Paychex Inc.: 10-K Risk Factor Changes

2025 vs 2024  ·  SEC EDGAR  ·  2026-07-05
✓ Deterministic extraction — no AI-generated data

Classification is based on semantic text similarity scoring and may include approximations. “No match” means no high-confidence textual match was found — not necessarily that a section was removed.

173
New Risks
4
Removed
6
Modified
10
Unchanged
🟢 New in Current Filing Severity10/10Det 10

In the event we receive negative publicity, our reputation and the value of our brand could be harmed, and clients may not use our solutions and support, which may have a material adverse effect on our business.

We are committed to good corporate citizenship, which is reflected in our company culture and core values. Disclosure of our corporate governance, responsibility, and sustainability practices, may draw negative publicity from stakeholders. Negative publicity relating to events…

Read full text

We are committed to good corporate citizenship, which is reflected in our company culture and core values. Disclosure of our corporate governance, responsibility, and sustainability practices, may draw negative publicity from stakeholders. Negative publicity relating to events or activities attributed to us, our policies, our corporate employees, or others associated with us, whether or not justified, may tarnish our reputation and reduce the value of our brand. If we are unable to maintain quality HCM and employee benefit-related solutions and PEO and insurance solutions, our reputation with our clients may be harmed and the value of our brand may diminish. In addition, if our brand is negatively impacted, it may have a material adverse effect on our business, including challenges retaining clients or attracting new clients and recruiting talent and retaining employees. Item 1B. Unresolved Staff Comments None. 15 15 Table of Contents Table of Contents Table of Contents Item 1C. Cybersecurity Risk Management and Strategy We are committed to protecting the confidentiality, integrity, and availability of our systems and information. Our security program is intended to assess, identify, and manage risks from cybersecurity threats, and is aligned with the National Institute of Standards and Technology Version 2.0 Cybersecurity Framework (“NIST CSF”). The NIST CSF provides a flexible model for identifying and managing cybersecurity risks. Our security infrastructure uses a layered controls approach, incorporating various capabilities guided by the NIST CSF and other industry standards and best practices. We routinely invest in our security processes and capabilities, including those related to our risk management and assessment programs, vulnerability and intrusion detection, incident response plans, and other advanced detection, prevention, and protection capabilities. We conduct regular assessments of cybersecurity risks to identify threats to us and potential vulnerabilities that could negatively affect our business operations if exploited. We track cybersecurity risks within our enterprise risk management system with cybersecurity threats considered to be among the top-priority risks to us. In addition, our Enterprise Security Organization (the “ESO”) conducts technical risk assessments, and, in some instances, we engage with third-party experts to assist with or perform technical risk assessments. The results of these risk assessments are reported to management. Our processes require escalation of significant cybersecurity risks to management and Paychex’s Audit Committee derived from the Board of Directors (the “Board”). The ESO is led by our Chief Information Security Officer (“CISO”) and seeks to maintain a consistent, resilient, and secure infrastructure by partnering with resources across the Company. The ESO implements numerous cybersecurity processes and capabilities, which include but are not limited to: assessing risk associated with significant infrastructure or operational changes and the introduction of new technologies; administering our third-party service provider risk management program; managing secure software development and change management; managing access management and logical access controls, identifying security vulnerabilities through automated scanning technologies; performing penetration testing and due diligence assessments; and protecting the confidentiality, integrity, and availability of the Company’s data in transit. The ESO includes the activities of the Paychex Cyber Fusion Center, which provides 24x7x365 cybersecurity monitoring and incident response. We maintain incident response plans which outline the escalation, investigation, reporting, and overall response procedures depending on the type and severity of incidents. As part of our security program, we require all employees to take information security awareness training upon hire and annually thereafter. We provide additional ongoing training to our employees about security best practices and awareness, including internal phishing simulations. We maintain a program designed to assess and manage the cybersecurity-related risk associated with third-party service providers that we rely on as part of providing solutions to our clients. This program incorporates a risk-based approach based on service criticality and type of information. Vendor risk assessments are performed and documented within our vendor management system. As part of the vendor risk assessment, we conduct an information security program evaluation of critical third-party providers before engagement and, based on our assessment of the vendor’s risk, contractually require certain third parties we engage to implement security programs commensurate with their risk profile. As of May 31, 2025, we are not aware of any risks from cybersecurity threats, including as a result of any previous cybersecurity incidents, that have materially affected or are reasonably likely to materially affect us, including our business strategy, results of operations, and financial condition. We continue to invest in cyber-resilience and cyber-threat response preparedness as we anticipate ongoing risks from cybersecurity threats. Refer to the “Risk Factors” section contained in Item 1A of this Form 10-K for more information on our cybersecurity-related risks. Governance Cybersecurity risks are overseen by the Audit Committee of our Board. Annually, the Audit Committee reviews an assessment of our risk management processes with the Board. The Audit Committee is responsible for reviewing significant cybersecurity risk exposures and the steps management has taken to monitor, control, and report such exposures. The Audit Committee receives quarterly updates from our CISO regarding our cybersecurity risk management program. These updates include a status of current capabilities, ongoing initiatives, and the evolving cybersecurity threat landscape. Our management is responsible for implementing our security program, which is overseen by our Security Governance Council (the “SGC”) that regularly reports to our Chief Executive Officer and Audit Committee. The SGC is chaired by our CISO and is comprised of senior leaders and key personnel throughout the Company to support cross-functional representation. The Item 1C. Cybersecurity Risk Management and Strategy We are committed to protecting the confidentiality, integrity, and availability of our systems and information. Our security program is intended to assess, identify, and manage risks from cybersecurity threats, and is aligned with the National Institute of Standards and Technology Version 2.0 Cybersecurity Framework (“NIST CSF”). The NIST CSF provides a flexible model for identifying and managing cybersecurity risks. Our security infrastructure uses a layered controls approach, incorporating various capabilities guided by the NIST CSF and other industry standards and best practices. We routinely invest in our security processes and capabilities, including those related to our risk management and assessment programs, vulnerability and intrusion detection, incident response plans, and other advanced detection, prevention, and protection capabilities. We conduct regular assessments of cybersecurity risks to identify threats to us and potential vulnerabilities that could negatively affect our business operations if exploited. We track cybersecurity risks within our enterprise risk management system with cybersecurity threats considered to be among the top-priority risks to us. In addition, our Enterprise Security Organization (the “ESO”) conducts technical risk assessments, and, in some instances, we engage with third-party experts to assist with or perform technical risk assessments. The results of these risk assessments are reported to management. Our processes require escalation of significant cybersecurity risks to management and Paychex’s Audit Committee derived from the Board of Directors (the “Board”). The ESO is led by our Chief Information Security Officer (“CISO”) and seeks to maintain a consistent, resilient, and secure infrastructure by partnering with resources across the Company. The ESO implements numerous cybersecurity processes and capabilities, which include but are not limited to: assessing risk associated with significant infrastructure or operational changes and the introduction of new technologies; administering our third-party service provider risk management program; managing secure software development and change management; managing access management and logical access controls, identifying security vulnerabilities through automated scanning technologies; performing penetration testing and due diligence assessments; and protecting the confidentiality, integrity, and availability of the Company’s data in transit. The ESO includes the activities of the Paychex Cyber Fusion Center, which provides 24x7x365 cybersecurity monitoring and incident response. We maintain incident response plans which outline the escalation, investigation, reporting, and overall response procedures depending on the type and severity of incidents. As part of our security program, we require all employees to take information security awareness training upon hire and annually thereafter. We provide additional ongoing training to our employees about security best practices and awareness, including internal phishing simulations. We maintain a program designed to assess and manage the cybersecurity-related risk associated with third-party service providers that we rely on as part of providing solutions to our clients. This program incorporates a risk-based approach based on service criticality and type of information. Vendor risk assessments are performed and documented within our vendor management system. As part of the vendor risk assessment, we conduct an information security program evaluation of critical third-party providers before engagement and, based on our assessment of the vendor’s risk, contractually require certain third parties we engage to implement security programs commensurate with their risk profile. As of May 31, 2025, we are not aware of any risks from cybersecurity threats, including as a result of any previous cybersecurity incidents, that have materially affected or are reasonably likely to materially affect us, including our business strategy, results of operations, and financial condition. We continue to invest in cyber-resilience and cyber-threat response preparedness as we anticipate ongoing risks from cybersecurity threats. Refer to the “Risk Factors” section contained in Item 1A of this Form 10-K for more information on our cybersecurity-related risks. Governance Cybersecurity risks are overseen by the Audit Committee of our Board. Annually, the Audit Committee reviews an assessment of our risk management processes with the Board. The Audit Committee is responsible for reviewing significant cybersecurity risk exposures and the steps management has taken to monitor, control, and report such exposures. The Audit Committee receives quarterly updates from our CISO regarding our cybersecurity risk management program. These updates include a status of current capabilities, ongoing initiatives, and the evolving cybersecurity threat landscape. Our management is responsible for implementing our security program, which is overseen by our Security Governance Council (the “SGC”) that regularly reports to our Chief Executive Officer and Audit Committee. The SGC is chaired by our CISO and is comprised of senior leaders and key personnel throughout the Company to support cross-functional representation. The Item 1C. Cybersecurity

🟢 New in Current Filing Approximate dollar value of shares that may yet be purchased under the program 🔒
🟢 New in Current Filing As of May 31, 🔒
🟢 New in Current Filing As of May 31, 🔒
🟢 New in Current Filing As of May 31, 🔒
🟢 New in Current Filing Risk Management and Strategy 🔒
🟢 New in Current Filing Diluted earnings per share 🔒
🟢 New in Current Filing Critical Accounting Policies and Estimates 🔒
🟢 New in Current Filing Amortizable life 🔒
🟢 New in Current Filing Position and business experience 🔒
🟢 New in Current Filing Position and business experience 🔒
🟢 New in Current Filing In millions 🔒
🟢 New in Current Filing Fiscal Year 🔒
🟢 New in Current Filing $ in millions, except per share amounts 🔒
🟢 New in Current Filing Credit facilities: 🔒
🟢 New in Current Filing Operating, Investing, and Financing Cash Flow Activities 🔒
🟢 New in Current Filing In millions 🔒
🟢 New in Current Filing Investing Cash Flow Activities 🔒
🟢 New in Current Filing Market Risk Factors 🔒
🟢 New in Current Filing Maturity date: 🔒
🟢 New in Current Filing Critical Audit Matters 🔒
🟢 New in Current Filing In millions 🔒
🟢 New in Current Filing In millions 🔒
🟢 New in Current Filing Management Solutions Revenue 🔒
🟢 New in Current Filing In millions 🔒
🟢 New in Current Filing In millions 🔒
🟢 New in Current Filing In millions 🔒
🟢 New in Current Filing In millions 🔒
🟢 New in Current Filing Weighted-average anti-dilutive common share equivalents 🔒
🟢 New in Current Filing Paycor HCM, Inc. 🔒
🟢 New in Current Filing Total Liabilities 🔒
🟢 New in Current Filing Estimated fair value 🔒
🟢 New in Current Filing In millions 🔒
🟢 New in Current Filing In millions 🔒
🟢 New in Current Filing Note F — Stock-Based Compensation Plans 🔒
🟢 New in Current Filing Exercisable as of May 31, 2025 🔒
🟢 New in Current Filing In millions 🔒
🟢 New in Current Filing In millions 🔒
🟢 New in Current Filing Maturity date: 🔒
🟢 New in Current Filing In millions 🔒
🟢 New in Current Filing In millions 🔒
🟢 New in Current Filing In millions 🔒
🟢 New in Current Filing In millions 🔒
🟢 New in Current Filing In millions 🔒
🟢 New in Current Filing In millions 🔒
🟢 New in Current Filing In millions 🔒
🟢 New in Current Filing In millions 🔒
🟢 New in Current Filing Balance as of end of fiscal year 🔒
🟢 New in Current Filing Note M — Short-term Financing 🔒
🟢 New in Current Filing Credit facilities: 🔒
🟢 New in Current Filing Note N — Long-term Financing 🔒
🟢 New in Current Filing interest rate 🔒
🟢 New in Current Filing Long-term debt, net 🔒
🟢 New in Current Filing In millions 🔒
🟢 New in Current Filing Note R — Segment Reporting 🔒
🔴 No Match in Current Filing We could be subject to reduced revenues, increased costs, liability claims, or harm to our competitive position as a result of cyberattacks, security vulnerabilities or Internet disruptions. 🔒
🟡 Modified Our debt obligations may expose us to risks affecting the operation of our business, and our failure to address these risks could have a material adverse effect on our results of operations and financial condition. 🔒
🟢 New in Current Filing We may not realize the expected financial or business benefits from the Paycor acquisition. 🔒
🟢 New in Current Filing Change in our credit ratings could adversely impact our results of operations and lower our profitability. 🔒
🟢 New in Current Filing Square feet 🔒
🟢 New in Current Filing In millions, except per share amounts 🔒
🟢 New in Current Filing Business Outlook 🔒
🟢 New in Current Filing In millions, except per share amounts 🔒
🟢 New in Current Filing $ in millions 🔒
🟢 New in Current Filing Liquidity and Capital Resources 🔒
🟢 New in Current Filing $ in millions 🔒
🟢 New in Current Filing Operating Cash Flow Activities 🔒
🟢 New in Current Filing Financing Cash Flow Activities 🔒
🟢 New in Current Filing Description 🔒
🟢 New in Current Filing INTERNAL CONTROL OVER FINANCIAL REPORTING 🔒
🟢 New in Current Filing Report of Independent Registered Public Accounting Firm 🔒
🟢 New in Current Filing Opinions on the Financial Statements and Internal Control over Financial Reporting 🔒
🟢 New in Current Filing Basis for Opinions 🔒
🟢 New in Current Filing Definition and Limitations of Internal Control over Financial Reporting 🔒
🟢 New in Current Filing Weighted-average common shares outstanding, assuming dilution 🔒
🟢 New in Current Filing Total liabilities and stockholders’ equity 🔒
🟢 New in Current Filing Balance as of May 31, 2022 🔒
🟢 New in Current Filing Balance as of May 31, 2023 🔒
🟢 New in Current Filing Balance as of May 31, 2024 🔒
🟢 New in Current Filing Balance as of May 31, 2025 🔒
🟢 New in Current Filing Operating activities 🔒
🟢 New in Current Filing Total cash, restricted cash, and equivalents 🔒
🟢 New in Current Filing NOTES TO CONSOLIDATED FINANCIAL STATEMENTS 🔒
🟢 New in Current Filing Note A — Description of Business, Basis of Presentation, and Significant Accounting Policies 🔒
🟢 New in Current Filing Accounts receivable, net of allowance for credit losses 🔒
🟢 New in Current Filing Depreciable life 🔒
🟢 New in Current Filing Note B — Service Revenue 🔒
🟢 New in Current Filing PEO and Insurance Solutions Revenue 🔒
🟢 New in Current Filing Contract Balances 🔒
🟢 New in Current Filing Assets Recognized from the Costs to Obtain and Fulfill Contracts 🔒
🟢 New in Current Filing Note C — Basic and Diluted Earnings Per Share 🔒
🟢 New in Current Filing Note D — Business Combinations 🔒
🟢 New in Current Filing Purchase Consideration and Allocation 🔒
🟢 New in Current Filing In millions, except per share amounts 🔒
🟢 New in Current Filing Total purchase consideration 🔒
🟢 New in Current Filing Unaudited Pro Forma Financial Information 🔒
🟢 New in Current Filing Alterna Capital Solutions LLC 🔒
🟢 New in Current Filing Other income, net 🔒
🟢 New in Current Filing In millions, except per share amounts 🔒
🟢 New in Current Filing Nonvested as of May 31, 2025 🔒
🟢 New in Current Filing In millions, except per share amounts 🔒
🟢 New in Current Filing Nonvested as of May 31, 2025 🔒
🟢 New in Current Filing In millions, except per share amounts 🔒
🟢 New in Current Filing Note G — Funds Held for Clients and Corporate Investments 🔒
🟢 New in Current Filing Total funds held for clients and corporate investments 🔒
🟢 New in Current Filing Total funds held for clients and corporate investments 🔒
🟢 New in Current Filing Total funds held for clients and corporate investments 🔒
🟢 New in Current Filing Net realized (losses)/gains 🔒
🟢 New in Current Filing Note H — Fair Value Measurements 🔒
🟢 New in Current Filing (Fair value) 🔒
🟢 New in Current Filing (Fair value) 🔒
🟢 New in Current Filing Liabilities: 🔒
🟢 New in Current Filing Total long-term borrowings, net of debt issuance costs 🔒
🟢 New in Current Filing Note I — Leases 🔒
🟢 New in Current Filing $ in millions 🔒
🟢 New in Current Filing Note J — Property and Equipment, Net of Accumulated Depreciation 🔒
🟢 New in Current Filing Property and equipment, net of accumulated depreciation 🔒
🟢 New in Current Filing Balance, end of fiscal year 🔒
🟢 New in Current Filing Intangible assets, net of accumulated amortization 🔒
🟢 New in Current Filing Year ending May 31, 🔒
🟢 New in Current Filing Note L — Income Taxes 🔒
🟢 New in Current Filing Net deferred tax liability 🔒
🟢 New in Current Filing Income taxes 🔒
🟢 New in Current Filing Effective income tax rate 🔒
🟢 New in Current Filing Note O — Supplemental Cash Flow Information 🔒
🟢 New in Current Filing Note P — Employee Benefit Plans 🔒
🟢 New in Current Filing Note Q — Commitments and Contingencies 🔒
🟢 New in Current Filing of fiscal year 🔒
🟢 New in Current Filing Number of securities remaining available for future issuance under equity compensation plans(1) 🔒
🟢 New in Current Filing PAYCHEX, INC. 🔒
🔴 No Match in Current Filing In the event we receive negative publicity, our reputation and the value of our brand could be harmed, and clients may not use our solutions and support, which may have a material adverse effect on our business. 🔒
🟡 Modified Our business, results of operations, and financial condition may be impacted by macroeconomic and/or political factors of the U.S. and global economy and such impact could be materially adverse. 🔒
🟡 Modified Our reputation, results of operations, or financial condition may be adversely impacted if we fail to comply with data privacy and AI laws and regulations. 🔒
🟢 New in Current Filing Total service revenue 🔒
🟢 New in Current Filing Total revenue 🔒
🟢 New in Current Filing Operating income 🔒
🟢 New in Current Filing Income before income taxes 🔒
🟢 New in Current Filing Year ended May 31, 🔒
🟢 New in Current Filing Total service revenue 🔒
🟢 New in Current Filing Total revenue 🔒
🟢 New in Current Filing Operating income 🔒
🟢 New in Current Filing Income before income taxes 🔒
🟢 New in Current Filing Current assets before funds held for clients 🔒
🟢 New in Current Filing Total current assets 🔒
🟢 New in Current Filing Liabilities 🔒
🟢 New in Current Filing Current liabilities before client fund obligations 🔒
🟢 New in Current Filing Total current liabilities 🔒
🟢 New in Current Filing Stockholders’ equity 🔒
🟢 New in Current Filing Investing activities 🔒
🟢 New in Current Filing Financing activities 🔒
🟢 New in Current Filing Net change in cash, restricted cash, and equivalents 🔒
🟢 New in Current Filing Reconciliation of cash, restricted cash, and equivalents 🔒
🟢 New in Current Filing Basic earnings per share: 🔒
🟢 New in Current Filing Diluted earnings per share: 🔒
🟢 New in Current Filing Total cash consideration 🔒
🟢 New in Current Filing Assets Acquired 🔒
🟢 New in Current Filing Liabilities Assumed 🔒
🟢 New in Current Filing Note E — Other Income, Net 🔒
🟢 New in Current Filing Outstanding as of May 31, 2024 🔒
🟢 New in Current Filing Year ended May 31, 🔒
🟢 New in Current Filing Nonvested as of May 31, 2024 🔒
🟢 New in Current Filing Nonvested as of May 31, 2024 🔒
🟢 New in Current Filing Year ended May 31, 🔒
🟢 New in Current Filing Type of issue: 🔒
🟢 New in Current Filing Type of issue: 🔒
🟢 New in Current Filing Securities in an unrealized loss position for more than twelve months 🔒
🟢 New in Current Filing Type of issue: 🔒
🟢 New in Current Filing Securities in an unrealized loss position for more than twelve months 🔒
🟢 New in Current Filing Type of issue: 🔒
🟢 New in Current Filing Note K — Goodwill and Intangible Assets, Net of Accumulated Amortization 🔒
🟢 New in Current Filing Deferred tax assets: 🔒
🟢 New in Current Filing Deferred tax liabilities: 🔒
🟢 New in Current Filing Total current 🔒
🟢 New in Current Filing Year ended May 31, 🔒
🟢 New in Current Filing Balance as of beginning of fiscal year 🔒
🟢 New in Current Filing Total revenue 🔒
🟢 New in Current Filing Income before income taxes 🔒
🟢 New in Current Filing SIGNATURES 🔒
🔴 No Match in Current Filing We may not be able to keep pace with changes in technology or provide timely enhancements to our solutions and support. 🔒
🟡 Modified We made and may continue to make acquisitions that involve numerous risks and uncertainties. 🔒
🔴 No Match in Current Filing We may experience software defects, undetected errors, and development delays, which could damage our relationship with clients, decrease our potential profitability and expose us to liability. 🔒
🟡 Modified In the event of a catastrophe, our business continuity plan may fail, which could result in the loss of client data and adversely interrupt operations. 🔒
🟡 Modified Our business, services, and financial condition may be adversely impacted by changes in government laws and regulations. 🔒
182 more changes in this filing

Full diff access, historical comparisons, and cross-company signal tracking.

Get full access — from $29/month Already a Pro subscriber? View full diff →