What Dayforce, Inc. told the SEC could break it.

Dayforce processes a large volume of time-sensitive transactions on IT systems maintained internally and by third parties; a third-party software incident — such as the July 2024 CrowdStrike update that crashed Windows systems used by some of its providers/vendors/customers — could interrupt operations, and AI integration adds unmanaged data-security risks.

“For example, in July 2024, a software update by CrowdStrike Holdings, Inc., a cybersecurity technology company, caused widespread crashes of Windows systems into which it was integrated, including certain Windows systems that may have been used by our third-party service providers, vendors, and customers.”

Tariffs on goods across countries Dayforce operates in (Canada, China, Mexico, US) have already affected its ability to export goods such as time clocks; any expansion of tariffs to cover services like Dayforce — or expanded export controls on its software/mobile apps — could significantly impact how it develops, distributes and monetizes its platform.

“The application of tariffs on goods to countries in which we operate, including, for example, Canada, China, Mexico, and the U.S., has and will impact our business operations and ability to export goods, such as our time clocks. Any expansion of tariffs to cover services like Dayforce would have a significant impact on how we develop, distribute and monetize Dayforce.”

A meaningful portion of Dayforce's recurring revenue is 'float' — investment income earned on customer funds held before remittance to taxing authorities and employees ($200.3M in 2024, up from $80.2M in 2022) — making that revenue stream directly sensitive to interest-rate levels and customer-fund balances.

“Investment income from invested customer funds included in recurring revenue amounted to $ 200.3 million, $ 168.7 million, and $ 80.2 million for the years ended December 31, 2024, 2023, and 2022, respectively.”