We have established policies and processes for assessing, identifying, and managing material risk from cybersecurity threats, and have integrated these processes into our overall risk management systems and processes. We routinely assess material risks from cybersecurity threats, including any potential unauthorized occurrence on or conducted through our information systems that may result in adverse effects on the confidentiality, integrity, or availability of our information systems or any information residing therein.

We conduct periodic risk assessments to identify cybersecurity threats, as well as assessments in the event of a material change in our business practices that may affect information systems that are vulnerable to such cybersecurity threats. These risk assessments include identification of reasonably foreseeable internal and external risks, the likelihood and potential damage that could result from such risks, and the sufficiency of existing policies, procedures, systems, and safeguards in place to manage such risks.

Our Chief Financial Officer and members of our Audit Committee oversee our cybersecurity policies and processes, including those described in “Risk Management and Strategy” above. The processes by which our Chief Financial Officer and members of our Audit Committee are informed about and monitor the prevention, detection, mitigation, and remediation of cybersecurity incidents includes the following:

Our Chief Financial Officer and key personnel provide quarterly briefings to the Audit Committee regarding our company’s cybersecurity risks and activities, including any recent cybersecurity incidents and related responses, cybersecurity systems testing, activities of third parties, and the like. Our Audit Committee provides regular updates to the Board on such reports.