Visa 2012 Annual Report Download - page 28

Download and view the complete annual report

Please find page 28 of the 2012 Visa annual report below. You can navigate through the pages in the report by either clicking on the pages listed below, or by using the keyword search tool below to find specific information within the annual report.

Page out of 136

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136

Table of Contents
revenues . If such attacks are not detected immediately, their effect could be compounded. Finally, potential and actual attacks
could also result in increased costs, both for recovery and for prevention against future attacks.
Additionally, we rely on service providers for the timely transmission of information across our global data network. If a service
provider fails to provide the communications capacity or services we require because of a natural disaster, operational disruption,
terrorism or any other reason, the failure could interrupt our services. Because of the centrality of our processing systems to our
business, any interruption or degradation could adversely affect the perception of our brands' reliability and materially reduce our
revenues or profitability.
Account data breaches involving card data processed, stored or transmitted by third parties or by us could adversely
affect our reputation and revenues.
Our clients, merchants, others and we process, store or transmit cardholder account information in connection with Visa-
branded payment cards. In addition, our clients may use third-
party processors to process transactions generated by cards carrying
our brands. Breach of the systems processing, storing or transmitting sensitive cardholder data and account information could lead
to fraudulent activity involving Visa-branded cards, to reputational damage and to claims against us. If we are sued in connection
with any material data security breach, we could be involved in protracted litigation. If unsuccessful in defending such lawsuits, we
may have to pay damages or change our business practices or pricing structure, any of which could have a material adverse effect
on our revenues and profitability. In addition, any reputational damage resulting from an account data breach at one or more of our
clients, merchants or other third parties could decrease the use and acceptance of our cards, which could have a material adverse
impact on our payments volume, revenues and future growth prospects. Finally, any data security breach could result in additional
regulation, which could materially increase our costs.
An increase in fraudulent or other illegal activity involving our cards could lead to reputational damage to our brands and
reduce the use and acceptance of our cards.
Criminals are using increasingly sophisticated methods to capture cardholder account information. They use the information to
conduct fraudulent transactions and to engage in other forms of illegal activities involving the payment system. Outsourcing and
specialization of functions within the payments system are increasing. As a result, more third parties are involved in processing
transactions using our cards. A rise in fraud levels and other illegal activities involving our cards could lead to reputational damage
to our brands. This could reduce the use and acceptance of our cards or lead to greater regulation, increasing our compliance
costs.
Failure to maintain interoperability between our and Visa Europe's authorization and clearing and settlement systems
could damage the business and global perception of the Visa brands.
Visa Europe and we maintain mostly separate authorization, clearing, and settlement systems. As a result, we have to ensure
that the two systems can process every transaction involving both of our territories, regardless of where it originates. Visa Europe's
independent system operations could present challenges to our business due to the heightened difficulty of maintaining the
interoperability of our respective systems. Failure to authorize or clear and settle inter-territory transactions quickly and accurately
could impair the global perception of the Visa brands.
Structural and Organizational Risks
We have little ability to control Visa Europe's operations and limited recourse if it breaches its obligations to us.
Visa Europe has very broad rights to operate the Visa business in its region under the agreement that governs our
relationship. If we want to change a global rule or to implement certain changes that would not have a positive return for Visa
Europe and its members, then Visa Europe is not required to implement that rule or change unless we agree to pay for the
implementation costs and expenses that Visa Europe and its members will incur as a consequence of the implementation.
If Visa Europe fails to meet its obligations, our remedies under this agreement are limited. We cannot terminate the agreement
even upon Visa Europe's material, uncured breach. Although we have a call right to acquire Visa Europe, we can exercise that right
under only extremely limited circumstances.
These and other features of the licenses granted under the agreement may also raise issues concerning the characterization
of the licenses for purposes of tax treatment of entry into the licenses and payments received thereunder.
In some instances, as in the case of CyberSource and PlaySpan, Visa Europe may have the right to control
26