DV · CIK 1819928

What DoubleVerify Holdings, Inc. told the SEC could break it.

2 self-disclosed vulnerabilities, pulled from its own filings — each in the company’s words, with the source. This is the risk register almost nobody reads.

A limited set so far — we surface every cited disclosure we’ve extracted for DV. More may follow as additional filings are processed.

In its own words

What could break it.

Geographic concentration

Tel Aviv, Israel R&D centermedium
DoubleVerify concentrates core product development in a Tel Aviv, Israel R&D center with a significant presence of software and data engineers; the Israel-Hamas war could disrupt operations.
“In addition, we have a research and development center located in Tel Aviv, Israel, with a significant presence of software and data engineers and employees focused on product development. The ongoing war between Israel and Hamas could result in disruptions to our business operations in addition to unstable market conditions, which could adversely affect our business, financial condition and results of operations.”
SEC filing →As of 202644 others exposed to Israel →

Regulatory & policy

EU-US data transfer (Data Privacy Framework)medium
DoubleVerify relies on the EU-US Data Privacy Framework and Standard Contractual Clauses for transatlantic data transfers; both face legal challenge, and broader privacy laws (GDPR, CCPA/CPRA, LGPD) could impair its business model.
“The Data Privacy Framework, or DPF, adopted in July 2023 by the EU, UK and Switzerland to support data transfers to the United States, which DV relies on, has been challenged by European privacy activists.”
SEC filing →As of 2026

In the MyPRIA app, this is checked against the companies you actually own.

← World Watch