools and digital capabilities to further improve our competitive position and drive future growth. These investments further our objective to grow sales through the origination of credit card and other loans, making it easier for consumers to finance purchases and make payments wherever they occur— online, in store and in-app. By offering consumer choice, we provide relevant products across consumer segments, including Gen Z and Millennials who we believe are more likely to be drawn to cash flow management products such as installment lending and split-pay, while Gen X and Baby Boomers generally gravitate towards rewards and the convenience of a private label or co-brand card. With our broad suite of products, including private label and co-brand credit cards, installment lending and split-pay, together with digital, analytical and servicing capabilities to support those products, we drive incremental sales for our partners’ businesses. We also intend to continue rebalancing our portfolio, prioritizing and investing in profitable, strong performing partners, targeting core and new industries, and becoming a more cost-efficient provider of financial products and services. In addition, we continue to expand our direct-to-consumer lending and payment products for new and existing customers, including our proprietary credit cards (Bread CashbackTM) for growth and value retention. As reflected below, during 2022 we continued to diversify both our product offerings and the industries in which our partners operate, which we believe will allow us to balance growth and expand the addressable market:
Our Primary Product Offerings
Our primary product offerings consist of our: (i) private label and co-brand credit card programs with retailers and other brand partners; (ii) Bread CashbackTM products; (iii) Bread PayTM products; and (iv) Bread SavingsTM products. These product offerings are not exclusive, and, where appropriate, we seek to introduce partners and customers to our other product offerings.
Private Label and Co-Brand Credit Card Lending
Our core business, historically, has been to assist many of the country’s best-known brands and retailers in driving sales and loyalty through their private label and co-brand credit card programs. In these programs, we (through our Banks) are the credit card issuer and lender to our partner’s customers, and we also service the loans and provide a variety of other related services, which are described in more detail below. Our partner base, with approximately 100 brands and numerous online merchants, consists of many large consumer-based businesses, including well-known brands such as (alphabetically) AAA, Academy Sports + Outdoors, Caesars, Michaels, the NFL, Signet, Ulta and Victoria’s Secret. Our partners benefit from customer insights and analytics, with each of our credit card branded programs tailored to our partner’s brand and their unique customers.
Specifically, private label credit cards are partner-branded credit cards that are used exclusively for the purchase of goods and services from that particular partner. Credit under a private label credit card typically is extended either on standard terms only, which means accounts are assessed periodic interest charges using an agreed non-promotional fixed and/or variable interest rate, or pursuant to a promotional financing offer, involving deferred interest, reduced interest or no interest during a set promotional period (typically between six and 60 months). We receive a merchant discount from our partners to compensate us for all or part of the foregone interest income associated with promotional financing. The terms of these promotions vary by partner, but generally the longer the deferred interest, reduced interest or interest-free period, the greater the partner’s merchant discount. Some offers permit customers to pay for a purchase in equal monthly payments with no interest or at a reduced interest rate, rather than deferring or delaying interest charges. We typically do not charge interchange or other fees to our partners when a customer uses a private label credit card to purchase our partners’ goods and services through our payment system. Our private label credit card loan balances are typically smaller (with an average customer balance of approximately $400); although, we offer “big ticket” financing with certain private label brand partners, which often involves larger amounts. Relative to our co-brand loan portfolio, our private label loan portfolio generally has higher revenue yields, and customers with lower credit lines and lower credit scores.
Our co-brand credit cards are general purpose credit cards that can be used to purchase goods and services from the applicable partner, as well as other retailers wherever cards from those card networks are accepted. We currently issue co-brand credit cards for use on the MasterCard and Visa networks. Credit extended under our co-branded credit cards typically is extended on standard terms only. Charges made using a co-branded credit card, particularly charges made outside of that co-brand partner, generate interchange income for us. Relative to our private label loan portfolio, our co-brand loan portfolio generally has lower revenue yields, and customers with higher credit lines and higher credit scores (with the majority of our co-brand customers having a Vantage score in excess of 660).
As a general matter, the financial terms and conditions governing our private label and co-brand credit card products vary by program and product type and change over time, although we seek to standardize the non-financial provisions consistently across all products. The terms and conditions of all of our credit card products are governed by a cardholder agreement and applicable laws and regulations. We assign each card account a credit limit when the account is initially opened. Thereafter, we may increase or decrease individual credit limits from time to time, at our sole discretion, based primarily on our evaluation of the customer’s creditworthiness and ability to pay. For the vast majority of accounts, periodic interest charges are calculated using the daily balance method, which results in daily compounding of periodic interest charges. Cash advances are not subject to a grace period, and some credit card programs do not provide a grace period for promotional purchases. In addition to periodic interest charges, we may impose other charges and fees on credit card accounts, including, as applicable and provided in the cardholder agreement, late fees where a customer has not paid at least the minimum payment due by the required due date. Typically, each customer with an outstanding amount due on his or her credit card account must make a minimum payment each month. A customer may pay the total amount due at any time without penalty. We also may enter into arrangements with delinquent customers to extend or otherwise change payment schedules and to waive interest charges and/or fees. To help further the ease with which customers can make payments, we offer automatic payment functionality on all cardholder accounts.
Bread CashbackTM
In April 2022, we launched our branded Bread CashbackTM American Express® Credit Card, which is a direct-to-consumer, general purpose cashback credit card. This open-network card is an important new product for us to capture incremental spend and build and retain customer relationships. We anticipate the Bread CashbackTM American Express® Credit Card will increase our total addressable market, including the Millennial and Gen Z populations. The Bread CashbackTM American Express® Credit Card offers unlimited 2% cashback, no annual fee, no foreign transaction fees, premium protection benefits, American Express® lifestyle benefits and instant mobile acquisition and wallet provisioning. Prior to launching our new Bread CashbackTM American Express® Credit Card, since 2020 we have offered our Comenity-branded general purpose cash-back credit card.
Bread PayTM
Bread PayTM is our pay-over-time payment technology solution, which includes both our installment loan and “split-pay” offerings, as described in more detail below. Through Bread PayTM, we offer an omnichannel solution for over 700 SMB retailers and merchants, and platform capabilities to bank partners. The Bread PayTM offerings and on-boarding capabilities enhance the growth prospects of our industries and increase the addressable market of SMBs. Bread PayTM also offers our existing private label and co-brand credit card partners a broader digital product suite and additional white-label product solutions for those customers preferring a “closed-end” payment option (i.e. a non-revolving loan with fixed repayment terms). As part of our Bread PayTM products, we offer a flexible platform and robust suite of application programming interfaces (APIs) that allow merchants and partners to seamlessly integrate online point-of-sale financing and other digital payment products. As Bread PayTM has grown, it has expanded our ability to leverage our digital offerings to build both strategic technology platform partnerships and more traditional brand partnership sales and loans.
Our Bread PayTM installment loans are closed-end credit accounts where the customer pays down the outstanding balance in monthly installments, typically over a 3 to 48 month period. The terms of our installment loans are governed by customer agreements and applicable laws and regulations. Installment loans are generally assessed interest charges using fixed interest rates. We do not currently impose other charges or fees on loan accounts, such as late fees where a customer has not made the required payment by the required due date or returned payment fees.
Our “split-pay” loans are short-term, interest-free financing, to be repaid by the customer in four equal installments, with the first payment due at the time of purchase and the remaining three payments due in subsequent two-week intervals. The terms of our split-pay loans are governed by customer agreements and applicable laws and regulations. We do not currently impose charges or fees on these split-pay loan accounts, such as late fees where a customer has not made the required payment by the required due date or returned payment fees.
We have also been working to grow revenue generated through various Bread PayTM strategic partnerships. For example, since 2021 we have licensed our payments technology platform on a white-label basis to RBC (NYSE:RY), a premier global financial services provider. RBC uses our platform to operate its PayPlan by RBC solution, which allows Canadian customers to pay for big-ticket items over time. We do not originate the loans made through PayPlan, but instead earn transaction and servicing fees. We are also working to expand our partnership with Sezzle (ASX:SZL), which we announced in October 2021. We offer our installment or other loan products through Sezzle’s merchant network.
Bread SavingsTM
Bread SavingsTM refers to our direct-to-consumer, or retail, deposit products, primarily in the form of certificates of deposit and savings accounts. Our Bread SavingsTM products support loan growth and improve our funding mix, making us less reliant on our securitization programs and other sources of wholesale funding. In recent years, retail deposits have become an increasingly important source of funds for us, growing 72% from $3.2 billion as of December 31, 2021 to $5.5 billion as of December 31, 2022. As of December 31, 2022, retail deposits represented 26% of our total funding sources.
Our online Bread SavingsTM platform is scalable allowing us to expand without having to rely on a traditional “brick and mortar” branch network. We continue to focus on growing our Bread SavingsTM operations and believe we are well-positioned to continue to benefit from the consumer-driven shift from branch banking to direct banking. We seek to differentiate our deposit product offerings from our competitors on the basis of rates we pay on deposits, the quality of our customer service and the competitiveness of our digital banking capabilities.
Services Supporting our Primary Product Offerings
Our primary product offerings, as described above, are supported and enhanced by numerous services and capabilities that we provide, including: (i) risk management, account origination and funding services; (ii) loan processing and servicing; (iii) marketing and data and analytics; and (iv) our Enhanced Digital Suite.
Risk Management, Account Origination and Funding Services. We provide risk management solutions, account origination and funding services for our private label and co-brand credit card programs, as well as our Bread PayTM partnerships.
We process millions of credit card applications each year using automated proprietary scoring technology and verification procedures to make responsible risk-based underwriting and origination decisions when approving new accounts and establishing credit limits. Credit quality is monitored on a regular and consistent basis, utilizing internal algorithms and external credit bureau risk scores. This information helps us segment new and existing customers into narrower risk ranges, allowing us to better evaluate individual credit risk. As macroeconomic conditions have weakened over the last year, we have continued to enhance our credit risk management, including through stronger underwriting resulting from enhanced technology, monitoring, and data, prudent and proactive line management, well-established risk appetite metrics, and we are proactively using our recession readiness playbook. As of December 31, 2022 we had $20.1 billion in principal loans from approximately 43 million active accounts, with an average balance for the year ended December 31, 2022 of approximately $870 for accounts with outstanding balances.
Loan Processing and Servicing. We manage and service the loans we originate for our private label and co-brand credit card programs, as well as our Bread CashbackTM and Bread PayTM products. In 2022, we completed the transition of our credit card processing services to Fiserv, a leading global provider of outsourced payments and financial services technology solutions; with the transition we expect to improve our speed to market, including the ability to quickly and seamlessly add new products and capabilities that benefit our partners and cardholders. This transition enables efficient integration of digital technology, while supporting our data and analytics capabilities and improving operational efficiencies.
Our customer care operations are influenced by our retail heritage and we view every customer touch point as an opportunity to provide an exceptional experience. Our customer care operations offer omnichannel servicing, including phone, mail, fax, email, text and web. We provide focused training programs in all areas to achieve the highest possible customer service standards and monitor our performance by conducting surveys with our partners and our customers. In 2022, for the seventeenth time since 2003, we were certified as a Center of Excellence for the quality of our operations, the most prestigious ranking attainable, by BenchmarkPortal. Founded by Purdue University in 1995, BenchmarkPortal is a global leader of best practices for customer care centers. We blend domestic and off-shore locations as an important part of our servicing strategy, to maintain service availability beyond normal work hours in the United States and to optimize our cost structure.
Marketing and Data & Analytics. Through our integrated marketing services, we design and implement strategies that assist our partners in acquiring, retaining and expanding customer engagement to drive a more loyal, frequent shopper that increases customer lifetime value. Our programs capture transaction data that we analyze to better understand consumer behavior and use to increase the effectiveness of our partners’ marketing activities. Through our data and analytics capabilities, including machine learning and artificial intelligence, we focus on data insights that drive actionable strategies and enhance revenue growth and customer retention. We use multi-channel marketing communication tools, including in-store, web, permission-based email, permission-based mobile messaging and direct mail to engage customers in the channel of their choice.
Enhanced Digital Suite. Through our Enhanced Digital Suite, a group of marketing and credit application features, we help our brand partners capitalize on online trends by bringing through more qualified applicants, a higher credit sales conversion rate and a higher average purchase value. Enhanced Digital Suite includes a unified software development kit (SDK) that provides access to our broad suite of products; it also promotes credit payment options, relevant to the customer, earlier in the shopping experience. The credit application is simple and easy, offers prefilled fields and pre-screens customers in real-time, allowing for immediate credit approval without leaving the brand partner’s site.
For additional information relating to our business, business strategy and products and services, see “Item 7. Management’s Discussion and Analysis of Financial Condition and Results of Operations – Year in Review – Business Environment”.
Technology/Systems
We leverage information and technology to help achieve our business objectives and to develop and deliver products and services that satisfy our brand partners and customers’ needs. A key part of our strategic focus is the development and use of efficient, flexible computer and operational systems, such as cloud technology, to support complex marketing and account management strategies, the servicing of our customers, and the development of new and diversified products. We believe the continued development and integration of these systems is an important part of our efforts to reduce costs, improve quality and security, and provide faster, more flexible technology services. Consequently, we continuously review capabilities and develop or acquire systems, processes and competencies to meet our unique business requirements.
As part of our continuous efforts to review and improve our technologies, we may either develop such capabilities internally or rely on third-party outsourcers who have the ability to deliver technology that is of higher quality, lower cost, or both. We continue to rely on third-party outsourcers to help us deliver systems and operational infrastructure; these relationships include (but are not limited to): Microsoft and Amazon Web Services, Inc. for our cloud infrastructure and Fiserv for credit card processing services.
We are committed to safeguarding our customers’ and our own information and technology, implementing backup and recovery systems, and generally require the same of our third-party service providers. We take measures that mitigate against known attacks and use internal and external resources to scan for vulnerabilities in platforms, systems, and applications necessary for delivering our products and services. For a discussion of the risks associated with our use of technology systems, see “Part I—Item 1A. Risk Factors” under the heading “Cybersecurity, Technology and Vendor Risks”.
Disaster and Contingency Planning
We operate, either internally or through third-party service providers, multiple data processing centers to store and otherwise process our customer transaction data. Given the significant amount of data that we or our third-party service providers manage, much of which is real-time data to support our partners’ commerce initiatives, we have established redundant capabilities for our data centers. We have a number of safeguards in place that are designed to protect us from data-related risks and in the event of a disaster, to restore our data centers’ systems. For additional information, see “Item 1A. Risk Factors – Risk Management – Operational Risk”.
Protection of Intellectual Property and Other Proprietary Rights
We rely on a combination of patents, copyright, trade secret and trademark laws, confidentiality procedures, contractual provisions and other similar measures to protect our proprietary information and technology used in our business. We generally enter into confidentiality or license agreements with our employees, consultants and corporate partners, and generally control access to and distribution of our technology, documentation and other proprietary information. Despite the efforts to protect our proprietary rights, unauthorized parties may attempt to copy or otherwise obtain the use of our products or technology that we consider proprietary and third parties may attempt to develop similar technology independently. We have a number of domestic and foreign patents and pending patent applications. We pursue registration and protection of our trademarks primarily in the United States, although we also have either registered trademarks or applications pending for certain marks in other countries. No individual patent or license is material to us or our business.
Competition
The markets for our products and services are highly competitive, continuously changing, highly innovative, and subject to regulatory scrutiny and oversight. We compete with a wide range of businesses, including major financial institutions and financial technology firms, or fintechs. Some of our current and potential competitors may be larger than we are, have larger customer bases, greater brand recognition, longer operating histories, a dominant or more secure position, broader geographic scope, volume, scale, resources, and market share than we do, or offer products and services that we do not offer. Other competitors are smaller or younger companies that may be more agile in responding quickly to regulatory and technological changes. Many of the areas in which we compete evolve rapidly with innovative and disruptive technologies, emerging competitors, business alliances, shifting consumer habits and user needs, price sensitivity on the part of merchants and consumers, and frequent introductions of new products and services. The consumer credit and payments industry is highly competitive and we face an increasingly dynamic industry as emerging technologies enter the marketplace.
In competing to acquire and retain the business of brand partners and customers, our primary competition is with other financial institutions whose marketing focus has been on developing credit card programs with attractive value propositions and consequentially large revolving balances. These competitors further drive their businesses by cross-selling their other financial products to their cardholders. We also compete for partners on the basis of a number of factors, including program financial and other terms, underwriting standards and capabilities, marketing expertise, service levels, the breadth of our product and service offerings, digital, technological and integration capabilities, brand recognition and reputation. Our focus is on retailers and other brand partners that understand the competitive advantage of developing loyal customers. As a result, we focus on analyzing transaction data we obtain through partner loyalty programs and managing our lending programs, including customer specific transaction data and overall consumer spending patterns, to develop and implement successful marketing strategies for our partners.
As a form of payment, our customers have numerous consumer credit and other payment options available to them, and our products compete with cash, checks, electronic bank transfers, debit cards, general purpose credit cards (including Visa, MasterCard, American Express and Discover Card), various forms of consumer installment loans and split-pay products, other private label card brands, prepaid cards, digital wallets and mobile payment solutions, and other tools that simplify and personalize shopping experiences for consumers and merchants. Among other factors, our products compete with these other forms of payment on the basis of interest rates and fees, credit limits, reward programs and other product features. As the payments industry continues to evolve, in the future we expect increasing competition with emerging payment technologies from financial technology firms and payment networks. Moreover, some of our competitors, including new and emerging competitors in the digital and mobile payments space, are not subject to the same regulatory requirements or legislative scrutiny to which we are subject, which could place us at a competitive disadvantage.
In our retail deposits business, we have acquisition and servicing capabilities similar to other direct-banking competitors. We compete for deposits with traditional banks, and in seeking to grow our Bread SavingsTM platform, we compete with other banks that have direct-banking models similar to ours. Competition among direct banks is intense because online banking provides customers the ability to quickly and easily deposit and withdraw funds, and open and close accounts in favor of products and services offered by competitors.
Supervision and Regulation
We operate primarily through our insured depository institution subsidiaries, Comenity Bank (CB) and Comenity Capital Bank (CCB), which, as noted above, together are referred to herein as the “Banks”. Federal and state laws and regulations extensively regulate the operations of the Banks. This regulatory framework is intended to protect individual consumers, depositors, the Deposit Insurance Fund (DIF) of the Federal Deposit Insurance Corporation (FDIC) and the U.S. banking system as a whole, rather than for the protection of stockholders and creditors. Set forth below is a summary of the significant laws and regulations applicable to each of CB and CCB. The description that follows is qualified in its entirety by reference to the full text of the statutes, regulations, and policies that are described. Such statutes, regulations, and policies are subject to ongoing review by Congress, state legislatures, and federal and state regulatory agencies. A change in any of the statutes, regulations, or regulatory policies applicable to CB and/or CCB, or in the leadership or direction of our regulators, could have a material effect on the operations or financial condition of Bread Financial Holdings, Inc. Further, the scope of regulation and the intensity of supervision will likely remain high in the current regulatory environment.
CB is a Delaware-chartered bank operating as a credit card bank under a Competitive Equality Banking Act (CEBA) exemption from the definition of “bank” under the Bank Holding Company Act (BHC Act). To maintain its status as a CEBA credit card bank, CB must continue to comply with the following requirements:
•engage only in credit card operations;
•do not accept demand deposits or deposits that the depositor may withdraw by check or similar means for payment to third parties;
•do not accept any savings or time deposits of less than $100,000, except for deposits pledged as collateral for its extensions of credit;
•maintain only one office that accepts deposits; and
•do not engage in the business of making commercial loans (except credit card loans to certain small businesses).
CB is subject to prudential regulation, supervision and examination by the Delaware Office of the State Bank Commissioner, as its chartering authority, and the FDIC as its primary federal regulator. CB’s deposits are insured by the DIF of the FDIC up to the applicable deposit insurance limits in accordance with applicable law and FDIC regulations. CB is not a member of the Federal Reserve System.
CCB is a Utah-chartered industrial bank. As an industrial bank, CCB is exempt from the definition of “bank” under the BHC Act. CCB is subject to prudential regulation, supervision and examination by the Utah Department of Financial Institutions, as its chartering authority, and the FDIC as its primary federal regulator. CCB’s deposits are insured by the DIF of the FDIC up to the applicable deposit insurance limits in accordance with applicable law and FDIC regulations. CCB is not a member of the Federal Reserve System.
The Consumer Financial Protection Bureau (CFPB) promulgates regulations for the federal consumer financial protection laws and supervises and examines large banks (those with more than $10 billion of total assets) with respect to those laws. Banks in a multi-bank organization, such as CB and CCB, are subject to supervision and examination by the CFPB with respect to the federal consumer financial protection laws if at least one bank reports total assets over $10 billion for four consecutive quarters. While the Banks were subject to supervision and examination by the CFPB with respect to the federal consumer financial protection laws between 2016 and 2021, this reverted to the FDIC in 2022. However, CCB’s total assets then exceeded $10 billion for four consecutive quarters as of September 30, 2022, and both Banks are now again subject to supervision and examination by the CFPB with respect to federal consumer protection laws.
The CFPB has broad rulemaking authority that has impacted, and is expected to continue impacting, the Banks’ operations, including with respect to credit card late fees and other amounts that we may charge. For example, the CFPB’s rulemaking authority may allow it to change regulations adopted in the past by other regulators including regulations issued under the Truth in Lending Act by the Board of Governors of the Federal Reserve System (Federal Reserve Board). Most recently, in February 2023, the CFPB published a proposed rule with request for public comment that would: (i) decrease the safe harbor dollar amount for credit card late fees to $8 and eliminate a higher safe harbor dollar amount for subsequent late payments; (ii) eliminate the annual inflation adjustments that currently exist for the late fee safe harbor dollar amounts; and (iii) require that late fees not exceed 25% of the consumer’s required minimum payment. The “safe harbor” dollar amounts referenced in the CFPB’s proposed rulemaking refer to the amounts that credit card issuers may charge as late fees under the Credit Card Accountability Responsibility and Disclosure Act of 2009 (CARD Act). Under the CARD Act, as implemented, these safe harbor amounts have been subject to annual adjustment based on changes in the consumer price index, and the safe harbor amounts are currently set at $30 for an initial late fee and $41 for subsequent late fees in one of the next six billing cycles. Accordingly, the proposed $8 safe harbor amount on late fees (and proposed elimination of the annual inflation-based adjustment thereto) would represent a significant decrease from the current safe harbor amounts. In addition, the proposed rulemaking seeks comment on whether late fees should be prohibited if the applicable payment is made within 15 days of the due date and whether, as a condition to utilizing the safe harbor, credit card issuers should be required to offer automatic payment options and/or provide certain notifications of upcoming payment due dates. We are closely monitoring the content and timing of the CFPB’s proposed rulemaking and its impact on our business.
More generally, the CFPB’s ability to rescind, modify or interpret past regulatory guidance could reduce fee income, increase our compliance costs and litigation exposure. Further, the CFPB has broad authority to enforce the prohibitions of “unfair, deceptive or abusive” acts or practices regardless of which agency supervises the Banks. The CFPB has taken enforcement action against other credit card issuers and financial services companies. Evolution of these standards could result in changes to pricing, practices, procedures and other activities relating to our credit card accounts in ways that could reduce the associated return from those accounts and potentially impact business growth plans. While the CFPB has taken public positions on certain matters, it is unclear what additional changes may be promulgated by the CFPB and what effect, if any, such changes would have on our credit accounts.
The Dodd-Frank Wall Street Reform and Consumer Protection Act of 2010 (Dodd-Frank Act) authorizes certain state officials to enforce regulations issued by the CFPB and to enforce the Dodd- Frank Act’s general prohibition against unfair, deceptive or abusive practices. To the extent that states enact requirements that differ from federal standards or courts adopt interpretations of federal consumer laws that differ from those adopted by the FDIC, the Federal Reserve Board and the Office of the Comptroller of the Currently (collectively, the Federal Banking Agencies), we may be required to alter products or services offered in some jurisdictions or cease offering products, which will increase compliance costs and reduce our ability to offer the same products and services to consumers nationwide.
Regulation of Bread Financial Holdings, Inc.
Because neither CB nor CCB is considered a “bank” within the meaning of the BHC Act, Bread Financial Holdings, Inc. is not a bank holding company (BHC) subject to regulation thereunder. If any of our entities became subject to regulation as a BHC, among other things, Bread Financial Holdings, Inc. and its non-bank subsidiaries would be subject to regulation, supervision and examination by the Federal Reserve Board and our operations would be limited to certain activities that are closely related to banking or financial services in nature.
However, under Section 616 of the Dodd-Frank Act, any company that directly or indirectly controls an insured depository institution is required to serve as a source of financial strength to its subsidiary institution and may not conduct its operations in an unsafe or unsound manner. This doctrine is commonly known as the “Source of Strength” doctrine. As such a company, this means that Bread Financial Holdings, Inc. must stand ready to use available resources to provide adequate capital funds to the Banks during periods of financial stress or adversity and should maintain the financial flexibility and capital-raising capacity to obtain additional resources to support the Banks. This support may be required at times when Bread Financial Holdings, Inc. might otherwise have determined not to provide it or when doing so is not otherwise in the interests of Bread Financial Holdings, Inc. or its stockholders or creditors. Bread Financial Holdings, Inc.’s failure to meet its obligation to serve as a source of strength to the Banks would generally be considered to be an unsafe and unsound banking practice.
Regulation of the Banks
Federal and state banking laws and regulations govern, among other things, the scope of a bank’s business, the investments a bank may make, the reserves against deposits a bank must maintain, the loans a bank makes and collateral it takes, the activities of a bank with respect to mergers and acquisitions, management practices, and numerous other aspects of its operations.
Regulatory Capital Requirements
The Banks are subject to certain risk-based capital and leverage ratio requirements under the U.S. Basel III capital rules adopted by the FDIC. These rules implement the Basel III international regulatory capital standards in the United States, as well as certain provisions of the Dodd-Frank Act. These quantitative calculations are minimums, and the FDIC may determine that a bank, based on its size, complexity, or risk profile, must maintain a higher level of capital in order to operate in a safe and sound manner.
Under the U.S. Basel III capital rules, the Banks’ assets, exposures, and certain off-balance sheet items are subject to risk weights used to determine an institution’s risk-weighted assets, which then are used to determine the minimum capital that CB and CCB should keep as a reserve to reduce the risk of insolvency. These risk-weighted assets are used to calculate the following minimum capital ratios for the Banks:
•Common Equity Tier 1 (CET1) Risk-Based Capital Ratio - the ratio of CET1 capital to risk-weighted assets. CET1 capital primarily includes common stockholders’ equity subject to certain regulatory adjustments and deductions, including goodwill, intangible assets, certain deferred tax assets, and Accumulated Other Comprehensive Income (AOCI).
•Tier 1 Risk-Based Capital Ratio - the ratio of Tier 1 capital to risk-weighted assets. Tier 1 capital is primarily comprised of CET1 capital, perpetual preferred stock, and certain qualifying capital instruments.
•Total Risk-Based Capital Ratio - the ratio of total capital, including CET1 capital, Tier 1 capital, and Tier 2 capital, to risk-weighted assets. Tier 2 capital primarily includes qualifying subordinated debt and qualifying Allowance for credit losses.
The Banks are also subject to the requirements of a fourth ratio, the Leverage ratio, which itself does not incorporate risk-weighted assets:
•Tier 1 Leverage Ratio - the ratio of Tier 1 capital to quarterly average assets (net of goodwill, certain other intangible assets, and certain other deductions).
Failure to be well-capitalized or to meet minimum capital requirements could result in certain mandatory and possible additional discretionary actions by regulators that, if undertaken, could have a material adverse effect on our operations or financial condition. Failure to be well-capitalized or to meet minimum capital requirements could also result in restrictions on the Banks’ ability to pay dividends or otherwise distribute capital or to receive regulatory approval of applications.
The U.S. Basel III capital rules require a minimum CET1 Risk-Based Capital Ratio of 4.5%, a minimum Tier 1 Risk-Based Capital Ratio of 6.0%, and a minimum Total Risk-Based Capital Ratio of 8.0%. In addition to meeting the minimum capital requirements, under the U.S. Basel III capital rules, the Banks must also maintain the required 2.5% Capital Conservation Buffer to avoid becoming subject to restrictions on capital distributions and certain discretionary bonus payments to executive management. The Capital Conservation Buffer is calculated as a ratio of CET1 capital to risk-weighted assets, and it essentially increases the required minimum risk-based capital ratios. As a result, the Banks must maintain a CET1 Risk-Based Capital Ratio of at least 7%, a Tier 1 Risk-Based Capital Ratio of at least 8.5% and a Total Risk-Based Capital Ratio of at least 10.5% to avoid being subject to restrictions on capital distributions and discretionary
bonus payments to its executive management. The Tier 1 Leverage Ratio is not impacted by the Capital Conservation Buffer, and a bank may be considered well-capitalized while remaining out of compliance with the Capital Conservation Buffer. The required minimum Tier 1 Leverage Ratio for all banks and BHCs is 4%.
To be considered well-capitalized, the Banks must maintain the following capital ratios which are in excess of the minimums described above:
•CET1 Risk-Based Capital Ratio of 6.5% or greater;
•Tier 1 Risk-Based Capital Ratio of 8.0% or greater;
•Total Risk-Based Capital Ratio of 10.0% or greater; and
•Tier 1 Leverage Ratio of 5.0% or greater.
As of December 31, 2022, the Banks’ regulatory capital ratios were above the well-capitalized standards and met the Capital Conservation Buffer. The Banks seek to maintain capital levels and ratios in excess of the minimum regulatory requirements inclusive of the 2.5% Capital Conservation Buffer.
Dividends
Bread Financial Holdings, Inc. is a legal entity separate and distinct from the Banks. Declaration and payment of cash dividends depends upon cash dividend payments to Bread Financial Holdings, Inc. by the Banks, which are our primary source of revenue and cash flow. As state-chartered banks, under Delaware or Utah law, as applicable, the Banks are subject to regulatory restrictions on the payment and amounts of dividends. Further, the ability of the Banks to pay dividends to Bread Financial Holdings, Inc. is also subject to their profitability, financial condition, capital expenditures and other cash flow requirements, and any such dividends are also subject to the approval of the Board of Directors of the applicable Bank.
The payment of dividends by the Banks and Bread Financial Holdings, Inc. may also be affected by other factors, such as the requirement to maintain adequate capital above regulatory requirements. The Federal Banking Agencies have indicated that paying dividends that deplete a bank’s capital base to an inadequate level would be an unsafe and unsound banking practice; a bank may not pay any dividend if payment would cause it to become undercapitalized or if it already is undercapitalized. Moreover, the Federal Banking Agencies have issued policy statements that provide that banks should generally only pay dividends out of current operating earnings. The Federal Banking Agencies have the authority to prohibit banks from paying a dividend if it is deemed that such payment would be an unsafe or unsound practice.
Prompt Corrective Action and Safety and Soundness
Under applicable “prompt corrective action” (PCA) statutes and regulations, insured depository institutions, such as the Banks, are placed into one of five capital categories, ranging from “well capitalized” to “critically undercapitalized”. The PCA statute and regulations provide for progressively more stringent supervisory measures as an institution’s capital category declines. An institution that is not well capitalized is generally prohibited from accepting brokered deposits and offering interest rates on deposits higher than the prevailing rate in its market. An undercapitalized institution must submit an acceptable restoration plan to the appropriate Federal Banking Agency. One requisite element of such a plan is that the institution’s parent holding company guarantee the institution’s compliance with the plan, subject to certain limitations. As of December 31, 2022, the Banks qualified as “well capitalized” under applicable regulatory capital standards.
Insured depository institutions may also be subject to potential enforcement actions of varying levels of severity by the Federal Banking Agencies for unsafe or unsound practices in conducting their businesses, or for violation of any law, rule, regulation, condition imposed in writing by the agency, or term of a written agreement with the agency. In more serious cases, enforcement actions may include the issuance of directives to increase capital; the issuance of formal and informal agreements; the imposition of civil monetary penalties; the issuance of a cease and desist order that can be judicially enforced; the issuance of removal and prohibition orders against officers, directors, and other institution-affiliated parties; the termination of the institution’s deposit insurance; the appointment of a conservator or receiver for the institution; and the enforcement of such actions through injunctions or restraining orders based upon a judicial determination that the FDIC, as receiver, would be harmed if such equitable relief was not granted.
Reserve Requirements
Federal Reserve Board regulations require insured depository institutions to maintain cash reserves against their transaction accounts, primarily interest-bearing and regular checking accounts. The required cash reserves can be in the form of vault
cash and, if vault cash does not fully satisfy the required cash reserves, in the form of a balance maintained with Federal Reserve Banks. The regulations authorize different ranges of reserve requirement ratios depending on the amount of transaction account balances held. A zero percent reserve requirement ratio is applied to transaction balances below the reserve requirement exemption amount. In addition, transaction account balances maintained over the reserve requirement exemption amount and up to a certain amount, known as the low reserve tranche, may be subject to a reserve requirement ratio of not more than 3 percent (and which may be zero), and transaction account balances over the low reserve tranche may be subject to a reserve requirement ratio of not more than 14 percent (and which may be zero). The reserve requirement exemption and the low reserve tranche are both subject to adjustment on an annual basis, as applicable, by the Federal Reserve Board. Effective March 26, 2020, in response to the COVID-19 pandemic, the reserve requirement ratios on all net transaction accounts were reduced to zero percent, thereby eliminating reserve requirements for all depository institutions. The annual indexation of the reserve requirement exemption amount and the low reserve tranche for 2021, 2022 and 2023 was required by statute, but did not affect depository institutions’ reserve requirements, which remain at zero.
Federal Deposit Insurance
The deposits of the Banks are insured up to applicable limits by the DIF of the FDIC. The current standard maximum deposit insurance amount is $250,000 per depositor, per insured depository institution, per ownership category, in accordance with applicable FDIC regulations.
The FDIC uses a risk-based assessment system that imposes insurance premiums based on a risk matrix that takes into account an institution’s capital level and supervisory rating. The base for insurance assessments is the average consolidated total assets less tangible equity capital of an institution. Assessment rates are calculated using formulas that take into account the risk of the institution being assessed.
Under the Federal Deposit Insurance Act (the FDIA), the FDIC may terminate an institution’s deposit insurance upon a finding that the institution has engaged in unsafe and unsound practices, is in an unsafe and unsound condition or has violated any applicable law, regulation, order or condition imposed by the FDIC.
Depositor Preference
The FDIA provides that, in the event of the liquidation or other resolution of an insured depository institution, the claims of depositors of the institution, including the claims of the FDIC as subrogee of insured depositors, and certain claims for administrative expenses of the FDIC as a receiver, will have priority over other general unsecured claims against the institution. If an insured depository institution fails, insured and uninsured depositors, along with the FDIC, will have priority in payment ahead of unsecured, non-deposit creditors, including the parent company, with respect to any extensions of credit they have made to such insured depository institution.
Restrictions on Transactions with Affiliates and Insiders
Sections 23A and 23B of the Federal Reserve Act limit the extent to which we can borrow or otherwise obtain credit from, or engage in other covered transactions with either of the Banks, which may have the effect of limiting the extent to which either Bank can finance or otherwise supply funds to us. “Covered transactions” include loans or extensions of credit, purchases of or investments in securities, purchases of assets, including assets subject to an agreement to repurchase, acceptance of securities as collateral for a loan or extension of credit, or the issuance of a guarantee, acceptance, or letter of credit. Although the applicable rules do not serve as an outright bar on engaging in covered transactions, they do require that we engage in “covered transactions” with either Bank only on terms and under circumstances that are substantially the same, or at least as favorable to the Bank, as those prevailing at the time for comparable transactions with nonaffiliated companies. Furthermore, with certain exceptions, each loan or extension of credit by either Bank to us or our non-bank subsidiaries must be secured by collateral with a market value ranging from 100% to 130% of the amount of the loan or extension of credit, depending on the type of collateral.
The Banks are also subject to Sections 22(g) and 22(h) of the Federal Reserve Act, and the implementing Regulation O as applied to the Banks. These provisions impose limitations on loans and extensions of credit by the Banks to their executive officers, directors and principal stockholders and their related interests, as well as those of the Banks’ affiliates. The limitations restrict the terms and aggregate amount of such transactions. Regulation O also imposes certain recordkeeping and reporting requirements.
Restrictions on transactions with affiliates and insiders under Federal Reserve Act Sections 23A, 23B, 22(g) and 22(h), as well as the requirements of Regulation O, are monitored for compliance by our internal audit department.
Volcker Rule
Section 619 of the Dodd-Frank Act, commonly known as the Volcker Rule, restricts the ability of banking entities, such as Bread Financial Holdings, Inc. and the Banks, from (i) engaging in proprietary trading and (ii) investing in or sponsoring covered funds, subject to certain limited exceptions. Under the Volcker Rule, the term covered funds is defined as any issuer that would be an investment company under the Investment Company Act but for the exemption in section 3(c)(1) or 3(c)(7) of that Act, which includes collateralized loan obligation securities (CLO) and collateralized debt obligation securities. There are also several exemptions from the definition of covered funds, including, among other things, loan securitization, joint ventures, certain types of foreign funds, entities issuing asset-backed commercial paper, and registered investment companies. We do not engage in these restricted activities, including in proprietary trading.
Incentive Compensation
The Dodd-Frank Act requires the Federal Banking Agencies and the Securities and Exchange Commission (SEC) to establish joint regulations or guidelines prohibiting incentive-based payment arrangements at specified regulated entities, including the Banks, that encourage inappropriate risks by providing an executive officer, employee, director or principal stockholder with excessive compensation, fees, or benefits resulting from inappropriate risk taking, as these actions could lead to material financial loss to the entity. The Federal Banking Agencies and the SEC most recently proposed such regulations in 2016, but the regulations have not yet been finalized. If the regulations are adopted in the form initially proposed, the manner in which executive compensation is structured will be restricted.
The Dodd-Frank Act also requires publicly traded companies to give stockholders a non-binding vote on executive compensation at least every three years and on so-called “golden parachute” payments in connection with approvals of mergers and acquisitions. Bread Financial Holdings, Inc. has held its “say-on-pay” vote annually.
USA PATRIOT Act
Under Title III of the USA PATRIOT Act, all financial institutions are required to take certain measures to identify their customers, prevent money laundering, monitor customer transactions, and report suspicious activity to U.S. law enforcement agencies. Financial institutions also are required to respond to requests for information from Federal Banking Agencies and law enforcement agencies. Information sharing among financial institutions for the above purposes is encouraged by an exemption granted to complying financial institutions from the privacy provisions of the Gramm-Leach-Bliley Act (GLBA) and other privacy laws. Financial institutions that hold correspondent accounts for foreign banks or provide private banking services to foreign individuals are required to take measures to avoid dealing with certain foreign individuals or entities, including foreign banks with profiles that raise money laundering concerns, and are prohibited from dealing with foreign “shell banks” and persons from jurisdictions of particular concern. The Federal Banking Agencies and the Secretary of the Treasury have adopted regulations to implement several of these provisions. All financial institutions also are required to establish internal anti-money laundering programs. The effectiveness of a financial institution in combating money laundering activities is a factor to be considered in any application submitted by a financial institution to engage in a merger transaction under the Bank Merger Act. The Banks have in place a Bank Secrecy Act and USA PATRIOT Act compliance program and engage in very few transactions of any kind with foreign financial institutions or foreign persons.
Office of Foreign Assets Control Regulations
The United States government has imposed economic sanctions that affect transactions with designated foreign countries, nationals, and others. These are typically known as the “OFAC” rules based on their administration by the U.S. Treasury Department Office of Foreign Assets Control. The Office of Foreign Assets Control-administered sanctions targeting countries take many different forms. Generally, OFAC sanctions contain one or more of the following elements: (i) restrictions on trade with or investment in a sanctioned country, including prohibitions against direct or indirect imports from and exports to a sanctioned country and prohibitions on U.S. persons engaging in financial transactions relating to making investments in, or providing investment-related advice or assistance to, a sanctioned country; and (ii) a blocking of assets in which the government or specially designated nationals of the sanctioned country have an interest, by prohibiting transfers of property subject to U.S. jurisdiction (including property in the possession or control of U.S. persons). Blocked assets (e.g., property and bank deposits) cannot be paid out, withdrawn, set off, or transferred in any manner without a
license from the Office of Foreign Assets Control. Failure to comply with these sanctions could have serious legal and reputational consequences.
Identity Theft
The SEC and the Commodity Futures Trading Commission (CFTC) jointly issued final rules and guidelines implementing the provisions of the Fair Credit Reporting Act (FCRA), as amended by the Dodd-Frank Act, which require certain regulated entities to establish programs to address risks of identity theft. The rules require financial institutions and creditors to develop and implement a written identity theft prevention program that is designed to detect, prevent, and mitigate identity theft in connection with certain existing accounts or the opening of new accounts. The rules include guidelines to assist entities in the formulation and maintenance of programs that would satisfy these requirements. In addition, the rules establish special requirements for any credit and debit card issuers that are subject to the jurisdiction of the SEC or the CFTC to assess the validity of notifications of changes of address under certain circumstances. The Banks implemented an ID Theft Prevention Program, approved by their Boards of Directors, in compliance with these requirements.
Community Reinvestment Act
The Community Reinvestment Act of 1977 (CRA) is intended to encourage banks to help meet the credit needs of their service areas, including low- and moderate-income neighborhoods, consistent with safe and sound business practices. The relevant Federal Banking Agency, the FDIC in the Banks’ case, examines each bank and assigns it a public CRA rating. A bank’s record of fair lending compliance is part of the resulting CRA examination report. CRA performance evaluations are based on a four-tiered rating system: Outstanding, Satisfactory, Needs to Improve and Substantial Noncompliance. CRA performance evaluations are considered in evaluating applications for such things as mergers, acquisitions and applications to open branches. The Banks each received a CRA rating of “Outstanding” at their most recent CRA examinations.
Consumer Protection Regulation and Supervision
We are subject to the federal consumer financial protection laws implemented by the CFPB. We are also subject to certain state consumer protection laws and state attorneys general and other state officials are empowered to enforce certain federal consumer protection laws and regulations. State authorities have increased their focus on and enforcement of consumer protection rules. These federal and state consumer protection laws apply to a broad range of our activities and to various aspects of our business, and include laws relating to interest rates, fair lending, disclosures of credit terms and estimated transaction costs to consumer borrowers, debt collection practices, the use and provision of information to consumer reporting agencies, and the prohibition of unfair, deceptive, or abusive acts or practices in connection with the offer, sale, or provision of consumer financial products and services. Each Bank has in place an effective compliance management system to comply with these laws and regulations.
Privacy, Information Security and Data Protection
We are subject to various privacy, information security and data protection laws, including requirements concerning security breach notification. For example, in the United States, we are subject to the GLBA and implementing regulations and guidance. Among other things, the GLBA: (i) imposes certain limitations on the ability of financial institutions to share consumers’ nonpublic personal information with nonaffiliated third parties; (ii) requires that financial institutions provide certain disclosures to consumers about their information collection, sharing and security practices and affords consumers the right to “opt out” of the institution’s disclosure of their personal financial information to nonaffiliated third parties (with certain exceptions); and (iii) requires financial institutions to develop, implement and maintain a written comprehensive information security program containing safeguards that are appropriate to the financial institution’s size and complexity, the nature and scope of the financial institution’s activities, the sensitivity of consumer information processed by the financial institution as well as plans for responding to data security breaches.
Federal and state laws also require us to respond appropriately to data security breaches. A final rule issued by the Federal Reserve, OCC, and FDIC, which became effective in May 2022, requires banking organizations to notify their primary federal regulator of significant computer security incidents within 36 hours of determining that such an incident has occurred.
In 2018, the State of California enacted the California Consumer Privacy Act (CCPA). The CCPA requires covered businesses to comply with requirements that give consumers the right to know what information is being collected from them and whether such information is sold or disclosed to third parties. The statute also allows consumers to access, delete, and prevent the sale of personal information that has been collected by covered businesses in certain circumstances. The CCPA does not apply to personal information collected, processed, sold, or disclosed pursuant to the GLBA or the California Financial Information Privacy Act. We are a covered business under the CCPA, which became effective on January 1, 2020. In 2020, the State of California amended the CCPA by passing a ballot initiative known as the California Privacy Rights Act. This initiative added a number of requirements to the CCPA with which we are finalizing our compliance.
We continue to monitor, and have a program in place to comply with, applicable privacy, information security and data protection requirements imposed by federal, state, and foreign laws. However, if we experience a significant cybersecurity incident or our regulators deemed our information security controls to be inadequate, we could be subject to supervisory criticism or penalties, and/or suffer reputational harm. For further discussion of privacy, data protection and cybersecurity, and related risks for our business, see “Part I—Item 1A. Risk Factors” under the headings “Regulation in the areas of privacy, data protection, data governance, account access and information and cyber security could increase our costs and affect or limit our business opportunities and how we collect and/or use personal information”, “Failure to safeguard our data and consumer privacy could affect our reputation among our partners and their customers, and may expose us to legal claims”, and “Business interruptions, including loss of data center capacity, interruption due to cyber-attacks, loss of network connectivity or inability to utilize proprietary software of third party vendors, could affect our ability to timely meet the needs of our partners and customers and harm our business”.
Human Capital
As of December 31, 2022, we employed approximately 7,500 associates worldwide, with the majority concentrated in the United States. Attracting, developing and retaining top talent is critical to our business. As a core component of our broader Environmental, Social and Corporate Governance (ESG) and sustainability efforts, our key human capital management objective is to promote an inclusive, engaged culture that empowers associates through opportunities to grow, develop and lead. Our associates have been, and will remain, the backbone of our business, and we take a holistic approach to our associates’ experiences, recognizing that an engaged workforce drives our long-term growth and sustainability. Our Board of Directors and Compensation & Human Capital Committee provide the important oversight of our human capital management strategy, including diversity, equity and inclusion (DE&I) efforts, which are led by our Head of Diversity and Inclusion and our Chief Diversity Officer. Our Compensation & Human Capital Committee and our full Board of Directors receive regular updates from senior management and third-party consultants on human capital trends and developments, and other key human capital matters that drive our ongoing success and performance.
Associate Health and Wellbeing
Associate health and wellbeing remains a top human capital priority, and we are committed to providing our associates with competitive total compensation, benefits and wellness resources. Our associates continue to express enthusiasm for the flexible remote work policies that we adopted during the COVID-19 pandemic, and approximately 95% of our total workforce continues to successfully work from home, either on a fully-remote or hybrid basis. We intend to continue these flexible work arrangements, seeking to take advantage of the engagement and productivity benefits associated with increased flexibility, as well as opportunities for connectedness and social interaction. Other associate wellbeing resources include mental health awareness and counselling support, financial education and wellness courses, a variety of fitness and meditation classes, a wellbeing cost reimbursement program and other benefits to promote mental and physical health supportive of holistic wellbeing.
Additionally, during 2022 we further improved the competitiveness of our associate benefit offerings, including: (i) enhancements to our medical benefits, such as the removal of a 30-day waiting period for new hires to enroll and the addition of travel benefits for reproductive and other fertility services; (ii) improvements to our paid time off and flex time off policies; (iii) the addition of two new paid holidays (bringing the total to 11); and (iv) expanded mental health services, including increased access to free therapy sessions, dedicated care navigators and mental health medication management services.
Associate Experience and Engagement
Delivering an exceptional experience for our customers relies on our ability to cultivate an engaging and rewarding experience for our associates. We maintained high levels of associate engagement and retention in 2022 and were successful with talent acquisition, hiring several top industry leaders in key positions that further supported our transformation initiatives and business priorities. As discussed further below, in 2022 we continued to focus on developing our internal talent to increase lateral movement across the organization, with 34% of the 592 new jobs posted in 2022 being ultimately filled by internal candidates. We continue to listen to and act on feedback from our associates, including through our annual Associate Survey and other more frequent surveys and communications. Each year after the results of the annual Associate Survey have been tabulated, our senior management presents those results to our Compensation & Human Capital Committee and our Board of Directors, including discussion regarding trends observed and actions to be taken in response to the results. Input from our Board helps inform our human capital strategies and objectives going forward; our global themes for 2023 include promoting career opportunities for our associates, further optimizing our future work environment and ensuring associates have the appropriate tools, resources and technology to work effectively, whether in-office or remote.
Workforce Readiness, Growth and Advancement
As part of our broader multi-year business transformation, our “future workforce” steering committee, comprised of senior human resources, technology and operations management, continued to develop and execute human capital-intensive strategies to ensure our workforce readiness, growth and advancement. During the year we completed our second-annual, six-month apprenticeship program, which created a feeder pipeline from roles in our Care Centers to other non-Care Center opportunities across the organization, with 22 U.S. associates (or 96% of program participants) transitioning to new roles at the conclusion of their apprenticeships. Robust training and development remains central to our human capital strategy, and in 2022 we expanded our training programs to include a more advanced mentorship program that matches associates with an internal mentor who will help further their unique career journey and development needs. In addition to career-oriented training and development, we require annual associate training to ensure ongoing adherence to responsible business practices and ethical conduct, and all associates must certify annually that they have read and will adhere to our Code of Ethics. We believe these efforts resonated with our associates, as we saw a 3% improvement in associates’ perceptions of the professional growth and development initiatives taken by us, reflected in our 2022 annual Associate Survey.
Diversity, Equity and Inclusion
We are committed to creating an inclusive culture that attracts and values diversity - of thought, experience, background, skills and ideas. Over the past few years, we have renewed and accelerated our actions and activities in support of DE&I. In 2021, we appointed a Chief Diversity Officer (CDO), hired a Vice President of DE&I and appointed an associate-led DE&I Council. Together, these actions resulted in establishing a Diversity, Equity and Inclusion Office, solidifying our focus on these efforts. Additionally our eight Business Resource Groups, made up of over 700 associate members, act as a catalyst for ensuring a fully inclusive and engaging work environment.
Our DE&I strategy is embedded into our overall governance process and business model, demonstrating our elevated commitment and accountability to this imperative. The strategy describes what we seek to accomplish and how we will measure progress across four focus areas: (i) Workforce - creating pathways for hiring and promotions that map to market availability; (ii) Workplace - promoting an inclusive, engaged culture that empowers associates through opportunities to grow, develop and lead; (iii) Marketplace - infusing DE&I into our growth strategy, product delivery, customer experience and supply chain; and (iv) Community – building strategic partnerships that empower our communities and advance business priorities.
As of December 31, 2022, approximately 67% of our total work force and 44% of our senior leaders were female, while approximately 47% of our total work force and 15% of our senior leaders were minorities.
ESG Strategy
We are committed to sustainability, including integrating ESG principles into our business strategy in ways that optimize opportunities to make positive impacts while advancing long-term financial and reputational goals. As part of our business transformation, in 2021, our Board approved an enhanced and modernized ESG strategy intended to drive additional progress on initiatives that promote sustainability, diversity, equity and inclusion, and increased transparency in our disclosures. We continue to advance the integration of ESG into our overall governance and risk management practices.
Additional information regarding our ESG strategy and initiatives can be found in our annual ESG reports, which are published on our corporate website at: https://investor.breadfinancial.com/sustainability/. No information from this website is incorporated by reference herein. Please also see “Human Capital” above.
Other Information
Our corporate headquarters are located at 3095 Loyalty Circle, Columbus, Ohio 43219, where our telephone number is 614-729-4000.
We file or furnish annual, quarterly and current reports, proxy statements and other information with the SEC. Our SEC filings are available to the public at the SEC’s website at www.sec.gov. You may also obtain copies of our annual, quarterly and current reports, proxy statements and certain other information filed or furnished with the SEC, as well as amendments thereto, free of charge from our website, www.BreadFinancial.com. No information from this website is incorporated by reference herein. These documents are posted to our website as soon as reasonably practicable after we have filed or furnished these documents with the SEC. We post our Audit Committee, Risk Committee, Compensation & Human Capital Committee and Nominating and Corporate Governance Committee charters, our corporate governance guidelines, and our code of ethics, code of ethics for senior financial officers, and code of ethics for Board members on our website. These documents are available free of charge to any stockholder upon request.
Item 1A. Risk Factors.
RISK FACTORS
This section should be carefully reviewed, in addition to the other information appearing in this Form 10-K, including the sections entitled “Risk Management” and “Management’s Discussion and Analysis of Financial Condition and Results of Operations” and our consolidated financial statements and related notes, for important information regarding risks and uncertainties that affect us. The risks and uncertainties described below are not the only ones we face. Additional risks and uncertainties that we are unaware of, or that we currently believe are not material, may also become important factors that adversely affect our business. If any of the following risks actually occur, our business, financial condition, results of operations, and future prospects could be materially and adversely affected.
Summary
This risk factor summary is qualified in its entirety by reference to the complete description of our risk factors set forth immediately below.
Risks related to our macroeconomic, global, strategic, business and competitive environment include:
•Market conditions, inflation, rising interest rates, unemployment levels and the increased probability of a recession or prolonged economic slowdown, and the related impact on consumer spending behavior, payments, debt levels, savings rates and other behavior, could have a material adverse effect on our business.
•Global political, market, public health and social events or conditions, including the ongoing war in Ukraine and the continuing effects of the COVID-19 pandemic, may harm our business.
•Our unsecured loans make us reliant on the future credit performance of our customers, and if customers are unable to repay our loans, our level of future delinquency and write-off rates will increase.
•A significant percentage of our revenue is generated through relationships with a limited number of partners, and a decrease in business from, or the loss of, any of these partners, could have an adverse effect on our business.
•Our business is heavily concentrated in U.S. consumer credit, and therefore our results are more susceptible to fluctuations in the U.S. consumer credit market than a more diversified company.
•The amount of our Allowance for credit losses could adversely affect our business and may be insufficient to cover actual losses on our loans.
•We may be unable to successfully identify, complete or successfully integrate or disaggregate business acquisitions, divestitures and other strategic initiatives, including failure to realize the intended benefits of the spinoff of our former LoyaltyOne segment.
•Competition in our industry is intense.
•Our results of operations and growth depend on our ability to retain existing partners and attract new partners, and our results are impacted, to a significant extent, on the active and effective promotion and support of our products by our partners and on the financial performance of our partners.
•We rely extensively on models in managing many aspects of our business, and if they are not accurate or are misinterpreted, such factors could have a material adverse effect on our business and results of operations.
•Underwriting performance of acquired or new lending programs may not be consistent with existing experience.
Risks related to our liquidity, market and credit risk include:
•Adverse financial market conditions or our inability to effectively manage our funding and liquidity risk could have a material adverse effect on our business, liquidity and ability to meet our debt service requirements and other obligations.
•Our inability to effectively access the securitization or other capital markets could limit our funding opportunities for loans and other business opportunities.
•Competition for deposits and regulatory restrictions on deposit products can impact availability and cost of funds.
•Our level of indebtedness may restrict our ability to compete and grow our business.
•Our market valuation has been, and may continue to be, volatile, and returns to stockholders may be limited.
•We are a holding company and depend on dividends and other payments from our Banks, which are subject to various legal and regulatory restrictions.
Risks related to our legal, regulatory and compliance environment include:
•We face various risks related to the extensive government regulation and supervision of our business, including by the FDIC, CFPB and other federal and state authorities. These risks include pending and future laws and
regulations that may adversely impact our business, such as the CFPB’s recent proposed rulemaking with respect to late fees, as well as supervisory and other actions that may be taken against us by our regulators.
•Pending and future litigation could subject us to significant fines, penalties, judgments and/or requirements.
•Regulations relating to privacy, information security and data protection could increase our costs, affect or limit how we collect and use personal information and adversely affect our business opportunities.
•Financial institution capital requirements may limit cash available for business operations, growth and returns to stockholders.
Risks related to cybersecurity, technology and third-party vendors include:
•We rely on third-party vendors, and we could be adversely impacted if such vendors fail to fulfill their obligations.
•Impacts arising from or relating to the transition of our credit card processing services to strategic outsourcing providers that we completed in 2022 have, and may continue, to adversely affect our business.
•Failures in data protection, cybersecurity and information security, as well as business interruptions to our data centers and other systems, could critically impair our products, services and ability to conduct business.
•Our industry is subject to rapid and significant technological changes, and we may be unable to successfully develop and commercialize new or enhanced products and services.
Risks related to the spinoff of our former LoyaltyOne segment include potential tax liability, disputes or other adverse impacts.
Macroeconomic, Strategic, Business and Competitive Risks
Weakness and instability in the macroeconomic environment could have a material adverse effect on our business, results of operations and financial condition.
Macroeconomic conditions historically have affected our business, results of operations and financial condition and will continue to affect them in the future. We offer an array of payment, lending and saving solutions to consumers, and a prolonged period of economic weakness, including a recession or economic slowdown, economic and market volatility, and other adverse economic conditions, including inflation, increased interest rates and high levels of unemployment, could have a material adverse effect on our business, results of operations and financial condition, as these macroeconomic conditions may reduce consumer confidence and negatively impact customers’ payment and spending behavior. Some of the specific risks we face as a result of these conditions include the following:
•Adverse impacts on our customers’ ability and willingness to pay amounts owed to us, increasing delinquencies, defaults, bankruptcies, charge-offs and Allowances for credit losses, and decreasing recoveries;
•Decreased consumer spending, changes in payment patterns, lower demand for credit and shifts in consumer payment behavior towards avoiding late fees, finance charges and other fees;
•Decreased reliability of the process and models we use to estimate our Allowance for credit losses, particularly if unexpected variations in key inputs and assumptions cause actual losses to diverge from the projections of our models and our estimates become increasingly subject to management’s judgment; and
•Limitations on our ability to replace maturing liabilities and to access the capital markets to meet liquidity needs.
As an illustration of the potential impact of an economic downturn on our business, our Delinquency and Net loss rates peaked in 2009 during the financial crisis at 6.2% and 10.0%, respectively. As of December 31, 2022 our Delinquency rate was 5.5% and our full-year Net loss rate was 5.4% for the year ended December 31, 2022.
We continue to closely monitor economic conditions and indicators, including inflation, interest rates, housing values, consumer wages, consumer saving rates and debt levels, including student loan debt, unemployment, concerns about the level of U.S. government debt, as well as economic and political conditions in the U.S. and global markets, but the outcome of any of these conditions and indicators remains difficult to predict. During 2022, our Provision for credit losses increased relative to 2021 due to, in part, the economic scenario weightings in our credit reserve modeling reflecting an increasing probability of a recession, high inflation, and the increased cost of overall consumer debt. A recession or prolonged period of economic weakness would likely, among other things, adversely affect consumer discretionary spending levels and the ability and willingness of customers to pay amounts owed to us, and could have a material adverse effect on our business, key credit trends, results of operations and financial condition.
Global economic, political, market, health and social events or conditions, including the war in Ukraine and the ongoing effects of the COVID-19 pandemic, may harm our business.
Our revenues are largely dependent on the number and volume of credit transactions by consumers, whose spending patterns may be affected by economic, political, market, health and social events or conditions. As described above, adverse macroeconomic conditions within the U.S. or internationally, including but not limited to recessions, inflation, rising interest rates, high unemployment, currency fluctuations, actual or anticipated large-scale defaults or failures, volatility in energy prices, a slowdown of global trade, and reduced consumer and business spending, have a direct impact on our loan volumes and revenues. Furthermore, in efforts to deal with adverse macroeconomic conditions, governments may introduce new or additional initiatives or requests to reduce or eliminate late fees or other charges, which could result in additional financial pressures on our business.
In addition, outbreaks of illnesses, pandemics like COVID-19, or other local or global health issues, political uncertainties, international hostilities, armed conflict, war (such as the ongoing war in Ukraine), civil unrest, climate-related events, including the increasing frequency of extreme weather events, impacts to the power grid, and natural disasters have, to varying degrees, negatively impacted our operations, brand partners, service providers, activities, and consumer spending.
The ongoing effects of the COVID-19 pandemic remain difficult to predict due to numerous uncertainties, including the transmissibility, severity, duration and resurgence of the virus; the emergence of new variants of the virus; the uptake and effectiveness of health and safety measures or actions that are voluntarily adopted by the public or required by governments or public health authorities; the availability, effectiveness and consumer acceptance of vaccines and treatments; the indirect impact of the pandemic on global economic activity; the impact of the reopening of borders and the resumption of international travel; increased logistics costs; a continued competitive labor market; and the impact of the global COVID-19 pandemic on our employees, our operations, and the business of our brand partners and suppliers.
The Russia-Ukraine conflict has had, and could continue to have, significant negative effects on regional and global economic and financial markets, including increased volatility, reduced liquidity, supply chain concerns and overall uncertainty. Russia may take additional counter measures or retaliatory actions (including cyberattacks), which could exacerbate negative consequences on global financial markets and stability. The duration of ongoing hostilities and corresponding sanctions and related events cannot be predicted.
A decline in economic, political, market, health and social conditions could impact our brand partners as well, and their decisions could reduce the number of cards, accounts, and credit lines of their customers, which would ultimately impact our revenues. Our brand partners may implement cost-reduction initiatives that reduce or eliminate marketing budgets, and decrease spending on optional or enhanced value added services from us. Any events or conditions that impair the functioning of the financial markets, tighten the credit market, or lead to a downgrade of any present or future credit rating of ours could increase our future borrowing costs and impair our ability to access the capital and credit markets on favorable terms, which could affect our liquidity and capital resources, or significantly increase our cost of capital.
Finally, as governments, investors and other stakeholders face additional pressures to accelerate actions to address climate change and other environmental, social and governance topics, governments are implementing regulations and investors and other stakeholders, whether by stockholder proposals, public campaigns, proxy solicitations or otherwise, are imposing new expectations on, or focusing investments in ways that may cause significant shifts in, disclosure, commerce and consumption behaviors. Any of these developments may increase our operating costs and otherwise negatively impact our business. In addition, our inability to timely address these new and evolving requirements or pressures may result in regulatory enforcement actions or stockholder litigation, and otherwise damage our reputation. See “-Damage to our reputation could damage our business.”
The loans we make are unsecured, and we may not be able to ultimately collect from customers that default on their loans.
The primary risk associated with unsecured consumer lending is the risk of default or bankruptcy of the borrower, resulting in the borrower’s balance being written-off as uncollectible. We rely principally on the borrower’s creditworthiness for repayment of the loan and therefore have no other recourse for collection. We may not be able to successfully identify and evaluate the creditworthiness of borrowers to minimize delinquencies and losses. The models and approaches we use to manage our credit risk, including our automated proprietary scoring technology and verification procedures for new account holders, establishing or adjusting their credit limits and applying our risk-based pricing, may not accurately predict future write-offs for various reasons discussed elsewhere in these Risk Factors, including see “Our risk management
policies and procedures may not be effective, and the models we rely on may not be accurate or may be misinterpreted.” below. While we monitor credit quality on a regular and consistent basis, utilizing internal algorithms and external credit bureau risk scores and other data, these algorithms and data sources may be inaccurate or incomplete, including as a result of certain customers’ credit profiles not fully reflecting their credit risk due to the less-regulated reporting requirements for many fintechs. An increase in defaults or net principal losses could result in a reduction in Net income. General economic conditions, including a recession or prolonged economic slowdown, inflation, rising interest rates, high unemployment or volatility in energy prices, may result in greater delinquencies that lead to greater credit losses. In addition to being affected by general economic conditions and the success of our collection and recovery efforts, the stability of our Delinquency and Net loss rates are affected by the credit risk inherent in our Credit card and other loans portfolio, and the vintage of the accounts in our various credit card portfolios. Further, our pricing strategy may not offset the negative impact on profitability caused by increases in delinquencies and losses, thus any material increases in delinquencies and losses beyond our current estimates could have a material adverse impact on us. For 2022, our Net principal loss rate was 5.4%, compared with 4.6% and 6.6% for 2021 and 2020, respectively. Our Delinquency rates were 5.5% of Credit card and other loans as of December 31, 2022, compared with 3.9% and 4.4% as of December 31, 2021 and 2020, respectively.
A significant percentage of our Total net interest and non-interest income, or revenue, is generated through our
relationships with a limited number of partners, and a decrease in business from, or the loss of, any of these partners could cause a significant drop in our revenue.
We depend on a limited number of large partner relationships for a significant portion of our revenue. As of and for the year ended December 31, 2022, our five largest credit card programs accounted for approximately 47% of our Total net interest and non-interest income and 41% of our End-of-period credit card and other loans. In particular, our programs with (alphabetically) Ulta Beauty and Victoria’s Secret & Co. and its retail affiliates each accounted for more than 10% of our Total net interest and non-interest income for the year ended December 31, 2022. A decrease in business from, or the loss of, any of our significant partners for any reason, could have a material adverse effect on our business. We previously announced the non-renewal of our contract with BJ’s Wholesale Club (BJ’s) and the sale of the BJ’s portfolio, which closed in late February 2023. For the year ended December 31, 2022, BJ’s branded co-brand accounts generated approximately 10% of our Total net interest and non-interest income. As of December 31, 2022, BJ’s branded co-brand accounts were responsible for approximately 11% of our Total credit card and other loans.
Our business is heavily concentrated in U.S. consumer credit, and therefore our results are more susceptible to fluctuations in that market than a more diversified company.
Our business is heavily concentrated in U.S. consumer credit. As a result, we are more susceptible to fluctuations and risks particular to U.S. consumer credit than a more diversified company. For example, our business is particularly sensitive to macroeconomic conditions that affect the U.S. economy, consumer spending and consumer credit. We are also more susceptible to the risks of increased regulations and legal and other regulatory actions that are targeted at consumer credit or the specific consumer credit products that we offer (including promotional financing). Our business concentration could have an adverse effect on our results of operations.
We expect growth to result, in part, from new and acquired credit card and buy now, pay later (BNPL) programs whose credit card and other loans performance could result in increased portfolio losses and negatively impact our profitability.
We expect an important source of our growth to come from the acquisition of existing credit card programs and initiating credit card and BNPL programs with retailers and other merchants who either do not currently offer a private label or co-brand credit card or are initiating or transitioning from another BNPL platform. We believe that our pricing and models for determining credit risk are designed to effectively evaluate the credit risk of existing programs and ascertain the credit risk that we are willing to assume for acquired programs as well as those we initiate. We cannot be assured that the loss experience on acquired and initiated programs will be consistent with our more established programs, or that the cost to provide service to these new programs will not be higher than anticipated. The failure to successfully underwrite these acquired and initiated credit card or BNPL programs may result in defaults greater than our expectations and could have a material adverse impact on us and our profitability. See “Our risk management policies and procedures may not be effective, and the models we rely on may not be accurate or may be misinterpreted.”. Moreover, under the CECL accounting rules, the acquisition of an existing credit card or BNPL portfolio typically has a negative impact on certain key financial metrics in the near-term, including net income and earnings per share, because we are required to include a reserve build in our Provision for credit losses for the estimated credit losses to be experienced over the life of the acquired portfolio. The amount of this reserve build (which is included in the reporting period in which the portfolio is obtained) is
often large relative to the amount of revenue generated through such date by the newly-acquired portfolio. See also “–The amount of our Allowance for credit losses could adversely affect our business and may prove to be insufficient to cover actual losses on our loans.” below.
Our risk management policies and procedures may not be effective, and the models we rely on may not be accurate or may be misinterpreted.
Our risk management framework that seeks to identify and mitigate current or future risks and appropriately balance risk and return may not be comprehensive or fully effective. As regulations and competition continue to evolve, our risk management framework may not always keep sufficient pace with those changes. If our risk management framework does not effectively identify or mitigate our risks, we could suffer unexpected losses and could be materially adversely affected.
We rely extensively on models in managing many aspects of our business, including liquidity and capital planning (including stress testing), customer selection, credit and other risk management, pricing, reserving and collections management. The models may prove in practice to be less predictive than we expect for a variety of reasons, including as a result of errors in constructing, interpreting or using the models or the use of inaccurate assumptions (including, models being calibrated on historical cycles and correlations which may not be predictive of the future, or failures to update assumptions appropriately or in a timely manner). Our assumptions may be inaccurate for many reasons including that they often involve matters that are inherently difficult to predict and beyond our control (e.g., macroeconomic conditions, including continued elevated inflation, low unemployment, increasing consumer debt levels and weakening in macroeconomic indicators, and their impact on partner and customer behaviors) and they often involve complex interactions between a number of dependent and independent variables, factors and other assumptions. The errors or inaccuracies in our models may be material, and could lead us to make poor or sub-optimal decisions in managing our business, and this could have a material adverse effect on our business, results of operations and financial condition.
Fraudulent activity associated with our products and services could negatively impact our operating results, brand and reputation and cause the use of our products and services to decrease and our fraud losses to increase.
We are subject to the risk of fraudulent activity associated with retailers, partners, other merchant parties or third-party service providers handling consumer information. Our fraud-related operational losses were $73 million, $71 million and $141 million for the years ended December 31, 2022, 2021 and 2020, respectively. Our products are susceptible to application fraud, because among other things, we provide immediate access to credit at the time of approval. In addition, digital sales on the internet and through mobile channels are becoming a larger part of our business and fraudulent activity is higher as a percentage of sales in those channels than in stores. The different financial products that we offer, including deposit products, are susceptible to different types of fraud, and, depending on our product mix and channel mix, we may continue to experience variations in, or levels of, fraud-related expense that are different from or higher than those experienced by some of our competitors or the industry generally. The risk of fraud continues to increase for the financial services industry, and credit card and deposit fraud, identity theft and related crimes are likely to continue to be prevalent, with increasingly sophisticated perpetrators. Our resources, technologies and fraud prevention tools may be insufficient to accurately detect and prevent fraud. High profile fraudulent activity could also negatively impact our brand and reputation, which could negatively impact the use of our services, leading to a material adverse effect on our results of operations. In addition, significant increases in fraudulent activity could lead to regulatory intervention, including, but not limited to, additional consumer notification requirements, increasing our costs and negatively impacting our operating results, net income and profitability.
The amount of our Allowance for credit losses could adversely affect our business and may prove to be insufficient to cover actual losses on our loans.
The Financial Accounting Standards Board’s CECL accounting standard became effective for us on January 1, 2020 and requires us to determine periodic estimates of the lifetime expected credit losses on loans, and reserve for those expected credit losses through an allowance for credit losses against the loans. In addition, as mentioned above, for portfolios we may acquire when we enter into new partner program agreements, we are required to establish at the time of acquisition such an allowance. Any subsequent deterioration in the performance of a purchased portfolio after acquisition results in incremental credit loss reserves. Growth in our loan portfolio generally would also lead to an increase in our Allowance for credit losses.
The process for establishing an Allowance for credit losses is critical to our results of operations and financial condition, and requires complex models and judgments, including forecasts of economic conditions. The ongoing impact of CECL will be significantly influenced by the composition, characteristics and quality of our Credit card and other loans, as well as the prevailing economic conditions and forecasts utilized. For additional information regarding the adoption of CECL and its impact, see Note 3, “Allowance for Credit Losses” to our Consolidated Financial Statements included as part of this Annual Report on Form 10-K.
The CECL model may create more volatility in the level of our Allowance for credit losses. If we are required (as a result of any review, update, regulatory guidance or otherwise) to materially increase our level of Allowance for credit losses, such increase could adversely affect our business, financial condition, results of operations and opportunity to pursue new business. Moreover, we may underestimate our expected credit losses, and we cannot assure that our credit loss reserves will be sufficient to cover actual losses.
We may not be successful in realizing the benefits associated with our acquisitions, dispositions and strategic investments, and our business and reputation could be materially adversely affected.
Historically, we have acquired a number of businesses, as well as made strategic investments in businesses, products, technologies, platforms or other ventures, and we expect to continue to evaluate potential acquisitions, investments and other transactions in the future. There is no assurance that we will be able to successfully identify suitable candidates for any such opportunities, value any such opportunities accurately, negotiate favorable terms for any such opportunities, or successfully complete any such proposed transactions. If we are unable to identify attractive acquisition candidates or accretive new business opportunities, our growth could be limited.
Similarly, we may evaluate the potential disposition of, or elect to divest, assets or portfolios that no longer complement our long-term strategic objectives, as we did in November 2021, when we completed the spinoff of our LoyaltyOne segment. When a determination is made to divest assets or portfolios, we may encounter difficulty attaining buyers or effecting desired exit strategies in a timely manner or on acceptable terms and may be subject to market forces leading to a divestiture on less than optimal price or other terms.
In addition, there are numerous risks associated with acquisitions, dispositions and the implementation of new business opportunities, including, but not limited to:
•the difficulty and expense that we incur in connection with the acquisition, disposition or new business opportunity;
•the inability to satisfy pre-closing conditions preventing consummation of the acquisition, disposition or new business opportunity;
•the potential for adverse consequences when conforming the acquired company’s accounting policies to ours;
•the diversion of management’s attention from other business concerns;
•the potential loss of customers or key employees of the acquired company;
•the impact on our financial condition due to the timing of the acquisition, disposition or new business implementation or the failure of the acquired or new business to meet operating expectations;
•continued financial responsibility with respect to a divested business, including required equity ownership, guarantees, indemnities or other financial obligations;
•the assumption of unknown liabilities of the acquired company;
•the uncertainty of achieving expected benefits of an acquisition or disposition, including revenue, human resources, technological or other cost savings, operating efficiencies or synergies;
•the inability to integrate systems, personnel or technologies from our acquisitions and strategic investments;
•unforeseen legal, regulatory or other challenges that we may not be able to manage effectively;
•the reduction of cash available for operations, stock repurchase programs or other uses and potentially dilutive issuances of equity securities or incurrence of additional debt;
•the requirement to provide transition services in connection with a disposition resulting in the diversion of resources and focus; and
•the difficulty retaining and motivating key personnel from acquisitions or in connection with dispositions.
For example, upon the disposition of Epsilon in July 2019, we agreed to indemnify Publicis Groupe S.A. for the matter included in Note 15, “Commitments and Contingencies” to the Consolidated Financial Statements, which has resulted in a $150.0 million charge associated with Epsilon’s deferred prosecution agreement with the United States Department of Justice requiring two $75.0 million payments in January 2021 and January 2022, respectively. In connection with the spinoff of our former LoyaltyOne segment into a standalone company, LVI, we retained a 19% ownership stake in LVI.
During 2022, LVI’s stock price decreased significantly, and, as a result, we wrote down the value of our 19% shareholding in LVI from $50 million as of December 31, 2021 to $6 million as of December 31, 2022, and there can be no assurance that we will not experience further write-downs or other adverse impacts going forward. See “Risks Related to the LoyaltyOne Spinoff.” below.
Furthermore, if the operations of an acquired or new business do not meet expectations, our profitability may decline and we may seek to restructure the acquired business or to impair the value of some or all of the assets of the acquired or new business.
The markets for the services that we offer may contract or fail to expand and competition in our industry is intense, each of which could negatively impact our growth and profitability.
The markets for our products and services are highly competitive, and we expect this competition to intensify. Our growth and continued profitability depend on continued acceptance or adoption of the products and services we offer. We compete with a wide range of businesses, and some of our current competitors have longer operating histories, stronger brand names and greater financial, technical, marketing and other resources than we do. Moreover, the consumer credit and payments industry is highly competitive and we face an increasingly dynamic industry as emerging technologies enter the marketplace. For a more detailed discussion regarding the manner in which we compete with respect to each of our product categories, see “Item 1. Business—Competition” of this Form 10-K above. Additionally, downturns in the economy or the performance of our retail or other partners, including as a result of macroeconomic conditions, geopolitical events or global health events such as the COVID-19 pandemic, may result in a decrease in the demand for our products and services. Our ability to generate significant revenue from partners and consumers will depend on our ability to differentiate ourselves through the products and services we provide and the attractiveness of our programs to consumers. If we are not able to differentiate our products and services from those of our competitors, drive value for our partners and their customers, or effectively and efficiently align our resources with our goals and objectives, we may not be able to compete effectively in the market. Any decrease in the demand for our products and services for the reasons discussed above or any other reasons could have a material adverse effect on our growth, revenue and operating results.
Our results of operations and growth depend on our ability to retain existing partners and attract new partners.
Following the disposition of our Epsilon business and the spinoff of our LoyaltyOne segment, the majority of our revenue is generated from the credit products we provide to customers of our partners pursuant to program agreements that we enter into with our partners. As a result, our results of operations and growth depend on our ability to retain existing partners and attract new partners. Historically, there has been turnover in our partners, and we expect this will continue in the future. See also, “A significant percentage of our Total net interest and non-interest income, or revenue, is generated through our relationships with a limited number of partners, and a decrease in business from, or the loss of, any of these partners could cause a significant drop in our revenue.”.
Credit card program agreements with our brand partners typically are for multi-year terms. These program agreements generally provide each party with certain early termination rights, i.e., events or circumstances that would permit the party to terminate the agreement prior to its scheduled termination date in accordance with the conditions specified in the applicable agreement. For example, in some cases, a brand partner may have the right to terminate if we fail to meet certain service levels as set forth in the applicable brand partner agreement. Generally, a brand partner would not have the right to terminate until providing us formal notice and an opportunity to cure the service level failure. As a result of the transition of our credit card processing services to our strategic outsourcing providers in late June 2022, we failed to meet certain service levels in a number of our credit card program agreements due to periods of unavailability of our customer support and account servicing functions, which could, in certain circumstances, have given rise to a termination right by an impacted brand partner. To date, no brand partner has sought to exercise any such termination right, and many other such rights have either been formally waived or lapsed pursuant to the terms of the applicable brand partner agreement. We cannot provide assurance that a brand partner from which we did not receive such a waiver will not attempt to terminate its program agreement or that future service level failures will not occur.
There is significant competition for our existing partners, and our failure to retain our existing larger partner relationships upon the expiration of a contractual arrangement or our earlier loss of a relationship upon the exercise of a partner’s early termination rights, or the expiration or termination of a substantial number of smaller partner contracts or relationships, could have a material adverse effect on our results of operations (including growth rates) and financial condition to the extent we do not acquire new partners of similar size and profitability or otherwise grow our business. In addition, existing relationships may be renewed with less favorable terms to us in response to increased competition for such relationships.
The competition for new partners is also significant, and our failure to attract new partners could adversely affect our ability to grow.
Our results depend, to a significant extent, on the active and effective promotion and support of our products by our brand partners.
Our partners generally accept most major credit cards and various other forms of payment; therefore our success depends, in part, on their active and effective promotion of our products to their customers. We depend on our partners to integrate the use of our credit products into their operations, including into their in-store and online shopping experiences and loyalty programs. We rely on our partners to train their sales and call center associates about our products and to have their associates encourage customers to apply for, and use, our products and otherwise effectively market our products. If our partners do not effectively promote and support our products, or if they make changes in their business models that negatively impact card usage, these actions could have a material adverse effect on our business and results of operations. Partners may also implement or fail to implement changes in their systems and technologies that may disrupt the integration between their systems and technologies and ours, any of which could disrupt the use of our products. In addition, if our partners engage in improper business practices, do not adhere to the terms of our program agreements or other contractual arrangements or standards, or otherwise diminish the value of our brand, we may suffer reputational damage and customers may be less likely to use our products, which could have a material adverse effect on our business and results of operations.
Our results are impacted, to a significant extent, by the financial performance of our partners.
Our ability to originate new credit card accounts, generate new loans, and earn interest and fees and other income is dependent, in part, upon sales of merchandise and services by our partners. The retail and other industries in which our partners operate are intensely competitive. Our partners’ sales may decrease or may not increase as we anticipate for various reasons, some of which are in the partners’ control and some of which are not. For example, partner sales have been, and in the future may be adversely affected by the COVID-19 pandemic or other macroeconomic conditions having a national, regional or more local effect on consumer spending, business conditions affecting the general retail environment, such as supply chain distributions or the ability to maintain sufficient staffing levels, or a particular partner or industry, or natural disasters or other catastrophes affecting broad or more discrete geographic areas. If our partners’ sales decline for any reason, it generally results in lower credit sales, and therefore lower loan volume and associated interest and fees and other income for us from our customers. In addition, if a partner closes some or all of its stores or becomes subject to a voluntary or involuntary bankruptcy proceeding (or if there is a perception that such an event may occur), its customers who have used our financing products may have less incentive to pay their outstanding balances to us, which could result in higher charge-off rates than anticipated and our costs for servicing its customers’ accounts may increase. This risk is particularly acute with respect to our largest partners that account for a significant amount of our interest and fees on loans. See “A significant percentage of our Total net interest and non-interest income, or revenue, is generated through our relationships with a limited number of partners, and a decrease in business from, or the loss of, any of these partners could cause a significant drop in our revenue.”. Moreover, if the financial condition of a partner deteriorates significantly or a partner becomes subject to a bankruptcy proceeding, we may not be able to recover customer returns, customer payments made in partner stores or other amounts due to us from the partner. A decrease in sales by our partners for any reason or a bankruptcy proceeding involving any of them could have a material adverse impact on our business and results of operations.
We may not be successful in our efforts to promote usage of our proprietary cards, or to effectively control the costs associated with such promotion, both of which may materially impact our profitability.
We have been investing in promoting the usage of our proprietary cards, including our Bread CashbackTM American Express® Credit Card that we launched in 2022, but there can be no assurance that our investments to acquire cardholders, provide differentiated features and services and increase usage of our proprietary cards will be effective, particularly with increasing competition from other card issuers and fintechs, as well as changing consumer and business behaviors. In addition, if we develop new products or offers that attract customers looking for short-term incentives rather than incentivizing long-term loyalty, cardholder attrition and costs could increase. Moreover, we may not be able to cost-effectively manage and expand cardholder benefits, including controlling the growth of marketing, promotion, rewards and cardholder services expenses in the future.
Reductions in interchange fees may reduce the competitive advantages our private label credit card products currently have by virtue of not charging interchange fees and would reduce our income earned from those fees on co-brand and general purpose credit card transactions.
Interchange is a fee merchants pay to the interchange network in exchange for the use of the network’s infrastructure and payment facilitation, and which are paid to credit card issuers to compensate them for the risk they bear in lending money to customers. We earn interchange fees on co-brand and general purpose credit card transactions, but we typically do not charge or earn interchange fees from our partners or customers on our private label credit card products.
Merchants, trying to decrease their operating expenses, have sought to, and have had some success at, lowering interchange rates. Several recent events and actions indicate a continuing increase in focus on interchange by both regulators and merchants. In 2022, for example, legislation was introduced in the U.S. House of Representatives and Senate, which, among other things, would require large issuing banks to offer a choice of at least two unaffiliated networks over which electronic transactions may be processed. Furthermore, beyond pursuing litigation, legislation and regulation, merchants are also pursuing alternate payment platforms as a means to lower payment processing costs. To the extent interchange fees are reduced, one of our current competitive advantages with our partners—that we typically do not charge interchange fees when our private label credit card products are used to purchase our partners’ goods and services—may be reduced. Moreover, to the extent interchange fees are reduced, our income from those fees will be lower on co-brand and general purpose credit card transactions. As a result, a reduction in interchange fees could have a material adverse effect on our business and results of operations. In addition, for our co-brand and general purpose credit cards, we are subject to the operating regulations and procedures set forth by the interchange network, and our failure to comply with these operating regulations, which may change from time to time, could subject us to various penalties or fees, or the termination of our license to use the interchange network, all of which could have a material adverse effect on our business and results of operations
We may not be able to retain and/or attract and hire a highly qualified and diverse workforce or maintain our corporate culture, and having a large segment of our workforce working from home may exacerbate these risks and cause new risks.
Our performance largely depends on the talents and efforts of our employees, particularly our key personnel and senior management. We may be unable to retain or to attract highly qualified employees. The market for key personnel is highly competitive, particularly in technology and other skill areas significant to our business. Failure to attract, hire, develop, motivate and retain highly qualified and diverse employee talent, or to maintain a corporate culture that fosters innovation, creativity and teamwork could harm our overall business and results of operations. We rely on key personnel to lead with integrity and decency. To the extent our leaders behave in a manner that is not consistent with our values, we could experience significant impact to our brand and reputation, as well as to our corporate culture.
Moreover, in connection with the COVID-19 pandemic, we transitioned nearly all of our workforce to work remotely, and a significant portion of our workforce continues to work in a mostly remote environment. Remote work by a majority of our employee population may impact our culture, and employee engagement with our company, which could affect productivity and our ability to retain employees who are critical to our operations and may increase our costs and impact our financial results of operations. In addition, an increase in work from home by other companies may create more job opportunities for employees and make it more difficult for us to attract and retain key talent, especially in light of changing worker expectations and talent marketplace variability regarding flexible work models. In addition, employees who work from home rely on residential communication networks and internet providers that may not be as resilient as commercial networks and providers and may be more susceptible to service interruptions and cyberattacks than commercial systems. Our business continuity and disaster recovery plans, which have been historically developed and tested with a focus on centralized delivery locations, may not work as effectively in a distributed work from home model, where weather impacts, network and power grid downtime may be difficult to manage. In addition, we may not be effective in timely updating our existing operating and administrative controls nor implementing new controls tailored to the work from home environment. If we are unable to manage the work from home environment effectively to address these and other risks, our reputation and results of operations may be impacted.
Damage to our reputation could damage our business.
In recent years, financial services companies have experienced increased reputational risk as consumers protest and regulators scrutinize business and compliance practices of such companies. Maintaining a positive reputation is critical to attracting and retaining partners, customers, investors and employees. Damage to our reputation can therefore cause
significant harm to our business and prospects. Harm to our reputation can arise from numerous sources, including, among others, employee misconduct; a breach of our, or our service providers’ cybersecurity defenses; service outages, such as those many of our customers experienced in 2022 in connection with the transition of our credit card processing services to strategic outsourcing providers, or otherwise; litigation or regulatory outcomes; stockholder activism; failing to deliver minimum standards of service and quality; compliance failures; the use of our, or our partners’ products to facilitate legal, but controversial, products and services, including adult content, cryptocurrencies, firearms and gambling activity; and the activities of customers, business partners and counterparties. Social media also can cause harm to our reputation. By its very nature, social media can reach a wide audience in a very short amount of time, which presents unique challenges for corporate communications. Negative or otherwise undesirable publicity generated through unexpected social media coverage can damage our reputation and brand. Negative publicity regarding us, whether or not true, may result in customer attrition and other harm to our business prospects. There has also been increased focus on topics related to environmental, social and governance policies, and criticism of our policies in these areas could also harm our reputation and/or potentially limit our access to some forms of capital or liquidity.
Liquidity, Market and Credit Risks
Adverse financial market conditions or our inability to effectively manage our funding and liquidity risk could have a material adverse effect on our business, liquidity and ability to meet our debt service requirements and other obligations.
We need to effectively manage our funding and liquidity in order to meet our cash requirements such as day-to-day operating expenses, extensions of credit to our customers, investments to grow our business, payments of principal and interest on our borrowings and payments on our other obligations. Our primary sources of funding and liquidity are collections from our customers, deposits, funds from securitized financings and proceeds from unsecured borrowings, including our credit facility and outstanding senior notes. If we do not have sufficient liquidity, we may not be able to meet our debt service requirements and other obligations, particularly during a liquidity stress event. If we maintain or are required to maintain too much liquidity, it could be costly and reduce our financial flexibility.
We will need additional financing in the future to repay or refinance our existing debt at maturity or otherwise and to fund our growth. As of December 31, 2022, we had $556 million of terms loans outstanding under our parent credit agreement, which matures in July 2024, as well as $850 million of 4.750% senior notes due in December 2024 and $500 million of 7.000% senior notes due in January 2026. The availability of additional financing will depend on a variety of factors such as financial market conditions generally, including the availability of credit to the financial services industry and our lender counterparties’ willingness to lend to us, consumers’ willingness to place money on deposit with us, our performance and credit ratings and the performance of our securitized portfolios. Disruptions, uncertainty or volatility in the capital, credit or deposit markets, such as the uncertainty and volatility experienced in the capital and credit markets during recessions and periods of financial stress, inflation, rising interest rates, high levels of unemployment, other economic and political conditions in the global markets and concern over the level of U.S. government debt and fiscal measures that may be taken over the longer term to address these matters, may limit our ability to obtain additional financing or refinance maturing liabilities on desired terms (including funding costs) in a timely manner, or at all. As a result, we may be forced to delay obtaining funding or be forced to issue or raise funding on undesirable terms, which could significantly reduce our financial flexibility and cause us to contract or not grow our business, all of which could have a material adverse effect on our results of operations and financial condition.
Given the current rising interest rate environment and other recessionary pressures, the debt markets are volatile, and there can be no assurance that significant disruptions, uncertainties and volatility will not occur in the future. Specifically, availability of capital from the non-investment grade debt markets is currently subject to significant volatility, and there can be no assurance that we will be able to access those markets at attractive rates, or at all. Given the maturities of our current outstanding debt and the current macroeconomic conditions, it is possible that we will be required to repay or refinance some or all of our maturing debt in volatile and/or unfavorable markets. If we are unable to continue to fund our business operations, access capital markets for debt refinancings and otherwise, and attract deposits on favorable terms and in a timely manner, or if we experience an increase in our borrowing costs or otherwise fail to manage our liquidity effectively, our results of operations and financial condition may be materially adversely affected.
If we are unable to securitize our credit card loans due to changes in the market or other circumstances or events, we may not be able to fund new credit card loans, which would have a material adverse effect on our operations and profitability.
A significant source of funding is our securitization of credit card loans, which involves the transfer of credit card loans to a trust, and the issuance by the trust of notes to third-party investors collateralized by the beneficial interest in the transferred credit card loans. A number of factors affect our ability to fund our credit card loans in the securitization market, some of which are beyond our control, including:
•conditions in the securities markets in general and the asset-backed securitization market in particular;
•availability of loans for securitization;
•conformity in the quality of our credit card loans to rating agency requirements and changes in that quality or those requirements;
•costs of securitizing our credit card loans;
•ability to fund required over-collateralization or credit enhancements, which are routinely utilized in order to achieve better credit ratings to lower borrowing cost; and
•the legal, regulatory, accounting or tax rules affecting securitization transactions and asset-backed securities, generally.
Moreover, as a result of Basel III, which refers generally to a set of regulatory reforms adopted in the U.S. and internationally that are meant to address issues that arose in the banking sector during the 2008-2010 financial crisis, banks have become subject to more stringent capital, liquidity and leverage requirements. In response to Basel III, certain lenders of private placement commitments within our securitization trusts have sought and obtained amendments to their respective transaction documents permitting them to delay disbursement of funding increases by up to 35 days. Although funding may be requested from other lenders who have not delayed their funding, access to financing could be disrupted if all of the lenders implement such delays or if the lending capacities of those who did not do so were insufficient to make up the shortfall. In addition, excess spread may be affected if the issuing entity’s borrowing costs increase as a result of Basel III. Such cost increases may result, for example, because the investors are entitled to indemnification for increased costs resulting from such regulatory changes.
The inability to securitize credit card loans due to changes in the market, regulatory proposals, the unavailability of credit enhancements, or any other circumstance or event would have a material adverse effect on our operations, cost of funds and overall financial condition.
The occurrence of events that result in the early amortization of our existing credit card securitization transactions or an inability to delay the accumulation of principal collections for our existing credit card securitization transactions would materially adversely affect our liquidity.
Our liquidity and cost of funds would be materially adversely affected by the occurrence of events that could result in the early amortization of our existing credit card securitization transactions. Early amortization events may occur as a result of certain adverse events specified for each asset-backed securitization transaction, including, among others, deteriorating asset performance or material servicing defaults. In addition, certain series of funding securities issued by our securitization trusts are subject to early amortization based on triggers relating to the bankruptcy of one or more retailers or other partners. Deteriorating economic conditions and increased competition in the retail industry, among other factors, may lead to an increase in bankruptcies among retailers who have entered into credit card programs with us. The bankruptcy of one or more retailers or other partners could lead to a decline in the amount of new loans and could lead to increased delinquencies and defaults on the associated loans. Any of these effects of a partner bankruptcy could result in the commencement of an early amortization for one or more series of such funding securities, particularly if such an event were to occur with respect to a retailer or other partner relating to a large percentage of such securitization trust’s assets. The occurrence of an early amortization event may significantly limit our ability to securitize additional loans and materially adversely affect our liquidity.
Lower payment rates on our securitized credit card loans could materially adversely affect our liquidity and financial condition.
Certain collections from our securitized credit card loans come back to us through our subsidiaries, and we use these collections to fund our purchase of newly originated loans to collateralize our securitized financings. If payment rates on our securitized credit card loans are lower than they have historically been, fewer collections will be remitted to us on an ongoing basis. Further, certain series of our asset-backed securities include a requirement that we accumulate principal
collections in a restricted account for a specified number of months prior to the applicable security’s maturity date. We are required under the program documents to lengthen this accumulation period to the extent we expect the payment rates to be low enough that the current length of the accumulation period is inadequate to fully fund the restricted account by the applicable security’s maturity date. Lower payment rates, and in particular payment rates that are low enough that we are required to lengthen our accumulation periods, could materially adversely affect our liquidity and financial condition.
Inability to grow or maintain our deposit levels in the future could have a material adverse effect on our liquidity, ability to grow our business and profitability.
A significant source of our funds is customer deposits, primarily in the form of certificates of deposit and other savings products. We obtain deposits directly from retail and commercial customers or through brokerage firms that offer our deposit products to their customers. In recent years, deposits have become an increasingly important source of funds for us, with, for example, our retail deposits growing 72% from $3.2 billion as of December 31, 2021 to $5.5 billion as of December 31, 2022, accounting for 26% of our funding base. Our funding strategy includes continued growth of our liquidity through deposits. The deposit business continues to experience intense competition in attracting and retaining deposits. We compete on the basis of the rates we pay on deposits, the quality of our customer service and the competitiveness of our digital banking capabilities. Our ability to attract and maintain retail deposits remains highly dependent on the products we offer, the strength of our Banks, the reputability of our business practices and our financial health. Adverse perceptions regarding our lending practices, regulatory compliance, protection of customer information or sales and marketing practices, or actions taken by regulators or others with respect to our Banks, could impede our competitive position in the deposits market.
The demand for the deposit products we offer may also be reduced due to a variety of factors, including macroeconomic events, changes in interest rates, changes in consumers’ preferences, demographics or discretionary income, regulatory actions that decrease consumer access to particular products or the development or availability of competing products. Competition from other financial services firms and others that use deposit funding products may affect deposit renewal rates, costs or availability. Conversely, any adjustments we make to the rates offered on our deposit products to remain competitive may adversely affect our liquidity or our profitability.
The FDIA prohibits an insured bank from offering interest rates on any deposits that significantly exceed rates in its prevailing market, unless it is “well capitalized”. A bank that is less than “well capitalized” may not pay an interest rate on any deposit in excess of 75 basis points over certain prevailing market rates. There are no such restrictions under the FDIA on a bank that is “well capitalized” and as of December 31, 2022, each of our Banks met or exceeded all applicable requirements to be deemed “well capitalized” for purposes of the FDIA. However, there can be no assurance that our Banks will continue to meet those requirements. Any limitation on the interest rates our Banks can pay on deposits may competitively disadvantage us in attracting and retaining deposits, resulting in a material adverse effect on our business.
The FDIA also prohibits an insured bank from accepting brokered deposits, unless it is “well capitalized” or it is “adequately capitalized” and receives a waiver from the FDIC. Limitations on our Banks’ ability to accept brokered deposits for any reason (including regulatory limitations on the amount of brokered deposits in total or as a percentage of total assets) in the future could materially adversely impact our liquidity, funding costs and profitability. In December 2020, the FDIC updated its regulations that implement Section 29 of the FDIA to establish a new framework for analyzing whether certain deposit arrangements qualify as brokered deposits. This brokered deposit rule establishes bright-line standards for determining whether an entity meets the statutory definition of “deposit broker” and a consistent process for application of the primary purpose exception. All deposits on the Consolidated Balance Sheets of our Banks categorized as non-brokered in accordance with the updated regulations mentioned above comply with all application requirements of those regulations. Any limitation on the ability of our Banks to participate in the gathering of brokered deposits may competitively disadvantage us in meeting our funding goals and result in a material adverse effect on our business.
As of December 31, 2022, we had $13.8 billion in deposits, with approximately $6.7 billion in non-maturity savings deposits and approximately $7.1 billion in certificates of deposit. If, for whatever reason, we are unable to grow or maintain our deposit levels, our liquidity, ability to grow our business and profitability could be materially adversely affected.
Our level of indebtedness could materially adversely affect our ability to generate sufficient cash to repay our outstanding debt, and our ability to react to changes in our business and our incurrence of additional indebtedness to fund future needs could exacerbate these risks.
Our level of indebtedness requires a high level of interest and principal payments. Subject to the limits contained in our credit agreement, the indentures governing our senior notes and our other debt instruments, we may be able to incur substantial additional indebtedness from time-to-time to finance working capital, capital expenditures, investments or acquisitions, or for other purposes. If we do so, the risks related to our level of indebtedness could intensify. Our level of indebtedness increases the possibility that we may be unable to generate cash sufficient to pay, when due, the principal of, interest on or other amounts due in respect of our indebtedness. Our level of indebtedness, combined with our other financial obligations and contractual commitments, could:
•make it more difficult for us to satisfy our obligations with respect to our indebtedness, and any failure to comply with the obligations under any of our debt instruments, including restrictive covenants, could result in an event of default under our credit agreement, the indentures governing our senior notes and the agreements governing our other indebtedness;
•require us to dedicate a substantial portion of our cash flow from operations to payments on our indebtedness, thereby reducing funds available for working capital, capital expenditures, acquisitions or other new business and other corporate purposes;
•increase our vulnerability to adverse economic and industry conditions, which could place us at a competitive disadvantage or require us to dispose of assets to raise funds if needed for working capital or to pay, when due, the principal of, interest on or other amounts due in respect of our indebtedness;
•limit our flexibility in planning for, or reacting to, changes in our business and the industries in which we and our brand partners operate;
•limit our ability to borrow additional funds, or to dispose of assets to raise funds, if needed, for working capital, capital expenditures, acquisitions or other new business and other corporate purposes;
•delay or abandon investments and capital expenditures;
•cause any refinancing of our indebtedness to be at higher interest rates and require us to comply with more onerous covenants, which could further restrict our business operations; and
•prevent us from raising the funds necessary to repurchase all senior notes tendered to us upon the occurrence of certain changes of control.
Restrictions imposed by the indentures governing our senior notes, our credit agreement and our other outstanding or future indebtedness may limit our ability to operate our business and to finance our future operations or capital needs or to engage in other business activities.
The terms of the indentures governing our senior notes, our credit agreement and agreements governing our other debt instruments limit us and our subsidiaries from engaging in specified types of transactions. These covenants limit our and our subsidiaries’ ability, among other things, to:
•incur additional debt;
•declare or pay dividends, redeem stock or make other distributions to stockholders;
•make investments;
•create liens or use assets as security in other transactions;
•merge or consolidate, or sell, transfer, lease or dispose of substantially all of our assets;
•enter into transactions with affiliates;
•sell or transfer certain assets; and
•enter into any consensual encumbrance or restriction on the ability of certain of our subsidiaries to pay dividends or make loans or sell assets to us.
As a result of these covenants and restrictions, we may be limited in how we conduct our business and we may be unable to raise additional indebtedness to compete effectively or to take advantage of new business opportunities. The terms of any future indebtedness we may incur could include more restrictive covenants. We cannot assure that we will be able to maintain compliance with these covenants in the future. If we fail to comply with such covenants, we may not be able to obtain waivers of non-compliance from the lenders and/or amend the covenants so that we are in compliance therewith.
Changes in market interest rates could negatively affect our profitability.
Changes in market interest rates cause our finance charges, net and our interest expense, net to increase or decrease, as certain of our assets and liabilities carry interest rates that fluctuate with market benchmarks. We fund credit card and other
loans with a combination of fixed rate and floating rate funding sources that include deposits and securitized financings. We also have unsecured term debt that is subject to variable interest rates, and we may in the future incur additional debt or issue preferred equity that rely on variable interest rates. Beginning in March 2022, the Federal Reserve Board began raising the federal funds rate in an effort to curb inflation, and we expect further interest rate increases by the Federal Reserve in 2023.
The interest rate benchmark for most of our floating rate assets is the Prime rate, and the interest rate benchmark for our floating rate liabilities is generally either the Secured Overnight Financing Rate (SOFR) or the Federal funds rate. The Prime rate and SOFR or the Federal funds rate could reset at different times or could diverge, leading to mismatches in the interest rates on our floating rate assets and floating rate liabilities. Interest rates are highly sensitive to many factors that are beyond our control, including general economic conditions, the competitive environment within our markets, consumer preferences for specific loan and deposit products, and policies of various governmental and regulatory agencies, in particular the Federal Reserve. Changes in monetary policy, including changes in interest rate controls being applied by the Federal Reserve, could influence the amount of interest we receive on our Credit card and other loans and the amount of interest we pay on deposits and borrowings. Further, we have only recently begun indexing our variable rate debt to SOFR as a result of the discontinuation of the London Interbank Offered Rate (LIBOR) beginning in 2021. SOFR is a relatively new reference rate, has a very limited history and is based on short-term repurchase agreements, backed by Treasury securities. Changes in SOFR can be volatile and difficult to predict, and there can be no assurance that SOFR will perform similarly to the way LIBOR would have performed at any time. As a result, the amount of interest we may pay on our credit facilities is difficult to predict.
If the interest we pay on deposits and other borrowings increases at a faster rate than the interest we receive on our Credit card and other loans, our profitability would be adversely affected. Conversely, our profitability could also be adversely affected if the interest we receive on our Credit card and other loans falls more quickly than the interest we pay on deposits and other borrowings. While the interest rate increases to date have resulted in a nominal benefit on our results, there can be no assurance that future rate increases will not impact us negatively. We recognize that a customers’ ability and willingness to repay us can be negatively impacted by factors such as inflation, which may result in greater delinquencies that lead to greater credit losses, as reflected in our increased Allowance for credit losses. If the efforts to control inflation in the U.S. and globally are not successful and inflationary pressures persist, they could magnify the slowdown in the domestic and global economies and increase the risk of a recession or prolonged economic slowdown, which may adversely impact our business, results of operations and financial condition.
Future sales of our common stock, or the perception that future sales could occur, may adversely affect our common stock price.
As of February 22, 2023, we had an aggregate of 144,986,708 shares of our common stock authorized but unissued and not reserved for specific purposes. In general, we may issue all of these shares without any action or approval by our stockholders. We have reserved 5,329,044 shares of our common stock for issuance under our employee stock purchase plan and our long-term incentive plans, of which 672,776 shares have been issued and 1,927,320 shares are issuable upon vesting of restricted stock awards and restricted stock units. We have reserved for issuance 1,500,000 shares of our common stock, 241,603 of which remain issuable, under our 401(k) and Retirement Savings Plan as of December 31, 2022. In addition, we may issue shares of our common stock in connection with acquisitions. Sales or issuances of a substantial number of shares of common stock, or the perception that such transactions could occur, could adversely affect prevailing market prices of our common stock, and any sale or issuance of our common stock will dilute the ownership interests of existing stockholders.
The market price and trading volume of our common stock may be volatile and our stock price could decline.
The trading price of shares of our common stock has from time to time fluctuated widely and in the future may be subject to similar fluctuations. The trading price of our common stock may be affected by a number of factors, including our operating results, changes in our earnings estimates, additions or departures of key personnel, our financial condition, legislative and regulatory changes, general conditions in the industries in which we and our brand partners operate, general economic conditions, and general conditions in the securities markets. Other risks described in this Annual Report on Form 10-K could also materially adversely affect our share price.
There is no guarantee that we will pay future dividends or repurchase shares at a level anticipated by stockholders, which could reduce returns to our stockholders. Decisions to declare future dividends on, or repurchase, our common stock will be at the discretion of our Board of Directors based upon a review of relevant considerations.
Since October 2016, our Board of Directors has declared quarterly cash dividend payments on our outstanding common stock. Future declarations of quarterly dividends and the establishment of future record and payment dates are subject to approval by our Board of Directors. The Board’s determination to declare dividends on, or repurchase shares of, our common stock will depend upon our profitability and financial condition, contractual restrictions, restrictions imposed by applicable laws and regulations, including those governing our Banks’ ability to pay dividends and make distributions or other payments to us, and other factors that the Board of Directors deems relevant. For example, beginning with the second quarter of 2020, our Board of Directors reduced our quarterly dividend payment by 67% from $0.63 to $0.21 per quarter. Based on an evaluation of these factors, the Board of Directors may determine in the future not to declare dividends at all, to declare dividends at a reduced amount, not to repurchase shares or to repurchase shares at reduced levels compared to historical levels, any or all of which could reduce returns to our stockholders.
We are a holding company and depend on payments from our subsidiaries.
Bread Financial Holdings, Inc., our parent holding company, depends on dividends, distributions and other payments from subsidiaries, particularly our Banks, to fund dividend payments, any potential share repurchases, payment obligations, including debt obligations, and to provide funding and capital, as needed, to our other operating subsidiaries. Banking laws and regulations and our banking regulators may limit or prohibit our transfer of funds freely, either to or from our subsidiaries, at any time. These laws, regulations and rules may hinder our ability to access funds that we may need to make payments on our obligations or otherwise achieve strategic objectives. For more information, see “Business — Supervision and Regulation”.
In preparing our financial statements we make certain assumptions, judgments and estimates that affect amounts reported in our consolidated financial statements, which, if not accurate, may significantly impact our financial results.
We make assumptions, judgments and estimates in determining the allowance for credit losses, accruals for employee-related liabilities, accruals for uncertain tax positions, valuation allowances on deferred tax assets and legal contingencies. We also make assumptions, judgments and estimates for items such as the fair value of financial instruments, goodwill, long-lived assets and other intangible assets, impairment, the fair value of stock awards, as well as the recognition of revenue. These assumptions, judgments and estimates are drawn from historical experience and various other factors that we believe are reasonable under the circumstances as of the date of the Consolidated Financial Statements. Actual results could differ materially from our estimates, and such differences could significantly impact our financial results.
Legal, Regulatory and Compliance Risks
Our business is subject to extensive government regulation and supervision, which could materially adversely affect our results of operations and financial condition.
We, primarily through our Banks and certain non-bank subsidiaries, are subject to extensive federal and state regulation and supervision. Banking and consumer financial protection regulations are intended to protect consumers, depositors’ funds, the DIF, and the safety and soundness of the banking system as a whole, not stockholders. These regulations affect our lending practices, capital structure, investment practices, dividend policy and growth, among other things. Federal and state legislative bodies and regulatory agencies continually review banking laws, regulations and policies for possible changes. Compliance with laws and regulations can be difficult and costly, and changes to laws and regulations, as well as increased intensity in supervision, often impose additional compliance costs. The scope of the laws and regulations and the intensity of the supervision to which we are subject have increased in recent years, initially in response to the financial crisis, and more recently in light of other factors such as technological and market changes. Regulatory enforcement and fines have also increased across the banking and financial services sector. Further, the scope of regulation and the intensity of supervision will likely remain high in the current regulatory environment, including with respect to late fees, interchange fees and other matters. Such changes could subject us to additional costs, limit the types of financial services and products we may offer, and/or limit what we may charge for certain banking services, among other things. Most recently, in February 2023, the CFPB published a proposed rule with request for public comment that would: (i) decrease the safe harbor dollar amount for credit card late fees to $8 and eliminate a higher safe harbor dollar amount for subsequent late payments; (ii) eliminate the annual inflation adjustments that currently exist for the late fee safe harbor dollar amounts; and (iii) require that late fees not exceed 25% of the consumer’s required minimum payment. The “safe harbor” dollar amounts
referenced in the CFPB’s proposed rulemaking refer to the amounts that credit card issuers may charge as late fees under the CARD Act. Under the CARD Act, as implemented, these safe harbor amounts have been subject to annual adjustment based on changes in the consumer price index, and the safe harbor amounts are currently set at $30 for an initial late fee and $41 for subsequent late fees in one of the next six billing cycles. Accordingly, the proposed $8 safe harbor amount on late fees (and proposed elimination of the annual inflation-based adjustment thereto) would represent a significant decrease from the current safe harbor amounts. In addition, the proposed rulemaking seeks comment on whether late fees should be prohibited if the applicable payment is made within 15 days of the due date and whether, as a condition to utilizing the safe harbor, credit card issuers should be required to offer automatic payment options and/or provide certain notifications of upcoming payment due dates. We are closely monitoring the content and timing of the CFPB’s proposed rulemaking and its impact on our business.
We expect that we, like the rest of the banking sector, will remain subject to increased regulation and supervision of our industry by bank regulatory agencies and that there may be additional and changing requirements and conditions imposed on us, any of which could increase our costs, require increased management attention, and adversely impact our results of operations.
In connection with their continuous supervision and examinations of us, the FDIC, CFPB and/or other regulatory agencies may require changes in our business or operations, and any such changes may be judicially enforceable or impractical for us to contest. We may also become subject to formal or informal enforcement and other supervisory actions, including memoranda of understanding, written agreements, cease-and-desist orders, and prompt-corrective-action or safety-and-soundness directives. Supervisory actions could entail significant restrictions on our existing business, our ability to develop new business, our flexibility in conducting operations, and our ability to pay dividends or utilize capital. Enforcement and other supervisory actions also can result in the imposition of civil monetary penalties or injunctions, related litigation by private plaintiffs, damage to our reputation, and a loss of customer or investor confidence. We could be required, as well, to dispose of specified assets and liabilities within a prescribed period of time. As a result, any enforcement or other supervisory action could have an adverse effect on our business, results of operations, financial condition and prospects.
In addition, changes in the regulatory and supervisory environments could adversely affect us in substantial and unpredictable ways, including by limiting the types of financial services and products we may offer, enhancing the ability of others to offer more competitive financial services and products, restricting our ability to make acquisitions or pursue other profitable opportunities, and negatively impacting our results of operations and financial condition. Changes in the prevailing interpretations of federal or state laws and related regulations could also invalidate or call into question the legality of certain of our services and business practices.
Our failure to comply with the laws, regulations, and supervisory actions to which we are subject, even if the failure is inadvertent or reflects a difference in interpretation, could subject us to fines, other penalties, and restrictions on our business activities, any of which could adversely affect our business, results of operations, financial condition, cash flows, capital base, and/or the price of our securities.
See “Business — Supervision and Regulation” for more information about certain laws and regulations to which we are subject and their impact on us.
Litigation and other actions and disputes could subject us to significant fines, penalties, judgments and/or requirements resulting in significantly increased expenses, damage to our reputation and/or a material adverse effect on our business.
Businesses in the financial services and payments industry has historically been, and continue to be, subject to significant legal actions, including class action lawsuits. Many of these actions have included claims for substantial compensatory or punitive damages. While we have historically relied on our arbitration clause (which includes a class action waiver) in agreements with customers to limit our exposure to class action litigation, there can be no assurance that we will always be successful in enforcing our arbitration clause in the future. There may also be legislative, regulatory or other efforts to limit or eliminate the use of arbitration clauses or class action waivers, and if our arbitration provisions are found to be unenforceable or are otherwise limited or eliminated, our exposure to class action litigation could increase significantly. Further, even if our arbitration clause remains enforceable, we may be subject to mass arbitrations in which large groups of consumers bring arbitrations against us simultaneously. The continued focus of merchants on issues relating to the acceptance of various forms of payment may lead to additional litigation and other legal actions. Given the inherent uncertainties involved in litigation, and the very large or indeterminate damages sought in some matters asserted against us, there is significant uncertainty as to the ultimate liability we may incur from litigation.
In addition to litigation and regulatory matters, from time to time, through our operational and compliance controls, we identify compliance issues that require us to make operational changes and, depending on the nature of the issue, result in financial remediation to impacted cardholders. These self-identified issues and voluntary remediation payments could be significant depending on the issue and the number of cardholders impacted. They also could generate litigation or regulatory investigations that subject us to additional adverse effects on our business, results of operations and financial condition.
Our Banks are subject to extensive federal and state regulation that may restrict their ability to make cash available to us and may require us to make capital contributions to them.
Federal and state laws and regulations extensively regulate the operations of our Banks, including to limit the ability of the Banks to pay dividends or make other distributions to us. Many of these laws and regulations are intended to maintain the safety and soundness of our Banks, and they impose significant restraints on them to which other non-regulated entities are not subject.
Our Banks must maintain minimum amounts of regulatory capital. If the Banks do not meet these capital requirements, their respective regulators have broad discretion to institute a number of corrective actions that could have a direct material effect on our liquidity, ability to grow our business and financial condition. To pay any dividend, the Banks must each maintain adequate capital above regulatory guidelines. Accordingly, neither CB nor CCB may be able to make any of their cash or other assets available to us, including to service our indebtedness. If either of our Banks were to fail to meet any of the capital requirements to which it is subject, we may be required to provide them with additional capital, which could also impair our ability to service our indebtedness.
In addition, under the “source of strength” requirement, we are required to serve as a source of financial strength to our Banks and may not conduct our operations in an unsafe or unsound manner. Under these requirements, in the future, we could be required to provide financial assistance to our Banks if the Banks experience financial distress. This support may be required at times when we might otherwise have determined not to provide it or when doing so is not otherwise in our interests or the interests of our stockholders or creditors.
If legislative attempts to amend the BHC Act to eliminate the exclusion of credit card banks or industrial loan companies from the definition of “bank” are successful, or if we voluntarily take such action that results in the Parent Company becoming a federally-regulated BHC, we would become subject to additional regulation applicable to BHCs, which could increase our compliance and regulatory costs and have other effects that could be materially adverse to our business.
The Dodd-Frank Act mandates multiple studies, which could result in future legislative or regulatory action. In particular, the Government Accountability Office issued its study on whether it is necessary, in order to strengthen the safety and soundness of institutions or the stability of the financial system of the United States, to eliminate the exemptions to the definition of “bank” under the BHC Act for certain institutions including limited purpose credit card banks and industrial loan companies. The study did not recommend the elimination of these exemptions. However, legislation is periodically introduced that would eliminate this exception for industrial loan companies and other “non-bank banks”. If such legislation were enacted without any grandfathering of or accommodations for existing institutions, we could be required to become a BHC.
As a BHC, we and our non-bank subsidiaries would be subject to supervision, regulation and examination by the Federal Reserve Board. We would be required to provide annual reports and such additional information as the Federal Reserve Board may require pursuant to the BHC Act, and applicable regulations. In addition, we would be subject to consolidated regulatory capital requirements.
Pursuant to provisions of the BHC Act and regulations promulgated by the Federal Reserve Board thereunder, a BHC may only engage in, or own companies that engage in, activities deemed by the Federal Reserve Board to be permissible for BHCs or financial holding companies. Activities permissible for BHCs are those that are so closely related to the business of banking or managing or controlling banks as to be a proper incident thereto. Permissible activities for financial holding companies include those “so closely related to banking as to be a proper incident thereto” as well as certain additional activities deemed “financial in nature or incidental to such financial activity” or complementary to a financial activity and that do not pose a substantial risk to the safety and soundness of the depository institution or the financial system. If we were required to become a BHC, we may be required to modify or discontinue certain of our business activities, which may materially adversely affect our results of operations and financial condition.
Increases in FDIC insurance premiums may have a material adverse effect on our results of operations.
We are generally unable to control the amount of premiums that are required to be paid for FDIC insurance. If there are bank or financial institution failures, we may be required to pay significantly higher premiums than the levels currently imposed or additional special assessments or taxes that could adversely affect our earnings. Any future increases or required prepayments in FDIC insurance premiums may materially adversely affect our results of operations.
Noncompliance with the Bank Secrecy Act and other anti-money laundering statutes and regulations could cause us material financial loss.
The Bank Secrecy Act and the PATRIOT Act contain anti-money laundering and financial transparency provisions intended to detect and prevent the use of the U.S. financial system for money laundering and terrorist financing activities. The Bank Secrecy Act, as amended by the PATRIOT Act, requires depository institutions and their holding companies to undertake activities including maintaining an anti-money laundering program, verifying the identity of partners and customers, monitoring for and reporting suspicious transactions, reporting on cash transactions exceeding specified thresholds, and responding to requests for information by regulatory authorities and law enforcement agencies. The Financial Crimes Enforcement Network (FinCEN), a unit of the Treasury Department that administers the Bank Secrecy Act, is authorized to impose significant civil money penalties for violations of those requirements and has recently engaged in coordinated enforcement efforts with the Federal Banking Agencies, as well as the U.S. Department of Justice, Drug Enforcement Administration, and Internal Revenue Service (IRS).
Regulation in the areas of privacy, data protection, data governance, account access and information and cyber security could increase our costs and affect or limit our business opportunities and how we collect and/or use personal information.
Legislators and regulators in the United States and other countries are increasingly adopting or revising privacy, data protection, data governance, account access, and information and cyber security laws, including data localization, authentication and notification laws. As such laws are interpreted and applied (in some cases, with significant differences or conflicting requirements across jurisdictions), compliance and technology costs will continue to increase, particularly in the context of ensuring that adequate data governance, data protection, data transfer and account access mechanisms are in place.
Compliance with current or future privacy, data protection, data governance, account access, and information and cyber security laws could significantly impact our collection, use, sharing, retention and safeguarding of consumer and/or employee information and could restrict our ability to provide certain products and services, which could materially and adversely affect our profitability. Our failure to comply with such laws could result in potentially significant regulatory and/or governmental investigations and/or actions, litigation, fines, sanctions, ongoing regulatory monitoring, customer attrition, decreases in the use or acceptance of our cards and damage to our reputation and our brand.
For more information on regulatory and legislative activity in this area, see “Privacy and Data Protection Regulation” above.
We may not be able to effectively manage the operational and compliance risks to which we are exposed.
Operational risk is the risk arising from inadequate or failed internal processes or systems, human errors or misconduct, or adverse external events. Operational losses result from internal fraud; external fraud; inadequate or inappropriate employment practices and workplace safety; failure to meet professional obligations involving partners, products, and business practices; damage to physical assets; business disruption and systems failures; and/or failures in execution, delivery, and process management. As processes or organizations are changed, or new products and services are introduced, we may not fully appreciate or identify new operational risks that may arise from such changes. Through human error, fraud or malfeasance, conduct risk can result in harm to customers, broader markets and the company and its employees.
Compliance risk arises from the failure to adhere to applicable laws, rules, regulations and internal policies and procedures. We need to continually update and enhance our control environment to address operational and compliance risks. Operational and compliance failures or deficiencies in our control environment can expose us to reputational and legal risks as well as fines, civil money penalties or payment of damages and can lead to diminished business opportunities and diminished ability to expand key operations.
Our failure to protect our intellectual property rights and use of open source software may harm our competitive position, and litigation to protect our intellectual property rights or defend against third party allegations of infringement may be costly, any of which could negatively impact our business, results of operations and profitability.
Third parties may infringe or misappropriate our trademarks or other intellectual property rights, which could have a material adverse effect on our business, operating results or financial condition. The actions we take to protect our trademarks and other proprietary rights may not be adequate. Litigation may be necessary to enforce our intellectual property rights, protect our trade secrets or determine the validity and scope of the proprietary rights of others. Any infringement or misappropriation could harm any competitive advantage we currently derive or may derive from our proprietary rights. Third parties may also assert infringement claims against us. Any claims and an adverse determination in any resulting litigation could subject us to significant liability for damages and require us to either design around a third party’s patent or license alternative technology from another party. In addition, litigation is time consuming and expensive to defend and could result in the diversion of our time and resources. Further, our competitors or other third parties may independently design around or develop similar technology, or otherwise duplicate our services or products in a way that would preclude us from asserting our intellectual property rights against them. In addition, our contractual arrangements may not effectively prevent disclosure of our intellectual property or confidential and proprietary information, or provide an adequate remedy in the event of an unauthorized disclosure.
Aspects of our platform include software covered by open source licenses. United States courts have not interpreted the terms of various open source licenses, but could interpret them in a manner that imposes unanticipated conditions or restrictions on our platform. If portions of our proprietary software are determined to be subject to an open source license, we could also be required to, under certain circumstances, publicly release or license, at no cost, our products that incorporate the open source software or the affected portions of our source code. In addition to risks related to license requirements, usage of open source software can lead to greater risks than use of third-party commercial software because open source licensors generally do not provide warranties or other contractual protections regarding infringement, misappropriation, security vulnerabilities, defects or errors in the code or other violations, any of which could result in liability to us and negatively impact our business, results of operations, profitability and financial condition.
We have international operations that subject us to various international risks as well as increased compliance and regulatory risks and costs.
We have international operations, primarily in India, and some of our third-party service providers provide services to us from other countries, all of which subject us to a number of international risks, including, among other things, sovereign volatility and socio-political instability. Any future social or political instability in the countries in which we operate could have a material adverse effect on our business. U.S. regulations also govern various aspects of the international activities of domestic corporations and increase our compliance and regulatory risks and costs. Any failure on our part or the part of our service providers to comply with applicable U.S. regulations, as well as the regulations in the countries and markets in which we or they operate, could result in fines, penalties, injunctions or other similar restrictions, any of which could have a material adverse effect on our business, results of operations and financial condition.
Tax legislation initiatives or challenges to our tax positions could adversely affect our results of operations and financial condition.
We are subject to tax laws and regulations in U.S. federal, state, local and foreign jurisdictions. From time to time legislative initiatives may be proposed, which, if enacted, may impact our effective tax rate and could adversely affect our deferred tax assets, tax positions and/or our tax liabilities. In addition, U.S. federal, state, local, and foreign tax laws and regulations are extremely complex and subject to varying interpretations. There can be no assurance that our historical tax positions will not be challenged by the relevant taxing authorities, or that we would be successful in defending our positions in connection with any such challenge.
Anti-takeover provisions in our organizational documents and Delaware law may discourage or prevent a change of control, even if an acquisition would be beneficial to our stockholders, which could affect our stock price adversely and prevent or delay change of control transactions or attempts by our stockholders to replace or remove our current management.
Delaware law, as well as provisions of our certificate of incorporation, including those relating to our Board’s authority to issue series of preferred stock without further stockholder approval, our bylaws and our existing and future debt
instruments, could discourage unsolicited proposals to acquire us, even though such proposals may be beneficial to our stockholders.
In addition, we are subject to the provisions of Section 203 of the Delaware General Corporation Law, which may prohibit certain business combinations with stockholders owning 15% or more of our outstanding voting stock. These and other provisions in our certificate of incorporation, bylaws and Delaware law could make it more difficult for stockholders or potential acquirers to obtain control of our Board of Directors or initiate actions that are opposed by our then-current Board of Directors, including a merger, tender offer or proxy contest involving us. Any delay or prevention of a change of control transaction or changes in our Board of Directors could cause the market price of our common stock to decline or delay or prevent our stockholders from receiving a premium over the market price of our common stock that they might otherwise receive.
Cybersecurity, Technology and Vendor Risks
We rely on third-party vendors to provide various products and services that are important to our operations, and our business could be adversely impacted if our vendors fail to fulfill their obligations.
Some services important to our business are outsourced to third-party vendors, and we contract with numerous other third-party vendors for a range of products and services. The inability or failure of these vendors to deliver products and services at contracted service levels or standards and in a timely manner could adversely affect our business. In addition, if a third-party vendor fails to meet other contractual requirements, such as compliance with applicable laws and regulations, or suffers a cyberattack or other security breach, our business operations could suffer economic or reputational harm that could have a material adverse impact on our business and results of operations. Further, if our significant vendors are unable or unwilling to fulfill or renew our existing contracts on current terms, we might not be able to replace the related product or service at the same cost, in a timely fashion, or at all, any of which could negatively impact our profitability, business and operations, in some cases materially.
We recently completed the transition of our credit card processing services to strategic outsourcing partners. The transition was a significant and complex undertaking, which resulted in unanticipated platform stability issues and related impacts that have adversely impacted, and may continue to adversely impact, our business, results of operations, reputation and brand.
In late June 2022, we completed the transition of our credit card processing services to strategic outsourcing partners, including Fiserv for our core processing services and Microsoft for related cloud infrastructure services. As we described in our 2021 Annual Report on Form 10-K, transitioning these services from our legacy platforms to strategic partners with established systems and functionality presented significant risks, including, but not limited to, potential losses or corruption of data, changes in security processes, implementation delays and cost overruns, resistance from current partners and account holders, disruption to operations, loss of customization or functionality, reliability issues with legacy systems prior to cutover and incurrence of outsized consulting costs to complete the transition. In addition, as previously disclosed, the pursuit of multiple new product integrations and outsourcing transitions simultaneously increased the complexity and risk, as well as magnified the potential for the unintended consequences, including an inability to retain or replace key personnel during the transition as well as the incurrence of unexpected expenses as we adopted new processes for managing these service providers and established controls and procedures to ensure regulatory compliance. In connection with the transition, we experienced unanticipated issues with platform stability, which resulted in outages and interruptions in our call center operations and online customer service platforms. These outages and interruptions resulted in a number of adverse impacts, including customer complaints, negative social media postings, reputational damage, regulatory scrutiny, lost potential revenue, remediation costs, timing-related impacts to our Delinquency rate and Net loss rate data, and increased consulting and professional fees. These challenges associated with the transition have adversely impacted, and may continue to adversely impact, our business, results of operations, financial condition, and result in damage to our reputation and our brand. Moreover, now that we have completed this transition, it would be difficult and disruptive for us to replace certain of these third-party vendors, particularly Fiserv, in a timely or seamless manner if they were unwilling or unable to continue to provide us with these services in the future (as a result of their financial or business conditions or otherwise), which could materially impact our business and operations.
Failure to safeguard our data and consumer privacy could affect our reputation among our partners and their customers, and may expose us to legal claims.
Although we have extensive physical and cyber security controls and associated procedures, our data has in the past been and in the future may be subject to unauthorized access. In such instances of unauthorized access, we may have data loss
that could harm our customers and brand partners. This in turn could lead to reputational risk as concerns with security and privacy of data may result in consumers not wanting to participate in our product offerings. We also have arrangements in place with our partners and other third parties through which we share and receive information about their customers who are or may become our customers, which magnifies certain information security issues. Information security risks for large financial institutions have increased with the adoption of new technologies, including those used on mobile devices, to conduct financial and other business transactions, and the increased sophistication and activity level of threat actors. The use of our products and services could decline if any compromise of physical or cyber security occurred. In addition, any unauthorized release of customer information or any public perception that we released customer information without authorization, could subject us to legal claims from our partners or their customers, consumers or regulatory enforcement actions, which may adversely affect our partner relationships and result in damage to our reputation and our brand. We cannot be certain that our cybersecurity insurance coverage will be adequate for cybersecurity liabilities actually incurred, that insurance will continue to be available to us on economically reasonable terms, or at all, or that our insurer will not deny coverage as to any future claim.
Business interruptions, including loss of data center capacity, interruption due to cyber-attacks, loss of network connectivity or inability to utilize proprietary software of third party vendors, could affect our ability to timely meet the needs of our partners and customers and harm our business.
Our ability, and that of our third-party service providers and brand partners, to protect our data centers and other facilities and systems against damage, loss or performance degradation from power loss, network failure, cyber-attacks, including ransomware or denial of service attacks, insider threats, hardware and software defects or malfunctions, human error, computer viruses or other malware, public health crises, disruptions in telecommunications services, fraud, fires and other disasters and other events is critical. In order to provide many of our services, we must be able to store, retrieve, process and manage large amounts of data, as well as periodically expand and upgrade our technology capabilities. Any damage to our data centers or other facilities and systems, or those of our third-party service providers or brand partners, any failure of our network links that interrupts our operations or any impairment of our ability to use our software or the proprietary software of third party vendors, including impairments due to cyber-attacks, could adversely affect our ability to meet our partners’ and customers’ needs and their confidence in utilizing us for future services. In addition, any failure to successfully implement new information systems and technologies, or improvements or upgrades to existing information systems and technologies in a timely manner could have an adverse impact on our business if we are not able to be competitive with other financial services companies, and could also adversely impact our internal controls (including internal controls over financial reporting), results of operations, and financial condition.
If we are not able to invest successfully in, and compete at the leading edge of, technological developments in our industry, our revenue and profitability could be materially adversely affected.
Our industry is subject to rapid and significant technological changes. In order to compete in our industry, we need to continue to invest in technology across all areas of our business, including in access management, vulnerability management, transaction processing, data management and analytics, machine learning and artificial intelligence, customer interactions and communications, alternative payment and financing mechanisms, authentication technologies and digital identification, tokenization, real-time settlement, and risk management and compliance systems. Incorporating new technologies into our products and services, including developing the appropriate governance and controls consistent with regulatory expectations, requires substantial expenditures and takes considerable time, and ultimately may not be successful. We expect that new technologies in the payments industry will continue to emerge, and these new technologies may be superior to, or render obsolete, our existing technology.
The process of developing new products and services, enhancing existing products and services and adapting to technological changes and evolving industry standards is complex, costly and uncertain, and any failure by us to anticipate partners’ and customers’ changing needs and emerging technological trends accurately could significantly impede our ability to compete effectively. Partner and customer adoption is a key competitive factor and our competitors may develop products, platforms or technologies that become more widely adopted than ours. In addition, we may underestimate the time and expense we must invest in new products and services before they generate significant revenues, if at all. Our use of artificial intelligence and machine learning is subject to risks related to flaws in our algorithms and datasets that may be insufficient or contain biased information. These deficiencies could undermine the decisions based on impact to data quality, predictions or analysis such technologies produce, subjecting us to competitive harm, legal liability, and harm to our reputation or brand.
Our ability to develop, acquire or access competitive technologies or business processes on acceptable terms may also be limited by intellectual property rights that third parties, including those that current and potential competitors, may assert. In addition, our ability to adopt new technologies may be inhibited by the emergence of industry-wide standards, a changing legislative and regulatory environment, an inability to develop appropriate governance and controls, a lack of internal product and engineering expertise, resistance to change from partners or consumers, lack of appropriate change management processes or the complexity of our systems.
Risks Related to the LoyaltyOne Spinoff
The LoyaltyOne spinoff could result in substantial tax liability to us and our stockholders, and more generally we could be adversely affected by the performance of, or disputes involving, LVI.
In November 2021, we completed the spinoff of our former LoyaltyOne segment, consisting of the Canadian AIR MILES® Reward Program and the Netherlands-based BrandLoyalty businesses, into an independent, publicly traded company, LVI. As part of the spinoff, we retained 19% of the outstanding shares of common stock of LVI.
We received a private letter ruling, or PLR, from the IRS and an opinion from our tax advisor to the effect that the spinoff of our former LoyaltyOne segment qualified as tax-free for U.S. federal income tax purposes for us and our stockholders (except for cash received in lieu of fractional shares). However, if the factual assumptions or representations made by us in connection with the delivery of the PLR opinion are inaccurate or incomplete in any material respect, including those relating to the past and future conduct of our business, we may not be able to rely on the PLR opinion. Furthermore, the PLR does not address all the issues that are relevant to determining whether the spinoff qualified for tax-free treatment, and the opinion from our tax advisor is not binding on the IRS or the courts. If, notwithstanding receipt of the PLR and the opinion from our tax advisor, the spinoff transaction and certain related transactions are determined to be taxable, we would be subject to a substantial tax liability. In addition, if the spinoff transaction is taxable, each holder of our common stock who received shares of LVI in connection with the spinoff would generally be treated as receiving a taxable distribution of property in an amount equal to the fair market value of the shares received.
Even if the spinoff otherwise qualifies as a tax-free transaction, the distribution would be taxable to us (but not to our stockholders) in certain circumstances if future significant acquisitions of our stock or the stock of LVI are deemed to be part of a plan or series of related transactions that included the spinoff. In this event, the resulting tax liability could be substantial, and could discourage, delay or prevent a change of control of us. In connection with the spinoff, we entered into a tax matters agreement with LVI, pursuant to which LVI agreed to not enter into any transaction that could cause any portion of the spinoff to be taxable to us without our consent and to indemnify us for any tax liability resulting from any such transaction. Subsequently, we agreed to accommodate LVI’s potential disposition of certain assets. While we believe that such disposition should not affect the qualification of the spinoff as a tax-free transaction, it is possible the IRS could disagree and successfully assert that the spinoff should be taxable to us and our shareholders that received LVI shares in the spinoff. In addition, it is possible that the IRS could view this disposition as inconsistent with the PLR and, as a result, the IRS could take the position that we cannot rely on the PLR.
More generally, we could continue to be adversely affected by the performance of LVI. During 2022, LVI’s stock price decreased significantly and, as a result, we wrote down the value of our 19% shareholding in LVI from $50 million as of December 31, 2021 to $6 million as of December 31, 2022. While we had intended to divest our ownership position in LVI in a tax-efficient manner within 12 months of the spinoff, market conditions and other factors prevented us from doing so. As such, we may be unable to divest our ownership position in LVI a timely manner and may be required to write down further the value of our position. Also, our post-spinoff arrangements and relationships with LVI may be impacted by the performance of LVI.
Moreover, though we believe that our process and decision-making with respect to the spinoff transaction were entirely appropriate, we could become involved in disputes with LVI or other third parties relating to the spinoff. Any dispute relating to the spinoff could distract management, result in legal and other costs, and otherwise adversely impact our financial position, results of operations and financial condition.
RISK MANAGEMENT
Our Enterprise Risk Management (ERM) program is designed to ensure that all significant risks are identified, measured, monitored and addressed. Our ERM program reflects our risk appetite, governance, culture and reporting. We manage enterprise risk using our Board-approved Enterprise Risk Management Framework, which includes Board-level oversight, risk management committees, and a dedicated risk management team led by our Chief Risk Officer (CRO). Our Board and executive management determine the level of risk the Company is willing to accept in pursuit of its objectives through the ERM program and the well-defined risk appetite statements developed thereunder. We utilize the “three lines of defense” risk management model to assign roles, responsibilities and accountabilities in the Company for taking and managing risk.
Governance and Accountability
Board and Board Committees
Our Board of Directors, as a whole and through its committees, maintains responsibilities for the oversight of risk management, including monitoring the “tone at the top,” and our risk culture and overseeing emerging and strategic risks. While our Board’s Risk Committee has primary responsibility for oversight of enterprise risk management, the Audit, Compensation & Human Capital and Nominating & Corporate Governance Committees also oversee risks within their respective areas of responsibilities. Each of these Board Committees consists entirely of independent directors and provides regular reports to the full Board regarding matters reviewed at their Committee meetings.
Risk Management Roles and Responsibilities
In addition to our Board and Board Committees, responsibility for risk management also flows to other individuals and entities throughout the Company, including various management committees and executive management. Our ERM Framework defines our “three lines of defense” risk management model, which includes the following:
•The “first line of defense” is comprised of the business areas that engage in activities that generate revenue or provide operational support or services that introduce risk to the Company. As the business owner, the first line of defense is responsible for, among other things, identifying, owning, managing and controlling key risks associated with their activities, timely addressing issues and remediation, and implementing processes and procedures to strengthen the risk and control environment. The first line of defense identifies and manages key risk indicators and risks and controls consistent with the Company’s risk appetite. The executive officers who serve as leaders in the “first line of defense,” are responsible for ensuring that their respective functions operate within established risk limits, in accordance with our risk appetite. These leaders are also responsible for identifying risks, considering risk when developing strategic plans, budgets and new products, and implementing appropriate risk controls when pursuing business strategies and objectives. In addition, these leaders are responsible for deploying sufficient financial resources and qualified personnel to manage the risks inherent in our business activities.
•The “second line of defense” consists of an independent risk management team charged with oversight and monitoring of risk within the business. The second line of defense is responsible for, among other things, formulating our ERM Framework and related policies and procedures, challenging the first line of defense and identifying, monitoring and reporting on aggregate risks of the business and support functions.
Our risk management team, which is led by our CRO and includes compliance, provides oversight of our risk profile and is responsible for maintaining a compliance program that includes compliance risk assessment, policy development, testing and reporting activities.
The CRO manages our risk management team and is responsible for establishing and implementing standards for the identification, management, measurement, monitoring and reporting of risk on an Enterprise-wide basis. The CRO is responsible for developing an appropriate risk appetite with corresponding limits that aligns with supervisory expectations, and proposing our risk appetite to the Board of Directors. The CRO regularly reports to the Risk Committee as well as the Banks’ Risk and Compliance Committees on risk management matters.
•The “third line of defense” is comprised of the Global Audit organization. The third line of defense provides an independent review and objective assessment of the design and operating effectiveness of the first and second lines of defense, governance, policies, procedures, processes and internal controls, and reports its findings to executive management and the Board, through the Audit Committee. Global Audit is responsible for performing periodic, independent reviews and testing compliance with the Company’s and the Banks’ risk management policies and standards, as well as with regulatory guidance and industry best practices. Global Audit also assesses
the design of the Company'’ and the Banks’ policies and standards and validates the effectiveness of risk management controls, and reports the results of such reviews to the Audit Committee.
Management Committees
The Company operates several internal management committees, including at each of our Banks a Bank Risk Management Committee (BRMC) and, effective January 2023, an IT Governance Committee (ITGC). The BRMCs and ITGCs are the highest-level management committees at the Banks to oversee risks and are responsible for risk governance, risk oversight and making recommendations on the Banks’ risk appetite. The BRMCs and ITGC’s monitor compliance with limits and related escalation requirements, and oversee implementation of risk policies.
In addition to the BRMCs, we maintain the following risk management committees at each of our Banks to oversee the risks listed below: the Credit Risk Management Committee; Compliance Risk Management Committee; Operational Risk Management Committee; Model Risk Management Committee; and the Asset & Liability Management Committee. Each of these Committees is responsible for one or more of the Banks’ eight risk categories, which are described in greater detail below under the heading “Risk Categories”. For its risk category(ies) of responsibility, each Committee provides risk governance, risk oversight and monitoring. Each Committee reviews key risk exposures, trends and significant compliance matters, and provides guidance on steps to monitor, control and escalate significant risks. We include the risk information provided by the BRMCs and the ITGC, and these management risk committees, along with additional risk information that is identified at the Parent Company level in our determination and assessment of the risks that are presented to and discussed with our Board and Board Committees.
Risk Categories
We have divided risk into the following eight categories: credit, market, liquidity, operational, compliance, model, strategic and reputational risk. We evaluate the potential impact of a risk event on us (including our subsidiaries) by assessing the customer, partner, financial, reputational, and legal and regulatory impacts.
Credit Risk
Credit Risk is the risk arising from an obligor’s failure to meet the terms of any contract or otherwise perform as agreed. Credit Risk is found in all activities in which settlement or repayment depends on counterparty, issuer, or borrower performance.
We are exposed to credit risk relating to the credit card, installment or other loans we make to our customers. Our credit risk relates to the risk that consumers using the private label, co-brand, general purpose or business credit cards or installment or other loans that we issue will not repay their loan balances. To minimize our risk of credit card, installment or other loan write-offs, we have developed automated proprietary scoring technology and verification procedures to make risk-based origination decisions when approving new accountholders, establishing or adjusting accountholder credit limits and applying our risk-based pricing. The credit risk on our credit card, installment or other loans is quantified through our Allowance for credit losses which is recorded net with Credit card and other loans on our Consolidated Balance Sheets. Credit risk is overseen and monitored by the Credit Risk Management Committee.
Market Risk
Market Risk includes interest rate risk which is the risk arising from movements in interest rates. Interest rate risk results from:
•differences between the timing of rate changes and the timing of cash flows (repricing risk);
•changing rate relationships among different yield curves affecting an organization’s activities (basis risk);
•hanging rate relationships across the spectrum of maturities (yield curve risk); and
•interest-related options embedded in certain products (options risk).
Our principal market risk exposures arise from volatility in interest rates and their impact on economic value, capitalization levels and earnings. We use various market risk measurement techniques and analyses to measure, assess and manage the impact of changes in interest rates on our Net interest income. The approach we use to quantify interest rate risk is a sensitivity analysis, which we believe best reflects the risk inherent in our business. This approach calculates the impact on Net interest income from an instantaneous and sustained 100 basis point increase or decrease in interest rates. Due to the mix of fixed and floating rate assets and liabilities on our Consolidated Balance Sheet as of December 31, 2022, this
hypothetical instantaneous 100 basis point increase or decrease in interest rates would have an insignificant impact on our annual Net interest income. Actual changes in our Net interest income will depend on many factors, and therefore may differ from our estimated risk to changes in interest rates. The Asset & Liability Management Committee assists the Banks’ Board of Directors and Bank Management in overseeing, reviewing, and monitoring market risk.
Liquidity Risk
Liquidity Risk is the risk arising from an inability to meet obligations when they come due. Liquidity Risk includes the inability to access funding sources or manage fluctuations in funding levels. Liquidity Risk also results from an organization’s failure to recognize or address changes in market conditions. The primary liquidity objective is to maintain a liquidity profile that will enable us, even in times of stress or market disruption, to fund our existing assets and meet liabilities in a timely manner and at an acceptable cost. Policy and risk appetite limits require the Company and the Banks to ensure that sufficient liquid assets are available to survive liquidity stresses over a specified time period. The Asset & Liability Management Committee assists the Banks Board of Directors and Bank Management in overseeing, reviewing, and monitoring liquidity risk.
Operational Risk
Operational Risk is the risk arising from inadequate or failed internal processes or systems, human errors or misconduct, or adverse external events. Operational losses result from internal fraud; external fraud; inadequate or inappropriate employment practices and workplace safety; failure to meet obligations involving customers, partners, products, and business practices; damage to physical assets; business disruption and systems failures; and/or failures in execution, delivery, and process management.
Operational risk is inherent in all business activities and can impact us through direct or indirect financial loss, brand damage, customer dissatisfaction, and legal and regulatory penalties. The Company has implemented a comprehensive operational risk framework that is defined in the Operational Risk Management Policy. The Operational Risk Management Committee, chaired by our Chief Operational Risk Officer, oversees and monitors operational risk exposures, including escalating issues and recommending policies, procedures and practices to manage operational risks.
As part of our Operational Risk Program, we maintain an information and cyber security program, which is led by our Chief Information Security Officer and is designed to protect the confidentiality, integrity, and availability of information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction. The Program is built upon a foundation of advanced security technology, a well-staffed and highly trained team of experts, and robust operations based on the National Institute of Standards and Technology Cybersecurity Framework. This consists of controls designed to identify, protect, detect, respond and recover from information and cyber security incidents. We continue to invest in enhancements to cyber security capabilities and engage in industry and government forums to promote advancements to the broader financial services cyber security ecosystem.
Compliance Risk
Compliance Risk is the risk arising from violations of laws or regulations, or from nonconformance with prescribed practices, internal policies and procedures, or ethical standards. This risk exposes organizations to fines, payment of damages, and the voiding of contracts. Our Compliance organization is responsible for establishing and maintaining our Compliance Risk Management Program. Pursuant to this Program, we seek to manage and mitigate compliance risk by assessing, controlling, monitoring, measuring and reporting the legal and regulatory risks to which we are exposed. The Compliance Risk Management Committee, chaired by the Chief Compliance Officer, oversees the implementation and execution of the Compliance Management System and monitors compliance exposures to manage compliance risks.
Model Risk
Model Risk is the risk arising from decisions based on incorrect or misused model outputs and reports. Model risk occurs primarily for three reasons: (1) a model may have fundamental errors and produce inaccurate outputs when viewed against its design objective and intended business uses; (2) a model may be used incorrectly or inappropriately, or there may be a misunderstanding about its limitations and assumptions; or (3) the model produces results that are not compliant with fair lending or other laws and regulations.
We manage model risk through a comprehensive model governance framework, including policies and procedures for model development, maintenance and performance monitoring activities, independent model validation and change management capabilities. We also assess model performance on an ongoing basis. Model Risk oversight and monitoring is conducted by the Model Risk Management Committee.
Strategic Risk
Strategic Risk is the risk arising from adverse business decisions, poor implementation of business decisions, or lack of responsiveness to changes in the industry and operating environment. This risk is a function of an organization’s strategic goals, business strategies, resources, and quality of implementation. Strategic decisions are reviewed and approved by business leaders and various committees and must be aligned with our Company policies. We seek to manage strategic and business risks through risk controls embedded in these processes, as well as overall risk management oversight over business goals. Existing product performance is reviewed periodically by various of our Committees and executive management.
Reputational Risk
Reputational Risk is the risk arising from negative public opinion. This risk may impair our competitiveness by affecting our ability to establish new relationships or services, or continue servicing existing relationships. Reputational Risk is inherent in all activities and requires us to exercise caution in dealing with stakeholders, such as customers, counterparties, correspondents, investors, regulators, employees, and the community. Executive management is responsible for considering the reputational risk implications of business activities and strategies, and ensuring the relevant subject matter experts are engaged as needed.