Macy's, Inc. · FY 2025 

Risk Factors

A major retail transformation is confronting profound operational hurdles, as significant strategic investments aimed at digital growth and store rationalization collide with sharp macroeconomic pressures. This high-stakes execution risk is compounded by immediate geopolitical volatility, evidenced by new executive orders imposing substantial tariffs on products imported from China, Canada, and Mexico. These simultaneous forces—debt load, evolving consumer demands, and sudden trade policy shifts—are now defining the critical vulnerabilities facing the industry.

M L1 Synthesis
  SYMBOLOGY.ONLINE · text diffs 

What changed in the Risk Factors.

reworded
The disclosure was updated to include specific, newly enacted tariffs from early 2025, detailing a 10% tariff on China and executive orders imposing a 25% tariff on Canada and Mexico (later subject to exemptions). The company also added detailed commentary regarding its ongoing evaluation of these new and potential future retaliatory tariffs.
§1A.18 Open
reworded
The description of store investments shifted from general upgrades to launching the "First 50 Stores" as a key component of the Bold New Chapter strategy, which tests initiatives such as focused staffing and unique store-level activations. Furthermore, the list of new off-mall smaller formats was updated to include Bloomingdale's the Outlet.
§1A.4 Open
reworded
The description of private brands was updated to specify that I.N.C. and Style & Co. were refreshed alongside the new On 34th and State of Day brands. Furthermore, the focus of omni-channel investments shifted from general goals like delivery expense reduction and gross margin expansion to specific initiatives such as search engine optimization, site enhancements, and more transparent pricing.
§1A.3 Open
reworded
The description of the first strategic priority was updated to focus on rationalizing the store base by closing and monetizing approximately 150 underperforming stores, while also adding a specific initiative to launch the First 50 Stores and shifting emphasis toward growing digital capabilities instead of continued small format expansion.
§1A.1 Open
reworded
The disclosure regarding data privacy laws was updated to reflect an expanded list of states with enacted legislation as of June 2024, specifically adding Florida, Kentucky, Maryland, Minnesota, and Nebraska to the jurisdictions previously listed.
§1A.23 Open
reworded
The description of potential consequences related to ethical supply chain violations was significantly expanded in the current period to specifically include risks such as litigation, investigations, enforcement actions, and monetary liability. Furthermore, the prior specific concern regarding manufacturers' lack of understanding of U.S. product liability laws in certain foreign jurisdictions was removed from the indemnity discussion.
§1A.19 Open
  SYMBOLOGY.ONLINE l1 SYNTHESIS 

Macy's, Inc Risk Factors Synthesis

Risk Factor Assessment Report: Macy's, Inc. 10-K Filing

This report synthesizes the key risk factors disclosed in Macy's, Inc.'s 2025 10-K filing, providing a structured assessment of operational, financial, and external threats to the company.


Key Risk Categories

The risks facing Macy's are highly diversified, spanning strategic execution challenges, technological dependencies, global supply chain volatility, and macroeconomic pressures. The primary categories identified include:

Strategic & Market Risks

  • Execution Risk: Failure to successfully implement "A Bold New Chapter," which involves rationalizing the store base (closing ~150 underperforming stores) while simultaneously investing in digital growth and luxury expansion.
  • Consumer Dynamics: Inability to meet evolving consumer expectations regarding personalization, sustainability, and shopping channel migration (brick-and-mortar to digital).
  • Competitive Pressure: Intense competition from national, local, and global digital retailers requiring constant differentiation of merchandise and experience.

Operational & Infrastructure Risks

  • Technology Dependency: Heavy reliance on complex IT systems, third-party service providers, and the successful adoption of new technologies like Generative AI.
  • Supply Chain Fragility: Vulnerability to geopolitical tensions (e.g., U.S.-China trade disputes), logistics bottlenecks (port congestion, driver shortages), and global sourcing disruptions.
  • Labor & Cost Inflation: Rising labor costs due to minimum wage increases and tight talent markets impacting margins.

External & Financial Risks

  • Macroeconomic Instability: Sensitivity to discretionary consumer spending declines driven by inflation, increased interest rates, and economic uncertainty.
  • Regulatory Compliance: Exposure to complex and rapidly changing data privacy laws across multiple U.S. states and global environmental regulations (e.g., SEC climate disclosure rules).
  • Financial Leverage: High level of outstanding indebtedness ($2,779 million as of February 1, 2025) which limits financial flexibility.

Most Significant Risks

The most critical risks identified are those that combine strategic failure with external volatility:

Strategic Implementation Failure and Macroeconomic Headwinds

  • Evidence: The company explicitly states its ability to achieve sustainable growth is "subject to the successful implementation of our strategic plans" while facing challenges in an environment of "heightened inflation, increased interest rates, economic uncertainty, geopolitical disruption." This dual dependency creates a high execution risk.
  • Impact: Failure could lead to profitability and growth suffering if investments do not perform as expected or create operational challenges.

Geopolitical and Trade Policy Volatility

  • Evidence: The filing highlights the ongoing U.S.-China trade dispute, but also notes specific recent actions: "On February 1, 2025, President Trump issued executive orders imposing a 25% tariff on products imported from Canada and Mexico... and a 10% tariff on products imported from China."
  • Impact: These tariffs could increase the cost of goods, negatively affect profitability, or reduce consumer confidence by leading to higher prices.

Cybersecurity and Data Privacy Exposure

  • Evidence: The company collects sensitive non-public personal information (PII, credit/debit card data). Cyber threats are described as increasing in "scope, sophistication and frequency," with bad actors exploiting vulnerabilities for ransomware attacks.
  • Impact: A breach could materially damage reputation, lead to consumer class actions, and incur substantial remediation costs.

Risk Trend Analysis (Changes from Previous Years)

While the document does not provide a direct year-over-year comparison of risk severity, it highlights several significant changes or escalations in risk profile:

1. Escalation of Technology Adoption Risks

  • Trend: The company is moving beyond standard IT maintenance and making "substantial investments" into advanced areas like cloud migration and the adoption of Generative AI ("AI").
  • Change/Risk: This transition introduces new, complex risks, including potential for system failure to operate as designed, cost overruns, data corruption, and specific ethical challenges related to AI (e.g., producing incorrect output or reflecting biases).

2. Increased Regulatory Scrutiny on Climate and Data

  • Trend: Environmental compliance is moving from voluntary reporting to mandatory disclosure requirements.
  • Change/Risk: The company faces new costs associated with complying with regulations like the SEC final climate disclosure rules and California's SB-253 (reporting Scope 1, 2, and 3 emissions). Similarly, data privacy laws are "in flux," with numerous states considering new regulations that could limit data collection.

3. Heightened Geopolitical Tariff Risk

  • Trend: The risk of trade disputes is no longer theoretical; the filing documents specific, recent tariff implementations (e.g., the February/March 2025 tariffs on China and Canada/Mexico).
  • Change/Risk: This shifts the supply chain risk from a general uncertainty to an immediate cost and sourcing challenge that requires active mitigation strategies.

Risk Mitigation Strategies

Macy's employs multi-faceted strategies across operations, technology, and sustainability:

Strategic & Operational Mitigation

  • Store Rationalization: The "A Bold New Chapter" strategy aims to improve profitability by closing underperforming stores while prioritizing investment in key locations (e.g., launching the First 50 Stores).
  • Omni-Channel Investment: Continuous investment is focused on digital capabilities, search engine optimization, and improving online delivery/product in-stocks to counter migration from physical stores.

Technology & Security Mitigation

  • Cybersecurity Defenses: The company has implemented specific safeguards, including authentication protocols, firewalls, anti-virus software, encryption, continuous risk assessments, and data security breach preparedness plans.
  • Disaster Preparedness (Climate): For acute physical risks, the company monitors weather 24/7, assembles preparedness kits, installs generators at stores, and is implementing Emergency Management Software Systems for disaster response training.

Supply Chain & Sustainability Mitigation

  • Ethical Sourcing: To address reputational risk related to labor practices, Macy's has implemented policies to screen and monitor private label vendors for safe and ethical treatment of workers.
  • Climate Commitment: The company is actively pursuing third-party certifications (e.g., OEKO-TEX®, USCTP) and engaging with groups like the World Wildlife Fund to develop a water stewardship strategy.

Overall Risk Assessment

Strengths (Mitigation Effectiveness)

Macy's demonstrates a proactive approach to risk management, particularly in its commitment to transparency and modernization. The company has established clear mitigation frameworks for complex issues:

  • Evidence: For climate change, the company is transparently reporting using SASB and TCFD standards and actively developing strategies (e.g., water stewardship).
  • Evidence: In cybersecurity, they have made "significant investments" in security measures and maintain insurance coverage to address evolving cyber risks.

Weaknesses (Vulnerability & Exposure)

The primary weakness lies in the sheer interconnectedness of its operational dependencies with external forces that are rapidly changing:

  • Evidence: The company's reliance on global sourcing from Asia, combined with new tariffs and logistics bottlenecks, creates a fragile supply chain susceptible to immediate cost increases.
  • Evidence: Financial health is constrained by high indebtedness ($2,779 million), which limits its ability to absorb unexpected shocks or capitalize quickly on market opportunities without risking covenant breaches.

Conclusion

Macy's faces a transition risk—the challenge of modernizing a legacy retail model while navigating severe macroeconomic and geopolitical turbulence. While the company has robust plans for digital transformation and sustainability, the immediate threats posed by rising interest rates, new trade tariffs, and the complexity of managing global supply chain integrity represent significant, high-impact vulnerabilities that could undermine its strategic efforts if not managed successfully.