In addition, we require A昀昀irm employees to participate in cybersecurity awareness training.†⠀ These training sessions are designed to enhance our employees’ awareness of cybersecurity threats and provide information about best practices to protect A昀昀irm’s information systems. We require additional tailored cybersecurity training for certain employees based on their specific job responsibilities.਀⨀ Our cybersecurity program is integrated with our overall risk management program through our Chief Information Security O昀昀icer's (“CISO”) participation in governance structures such as the Risk Management Committee and Technology and Operational Risk Committee, and the incorporation of cybersecurity into A昀昀irm’s overall compliance and enterprise risk management programs. A昀昀irm also maintains cyber insurance coverage that may cover certain aspects of cybersecurity incidents, subject to the terms and conditions of the policy਀㠀 To our knowledge, as of August 29, 2024 (the date of publication of this ESG Report), A昀昀irm had not experienced a data breach involving its information systems that we determined to be material under the SEC’s cybersecurity incident reporting requirements. 2024 ESG REPORT 18