UNITED STATES

SECURITIES AND EXCHANGE COMMISSION

Washington, D.C.20549

FORM

☒

Annual report pursuant to Section 13 or 15(d) of the SecuritiesExchange Act of 1934.

For the fiscal year ended

OR

☐

Transition report pursuant to Section 13 or 15(d) of the Securities Exchange Act of 1934.

For the transition period from __________ to __________

Commission File Number:

(Exact Name of Registrant as Specified in Its Charter)

(State or other jurisdiction

of incorporation)

(I.R.S. Employer

Identification No.)

,

(Address of principal executive offices)

(Zip Code)

Registrant’s telephone number, including area code: (

)

Securities registered pursuant to Section 12 (b) of the Act:

Title of Each Class

Trading Symbol

Name of Exchange on which Registered

, par value $0.01

Global Market

Securities registered to Section 12(g) of the Act:

None

Indicate by check mark if the registrantis a well-known seasoned issuer, as defined in Rule 405of the Securities Act. Yes

☐

☒

Indicate by check mark if the registrantis not required to file reports pursuant toSection 13 or Section 15(d) of the Act. Yes

☐

☒

Indicate by check mark whether the registrant(1) has filed all reports required to befiled by Section 13 or 15(d) of the SecuritiesExchange Act of 1934 during the

preceding 12 months (or for such shorter periodthat the registrant was required to filesuch reports), and (2) has been subject tosuch filing requirements for the past

90 days.

☒

No

☐

Indicate by check mark whether the registranthas submitted electronically every InteractiveData File required to be submitted pursuantto Rule 405 of Regulation S-

T (§ 232.405 of this chapter) duringthe preceding 12 months (or for such shorterperiod that the registrant was requiredto submit such files).

☒

No

☐

Indicate by check mark whether the registrantis a large accelerated filer, an accelerated filer, a non-acceleratedfiler, or a smaller reporting company. See the

definitions of “large accelerated filer,” “accelerated filer” and“smaller reporting company” in Rule 12b-2of the Exchange Act. (Check one):

Large Accelerated filer

☐

Accelerated filer

☐

☒

Smaller reporting company

☒

Emerging Growth

Company

☐

If an emerging growth company, indicate by check mark if the registranthas selected not to use the extendedtransition period for complying with anynew or revised

financial accounting standards provided pursuantto Section 13(a) of the Exchange Act.

☐

Indicate by check mark whether the registranthas filed a report on and attestationto its management’s assessment of the effectiveness of its internal controlover

financial reporting under Section 404(b)of the Sarbanes-Oxley Act (15 U.S.C. 7262(b))by the registered public accounting firmthat prepared or issued its audit

report.

☐

If securities are registered pursuant to Section12(b) of the Act, indicate by check markwhether the financial statements of the registrantincluded in the filing reflect

the correction of an error to previouslyissued financial statements.

☐

Indicate by check mark whether any ofthose error corrections are restatementsthat required a recovery analysis of incentive-basedcompensation received by any of

the registrant’s executive officers during the relevant recovery periodpursuant to §240.10D-1(b).

☐

Indicate by check mark if the registrantis a shell company (as defined in Rule12b-2 of the Act). Yes

☐

No

☒

State the aggregate market value of thevoting and non-voting common equityheld by non-affiliates computed by reference to theprice at which the common equity

was last sold, or the average bid and askedprice of such common equity as of thelast business day of the registrant’s most recently completedsecond fiscal quarter:

$

as of June 30, 2024.

APPLICABLE ONLY TO CORPORATE REGISTRANTS

Indicate the number of shares outstandingof each of the registrant’s classes of common stock, asof the latest practicable date:

shares of common stock as

of March 10 2025.

DOCUMENTS INCORPORATED BY REFERENCE

Portions of the Proxy Statement for the AnnualMeeting of Shareholders, scheduled tobe held May 13, 2025, are incorporated byreference into Part II, Item 5 and

Part III of this Form 10-K.

 

 

.

TABLE OF CONTENTS

PAGE

ITEM 1.

4

ITEM 1A.

36

ITEM 1B.

53

ITEM 1C.

53

ITEM 2.

54

ITEM 3.

56

ITEM 4.

56

ITEM 5.

56

ITEM 7.

58

ITEM 7A.

83

ITEM 8.

83

ITEM 9.

122

ITEM 9A.

122

ITEM 9B.

123

ITEM 9C.

123

ITEM 10.

124

ITEM 11.

124

ITEM 12.

124

ITEM 13.

124

ITEM 14.

124

ITEM 15.

125

ITEM 16.

126

3

PARTI

SPECIAL CAUTIONARY NOTE REGARDINGFORWARD-LOOKING STATEMENTS

Variousof the statements made herein under the captions “Management’sDiscussion and Analysis of Financial Condition

and Results of Operations”, “Quantitative and Qualitative Disclosures aboutMarket Risk”, “Risk Factors” “Description of

Property” and elsewhere, are “forward-looking statements” within the meaningand protections of Section 27A of the

Securities Act of 1933 and Section 21E of the Securities ExchangeAct of 1934, as amended (the “Exchange Act”).

Forward-looking statements include statements with respect to our beliefs, plans,objectives, goals, expectations,

anticipations, assumptions, estimates, intentions and future performance,and involve known and unknown risks,

uncertainties and other factors, which may be beyond our control,and which may cause the actual results, performance,

achievements or financial condition of the Company to be materially differentfrom future results, performance,

achievements or financial condition expressed or implied by such forward-lookingstatements.Youshould not expect us to

update any forward-looking statements.

All statements other than statements of historical fact are statements that couldbe forward-looking statements.Youcan

identify these forward-looking statements through our use of words suchas “may,” “will,” “anticipate,”“assume,”

“should,” “indicate,” “would,” “believe,” “contemplate,” “expect,”“estimate,” “continue,” “designed”, “plan,” “point to,”

“project,” “could,” “intend,” “target,” “seek” and othersimilar words and expressions of the future.These forward-looking

statements may not be realized due to a variety of factors, including,without limitation:

●

the effects of future economic, business and market conditions andchanges, foreign, domestic and locally,

including inflation, seasonality,natural disasters or climate change, such as rising sea and water levels, hurricanes

and tornados, epidemics or pandemics including supply chain disruptions,inventory volatility, and changesin

consumer behaviors;

●

the effects of war or other conflicts, acts of terrorism, trade restrictions, tariffs,sanctions, the value of the U.S.

dollar against other currencies, or other events that may affect generaleconomic conditions, consumer and

business confidence;

●

governmental monetary and fiscal policies, including taxes, federaldeficit spending and the debt required to fund

such spending, changes in monetary policies in response to inflation and changesin prices , including changes in

the Federal Reserve’s targetfederal funds rate and changes in the Federal Reserve’sholdings of securities through

quantitative tightening or easing; and the duration that the Federal Reservewill keep its targeted federal funds

rates at or above current target ranges to meet its long term inflationtarget of 2%;

●

legislative, executive branch and regulatory changes, including changesby executive orders, the possible

reorganization and/or consolidation of the bank regulatoryagencies and/or the CFPB, changes in the leadership

and personnel, including reductions in the number and experience of personnel,at the bank and securities

regulators and the CFPB, freezes on changes in regulations and interpretations,the numerous new Executive

Orders, and the uncertain effects of all these, including thecosts and benefits of such changes;

●

the effects of the potential privatization of Fannie Mae and Freddie Macand its release from conservatorship on

the mortgage markets and us as seller and servicer of residential mortgageloans;

●

recent Supreme Court rulings that may lead to more court challenges to regulationsand regulatory actions, which

may cause uncertainty,wasted implementation costs and time by the industry,and lengthy delays until ultimate

resolution;

●

changes in banking, securities and tax laws, regulations and rules and theirapplication by the regulators, including

capital and liquidityrequirements, and changes in the scope and cost of FDIC insurance;

4

●

changes in accounting pronouncements and interpretations, including therequired use, beginning January 1, 2023,

of Financial Accounting Standards Board’s(“FASB”) AccountingStandards Update (ASU) 2016-13, “Financial

Instruments – Credit Losses (Topic326): Measurement of Credit Losses on Financial Instruments,” as well as the

updates issued since June 2016 (collectively,FASB ASC Topic326) on Current Expected Credit Losses

(“CECL”), and ASU 2022-02, Troubled DebtRestructurings and Vintage Disclosures,which eliminates troubled

debt restructurings (“TDRs”) and related guidance;

●

the failure of assumptions and estimates, including those used in the Company’sCECL models to establish our

allowance for credit losses and estimate asset impairments, as well as differencesin, and changes to, economic,

market and credit conditions, including changes in borrowers’ credit risks andpayment behaviors from those used

in our CECL models and loan portfolio reviews;

●

the risks of changes in market interest rates and the shape of the yield curve on customerbehaviors; the levels,

composition and costs of deposits, loan demand and mortgage loan originations;the values and liquidity of loan

collateral, our securities portfolio and interest-sensitive assets andliabilities; and the risks and uncertainty of the

amounts realizable on collateral;

●

the risks of increases in market interest rates creating unrealized losses on oursecurities available for sale, which

adversely affect our stockholders’ equity for financialreporting purposes and our tangible equity;

●

changes in borrower liquidity and credit risks, and changes in savings, deposit andpayment behaviors;

●

changes in the availability and cost of credit and capital in the financial markets, andthe types of instruments that

may be included as capital for regulatory purposes;

●

changes in the prices, values and sales volumes of residential and commercialreal estate;

●

the effects of competition from a wide variety of local, regional,national and other providers of financial,

investment and insurance services, including the disruptive effectsof financial technology and other competitors

who are not subject to the same regulation, including capital and liquidityrequirements, internal controls, and

supervision and examination, as the Company and the Bank, and competitionfrom credit unions, which are not

subject to federal income taxation;

●

more permissive regulation and/or enforcement regarding digital assets, such as cybercurrency and stable coins

that creates additional competition to banks, and greater risks to thepayment systems that the banking industry,

including the Company,relies on, and greater risks of fraud and theft of digital assets and their effectson

customers, other financial institutions, including our counterparties, andconfidence in the financial system,

generally;

●

the timing and amount of rental income from third parties from officespace in our Auburn Center headquarters

and in former office locations;

●

the risks of mergers, acquisitions and divestitures, including,without limitation, the related time and costs of

implementing such transactions, integrating operations as part of thesetransactions and possible failures to achieve

expected gains, revenue growth and/or expense savings from such transactions;

●

changes in technology or products that may be more difficult, costly,or less effective than anticipated;

●

cyber-attacks and data breaches that may compromise our systems, our vendors’systems or customers’

information;

●

the risks that our deferred tax assets (“DTAs”)included in “other assets” on our consolidated balance sheets, if

any, could be reducedif estimates of future taxable income from our operations and tax planning strategiesare less

than currently estimated, and sales of our capital stock could trigger areduction in the amount of net operating loss

carry-forwards that we may be able to utilize for income tax purposes;

5

●

the risks that our dividends, share repurchases and discretionarybonuses are limited by regulation to the

maintenance of a capital conservation buffer of 2.5% andour future earnings and “eligible retained earnings” over

rolling four calendar quarter periods;

●

other factors and risks described under “Risk Factors” herein and in any of oursubsequent reports that we make

with the Securities and Exchange Commission (the “Commission” or“SEC”) under the Exchange Act.

All written or oral forward-looking statements that we make or are attributableto us are expressly qualified in their entirety

by this cautionary notice.We have no obligationand do not undertake to update, revise or correct any of the forward-

looking statements after the date of this report, or after the respective dates on whichsuch statements otherwise are made.

ITEM 1.BUSINESS

Auburn National Bancorporation, Inc. (the “Company”) is a bank holdingcompany registered with the Board of Governors

of the Federal Reserve System (the “Federal Reserve”) under the Bank HoldingCompany Act of 1956, as amended (the

“BHC Act”).The Company was incorporated in Delaware in 1990, and in 1994 it succeededits Alabama predecessor as

the bank holding company controlling AuburnBank, an Alabama state memberbank with its principal office in Auburn,

Alabama (the “Bank”).The Company and its predecessor have controlled the Bank since 1984.As a bank holding

company, the Companymay diversify into a broader range of financial services and other business activities thancurrently

are permitted to the Bank under applicable laws and regulations.The holding company structure also provides greater

financial and operating flexibility than is presently permitted to theBank.

The Bank has operated continuously since 1907 and currently conducts its businessprimarily in East Alabama, including

Lee County and surrounding areas.The Bank has been a member of the Federal Reserve Bank of Atlanta (the“Federal

Reserve Bank”) since April 1995.The Bank’s primary regulators are the FederalReserve and the Alabama Superintendent

of Banks (the “Alabama Superintendent”).The Bank has been a member of the Federal Home Loan Bank of Atlanta (the

“FHLB-Atlanta”) since 1991.

General

The Company’s business is conductedprimarily through the Bank and its subsidiaries.Although it has no immediate plans

to conduct any other business, the Company may engage directly orindirectly in a number of activities closely related to

banking permitted by the Federal Reserve.

The Company’s principalexecutive offices are located at 100 N. Gay Street, Auburn, Alabama 36830,and its telephone

number at such address is (334) 821-9200.The Company maintains an Internet website at

www.auburnbank.com

.The

Company’s website andthe information appearing on the website are not included or incorporated in, and are not part of,

this report.The Company files annual, quarterly and current reports, proxy statements, and otherinformation with the

SEC.Youmay read and copy any document we file with the SEC at the SEC’spublic reference room at 100 F Street, N.E.,

Washington,DC 20549.Please call the SEC at 1-800-SEC-0330 for more information on the operation of the public

reference rooms.The SEC maintains an Internet site at

www.sec.gov

that contains reports, proxy,and other information,

where SEC filings are available to the public free of charge.

6

Services

The Bank operates its main office and 7 branches in Auburn, Opelika,Notasulga, and Valley,Alabama and a loan

production office in Phenix City,Alabama.

We

evaluate the utilization of our existing facilities and customer preferences

for online and mobile banking.In addition to opening our new main office in 2022, we closed onebranch office in Auburn

at the end of 2024, whose customers could be served conveniently and moreefficiently by another existing Bank branch.

It offers checking, savings, transaction deposit accounts andcertificates of deposit, and is an active residential mortgage

lender in its primary service area.The Bank’s primary service area includesthe cities of Auburn and Opelika, Alabama and

nearby surrounding areas in East Alabama, primarily in Lee County.The Bank also offers commercial, financial,

agricultural, real estate construction and consumer loan products,and other financial services.The Bank operates ATM

machines in 10 locations in its primary service area.The Bank offers Visa

®

Checkcards, which are debit cards with the

Visa logo that worklike checks and can be used anywhere Visa is accepted,including ATMs.The Bank’s VisaCheckcards

can be used internationally through the Plus

®

network.The Bank offers online banking, bill payment and other electronic

banking services through its Internet website,

www.auburnbank.com

.Our online banking services, bill payment and

electronic services are subject to certain cybersecurity risks.See “Risk Factors – Our information systems may experience

interruptions and security breaches.”

The Bank has not offered any services related to any Bitcoin orother digital or crypto instruments, stablecoins or

businesses.

Competition

The Bank had the largest share of the Lee County,Alabama’s deposits (21.3%) at June 30, 2024.The banking business in

East Alabama, including Lee County,is highly competitive with respect to loans, deposits, and other financial services.

Lee County is served by 19 banks, 10 of which are headquartered outsideof Alabama.Other banks have 35 offices in Lee

County.National and regional competitors that have offices in our marketinclude J.P.Morgan Chase, WellsFargo, Truist,

PNC, Regions, ValleyNational, SouthState and Cadence.The national and regional banks we compete with have

substantially greater resources, and numerous officesand affiliates operating over wide geographic areas.The Bank

competes for deposits, loans and other business with these banks, as well as with creditunions, mortgage companies,

insurance companies, and other local and nonlocal financial institutions,including institutions offering services throughthe

mail, by telephone and over the Internet.As more and different kinds of businesses enter the market for financialservices,

competition from nonbank financial institutions may be expected to intensifyfurther.

Among the advantages that larger financial institutions haveover the Bank are their ability to finance extensive advertising

campaigns, to diversify their funding sources, and to allocate and diversifytheir assets among loans and securities of the

highest yield in locations with the greatest demand.Many of the major commercial banks or their affiliates operatingin the

Bank’s service area offerservices which are not presently offered directly by the Bank, and these otherbanks typically have

substantially higher lending limits than the Bank.

Banks also have experienced significant competition for deposits from mutualfunds, insurance companies and other

investment companies and from money center banks’ offeringsof high-yield investments and deposits, including CDs and

savings accounts.Certain of these competitors are not subject to the same regulatory restrictions as the Bank.

Selected Economic Data

Our market is Lee County,Alabama, including Auburn, Opelika and part of Phenix City,Alabama.Lee County and Macon

County form the Auburn-Opelika MSA.The U.S. Census Bureau estimates Lee County’spopulation was 174,241 in 2020

and an estimated 183,215 in July 2023.The largest employers in the area are Auburn University,East Alabama Medical

Center, Lee County School System, Auburnand Opelika City Schools, Auburn City Schools, Wal-Mart Distribution

Center, Aptar CSP Technologies,Pharmavite, LLC, HL Mando America Corporation (automobilebrakes and steering),

SCA (automotive plastics), Borbet Alabama (automotive aluminumwheels), Golden State Foods and Briggs & Stratton.

Auto manufacturing and related suppliers are increasingly importantalong Interstate Highway 85 to the east and west of

Auburn.Kia Motors has a large automobile factory in nearby WestPoint, Georgia, and Hyundai Motors has a large

automobile factory near Montgomery,Alabama.Varioussuppliers to the automotive industry have facilities in Lee

County.As of year-end 2024, the unemployment rate in Lee County was 2.8%,and 3.3% for the State of Alabama

according to the U.S. Bureau of Labor Statistics.

7

Between 2010 and 2022, the Auburn-Opelika MSA was the secondfastest growing MSA in Alabama.The Auburn-

Opelika MSA population is estimated to grow 6.6% from 2023 to 2028.During the same time, household income is

estimated to increase 14.25%, to $69,213.

Loans and Loan Concentrations

The Bank makes loans for commercial, financial and agricultural purposes, as well as forreal estate mortgages, real estate

acquisition, construction and development and consumer purposes.While there are certain risks unique to each type of

lending, management believes that there is more risk associated with commercial,real estate acquisition, construction and

development, agricultural and consumer lending than with residential realestate mortgage loans.To help manage these

risks, the Bank has established underwriting standards used in evaluatingeach extension of credit on an individual basis,

which are substantially similar for each type of loan.These standards include a review of the economic conditions

affecting the borrower,the borrower’s financial strength and capacity to repay the debt, the underlyingcollateral and the

borrower’s past credit performance.

We

apply these standards at the time a loan is made and monitor them periodically

throughout the life of the loan.See “Lending Practices” for a discussion of regulatory guidance on commercialreal estate

lending.

Our commercial real estate (“CRE”) loans, including $55.4 million ofloans on owner occupied property,as of December

31, 2024 totaled $290.2 million (51% of total loans).Our regulators’ CRE Guidance excludes loans on owner occupied

property from CRE.Excluding our owner-occupied loans, our CRE loans were $234.8 million(42% of total loans) at year

end 2023.See “Lending Practices –

CRE.

”

The Bank has loans outstanding to borrowers in all industries within ourprimary service area.Any adverse economic or

other conditions affecting these industries wouldalso likely have an adverse effect on the local workforce, other local

businesses, and individuals in the community that have enteredinto loans with the Bank.For example, the auto

manufacturing business and its suppliers have positivelyaffected our local economy,but automobile sales manufacturing is

cyclical and adversely affected by increases in interest rates.Decreases in automobile sales, including adverse changes due

to interest rate increases and inflation, tariffs, supplychain disruptions (including changes resulting from the effects of

tariffs and related changes in countries and producers inthe supply chains) and a tight labor market, could adversely affect

nearby Kia and Hyundai automotive plants and their suppliers' local spendingand employment, and could adversely affect

economic conditions in the markets we serve.However, management believes that dueto the diversified mix of industries

located within our markets, adverse changes in one industry may not necessarilyaffect other area industries to the same

degree or within the same time frame.The Bank’s primary service area also is subjectto both local and national economic

conditions and fluctuations.While most loans are made within our primary service area, some residential mortgage loans

are originated outside the primary service area, and the Bank fromtime to time has purchased loan participations from

outside its primary service area.

We

also may make loans to other borrowers outside these areas, especially where wehave

a relationship with the borrower, orits business or owners.

 

 

 

 

 

 

 

8

Human Capital

At December 31, 2024, the Company and its subsidiaries had 145 full-timeequivalent employees, including 39 officers.

Our employees have been with us an average of approximately 11years.We successfully implementedplans to protect our

employees’ health consistent with CDC and State of Alabama guidelinesduring the COVID-19 pandemic, while

maintaining critical banking services to our communities and experiencinglittle employee turnover.In addition, we

developed our remote and electronic banking services, and established remotework access to help employees stay at home

where their job duties permitted.This promoted employee retention, and these efforts will provide us provenexperience

and flexibility to meet other disruptive events and conditions, and still provide ourcustomers and communities continuity

of service.

We have a talentedgroup of employees, many of whom, have a college or associate degree.We believe theAuburn-

Opelika MSA is a desirable place to live and work with excellent schools and qualityof life.Our MSA was the second

fastest growing MSA in Alabama from 2010 to 2022.Auburn University is a major employer that attracts talented students

and employee families.

We had a successfulmanagement transition in 2022 where our CEO became Chairman,and was succeeded by our CFO,

whose role was then filled by our Chief Accounting Officer.At the time of transition, our Chairman had served the Bank

39 years, our President and CEO had been with us 16 years and our Chief AccountingOfficer had been with us for 7 years.

Our new President and CFO had careers with major national and regionalaccounting firms and focused on financial

services before joining the Bank.

We seek to offercompetitive compensation and benefits.We provideemployer matches for employee contributions to our

401(k) retirement plan.In 2024, our shareholders approved our 2024 Equity and Incentive CompensationPlan (the “2024

Incentive Plan”).The Plan provides for a varietyof equity and equity-based awards, including stock options, performance

shares, performance units, stock appreciation rights (“SARs”), restrictedstock and restricted stock units (“RSUs”) and cash

incentive awards.We believe that the 2024Incentive Plan provides the flexibility to structure appropriate incentives to

attract and retain talented people in a competitive market where manyof our competitors are public companies who offer

stock-based incentives.

We encourageand support the growth and development of our employees and, wherever possible, seekto fill positions by

promotion and transfer from within the organization.Career development is advanced through ongoing performance and

development conversations with employees, internally developedtraining programs and other training and development

opportunities.

Our employees are encouraged to be active in our communities as part of our commitmentto these communities and our

employees.

Statistical Information

Certain statistical information is included in responses to Items 6, 7, 7A and 8of this Annual Report on Form 10-K.

SUPERVISION AND REGULATION

The Company and the Bank are extensively regulated under federaland state laws applicable to bank holding companies

and banks.The supervision, regulation and examination of the Company and the Bank and theirrespective subsidiaries by

the bank regulatoryagencies are primarily intended to maintain the safety and soundness of depositoryinstitutions and the

federal deposit insurance system, as well as the protection of depositors,rather than holders of Company capital stock and

other securities.Any change in applicable law or regulation may have a material effecton the Company’s business, and

our results of operations and financial condition.The following discussion is qualified in its entirety by reference to the

particular laws and rules referred to below.

9

Bank Holding Company Regulation

The Company, as a bankholding company, is subject to supervision,regulation and examination by the Federal Reserve

under the BHC Act.Bank holding companies generally are limited to the business of banking,managing or controlling

banks, and certain related activities.The Company is required to file periodic reportsand other information with the

Federal Reserve.The Federal Reserve examines the Company and its subsidiaries.The State of Alabama currently does

not regulate bank holding companies.

The BHC Act requires prior Federal Reserve approval for,among other things, the acquisition by a bank holding company

of direct or indirect ownership or control of more than 5% of the votingshares or substantially all the assets of any bank, or

for a merger or consolidation of a bank holding companywith another bank holding company.The BHC Act generally

prohibits a bank holding company from acquiring direct or indirectownership or control of voting shares of any company

that is not a bank or bank holding company and from engaging directly orindirectly in any activity other than banking or

managing or controlling banks or performing services for its authorizedsubsidiaries.A bank holding company may,

however, engage in or acquire an interestin a company that engages in activities that the Federal Reserve has determined

by regulation or order to be so closely related to banking or managing orcontrolling banks as to be a proper incident

thereto.The Federal Reserve adopted new rules, effective September30, 2020, simplifying determinations of control of

banking organizations for BHC Act purposes.

Changes in control of bank holding companies are subject to prior noticeto, and nonobjection by the Federal Reserve under

the federal Change in Bank Control Act (the “Control Act”) and by the AlabamaSuperintendent of Banks (the “Alabama

Superintendent”) under the Alabama Banking Code.In August 2024, the FDIC proposed changes to its Control Act

regulations that would result in persons seeking control of a bank holding companyunder the Control Act, to file a notice

with and obtain non-objection from the FDIC in addition to those filingsand notices currently required from the Federal

Reserve and the Alabama Superintendent.

Bank holding companies that are and remain “well-capitalized” and“well-managed,” as defined in Federal Reserve

Regulation

Y,

and whose insured depository institution subsidiaries maintain “satisfactory”or better ratings under the

Community Reinvestment Act of 1977 (the “CRA”), may elect to become“financial holding companies.”Financial

holding companies and their subsidiaries are permitted to acquire or engagein activities such as insurance underwriting,

securities underwriting, travel agency activities, broad insuranceagency activities, merchant banking and other activities

that the Federal Reserve determines to be financial in nature or complementarythereto.In addition, under the BHC Act’s

merchant banking authority and Federal Reserve regulations, financialholding companies are authorized to invest in

companies that engage in activities that are not financial in nature,as long as the financial holding company makes its

investment, subject to limitations, including a limited investment term,no day-to-day management, and no cross-marketing

with any depositary institutions controlled by the financial holdingcompany.The Federal Reserve recommended repeal of

the merchant banking powers in a September 16, 2016 study undertakenpursuant to Section 620 of the Dodd-Frank Wall

Street Reform and Consumer Protection Act of 2010 (the “Dodd-FrankAct”), but has taken no action.The Company has

not elected to become a financial holding company,but it may elect to do so in the future.Financial holding companies

continue to be subject to Federal Reserve supervision, regulation andexamination.

The Gramm-Leach-Bliley Act of 1999 (the “GLB Act”) applies the conceptof functional regulation to subsidiary activities.

For example, insurance activities would be subject to supervision andregulation by state insurance authorities and

securities broker-dealer and investment advisory activities are regulatedby the SEC.

The BHC Act permits acquisitions of banks by bank holding companies,subject to various restrictions, including that the

acquirer is “well capitalized” and “well managed”.Bank mergers are also subject to the approval of the resulting bank’s

primary federal regulator pursuant to the Bank Merger Act.The BHC Act and the Bank Merger Act provide various

generally similar statutory factors.Under the Alabama Banking Code, with the prior approval of the Alabama

Superintendent, an Alabama bank may acquire and operate one ormore banks in other states pursuant to a transaction in

which the Alabama bank is the surviving bank.In addition, one or more Alabama banks may enter into a merger

transaction with one or more out-of-state banks, and an out-of-state bankresulting from such transaction may continue to

operate the acquired branches in Alabama.Banks, including Alabama banks, may branch anywhere in the United States.

See “Bank Regulation”.

10

The Company is a legal entity separate and distinct from the Bank.Variouslegal limitations restrict the Bank from lending

or otherwise supplying funds to the Company.The Company and the Bank are subject to Sections 23A and 23B of the

Federal Reserve Act and Federal Reserve Regulation W thereunder.Section 23A defines “covered transactions,” which

include extensions of credit and other transactions with affiliates, andlimits a bank’s covered transactionswith any affiliate

to 10% of such bank’s capital andsurplus.All covered and exempt transactions between a bank and its affiliatesmust be

on terms and conditions consistent with safe and sound banking practices, andbanks and their subsidiaries are prohibited

from purchasing low-quality assets from the bank’saffiliates.Finally, Section 23A requires that all ofa bank’s extensions

of credit to its affiliates be appropriately secured by permissiblecollateral, generally United States government or agency

securities.Section 23B of the Federal Reserve Act generally requires coveredand other transactions among affiliates to be

on terms and under circumstances, including credit standards, that are substantiallythe same as or at least as favorable to

the bank or its subsidiary as those prevailing at the time for similar transactionswith unaffiliated companies.

Federal Reserve policy and the Federal Deposit Insurance Act requirea bank holding company to act as a source of

financial and managerial strength to its FDIC-insured subsidiaries andto take measures to preserve and protect such bank

subsidiaries in situations where additional investments in a bank subsidiarymay not otherwise be warranted.In the event

an FDIC-insured subsidiary becomes subject to a capital restoration plan withits regulators, the parent bank holding

company is required to guarantee performance of such plan up to5% of the bank’s assets, and such guaranteeis given

priority in a bankruptcy of the bank holding company.Where a bank holding company has more than one bank or thrift

subsidiary, each ofthe bank holding company’s subsidiarydepository institutions may be responsible for any losses to the

FDIC’s Deposit Insurance Fund(“DIF”), if an affiliated depository institution fails.As a result, a bank holding company

may be required to loan money to a bank subsidiary in the form of subordinatedcapital notes or otherinstruments which

qualify as capital under bank regulatory rules.However, any loans from the holding companyto such subsidiary banks

likely will be unsecured and subordinated to such bank’sdepositors and to other creditors of the bank.See “Capital.”

The Federal Reserve’s Small BankHolding Company Policy Statement (the “Small BHC Policy”) coversqualifying bank

and thrift holding companies with up to $3 billion of pro forma consolidatedassets.Proposed legislation, entitled the

“Small Bank Holding Company Relief Act” would direct the Federal Reserveraise the permitted consolidated asset level to

$10 billion. Such legislation is among various bills highlighted in February2025 by House Financial Services Committee

hearings.

The Federal Reserve treats the Company as a small banking holdingcompany under the Small BHC Policy.As a result,

unless and until the Company fails to qualify under the Small BHC Policy,the Company’s capital adequacywill continue

to be evaluated on a bank only basis.See “Capital.”

Bank Regulation

The Bank is an Alabama state bank that is a member of the Federal Reserve.It is subject to supervision, regulation and

examination by the Alabama Superintendent and the Federal Reserve, whichmonitor all areas of the Bank’s operations,

including loans, reserves, mortgages, capital adequacy,liquidity, funding sourcesand concentrations, issuances and

redemption of capital securities, payment of dividends, establishment ofbranches, and compliance with laws.The Bank’s

deposits are insured by the FDIC to the maximum extent providedby law, and the Bank is subject to variousFDIC

regulations applicable to FDIC-insured banks.See “FDIC Insurance Assessments.”

Alabama law permits statewide branching by banks.The Alabama Banking Code has provisions designed to ensure

Alabama banks have competitive equality with national banks.

 

11

The Federal Reserve has adopted the Federal Financial Institutions ExaminationCouncil’s (“FFIEC”) UniformFinancial

Institutions Rating System (“UFIRS”), which assigns each financialinstitution a confidential composite “CAMELS” rating

based on an evaluation and rating of six essential components of an institution’sfinancial condition and operations:

C

apital

Adequacy,

A

sset Quality,

M

anagement,

E

arnings,

L

iquidity and

S

ensitivity to market risk, as well as the quality of risk

management practices.For most institutions, the FFIEC has indicated that market risk primarilyreflects exposures to

changes in interest rates.When regulators evaluate this component, consideration is expected to be givento management’s

ability to identify, measure,monitor and control market risk; the institution’ssize; the nature and complexity of its activities

and its risk profile; and the adequacy of its capital and earnings in relationto its level of market risk exposure.Market risk

is rated based upon, but not limited to, an assessment of the sensitivity ofthe financial institution’s earningsor the

economic value of its capital to adverse changes in interest rates, foreignexchange rates, commodity prices or equity prices;

management’s ability to identify,measure, monitor and control exposure to market risk; and the nature and complexityof

interest rate risk exposure arising from non-trading positions. Compositeratings are based on evaluations of an institution’s

managerial,operational, financial and compliance performance. The composite CAMELSrating is not an arithmetical

formula or rigid weighting of numerical component ratings. Elementsof subjectivity and examiner judgment, especially as

these relate to qualitative assessments, are important elements in assigningratings.The Federal Reserve is maintaining a

heightened focus on bank funding pressures based on risk profiles andmanagement’s ability to manage theirliquidity

positions.

In addition, and separate from the interagency UFIRS, the Federal Reserveassigns a risk-management rating to all state

member banks and bank holding companies.In February 2021 the Federal Reserve expanded its Guidance for Assessing

Risk Management to institutions with under $100 billionin assets.This guidance states that principles of sound

management should apply to all risk confronting a banking organization,including credit, market, liquidity,operational,

compliance, and legal risks.For a small community banking organization (“CBO”) engagedsolely in traditional banking

activities and whose senior management is actively involved in the details ofday-to-day operations, relatively basic risk

management systems may be adequate. In accordance with the InteragencyGuidelines Establishing Standards for Safety

and Soundness, a CBO is expected, at a minimum, to have internal controls,information systems, and internal audit that are

appropriate for the size of the institution and the nature, scope, and risk ofits activities.The summary, or composite,

rating, as well as each of the assessment areas, including risk management,is delineated on a numerical scale of 1 to 5, with

1 being the highest or best possible rating.Thus, a bank with a composite rating of 1 requires the lowest level of

supervisory attention while a 5-rated bank has the most critically deficientlevel of performance and therefore requires the

highest degree of supervisory attention.

Bank mergers, which generally accompany holdingcompany mergers, are also subject to the approval of the resulting

bank’s primary federalregulator.The Federal Reserve and the Alabama Superintendent must approve mergersand

acquisitions by the Bank.The FDIC and the Office of the Comptroller of the Currency(“OCC”) may comment on mergers

involving the Company or the Bank.

Although the Federal Reserve has not issued any new rules or policies applicableto mergers of bank holding companies or

state member banks, the FDIC and the OCC changed their mergerpolicies and rules in September 2024.The FDIC

adopted a Statement of Policy on Bank Merger Transactions(the “FDIC Merger Policy”).The new FDIC Merger Policy

recognizes Biden Administration Executive Order 14036 “PromotingCompetition in the American Economy” (July 9,

2021) (“Executive Order 14036”), which, among other things, “instructs U.S. agenciesto consider the impact that

consolidation may have on maintaining a fair,open, and competitive marketplace, and on the welfare of workers, farmers,

small businesses, startups, and consumers.”Executive Order 14036 apparently has not been rescinded as of February 17,

2025.The adopting release for the FDIC Merger Policy states that “the analyticalmethods the FDIC employs in

conducting its independent analysis will continue to be informedby the United States Department of Justice’s(“DoJ”)

approach to evaluating competitive effects.”

In September 2024, the OCC updated its regulations for business combinationsinvolving national banks and federal

savings associations, deleted expedited and streamline applications forbusiness combinations and adopted a policy

statement clarifying its review of applications under the Bank MergerAct’s statutory factors.

It is unclear whether these new FDIC and OCC policies and rules will affecttheir views of mergers where the Federal

Reserve is the responsible regulator, especiallyin light of change in the President and changing leadership at the FDIC and

the OCC.

12

The Bank Merger Act and the BHC Act require evaluation, amongother factors, of the effects of the transaction on

competition.The primary federal bank regulator of a resulting bank, in a transaction subject toapproval under the Bank

Merger Act and the Federal Reserve, in acquisitions and mergerssubject to the BHC Act, must notify the DoJ, who has an

important advisory role in bank and BHC mergers,but the bank regulators are the primary decision makers.The bank

regulators may then consider the Antitrust Division’scompetitive factors report as part of their respective review processes,

and use their own methods for screening and evaluating bank mergers.The DoJ and the Federal Trade Commission

adopted new non-binding Merger Guidelines in 2023.In September 2024, the DoJ revoked its 1995 Bank Merger

Guidelines and replaced these with a 2024 Banking Addendum to its 2023 MergerGuidelines.The 1995 Bank Merger

Guidelines had been adopted together with the federal banking agencies, andnotwithstanding the FDIC Merger Policy,

none of the federal banking agencies have withdrawn from those Guidelines.The Federal Reserve continues to apply the

1995 Bank Merger Guidelines in evaluating bank and bank holdingcompany mergers.

The GLB Act and related regulations require banks and their affiliatedcompanies to adopt and disclose privacy policies,

including policies regarding the sharing of personal information withthird parties.The GLB Act also permits bank

subsidiaries to engage in financial activities, which are similar to thosepermitted to financial holding companies.

A variety of federal and state privacy laws govern the collection, safeguarding,sharing and use of customer information,

and require that financial institutions have policies regarding informationprivacy and security. Somestate laws also protect

the privacy of information of state residents and require adequate securityof such data, and certain state laws may,in some

circumstances, require us to notify affected individualsof security breaches of computer databases that contain their

personal information. These laws may also require us to notify law enforcement,regulators or consumer reporting agencies

in the event of a data breach, as well as businesses and governmental agenciesthat own data.

The Data Privacy Act of 2023 was introduced in Congress on February24, 2023.It would amend various sections of the

GLB Act and preempt certain state privacy laws.The American Privacy Rights Act of 2024 sought to establish the first

federal standard for comprehensive data privacy and security regulation.Neither of these bills were adopted.Other

privacy legislation may be proposed.

Consumer Laws and the Community Reinvestment Act

The Consumer Financial Protection Bureau (the “CFPB”) has a broad mandatethat requires it to regulate consumer

financial products and services, whether or not offered by banks ortheir affiliates.The CFPB has the authority to adopt

regulations and enforce various laws, including the fair lending laws, the Truthin Lending Act, the Electronic Funds

Transfer Act, mortgage lending rules, theTruth in Savings Act, the Fair Credit Reporting Act and Privacyof Consumer

Financial Information rules.Although the CFPB does not examine or supervise banks with less than $10 billionin assets,

banks of all sizes, including the Bank, are subject to the CFPB’sregulations, and the precedents set in CFPB enforcement

actions and interpretations.

The Bank is subject to the provisions of the CRA and the Federal Reserve’sCRA regulations.Under the CRA, all FDIC-

insured institutions have a continuing and affirmativeobligation, consistent with their safe and sound operation, to help

meet the credit needs for their entire communities, including low- andmoderate-income (“LMI”) neighborhoods.The CRA

requires a depository institution’sprimary federal regulator to periodically assess the institution’srecord of assessing and

meeting the credit needs of the communities served by that institution, including low- and moderate-income neighborhoods.

The bank regulatory agency’s CRA assessmentis publicly available.Further, consideration of the CRA is required ofany

FDIC-insured institution that has applied to: (i) charter a national bank; (ii)obtain deposit insurance coverage for all new-

banks; (iii) establish a new branch office that accepts deposits; (iv)relocate an office; or (v) merge or consolidatewith, or

acquire the assets or assume the liabilities of, an FDIC-insured financialinstitution.A less than satisfactory CRA rating

will slow, if not preclude,acquisitions, and new branches and other expansion activities and may preventa company from

becoming a financial holding company.The federal CRA regulations require that evidence of discriminatory,illegal or

abusive lending practices be considered in the CRA evaluation.

The federal CRA regulations require that evidence of discriminatory,illegal or abusive lending practices be considered in

the CRA evaluation.

Financial holding company elections and the continuation of financialholding company activities are permitted, only if

each affiliated bank has received a “satisfactory” or betterCRA rating.

13

CRA agreements with private parties must be disclosed and annualCRA reports must be made to a bank’sprimary federal

regulator.Community benefit plans have become common in banking mergers,especially larger bank combinations.The

National Community Reinvestment Coalition reportedthat as of February 2025, it had executed 21 community benefit

plans with banking organizations for an aggregate of$580 billion for mortgage, small business and community

development lending, investments and philanthropy inLMI and under-resourced communities. The pending Capital One

Financial Acquisition of Discover Financial Services includes a communitybenefit plan with another community

organization valued at $265 billion, which is the largestever.

The Bank had a “satisfactory” CRA rating in its latest CRA public evaluation dated February28, 2022, with satisfactory

ratings on both its lending and community developmenttests.

The Federal Reserve considers the effects of a bank acquisitionproposal on the convenience and needs of the markets

served by the combining organizations. Bank regulatorsconsider CRA performance in evaluating merger and acquisition

applications under the Bank Merger Act and the BHC Act, as well as otherexpansion proposals, such as new branch

offices.In the case of bank holding company applications to acquire a bank, the FederalReserve will assess and emphasize

CRA records of each subsidiary depository institution of the applicantbank holding company and the target bank in

meeting the needs of their entire communities, including LMI neighborhoods,and such records may be the basis for

denying the application.

The Bank is also subject to, among other things, the Equal Credit OpportunityAct (the “ECOA”) and the Fair Housing Act

and other fair lending laws, which prohibit discrimination based on race orcolor, religion, national origin, sex and familial

status in any aspect of a consumer or commercial credit or residential real estate transaction.The DoJ’s and the federal

bank regulatory agencies’ Interagency Policy Statement on Discriminationin Lending provides guidance to financial

institutions in determining whether discrimination exists, how the agencieswill respond to lending discrimination, and what

steps lenders might take to prevent discriminatory lending practices.The DOJ has prosecuted what it regards as violations

of the ECOA, the Fair Housing Act and the fair lending laws, generally.

New CRA Regulations

The Federal Reserve, the OCC and the FDIC jointly adopted extensivechanges in new CRA regulations, which were

published in a 649 page adopting release in the Federal Register on February1, 2024 (the “New CRA Regulations”).Most

of the New CRA Regulation’s becomeeffective January 1, 2026, and other requirements, including requireddata reporting,

are scheduled to become effective January 1, 2027.The New CRA Regulations confirm that the CRA and fair lending

responsibilities and compliance are mutually reinforcing and that theseregimes recognize the importance of ensuring that

the credit markets are inclusive.The New CRA Regulations continue to allow downgrading a bank for discriminatory or

other illegal credit practices.

The New CRA Regulations’ objectives include:

●

Update CRA regulations to strengthen the achievement of the core purpose ofthe statute and to encourage

financial inclusion;

●

Adapt to changes in the banking industry,including the expanded role of mobile and online banking;

●

Provide greater clarity and consistency in the application of the regulations;

●

Tailor performancestandards to account for differences in bank size and business modelsand local conditions;

●

Tailor data collectionand reporting requirements and use existing data whenever possible;

●

Promote transparency and public engagement;

●

Confirm that CRA and fair lending responsibilities are mutually reinforcing;and

●

Create a consistent regulatory approach that applies to banks regulatedby all three agencies.

Similar to the old rules, the New CRA Regulations are based on banksize and business model.These rules create a new

framework for evaluating CRA performance.Banks are classified as either “small”, “intermediate”, “large”, or “limited

purpose” banks.The asset size thresholds would be adjusted annually for inflation and have been increasedrelative to the

bank asset size thresholds in the old CRA rule.The Bank is currently an “intermediate small bank,” but will become an

“intermediate bank” under the New CRA Regulations because it has assets of$600 million to $2.0 billion in both of the two

prior years.

14

The new performance evaluation framework establishes two tests for intermediatebanks:

•

the Retail Lending Test;and

•

the Intermediate Bank Community Development Test,or if elected by the Bank, the Community Development

Financing Test.

The Bank presently intends to use the Intermediate Bank CommunityDevelopment Test.The community development

evaluation of the prior CRA rules continues.The New CRA Regulations implement a new retail lending evaluation for

intermediate banks, and provide them the option of evaluation undera new test for community development financing.

Intermediate banks would be evaluated and assigned conclusions reflectingtheir performance under these tests in their

facility-based assessment area of “Outstanding”; “High Satisfactory”;“Low Satisfactory”; “Needs to Improve”; or

“Substantial Noncompliance.”These conclusions applied to each test would be weighted 50% each for intermediatebanks

and combined in a resulting rating of “Outstanding,” “Satisfactory,”“Needs to Improve,” or “Substantial Noncompliance.”

A “facility-based assessment area” is an area that encompasses or is adjacentto deposit-taking facilities, including main

offices, branches, and deposit-taking ATMsand other remote service facilities.Intermediate banks may delineate facility-

based areas of part of a county.The banking agencies will evaluate retail lending in a bank’s“outside retail lending area”

for large banks, as well as for intermediate banks, if the majority of theirretail lending is outside their facility-based

assessment areas.

A retail lending volume screen will be used to measure the volume of a bank’slending relative to its deposit base in its

facility-based assessment area and would compare that ratio to the aggregateratio for all reporting banks with at least one

branch in the same facility-based assessment area.Second, the agencies will evaluate the geographic distribution and

borrower distribution of a bank’smajor product lines in the bank’sRetail Lending Test Areas (i.e., thebank’s facility-based

assessment areas, and, if applicable, retail lending assessment areas and outsideretail lending area) using a series of metrics

and benchmarks.After the agency determines a recommended conclusion for the Retail LendingTest Area, the agency

would consider a list of additional factors that are intended to account for circumstancesin which the retail lending

distribution metrics and benchmarks may not accurately or fully reflect a bank’sretail lending performance, or in which the

benchmarks may not appropriately represent the credit needs and opportunitiesin an area.

Banks will receive consideration for any qualified community developmentloans, investments, or services, regardless of

location.The extent of an agency's consideration of community development loans, communitydevelopment investments,

and community development services outside of the bank's facility-basedassessment areas will depend on the adequacy of

the bank's responsiveness to community development needs and opportunitieswithin the bank's facility-based assessment

areas and applicable performance context information.The New CRA Regulations codify agency interpretations under the

former CRA regulations, and provide 11community development categories.The agencies will evaluate the extent to

which a bank’s community developmentloans, investments, and services are impactful and responsive in meeting

community development needs.An intermediate bank's community development test performance is evaluatedpursuant to

the following criteria:

•

the number and dollar amount of community development loans;

•

the number and dollar amount of community development investments;

•

the extent to which the bank provides community development services; and

•

the bank's responsiveness through community development loans, communitydevelopment investments, and

community development services to community development needs.

The release proposing these New CRA rules stated that the agencies believeretail lending remains a core part of a bank's

affirmative obligation under the CRA to meet the creditneeds of their entire communities. At the same time, the agencies

recognize that, compared to large banks, intermediate banksmight not offer as wide a range of retail products and services,

have a more limited capacity to conduct community development activities,and may focus on the local communities where

their branches are located.”The proposal reflected the agencies’ views that banks of this size should have meaningful

capacity to conduct community development financing, as theydo under the current approach.

The new rule exempts small and intermediate banks from certain new data requirementsthat apply to banks with assets of

at least $2 billion and limits certain new data requirements to largebanks with assets greater than $10 billion.

15

Overdrafts

The federal bank regulators have updated their guidance several times onoverdrafts, including overdrafts incurred at ATMs

and point of sale terminals.Overdrafts also have been a CFPB concern, which began refocusing on this issue in 2021with

a view to “insure that banks continue to evolve their businesses to reduce relianceon overdraft and not sufficient funds

fees.”Among other things, the federal regulators require banks to monitoraccounts and to limit the use of overdrafts by

customers as a form of short-term, high-cost credit, including, forexample, giving customers who overdraw their accounts

on more than six occasions where a fee is charged in a rolling 12-monthperiod, a reasonable opportunity to choose a less

costly alternative and decide whether to continue with fee-based overdraftcoverage.It also encourages placing appropriate

daily limits on overdraft fees, and asks banks to consider eliminating overdraftfees for transactions that overdraw an

account by de minimis amounts.Overdraft policies, processes, fees and disclosures have been the subjectof various

litigation against banks in various jurisdictions. The federal bankregulators continue to consider responsible small dollar

lending, including overdrafts and related fee issues and issued principlesfor offering small-dollar loans in a responsible

manner on May 20, 2020.

CFPB Consumer Financial Protection Circular 2022-06 (Oct. 26,2022) concluded that overdraft fee practices must comply

with Regulation Z, Regulation E, and the prohibition against unfair,deceptive, and abusive acts or practices in Section 1036

of the Consumer Financial Protection Act.Further, overdraft fees assessed by financial institutionson transactions that a

consumer would not reasonably anticipate are likely unfair even if these complywith these other consumer laws and

regulations.Another CFPB rule applicable to banks with over $10 billion in assets scheduled to becomeeffective October

1, 2025, has been challenged in Federal district court for the SouthernDistrict of Mississippi.Among other things, this rule

limits overdraft charges to $5 in most cases.

Residential Mortgages

CFPB regulations require that lenders determine whether a consumerhas the ability to repay a mortgage loan.These

regulations establish certain minimum requirements for creditors whenmaking ability to repay determinations, and provide

certain safe harbors from liability for mortgages that are "qualified mortgages"and are not “higher-priced.”Generally,

these CFPB regulations apply to all consumer,closed-end loans secured by a dwelling including home-purchase loans,

refinancing and home equity loans—whether first or subordinate lien.Qualified mortgages must generally satisfy detailed

requirements related to product features, underwriting standards,and requirements where the total points and fees on a

mortgage loan cannot exceed specified amounts or percentages of the totalloan amount.Qualified mortgages must have:

(1) a term not exceeding 30 years; (2) regular periodic payments that do not result innegative amortization, deferral of

principal repayment, or a balloon payment; (3) and be supported with documentationof the borrower and its credit.On

December 10, 2020, the CFPB issued final rules related to “qualified mortgage”loans. Lenders are required under the law

to determine that consumers have the ability to repay mortgage loans beforelenders make those loans. Loans that meet

standards for QM loans are presumed to be loans for which consumers have the abilityto repay.

The Economic Growth, Regulatory Relief, and Consumer Protection Act of 2018(the “2018 Growth Act”) provides that

certain residential mortgages held in portfolio by banks with less than $10 billionin consolidated assets automatically are

deemed “qualified mortgages.” This relieves such institutions from many of therequirements to satisfy the criteria listed

above for “qualified mortgages.” Mortgages meeting the “qualified mortgage”safe harbor may not have negative

amortization, must follow prepayment penalty limitations includedin the Truth in Lending Act, and may not have fees

greater than 3% of the total value of the loan.

The Bank generally services the loans it originates, including those it sells.The CFPB’s mortgage servicingstandards

include requirements regarding force-placed insurance,certain notices prior to rate adjustments on adjustable-rate

mortgages, and periodic disclosures to borrowers. Servicers are prohibitedfrom processing foreclosures when a loan

modification is pending, and must wait until a loan is more than 120 days delinquentbefore initiating a foreclosure action.

Servicers must provide borrowers with direct and ongoing access to its personnel,and provide prompt review of any loss

mitigation application. Servicers must maintain accurate and accessible mortgagerecords for the life of a loan and until one

year after the loan is paid off or transferred. These standards increase thecost and compliance risks of servicing mortgage

loans, and the mandatory delays in foreclosures could result in loss of value oncollateral or the proceeds we may realize

from the sale of foreclosed property.

We focus ourresidential mortgage origination on qualified mortgages and those that meet ourinvestors’ requirements, but

we may make loans that do not meet the safe harbor requirements for “qualifiedmortgages.”

16

The Federal Housing Finance Authority (“FHFA”)regulates The Federal National Mortgage Association (“Fannie Mae’s”)

and the Federal Home Loan Mortgage Corporation (“Freddie Mac”)(individually and collectively,“GSE”). Among these,

are repurchase rules applicable to sales of mortgages to the GSEs.These rules include the kinds of loan defects that could

lead the GSEs to request a mortgage loan repurchase or seek other remedies against themortgage loan originator or seller.

The FHFA also has updatedthese GSEs’ representations and warranties framework and provided an independentdispute

resolution (“IDR”) process to allow a neutral third party to resolve demandsafter the GSEs’ quality control and appeal

processes have been exhausted.

The Bank is subject to the CFPB’s integrateddisclosure rules under the Truth in Lending Act andthe Real Estate

Settlement Procedures Act, referred to as “TRID”, for credit transactionssecured by real property.Our residential mortgage

strategy, productofferings, and profitability may change as these regulations are interpretedand applied in practice, and

may also change due to any restructuring of Fannie Mae and Freddie Mac as part ofthe resolution of their conservatorships.

The 2018 Growth Act reduced the scope of TRID rules by eliminating the wait timefor a mortgage, if an additional creditor

offers a consumer a second offer with a lower annual percentagerate. Congress encouraged federal regulators to provide

better guidance on TRID in an effort to provide a clearer understandingfor consumers and bankers alike. The law also

provides partial exemptions from the collection, recording and reporting requirementsunder Sections 304(b)(5) and (6) of

the Home Mortgage Disclosure Act (“HMDA”), for those banks with fewer than 500closed-end mortgages or less than

500 open-end lines of credit in both of the preceding two years, providedthe bank’s rating under the CRA for theprevious

two years has been at least “satisfactory.”The CFPB issued a rule to implement and clarify these provisions of the 2018

Growth Act on August 31, 2018.

The Bank sells mortgage loans to Fannie Mae and services these on an actual/actual basis.As a result, the Bank is not

obligated to make any advances to Fannie Mae on principal and intereston such mortgage loans where the borrower is

entitled to forbearance.

CARES Act Loan Modifications and Forbearance

The Coronavirus Aid, Relief, and Economic Security Act (“CARES Act”) was enactedon March 27, 2020.Section 4013

of that Act allowed banks to temporarily suspend certain GAAP requirementsfor restructured loans in light of the effects of

the COVID-19 pandemic.On April 7, 2020, the Federal Reserve and the other Federal bank regulators issued an

Interagency Statement and later guidance encouraging banks to workprudently with borrowers on covered modifications.

Section 4021 of the CARES Act allows borrowers under 1-to-4 familyresidential mortgage loans sold to Fannie Mae to

request forbearance up to a year if the borrower experienced financial hardshipsduring the pandemic.During forbearance,

no fees, penalties or interest shall be charged beyond those applicableif all contractual payments were fully and timely

paid, and Fannie Mae servicers could not initiate foreclosures or similar proceduresor related evictions or sales until March

31, 2021, subject to up to a three-month extension.At December 31, 2024, the Bank had approximately $328 thousand of

deferred loan amounts and $165 thousand of forbearance on loans sold to FannieMae pursuant to the CARES Act and the

Interagency Statement.

Anti-Money Laundering, Countering the Financing of Terrorismand Sanctions

Under the Uniting and Strengthening America by Providing Appropriate ToolsRequired to Intercept and Obstruct

Terrorism Act of 2001(the “USA PATRIOTAct”), financial institutions are subject to prohibitions against specified

financial transactions and account relationships, as well as to enhanceddue diligence and “know your customer” standards

in their dealings with foreign financial institutions and foreign customers.

The USA PATRIOTAct requires financial institutions to establish anti-money launderingprograms, and sets forth

minimum standards, or “pillars” for these programs, including:

●

the development of internal policies, procedures, and controls;

●

the designation of a compliance officer;

●

an ongoing employee training program;

●

an independent audit function to test the programs; and

●

ongoing customer due diligence and monitoring.

17

The International Money Laundering Abatement and Anti-TerrorismFunding Act of 2001 specifies “know your customer”

requirements that obligate financial institutions to take actions to verifythe identity of the account holders in connection

with opening an account at any U.S. financial institution.Bank regulators are required to consider compliance with anti-

money laundering laws in acting upon merger and acquisitionand other expansion proposals under the BHC Act and the

Bank Merger Act, and sanctions for violations of this Act can be imposedin an amount equal to twice the sum involved in

the violating transaction, up to $1 million.

Federal Financial Crimes Enforcement Network (“FinCEN”) rulesrequire banks to know the beneficial owners of

customers that are not natural persons, update customer informationin order to develop a customer risk profile, and

generally monitor such matters.

The Federal Reserve, the other bank regulators, the NCUA and FinCEN issued a JointStatement on Risk-Focused Bank

Secrecy Act/Anti-Money Laundering Supervision (July 22, 2019).Banks that operate in compliance with applicable law,

properly manage customer relationships and effectivelymitigate risks by implementing controls commensurate with the

type and level of their risks are neither prohibited nor discouraged from providingbanking services.Examiners review risk

management practices to evaluate and assess whether a bank has developedand implemented effective processes to

identify, measure,monitor, and control risks.

On August 13, 2020, the federal bank regulators issued a joint statement on theirAML/BSA enforcement guidance and

clarifying that isolated or technical violations or deficiencies aregenerally not considered the kinds of problems that would

result in an enforcement action.The statement addresses how the agencies evaluate violations of individual pillars ofthe

Bank Secrecy Act and anti-money laundering (“AML/BSA”) complianceprogram. It describes how the agencies

incorporate the customer due diligence regulations and recordkeepingrequirements issued by the United States. Department

of the Treasury (“Treasury”)as part of the internal controls pillar of a financial institution's AML/BSA compliance

program.

On October 23, 2020, FinCEN and the Federal Reserve invited comment on a proposedrule that would amend the

recordkeeping and travel rules under the Bank Secrecy Act, which wouldlower the applicable threshold from $3,000 to

$250 for international transactions and apply these rules to transactions usingconvertible virtual currencies and digital

assets with legal tender status.This rule remained a proposal in FinCEN’sSemiannual Agenda published August 16, 2024.

On January 1, 2021, Congress enacted the Anti-Money LaunderingAct of 2020 and the Corporate Transparency Act

(collectively, the“AML Act”), to strengthen anti-money laundering and countering terrorism financingprograms. Among

other things, the AML Act:

●

specifies uniform disclosure of beneficial ownership information for all U.S.and foreign entities conducting

business in the U.S.;

●

increases potential fines and penalties for BSA violations and improveswhistleblower incentives;

●

codifies the risk-based approach to AML compliance;

●

modernizes AML systems;

●

expands the duties and powers FinCEN; and

●

emphasizes coordination and information-sharing among financial institutions,U.S. financial regulators and

foreign financial regulators.

FinCEN regulation 31 C.F.R.101.380 implements the Corporate TransparencyAct (the “CTA”), and becameeffective on

January 1, 2024.These regulations require entities to report information about theirbeneficial owners and the individuals

who created the entity (together, “beneficial ownershipinformation” or “BOI”).FinCEN explained that the rule would help

protect the U.S. financial system from illicit use by making it more difficultfor bad actors to conceal their financial

activities through entities with opaque ownership structures.FinCEN also explained that the proposed reporting obligations

would provide essential information to law enforcement and others to helpprevent corrupt actors, terrorists, and

proliferators from hiding money or other property in the United States.”The new rules expand financial institutions’

obligations under the Customer Due Diligence Rule (“CDD Rule”) to collectinformation and verify the beneficial

ownership of legal entities.Although the Company and the Bank are exempt from the CTA’srequirements to report their

own respective beneficial owners, the new laws may increase the Bank’santi-money laundering diligence activities and

costs.

 

 

18

On January 23, 2025, the Supreme Court granted the government’smotion to stay a nationwide injunction on enforcement

of the CTA thatwas issued by the U.S. District Court of the Eastern District of Texasin

Texas TopCop Shop, Inc. v.

Garland

.Earlier, on January 7, 2025, another judge in the EasternDistrict of Texas issued a separatenationwide injunction

of the CTA andthe BeneficialOwnership Information Reporting Rule (BOI Reporting Rule) in

Smith v. U.S. Department

of the Treasury

, which remined in effect as of January 2025.

FinCEN issued an Alert on January 24, 2025, acknowledging the continuing nationwideinjunction.This Alert confirmed

that reporting companies are not currently required to file beneficial ownershipinformation and are not subject to liability if

they fail to do so while the order remains in force.

Bills have been introduced in Congress to repeal the CTA,and it is unknown whether these will pass or if the

Administration will continue to defend the litigation challenging theCTA.Most recently, the Protect Small Business from

Excessive Paperwork Act bill was introduced, which, if enacted, wouldextend the compliance deadline to December 31,

2025 for submitting BOI for entities existing before 2024.

FinCEN published a request for information and comment on December15, 2021 seeking ways to streamline, modernize

the United States AML and countering the financing of terrorists.

The United States has imposed various sanctions upon foreigncountries, including China, Iran, North Korea, Russia and

Venezuela,and certain of their government officials and persons.Banks are required to comply with these sanctions, which

require additional customer screening and transaction monitoring.

Russia’s February 2022 invasionof Ukraine has generated a significant number of new sanctions on Russia, Russian

persons and suppliers of military or dual-purpose products to Russia, The Federalbank regulators have issued alerts that

Russia and others may step up cyber-attacks and data intrusions followingthe invasion.FinCEN has issued four alerts on

potential Russian illicit financial activity since February 2022.On January 25, 2023, FinCEN issued an alert to financial

institutions on potential investments in the U.S. commercial real estate sector bysanctioned Russian elites, oligarchs, their

family members, and the entities through which they act. The alert listed potentialred flags and typologies involving

attempted sanctions evasion in the commercial real estate sector,and reminds financial institutions of their Bank Secrecy

Act (BSA) reporting obligations.On February 6, 2025, the DoJ ended TaskForce Klepto Capture, which was established

in March 2022 to enforce sanctions against Russian officials and oligarchs,restrictions taken against Russian financial

institutions, including the prosecution of those who try to evade know-your-customerand anti-money laundering measures

and efforts to use cryptocurrency to evade U.S. sanctions.

Other Laws and Regulations

The Company is also required to comply with various corporate governanceand financial reporting requirements under the

Sarbanes-Oxley Act of 2002, as well as related rules and regulationsadopted by the SEC, the Public Company Accounting

Oversight Board and Nasdaq. In particular,the Company is required to report annually on internal controls as part of its

annual report pursuant to Section 404 of the Sarbanes-Oxley Act.

The Company has evaluated its controls, including compliance with the SEC andFDIC rules on internal controls, and

expects to continue to spend significant amounts of time and money oncompliance with these rules.If the Company fails

to comply with these internal control rules in the future, it may adverselyaffect its reputation, its ability to obtain the

necessary certifications to its financial statements, its relations with its regulatorsand other financial institutions with which

it deals, and its ability to access the capital markets and offer andsell Company securities on terms and conditions

acceptable to the Company.The Company’s assessment of its financial reportingcontrols as of December 31, 2024 is

included in this report with no material weaknesses reported.

19

Capital

The Federal Reserve has risk-based capital guidelines for bank holdingcompanies and state member banks, respectively.

These guidelines required, beginning December 31, 2019, a minimumratio of capital to risk-weighted assets (including

certain off-balancesheet activities, such as standby letters of credit) and capital conservation buffer,totaling 10.5%.Tier 1

capital includes common equity and related retained earnings anda limited amount of qualifying preferred stock, less

goodwill and certain core deposit intangibles.Votingcommon equity must be the predominant form of capital.Tier 2

capital consists of non–qualifying preferred stock, qualifying subordinated,perpetual, and/or mandatory convertible debt,

term subordinated debt and intermediate term preferred stock, up to 45% of pretaxunrealized holding gains on available for

sale equity securities with readily determinable market values that areprudently valued, and a limited amount of general

loan loss allowance. Tier 1 and Tier2 capital equals total capital.

In addition, the Federal Reserve has established minimum leverageratio guidelines for bank holding companies not subject

to the Small BHC Policy, andstate member banks, which provide for a minimum leverage ratio of Tier1 capital to adjusted

average quarterly assets (“leverage ratio”) equal to 4%.However, bank regulators expect banks and bankholding

companies to operate with a higher leverage ratio.The guidelines also provide that institutions experiencing internal

growth or making acquisitions will be expected to maintain strong capital positionssubstantially above the minimum

supervisory levels without significant reliance on intangible assets.Higher capital may be required in individual cases and

depending upon a bank holding company’srisk profile.All bank holding companies and banks are expected to hold capital

commensurate with the level and nature of their risks including the volumeand severity of their problem loans.

Lastly, the Federal Reserve’sguidelines indicate that the Federal Reserve will continue to considera “tangible Tier 1

leverage ratio” (deducting all intangibles) in evaluating proposals forexpansion or new activities.The level of Tier 1

capital to risk-adjusted assets is becoming more widely used by the bank regulatorsto measure capital adequacy.The

Federal Reserve has not advised the Company or the Bank of any specific minimumleverage ratio or tangible Tier 1

leverage ratio applicable to them. Under Federal Reserve policies, bank holdingcompanies are generally expected to

operate with capital positions well above the minimum ratios. The FederalReserve believes the risk-based ratios do not

fully take into account the quality of capital and interest rate, liquidity,market and operational risks. Accordingly,

supervisory assessments of capital adequacy may differsignificantly from conclusions based solely on the level of an

organization’srisk-based capital ratio.

The Federal Deposit Insurance Corporation Improvement Act of 1991(“FDICIA”), among other things, requires the federal

banking agencies to take “prompt corrective action” regarding depositoryinstitutions that do not meet minimum capital

requirements.FDICIA establishes five capital tiers: “well capitalized,” “adequately capitalized,”“undercapitalized,”

“significantly undercapitalized” and “critically undercapitalized.”A depository institution’s capital tier will dependupon

how its capital levels compare to various relevant capital measures andcertain other factors, as established by regulation.

See

“Prompt Corrective Action Rules.”

Basel III Capital Rules

The Federal Reserve and the other federal bank regulators adoptedin June 2013 final capital rules for bank holding

companies and banks implementing the Basel Committee on BankingSupervision’s “Basel III: A GlobalRegulatory

Framework for more Resilient Banks and Banking Systems.”These U.S. capital rules are called the “Basel III Capital

Rules,” and generally were fully phased-in on January 1, 2019.These are included in Federal Reserve Regulation Q.

The Basel III Capital Rules generally limit Tier1 capital to common stock and noncumulative perpetual preferred stock.

The Basel III Capital Rules also introduced a new capital measure, “CommonEquity Tier I Capital” or “CET1.”CET1

includes common stock and related surplus, retained earnings, and subjectto certain adjustments, minority common equity

interests in subsidiaries.CET1 is reduced by deductions for:

●

Goodwill and other intangibles, other than mortgage servicing assets (“MSRs”),which are treated separately,net

of associated deferred tax liabilities (“DTLs”);

●

Deferred tax assets (“DTAs”)arising from operating losses and tax credit carryforwards net of allowancesand

DTLs;

●

Gains on sale from any securitization exposure; and

●

Defined benefit pension fund net assets (i.e., excess plan assets), net ofassociated DTLs.

The Company made a one-time election in 2015 and, as a result, the Company’sCET1 is not adjusted for certain

accumulated other comprehensive income (“AOCI”).

20

Additional “threshold deductions” of the following that areindividually greater than 10% of CET1 or collectively greater

than 15% of CET1 (after the above deductions are also made):

●

MSAs, net of associated DTLs;

●

DTAs arising fromtemporary differences that could not be realized through net operatingloss carrybacks, net of

any valuation allowances and DTLs; and

●

Significant common stock investments in unconsolidated financial institutions,net of associated DTLs.

Noncumulative perpetual preferred stock and Tier1 minority interest not included in CET1, subject to limits, will qualify as

additional Tier I capital.All other qualifying preferred stock, subordinated debt and qualifying minorityinterests will be

included in Tier 2 capital.

The various capital elements and total capital requirements underthe Basel III Capital Rules are:

Fully Phased in

January 1, 2019

Minimum CET1

4.50%

CET1 Conservation Buffer

2.50%

Total CET1

7.0%

Deductions from CET1

100%

Minimum Tier 1 Capital

6.0%

Minimum Tier 1 Capital

plus

conservation buffer

8.5%

Minimum TotalCapital

8.0%

Minimum TotalCapital

plus

conservation buffer

10.5%

 

 

21

Basel III Changes in Risk-Weightings

The Basel III Capital Rules significantly change the risk weightings used to determinerisk weighted capital adequacy.

Among various other changes, the Basel III Capital Rules apply a 250% risk-weightingto MSRs, DTAs that cannotbe

realized through net operating loss carrybacks and significant (greaterthan 10%) investments in other financial institutions.

A 150% risk-weighted category applies to “high volatility commercialreal estate loans,” or “HVCRE,” which are credit

facilities for the acquisition, construction or development of real property,excluding one-to-four family residential

properties or commercial real estate projects where: (i) the loan-to-valueratio is not in excess of interagency real estate

lending standards; and (ii) the borrower has contributed capital equalto not less than 15% of the real estate’s “as

completed” value before the loan was made.

The Basel III Capital Rules also changed some of the risk weightings usedto determine risk-weighted capital adequacy.

Among other things, the Basel III Capital Rules:

●

Assigned a 250% risk weight to MSRs;

●

Assigned up to a 1,250% risk weight to structured securities, including privatelabel mortgage securities, trust

preferred CDOs and asset backed securities;

●

Retained existing risk weights for residential mortgages, but assign a 100%risk weight to most commercial real

estate loans and a 150% risk-weight for HVCRE;

●

Assigned a 150% risk weight to past due exposures (other than sovereignexposures and residential mortgages);

●

Assigned a 250% risk weight to DTAs,to the extent not deducted from capital (subject to certain maximums);

●

Retained the existing 100% risk weight for corporate and retail loans; and

●

Increased the risk weight for exposures to qualifying securities firms from20% to 100%.

HVCRE Risk Weight

In December 2019, the federal banking regulators published a final rule,effective April 1, 2020, to implement Section 214

of the 2018 Growth Act.This law restricted the bank regulators from assigning a heightened risk to a HVCRE loanthat is

an acquisition construction or development loan.The rules define HVCRE loans as loans secured by land or improved real

property made after December 31, 2014 that:

●

primarily finance or refinance the acquisition, development, or constructionof real property;

●

the purpose of such loans must be to acquire, develop, or improve such realproperty into income producing

property; and

●

the repayment of the loan must depend on the future income or sales proceeds from, orrefinancing of, such real

property.

Variousexclusions from HVCRE are specified.The full value of any borrower contributed land (net of any liens on the

land securing HVCRE exposure) count toward the 15% capital contributionto the appraised as completed value, which is

one of the criteria for exemption form the heightened risk weight.HVCRE loans are assigned a 150% risk weight.

 

 

 

22

Capital Conservation Buffer

Full compliance with the capital conservation bufferwas required beginning January 1, 2019.Thereafter, permissible

dividends, stock repurchases and discretionary bonuses will belimited to the following percentages based on the capital

conservation buffer as calculated above, subject toany further regulatory limitations, including those based on risk

assessments and enforcement actions:

Capital Conservation

Buffer %

Buffer % Limit

More than 2.50%

None

> 1.875% - 2.50%

60.0%

> 1.250% - 1.875%

40.0%

> 0.625% - 1.250%

20.0%

≤ 0.625

- 0 -

On March 20, 2020, the Federal Reserve and the other federal banking regulatorsadopted an interim final rule that

amended the capital conservation buffer.This clarifying rule revises the definition of “eligible retained income”for

purposes of the maximum payout ratio to allow banking organizationsto more freely use their capital buffers to promote

lending and other financial intermediation activities, by making thelimitations on capital distributions more gradual. The

eligible retained income, as used in the Federal Reserve’sRegulation Q capital rule, as corrected on January 13, 2021, is the

greater of (i) net income for the four preceding quarters, net ofdistributions and associated tax effects not reflected in net

income; and (ii) the average of all net income over the preceding four quarters.Banking organizations were encouraged to

make prudent capital distribution decisions.

Regulatory Capital Changes

Simplification

The federal bank regulators issued final rules on July 22, 2019 simplifying theircapital rules.The last of these changes

become effective on April 1, 2020.The principal changes for standardized approaches institutions, suchthe Company and

the Bank are:

●

Deductions from capital for certain items, such as temporary differenceDTAs, MSAs and investmentsin

unconsolidated subsidiaries were decreased to those amounts that individuallyexceed 25% of CET1;

●

Institutions can elect to deduct investments in unconsolidated subsidiaries or subjectthem to capital requirements;

and

●

Minority interests are included up to 10% of (i) CET1 capital, (ii) Tier1 capital and (iii) total capital.

Effects of CECL Accounting Changes

The Financial Accounting Standards Board’s(“FASB”) AccountingStandards Update (“ASU”) No. 2016-13 “Financial

Instruments – Credit Losses (Topic326): Measurement of Credit Losses on Financial Instruments” onJune 16, 2016, which

changed the loss model to take into account current expected credit losses (“CECL”)in place of the incurred loss method.

On May 8, 2020, the agencies issued a statement describing the measurementof expected credit losses using the CECL

methodology, and updatedconcepts and practices in existing supervisory guidance that remain applicable.The Company

adopted CECL effective beginning January 1, 2023and the Company recognized all effects on its regulatory capitalin the

year of adoption.

23

Prompt Corrective Action Rules

All of the federal bank regulatory agencies’ regulations establish risk-adjustedmeasures and relevant capital levels that

implement the “prompt corrective action” standards.The relevant capital measures are the total risk-based capital ratio,

Tier 1 risk-based capital ratio, Commonequity tier 1 capital ratio, as well as the leverage capital ratio.Under the

regulations, a state member bank will be:

●

well capitalized if it has a total risk-based capital ratio of 10% or greater,a Tier 1 risk-based capital ratio of 8% or

greater, a Common equity tier 1 capital ratioof 6.5% or greater, a leverage capital ratio of5% or greater and is not

subject to any written agreement, order,capital directive or prompt corrective action directive by a federal bank

regulatory agency to maintain a specific capital level for any capital measure;

●

“adequately capitalized” if it has a total risk-based capital ratio of 8.0% or greater,a Tier 1 risk-based capital ratio

of 6.0% or greater, a Common Equity Tier1 capital ratio of 4.5% or greater, and generallyhas a leverage capital

ratio of 4.0% or greater;

●

“undercapitalized” if it has a total risk-based capital ratio of less than 8.0%,a Tier 1 risk-based capital ratio of less

than 6.0%, a Common Equity Tier 1 capitalratio of less than 4.5% or generally has a leverage capital ratio of less

than 4.0%;

●

“significantly undercapitalized” if it has a total risk-based capital ratio of less than6.0%, a Tier 1 risk-based

capital ratio of less than 6.0%, a Common Equity Tier1 capital ratio of less than 3%, or a leverage capital ratio of

less than 3.0%; or

●

“critically undercapitalized” if its tangible equity is equal to or less than 2.0%to total assets.

The federal bank regulatory agencies have authority to require additionalcapital where they determine it is necessary,

including where a bank is unsafe or unsound condition or where thebank is determined to have less than a satisfactory

rating on any of its CAMELS ratings. The regulators have confirmed thathigher capital levels may be required in light of

market conditions and risk.

Depository institutions that are “adequately capitalized” for bankregulatory purposes must receive a waiver from the FDIC

prior to accepting or renewing brokered deposits, and cannot pay interestrates or brokered deposits that exceeds market

rates by more than 75 basis points.Banks that are less than “adequately capitalized” cannot accept or renewbrokered

deposits.FDICIA generally prohibits a depository institution from making any capitaldistribution, including paying

dividends or any management fee to its holding company,if the depository institution thereafter would be

“undercapitalized”.Institutions that are “undercapitalized” are subject to growth limitations and arerequired to submit a

capital restoration plan for approval.

A depository institution’s parentholding company must guarantee that the institution will comply with such capital

restoration plan.The aggregate liability of the parent holding company is limited to the lesser of5% of the depository

institution’s total assets at the timeit became undercapitalized and the amount necessary to bring the institutioninto

compliance with applicable capital standards.If a depository institution fails to submit an acceptable plan, it is treatedas if

it is “significantly undercapitalized”.If the controlling holding company fails to fulfill its obligations under FDICIA and

files (or has filed against it) a petition under the federal Bankruptcy Code,the claim against the holding company’scapital

restoration obligation would be entitled to a priority in such bankruptcyproceeding over third-party creditors of the bank

holding company.

Significantly undercapitalized depository institutions may be subjectto a number of requirements and restrictions,

including orders to sell sufficient voting stock tobecome “adequately capitalized”, requirements to reduce total assets, and

cessation of receipt of deposits from correspondent banks.“Critically undercapitalized” institutions are subject to the

appointment of a receiver or conservator.Because the Company and the Bank exceed applicable capital requirements,

Company and Bank management do not believe that the prompt correctiveaction provisions of FDICIA have had or are

expected to have any material effect on the Companyand the Bank or their respective operations.

24

Dividends and Distributions

The Company is a legal entity separate and distinct from the Bank.Federal Reserve Regulation Q limits “distributions,”

including discretionary bonus payments from eligible retainedincome” by state member banks, such as the Bank, unless its

capital conservation buffer of common equity Tier1 capital (“CET1”) exceeds 2.5%. “Distributions” include dividends

declared or paid on common stock, discretionary bonuses and stockrepurchases, redemptions or repurchases of Tier 2

capital instruments (unless replaced by a capital instrument in the same quarter).“Eligible retained income” for the Bank

and other Federal Reserve regulated institutions is the greater of:

●

net income for the four preceding calendar quarters, net of any distributions and associatedtax effects not already

reflected in net income; or

●

the average net income over the preceding four quarters.

The Company’s primary sourceof cash is dividends from the Bank.The Bank’s Call Report are used for its calculationof

“eligible retained income.”

The Bank’s capital conservationbuffer exceeded 2.5% at December 31, 2024.

As of December 31, 2024, the Bank is “well capitalized” under the regulatoryframework for prompt corrective action. To

be categorized as “well capitalized,” the Bank must maintain minimum commonequity Tier 1, total risk-based, Tier1 risk-

based, and Tier 1 leverage ratios as set forth in thefollowing table. Management has not received any notification from the

Bank's regulators, which changes the Bank’sregulatory capital status.

Prior regulatory approval also is required by statute if the total of all dividendsdeclared by a state member bank (such as

the Bank) in any calendar year will exceed the sum of such bank’snet profits for the year and its retained net profits for the

preceding two calendar years, less any required transfers to surplus.During 2024, the Bank paid total cash dividends of

approximately $3.8 million to the Company.At December 31, 2024, the Bank had net profits for the year and retained net

profits for the preceding two calendar years, less any required transfers to surplus,of $9.7 million.

In addition, the Company and the Bank are subject to various general regulatorypolicies and requirements relating to the

payment of dividends, including requirements to maintain capital aboveregulatory minimums. The appropriate federal and

state regulatory authorities are authorized to determine when the paymentof dividends would be an unsafe or unsound

practice, and may prohibit such dividends. The Federal Reserve has indicatedthat paying dividends that deplete a state

member bank’s capital baseto an inadequate level would be an unsafe and unsound banking practice.The Federal Reserve

has indicated that depository institutions and their holding companies shouldgenerally pay dividends only out of current

year’s operating earnings.See “Regulatory Capital Changes” and Note 15 to the Company’sconsolidated financial

statements.

Federal Reserve Supervisory Letter SR-09-4 (February 24,2009), as revised December 21, 2015, applies to dividend

payments, stock redemptions and stock repurchases.Prior consultation with the Federal Reserve supervisory staff is

required before:

●

redemptions or repurchases of capital instruments when the bankholding company is experiencing financial

weakness; and

●

redemptions and purchases of common or perpetual preferred stockwhich would reduce such Tier 1 capital at end

of the period compared to the beginning of the period.

25

Bank holding company directors must consider differentfactors to ensure that its dividend level is prudent relative to

maintaining a strong financial position, and is not based on overly optimistic earningsscenarios, such as potential events

that could affect its ability to pay,while still maintaining a strong financial position. As a general matter,the Federal

Reserve has indicated that the board of directors of a bank holding companyshould consult with the Federal Reserve and

eliminate, defer or significantly reduce the bank holding company’sdividends if:

●

its net income available to shareholders for the past four quarters, net of dividendspreviously paid during that

period, is not sufficient to fully fund the dividends;

●

its prospective rate of earnings retention is not consistent with its capital needs and overallcurrent and prospective

financial condition; or

●

It will not meet, or is in danger of not meeting, its minimum regulatory capitaladequacy ratios.

Community Bank Leverage Ratio Framework

Section 201 of the 2018 Growth Act provides that banks and bank holdingcompanies with consolidated assets of less than

$10 billion that meet a “community bank leverage ratio,” established bythe federal bank regulators as part of the

community bank leverage ratio framework (“CBLR”).The federal banking agencies have the discretion to determinethat

an institution does not qualify for such treatment due to its risk profile. An institution’srisk profile may be assessed by

its off-balance sheet exposure, trading of assets and liabilities, notionalderivatives’ exposure, and other methods.

The CBLR framework which became effectiveJanuary 1, 2020, allows qualifying CBOs to adopt a simple leverage ratio to

measure capital adequacy.The CBLR may be elected by depository institutions and their holding companiesand is

intended to reduce regulatory burdens for qualifying communitybanking organizations that do not use advanced

approaches capital measures, and otherwise qualify.Eligible institutions must have:

●

less than $10 billion of assets;

●

a leverage ratio greater than 9%;

●

off-balance sheet exposures of 25% or less of total consolidated assets; and

●

trading assets plus trading liabilities of less than 5% of total consolidatedassets.

The CBLR leverage ratio is Tier 1 capital dividedby average total consolidated asset for the latest quarter,taking into

account the capital simplification discussed above and the CECL related capitaltransitions.

A CBLR banking organization with a ratio above the requirementwill not be subject to other capital and leverage

requirements.If elected by a banking organization, The CBLR leverageratio will be the sole capital measure, and electing

institutions will not have to calculate or use any other capital measure for regulatorypurposes.The Company has not

adopted the CBLR, although it believes it is eligible to elect to use the CBLR framework.Management believes that

current risk-based capital measures are useful and reflect the risks of theCompany’s earning assets in a mannermost

comparable to other banking organizations and whichmay be useful to investors.It may consider the CBLR in the future.

FDICIA

FDICIA directs that each federal bank regulatory agency prescribe standardsfor depository institutions and depository

institution holding companies relating to internal controls, informationsystems, internal audit systems, loan documentation,

credit underwriting, interest rate exposure, asset growth composition,a maximum ratio of classified assets to capital,

minimum earnings sufficient to absorb losses, a minimumratio of market value to book value for publicly traded shares,

safety and soundness, and such other standards as the federal bankregulatory agencies deem appropriate.

26

Enforcement Policies and Actions

The Federal Reserve and the Alabama Superintendent examine andregulate our compliance with laws and regulations,

including the CFPB’s regulations.The CFPB issues regulations, interpretations and enforcement actionsunder the laws

applicable to consumer financial products and services.Violations of laws and regulations, includingthose administered by

the CFPB, or other unsafe and unsound practices, may result in the FederalReserve and the Alabama Superintendent

imposing fines, penalties and/or restitution, cease and desist orders,or taking other formal or informal enforcement actions.

Under certain circumstances, these agencies may enforcethese remedies directly against officers, directors, employees and

others participating in the affairs of a bank or bank holdingcompany, in the form of fines, penalties,or the recovery, or

claw-back, of compensation.

Fiscal and Monetary Policies

Banking is a business that depends on interest rate differentials.In general, the difference between the interest paid bya

bank on its deposits and its other borrowings, and the interest received bya bank on its loans and securities holdings,

constitutes the major portion of a bank’searnings.Thus, the earnings and growth of the Company and the Bank, as well as

the values of, and earnings on, its assets and the costs of its deposits and otherliabilities are subject to the influence of

economic conditions generally,both domestic and foreign, and also to the monetary and fiscal policies of theUnited States

and its agencies, particularly the Federal Reserve.The Federal Reserve regulates the supply of money through various

means, including open market dealings in United States governmentsecurities, the setting of discount rate at which banks

may borrow from the Federal Reserve, and the reserve requirementson deposits.

The Federal Reserve has been paying interest on depository institutions requiredand excess reserve balances since October

2008.The payment of interest on excess reserve balances was expected to give theFederal Reserve greater scope to use its

lending programs to address conditions in credit markets while also maintainingthe federal funds rate close to the target

rate established by the Federal Open Market Committee.The Federal Reserve has indicated that it may use this authority to

implement a mandatory policy to reduce excess liquidity,in the event of inflation or the threat of inflation.

In April 2010, the Federal Reserve Board amended Regulation D (ReserveRequirements of Depository Institutions)

authorizing the Reserve Banks to offer term deposits tocertain institutions.Term deposits, whichare deposits with

specified maturity dates, will be offered through a TermDeposit Facility.Term deposits will be oneof several tools that

the Federal Reserve could employ to drain reserves when policymakersjudge that it is appropriate to begin moving to a less

accommodative stance of monetary policy.

In 2011, the Federal Reserve repealed its historicalRegulation Q to permit banks to pay interest on demand deposits.

In light of disruptions in economic conditions caused by the outbreak of COVID-19and the stress in U.S. financial markets,

the Federal Reserve, Congress and the Department of the Treasurytook a host of fiscal and monetary measures. In March

2020, the Federal Reserve reduced the federal funds rate targettwice to 0-0.25%. The Federal Reserve established various

liquidity facilities pursuant to section 13(3) of the Federal Reserve Act tohelp stabilize the financial system and purchased

large amounts of government and government agencymortgaged backed securities.

During 2021 and at the beginning of 2022, the Federal Reserve describedinflation as “transitory,” butas inflation

continued at increasing rates the Federal Reserve’spolicy changed.The Federal Reserve announced a 25 basis point

increase in the target federal funds range on March 17,2022, the first change since March 2020 when the target was set to

0-0.25%.Further increases were announced in 2022: 50 basis points on May 4, 75 basis points oneach of June 15, July 27,

September21, and November 2, and 50 basis points on December 14, 2022.During 2023, the Federal Reserve announced

additional target rate increases of 25 basis points oneach of February 1, 2023, March 2022, May 3 and July 26, 2023.The

federal funds target rate range was 5.25-5.50% from May 4, 2023until September 19, 2024, when it was reduced to 4.75%

-5.00%.Two other reductions in Novemberand December resulted in a target range of 4.25%-4.50%.

27

The Federal Reserve’s securitiesholdings in its System Open Market Account (“SOMA”) increasedfrom $3.9 trillion in

early March 2020 to $9.0 trillion at April 11,2021, largely as a result of securities purchases as the Federal Reserve

injected liquidity as a result of the COVID-19 pandemic.

On May 4, 2022, the Federal Reserve announced its plan to reduceits securities holdings in an effort to reduce inflation:

●

Reinvestments of principal of maturing Treasurysecurities would be reduced by $30 billion per month for three

months and thereafter would be $60 billion per month.

●

Reinvestments of principal of maturing agency debt and agency mortgage-backed securities would be reduced by

$17.5 billion per month for three months and thereafter would be $35 billionper month.

●

These declines would slow and then stop when the Federal Reserve’sbalance sheet was somewhat above the

balance it deemed ample.

On May 4, 2024, the Federal Reserve’sFederal Open Market Committee (“FOMC”) announced that beginningin June

2024, it would slow the pace of decline of its securities holdings byreducing the monthly redemption cap on Treasury

securities from $60 billion to $25 billion.The Committee maintained the monthly redemption cap on agency debtand

agency mortgage-backed securities at $35 billion and will reinvest anyremaining principal amounts of maturing securities

in Treasury securities.The Federal Reserve’s SOMA was $6.4trillion on February 5, 2025 compared to $7.0 trillion on

February 28, 2024.

The Federal Reserve seeks to maintain maximum employment andtargets longer term inflation of 2% based on annual

changes in the personal consumption expenditures.The FOMC stated on January 29, 2024 that the FOMC judges that the

risks to achieving its employment and inflation goals are roughly in balance.The economic outlook is uncertain, and the

Committee is attentive to the risks to both sides of its dual mandate. Inflationremained above that rate through February

2024.The Federal Reserve Chairman has indicated that the FOMC is not in a hurryto reduce its target federal funds rate

further at this time.

On March 12, 2023, as a result of unrealized securities losses resulting from increasedmarket rates, liquidity issues at two

banks with over $100 billion of assets which failed, the Federal Reserve established a newBank Term FundingProgram

(“BTFP”).The BTFP offered loans of up to one year to banks, savings associations,credit unions, and other eligible

depository institutions pledging U.S. Treasuries,agency debt and mortgage-backed securities, and other qualifyingassets as

collateral. These assets were valued at par and the margin was 100% of par.The BTFP expires March 11, 2024, except for

loans outstanding prior to its expiration.The Company did not participate in the BTFP in 2023.

The Federal Reserve on March 12, 2023 stated that depository institutions also mayobtain liquidity against a wide range of

collateral through the Federal Reserve’sdiscount window,which was available with the same collateral margins as the

BTFP,but which offers loans of up to 90 days.Collateral is valued under the discount window is based on fair market

values, collateral margins subsequently have been reducedto less than 100% of collateral fair market value, with the

amount of discount depending on the type of collateral.

FDIC Insurance Assessments

The Bank’s deposits are insuredby the FDIC’s DIF,and the Bank is subject to FDIC assessments for its deposit insurance.

Since 2011, and as discussed above under “RecentRegulatory Developments”, the FDIC has been calculating assessments

based on an institution’s averageconsolidated total assets less its average tangible equity (the “FDIC Assessment Base”)in

accordance with changes mandated by the Dodd-Frank Act.The FDIC changed its assessment rates which shifted part of

the burden of deposit insurance premiums toward depository institutions relyingon funding sources other than deposits.

In 2016, the FDIC again changed its deposit insurance pricing and eliminatedall risk categories and now uses “financial

ratios method” based on CAMELS composite ratings to determine assessmentrates for small established institutions with

less than $10 billion in assets (“Small Banks”).The financial ratios method sets (i) a maximum assessment for CAMELS 1

and 2 rated banks, and (ii) minimum assessments for lower rated institutions.All basis points are annual amounts.

 

 

 

 

 

 

 

 

 

 

 

 

 

28

The following table shows the FDIC assessment schedule for Small Banks, suchas the Bank, for the first assessment period

of 2023 to be billed in June 2023, which is the latest available:

Established Small Institution

CAMELS Composite

1 or 2

3

4 or 5

Initial Base Assessment Rule

5 to 18 basis points

8 to 32 basis points

18 to 32 basis points

Unsecured Debt Adjustment.

Cannot exceed the lesser of 5

basis points or 50% of the

bank’s initial FDIC

assessment rate

-5 to 0 basis points

-5 to 0 basis points

-5 to 0 basis points

Brokered Deposit

Adjustment

N/A

N/A

N/A

Total Base AssessmentRate

2.5 to 18 basis points

4 to 32 basis points

13 to 32 basis points

As shown above. these assessments are adjusted based on the bank’sCAMELS rating.For example, Small Banks, with

CAMELS ratings of 1 or 2, have a current total assessment rate of 2.5 to 18 basis pointsfor the period to be billed in June

2023.

The FDIC issued a special assessment of 3.36 basis points for a projected eight quarters on largebanks with more than $5

billion of uninsured deposits as a result of the systemic risk determinationto insure all depositors in connection with the

March 2023 failures of Silicon ValleyBank and Signature Bank.These special assessments do not apply to the Bank.

The minimum FDIC’s DIF reserveratio is 1.35%, which was set by the Dodd-Frank Act.The FDIC Board of directors is

required by the Federal Deposit Insurance Act (the “FDI Act”) to designatea reserve ratio before the beginning of each

calendar year.There is no upper limit on the reserve ratio and thus, no statutory limit on the size of the fund. TheFDI Act

provides for dividends from the fund when the reserve ratio exceeds 1.5 percent, butgrants the Board sole discretion in

determining whether to suspend or limit the declaration or payment of dividends.The reserve ratio reached 1.36% on

September 30, 2018, exceeding the minimum requirement.As a result, deposit insurance surcharges on LargeBanks

ceased, and smaller banks received credits against their deposit assessments fromthe FDIC for their portion of assessments

that contributed to the growth in the reserve ratio from 1.15% to 1.35%.The Bank’s credit was $0.2 million, and was

received and applied against the Bank’sdeposit insurance assessments during 2019 and 2020.

Because of the extraordinary growth in deposits in the first six months of 2020due to the pandemic and government

stimulus, the DIF’s reserve ratio declinedbelow 1.35% to 1.30%. The FDIC issued a restoration plan on September15,

2020 designed to restore the reserve ratio to at least the statutory minimumof 1.35% within 8 years. Although the FDIC, at

that time, maintained its then current assessment rates, the FDIC may increasedeposit assessment rates by up to two basis

points without notice, or more following notice and a comment period,to meet the required reserve ratio.The designated

reserve ratio has been 2% since 2010, and was set at this same level for 2025.

The Company recorded FDIC insurance premiums expenses of $0.5 millionfor both 2024 and 2023, respectively,which

reflects the FDIC’s amendedrestoration plan increases in the initial base deposit insurance assessment rate schedules

uniformly by 2 basis points, beginning with the first quarterly assessment period of 2023.

29

CRE and Leveraged Loans

CRE

The federal bank regulatory agencies released guidance in 2006on “Concentrations in Commercial Real Estate Lending”

(the “CRE Guidance”).The CRE Guidance defines CRE loans as exposures secured by raw land,land development and

construction (including 1-4 family residential construction), multi-familyproperty, and non-farm nonresidentialproperty

where the primary or a significant source of repayment is derived fromrental income associated with the property (that is,

loans for which 50% or more of the source of repayment comes fromthird party, non-affiliated,rental income) or the

proceeds of the sale, refinancing, or permanent financing of this property.Loans to REITs and unsecuredloans to

developers that closely correlate to the inherent risks in CRE markets wouldalso be considered CRE loans under the CRE

Guidance.Loans on owner occupied CRE are generally excluded.In December 2015, the Federal Reserve and other bank

regulators issued an interagency statement to highlight prudent riskmanagement practices from existing guidance that

regulated financial institutions and made recommendations regardingmaintaining capital levels commensurate with the

level and nature of their CRE concentration risk.

The CRE Guidance requires that banks have appropriate processes be inplace to identify, monitorand control risks

associated with real estate lending concentrations.This could include enhanced strategic planning, CRE underwriting

policies, risk management, internal controls, portfolio stress testing andrisk exposure limits as well as appropriately

designed compensation and incentive programs.Higher allowances for loan losses and capital levels may also be required.

The CRE Guidance is triggered when either:

●

Total reported loansfor construction, land development, and other land of 100% or more of a bank’stotal capital;

or

●

Total reported loanssecured by multifamily and nonfarm nonresidential properties and loans forconstruction, land

development, and other land are 300% or more of a bank’stotal risk-based capital.

This CRE Guidance was supplemented by the Interagency Statement onPrudent Risk Management for Commercial Real

Estate Lending (December 18, 2015).The CRE Guidance also applies when a bank has a sharp increase in CRE loans or

has significant concentrations of CRE secured by a particular propertytype. See “Management’s Discussion and Analysis

of Financial Condition and Results of Operations - Balance Sheet Analysis” forconcentrations of the various types of CRE

loans.

At December 31, 2024, the Bank had outstanding $82.8 million in constructionand land development loans and $324.0

million in total CRE loans (excluding owner occupied properties), which representapproximately 73% and 286%,

respectively, ofthe Bank’s total risk-based capital at December31, 2024.The Company has always had significant

exposures to loans secured by commercial real estate due to the nature of its marketsand the loan needs of both its retail

and commercial customers.The Company believes its long-term experience in CRE lending, underwriting policies,

internal controls, and other policies currently in place, as well as its loan and creditmonitoring and administration

procedures, are generally appropriate to manage its concentrations as requiredunder the Guidance.

The Federal Reserve joined the other depository institution regulators in issuinga Policy Statement on Prudent Commercial

Real Estate Loan Accommodations and Workouts(June 30, 2023).This Policy Statement builds on and updates existing

guidance to enable financial institutions to work prudently and constructivelywith creditworthy borrowers during times of

financial stress.The Policy Statement provides a broad set of risk management principles relevantto CRE short term loan

accommodations and longer-term workouts in allbusiness cycles, particularly in challenging economic environments.It

states that the regulatory agencies expect their examiners to take a balanced approachin assessing the adequacy of a

financial institution's risk management practices for loan accommodationand workout activities.Financial institutions that

implement prudent CRE loan accommodation and workout arrangementsafter performing a comprehensive review of a

borrower's financial condition will not be subject to criticism for engaging inthese efforts, even if these arrangements result

in modified loans that have weaknesses that result in adverse classification. In addition,modified loans to borrowers who

have the ability to repay their debts according to reasonable terms will not besubject to adverse classification solely

because the value of the underlying collateral has declined to an amount thatis less than the outstanding loan balance.The

Policy Statement also describes the classifications of CRE loan accommodationsand workouts and addresses regulatory

accounting and reporting in such situations, including CECL.

30

Leveraged Loans

In 2013, the Federal Reserve and other banking regulators issued their “InteragencyGuidance on Leveraged Lending”

highlighting standards for originating leveraged transactions and managingleveraged portfolios, as well as requiring banks

to identify their highly leveraged transactions, or HLTs.The Government Accountability Office issued a statement on

October 23, 2017 that this guidance constituted a “rule” for purposes of the CongressionalReview Act, which provides

Congress with the right to review the guidance and issue a joint resolutionfor signature by the President disapproving it.

No such action was taken, and instead, the federal bank regulators issued a September11, 2018 “Statement Reaffirming the

Role of Supervisory Guidance.”This Statement indicated that guidance does not have the force or effectof law or provide

the basis for enforcement actions, but this guidance can outline supervisoryagencies’ views of supervisory expectations and

priorities, and appropriate practices.The federal bank regulators continue to identify elevated risks in leveragedloans and

shared national credits.

The Bank did not have any leveraged loans at year-end2024 or 2023 subject to the Interagency Guidance on Leveraged

Lending or that were shared national credits.

Other Dodd-Frank Act Provisions

The Dodd-Frank Act provides shareholders of all public companies witha say on executive compensation.Under the

Dodd-Frank Act, each company must give its shareholders the opportunity tovote on the compensation of its executives, on

a non-binding advisory basis, at least once every three years.The Dodd-Frank Act also adds disclosure and voting

requirements for golden parachute compensation that is payable to namedexecutive officers in connection with sale

transactions.

The SEC is required under the Dodd-Frank Act to issue rules obligating companies todisclose in proxy materials for annual

shareholders meetings, information that shows the relationship betweenexecutive compensation actually paid to their

named executive officers and their financial performance,taking into account any change in the value of the shares of a

company’s stock and dividends ordistributions.The Dodd-Frank Act also provides that a company’scompensation

committee may only select a consultant, legal counsel or other advisor on methodsof compensation after taking into

consideration factors to be identified by the SEC that affect the independenceof a compensation consultant, legal counsel

or other advisor.

Section 954 of the Dodd-Frank Act added section 10D to the Exchange Act.Section 10D directs the SEC to adopt rules

prohibiting a national securities exchange or association from listing a companyunless it develops, implements, and

discloses a policy regarding the recovery or “claw-back” of executivecompensation in certain circumstances.In the event

of an accounting restatement due to material noncompliance with a financialreporting requirement under the federal

securities laws, the policy must require that the company recover fromany current or former executive officer,any

incentive-based compensation (including stock options) receivedduring the three-year period preceding the date of the

restatement, which is in excess of what would have been paid based on the restatedfinancial statements.There is no

requirement of wrongdoing by the executive, and the claw-back is mandatoryand applies to all executive officers.Section

954 augments section 304 of the Sarbanes-Oxley Act, which requires theCEO and CFO to return any bonus or other

incentive-or equity-based compensation received during the 12 months following the dateof similarly inaccurate financial

statements, as well as any profit received from the sale of employer securities duringthe period, if the restatement was due

to misconduct.Unlike section 304, under which only the SEC may seek recoupment,the Dodd-Frank Act requires the

Company to seek the return of compensation.

The SEC adopted, effective January 27, 2023, Commission Rule 10D-1 under the Exchange Act, which requires each

national securities exchange to adopt listing standards for the recovery of erroneouslyawarded executive compensation.

The Commission approved Nasdaq Listing Rule 5608 (“Rule 5608”) on June9, 2023.Under Rule 10D-1, listed companies

must recover from current and former executive officers’incentive-based compensation received during the three

completed fiscal years preceding the date on which the issuer is required to preparean accounting restatement.

31

Under these SEC and Nasdaq rules, the recovery of erroneously awardedcompensation is required on a “no fault” basis,

without regard to whether any misconduct occurred or an executive officer’sresponsibility for the erroneous financial

statements. A restatement due to material noncompliance with any financialreporting requirement under the securities laws

triggers application of the recovery policy.The determination regarding materiality of an error should be based on facts and

circumstances and existing judicial and administrative interpretations.The proposed Nasdaq Rule requires recovery for

restatements that correct errors that are material to previously issued financial statements(commonly referred to as “Big R”

restatements), as well as for restatements that correct errors that are not materialto previously issued financial statements

but would result in a material misstatement if the errors were left uncorrectedin the current report or the error correction

was recognized in the current period (commonly referred to as “little r” restatement).

Nasdaq-listed companies, such as the Company,are required to recover the amount of incentive-based compensation

received by an executive officer that exceeds the amount the executiveofficer would have received had the incentive-based

compensation been determined based on the accounting restatement,computed without regard to any taxes paid.Nasdaq

defines “incentive-based compensation” as any compensation that is granted,earned or vested based wholly or in part upon

the attainment of any “financial reporting measure.”Incentive-based compensation is deemed received on or after October

2, 2023 and in the fiscal period during which the financial reporting measurespecified in the incentive-based compensation

award is attained, even if the grant or payment of the incentive-basedcompensation occurs after the end of that period.

The Company adopted an Erroneously AwardedExecutive Incentive Based Compensation Policy effectiveDecember 1,

2023 to comply with these rules.

The SEC adopted a rule in August 2013 to implement pay ratios pursuant to Section 953of the Dodd-Frank Act comparing

their CEO’s total compensation tothe median compensation of all other employees.These rules applied beginning to fiscal

year 2017 annual reports and proxy statements.Smaller reporting companies, such as the Company,are exempted from

this rule.

The Dodd-Frank Act, Section 955, requires the SEC, by rule, to requirethat each company disclose in the proxy materials

for its annual meetings whether an employee or board member is permittedto purchase financial instruments designed to

hedge or offset decreases in the market value of equitysecurities granted as compensation or otherwise held by the

employee or board member.The SEC adopted changes to its Reg. S-K Item 407(i) implementing this Section.

The Company adopted its 2024 Incentive Plan in May 2024, but had not grantedany awards under that Plan as of February

12, 2025.The Company’s insider trading policy,which applies to all Company and Bank directors, officers, employees

and certain independent contractors and specified related persons (collectively,“Covered Persons”).This Policy prohibits

Covered Persons, from short-selling Company securities or engaging intransactions involving Company “Derivative

Securities.”This prohibition includes, without limitation, trading in Company-basedput option contracts, including

straddles, and the like.Derivative Securities include options, warrants, restricted stock units, stock appreciationrights or

similar rights whose value is derived from the value of an equity or othersecurity, including Company Securities.The

Company’s Insider TradingPolicy is included as an exhibit to its annual report on SEC Form 10-K.

Section 956 of the Dodd-Frank Act prohibits incentive-based compensationarrangements that encourage inappropriate risk

taking by covered financial institutions, are deemed to be excessive, or thatmay lead to material losses.In June 2010, the

federal bank regulators adopted Guidance on Sound Incentive CompensationPolicies, which, although targeted to larger,

more complex organizations than the Company,includes principles that have been applied to smaller organizations similar

to the Company.This Guidance applies to incentive compensation to executives as well as employees, who,“individually

or a part of a group, have the ability to expose the relevant banking organizationto material amounts of risk.”Incentive

compensation should:

●

Provide employees incentives that appropriately balance risk and reward;

●

Be compatible with effective controls and risk-management;and

●

Be supported by strong corporate governance, including active andeffective oversight by the organization’sboard

of directors.

The federal bank regulators stated that this Guidance is expected to generallyhave less effect on smaller banking

organizations, which typically are less complex and makeless use of incentive compensation arrangements than larger

banking organizations.

 

32

The federal bank regulators, the SEC and other regulators proposed regulationsimplementing Section 956 in April 2011,

which would have been applicable to, among others, depositoryinstitutions and their holding companies with $1 billion or

more in assets.An advance notice of a revised proposed joint rulemaking under Section 956was published by the financial

services regulators in May 2016, but these rules have not been adopted.

Following the failures of Silicon ValleyBank and Signature Bank in early March 2023, Senator Elizabeth Warrenand co-

sponsors, filed S.1045 “Failed Bank Executives Clawback Act.”This bill provides that when a bank is placed into FDIC

receivership, all or part of the compensation paid the previous fiveyears to an institution-affiliated party responsible for the

condition of the institution must be paid to FDIC to prevent unjust enrichmentand to assure that the party bears losses

consistent with their responsibility.Compensation includes salary,bonuses, awards, and profits from buying or selling

securities.The bill also expands the FDIC’s authorityto claw back compensation of parties responsible for financial losses

incurred by a financial company regardless of the process by which FDIC is appointedreceiver.

Debit Card Interchange Fees

The “Durbin Amendment” to the Dodd-Frank Act and implementingFederal Reserve regulations provide that interchanged

transaction fees for electronic debit transactions be “reasonable” and proportionalto certain costs associated with

processing the transactions.The Durbin Amendment and the Federal Reserve rules thereunder are not applicableto banks

with assets less than $10 billion. Such smaller banks, however,compete with banks that are subject to the Durbin

Amendment, and therefore may have to limit their interchange fees, also.

Other Legislative and Regulatory Changes

Variouslegislative and regulatory proposals, including substantial changes inbanking, and the regulation of banks, thrifts

and other financial institutions, compensation, and the regulation of financialmarkets and their participants, and financial

instruments and securities, and the regulators of all of these, as well as the taxation ofthese entities, are being considered by

the executive branch of the federal government, Congress and various state governments,including Alabama.

The 2018 Growth Act, which was enacted on May 24, 2018, amendedthe Dodd-Frank Act, the BHC Act, the Federal

Deposit Insurance Act and other federal banking and securities laws to provideregulatory relief in these areas:

●

consumer credit and mortgage lending;

●

capital requirements;

●

VolckerRule compliance;

●

stress testing and enhanced prudential standards;

●

increased the asset threshold under the Federal Reserve’sSmall BHC Policy from $1 billion to $3 billion; and

●

capital formation.

The following provisions of the 2018 Growth Act are helpful to banks ofour size, and we have benefitted from the Growth

Act’s changes to the deposit rules:

●

“qualifying community banks,” defined as institutions with total consolidatedassets of less than $10 billion, which

meet a “community bank leverage ratio, which is currently 9.0%, maybe deemed to have satisfied applicable risk-

based capital requirements as well as the capital ratio requirements;

●

section 13(h) of the BHC Act, or the “VolckerRule,” is amended to exempt from the VolckerRule, banks with

total consolidated assets valued at less than $10 billion (“community bankingorganizations”), and trading assets

and liabilities comprising not more than 5.00% of total assets; and

●

“reciprocal deposits” will not be considered “brokered deposits” for FDIC purposes,provided such deposits do not

exceed the lesser of $5 billion or 20% of the bank’stotal liabilities.

On July 9, 2019, the federal banking agencies, together with the SEC and theCommodities Futures Trading Commission

(“CFTC”), issued a final rule excluding qualifying community bankingorganizations from the VolckerRule pursuant to the

2018 Growth Act. The VolckerRule change may enable us to invest in certain collateralized loan obligationsthat are

treated as “covered funds” and other investments prohibited to banking entities bythe VolckerRule.

The FDIC announced on December 19, 2018, a final rule allows reciprocaldeposits to be excluded from “brokered

deposits” up to the lesser of $5 billion or 20% of their total liabilities.Institutions that are not both well capitalized and

well rated are permitted to exclude reciprocal deposits from brokereddeposits in certain circumstances.

 

33

The FDIC issued comprehensive changes to its brokered deposit rules effectiveApril 1, 2021. The revised rules establish

new standards for determining whether an entity meets the statutory definitionof “deposit broker,” and identifies a number

of businesses that automatically meet the “primary purpose exception”from a “deposit broker.”The revisions also provide

an application process for entities that seek a “primary purpose exception,”but do not meet one of the designated

exceptions.”The new rules provide us greater flexibility,but we have limited our brokered deposits.

Reciprocal deposits have expanded our funding and liquidity sources without beingsubjected to FDIC limitations on

depositor FDIC insurance coverage and potential federal deposit insuranceassessment increases for brokered deposits.

The applicable agencies also issued final rules simplifying the VolckerRule’s proprietary trading restrictionseffective

January 1, 2020. On June 25, 2020, the agencies adopted a final rule simplifyingthe VolckerRule’s covered fund

provisions effective October 1, 2020.

Certain of these new rules, and proposals, if adopted, could significantly changethe regulation or operations of banks and

the financial services industry.New regulations and statutes are regularly proposed that contain wide-rangingproposals for

altering the structures, regulations and competitive relationships ofthe nation’s financial institutions.

Recent Developments – New Administration

Donald J. Trump became President on January20, 2025.The President has issued numerous Executive Orders, and he and

his designees have taken a number of actions that affect financial institutions,and their regulation and regulators, including:

•

Issued an Executive Order “Regulatory Freeze Pending Review” (January20, 2025);

•

Issued Executive Order 14192 “Unleashing Prosperity Through Deregulation”(January 31, 2025);

•

Issued a Presidential Memorandum dated January 20, 2025 freezingthe hiring of Federal civilian employees in all

executive departments and agencies

•

Issued Executive Order Implementing the President’s“Department of Government Efficiency” (“DOGE”)

(January 20, 2025);

•

Issued Executive Order 14158 “Establishing and Implementing the President’s‘Department of Government

Efficiency’ WorkforceOptimization Initiative” (February 11, 2025);

•

Removed the CFPB Director and appointing acting directors, most recentlythe Director (the “OMB Director”) of

the Office of Management and Budget (the “OMB”), who will alsoserve as Acting CFPB Director;

•

Replaced the Acting Comptroller of the Currency with a new Acting Comptrollerof the Currency, and nominated

a successor Comptroller of the Currency and a CFPB Director,each subject to Senate confirmation;

•

Issued Executive Order 14178 “Strengthening American Leadershipin Digital Financial Technology”(January 23,

2025);

•

Ordered and withdrew (subject to restoration) various tariffson China, Canada and Mexico, a 25% tariff on all

imported steel and aluminum, and is expected to order “reciprocal” tariffs,which would raise rates on imported

goods to equal foreign levies on U.S. goods and has threatened other tariffs;

•

Issued an Executive Order “Reforming the Federal Workforceto Better Serve Americans”(February 11,2025);

•

Issued an Executive Order “Restoring Democracy and Accountability inGovernment” (February 11, 2025); and

•

Issued an Executive Order “Ensuring Lawful Governance and Implementingthe President’s ‘Department of

Government Efficiency’ Deregulatory Initiative” (February19, 2025).

The regulatory freeze order directs all executive department agenciesto not propose or issue any rule until

a department or

agency head appointed or designated by President Trumpreviews and approves the rule.Any rule or proposed rule sent to

the Office of Federal Register shall be withdrawn until the abovereview is made.Any substantive action by an agency

(normally published in the Federal Register) that promulgates or is expectedto lead to the promulgation of a final rule or

regulation, including notices of inquiry,advance notices of proposed rulemaking, and notices of proposed rulemaking.This

shall also apply to any agency statement of general applicability and futureeffect that sets forth a policy on a statutory,

regulatory, or technicalissue or an interpretation of a statutory or regulatory issue.This order applies to any substantive

action by an agency (normally published in the Federal Register) that promulgatesor is expected to lead to the

promulgation of a final rule or regulation, including notices of inquiry,advance notices of proposed rulemaking, and

notices of proposed rulemaking.This shall also apply to any agency statement of general applicability and future effectthat

sets forth a policyon a statutory, regulatory,or technical issue or an interpretation of a statutory or regulatory issue.

34

Executive Order 14192 seeks to “significantly reduce the private expendituresrequired to comply with Federal

regulations.”For the current fiscal year 2025, for each new regulation, at least 10 existing regulationsshall be identified for

repeal.Agencies are directed to ensure that the total incremental cost of all new regulations,including repealed regulations,

being finalized this year, shall be significantlyless than zero, as determined by the OMB Director.The OMB Director shall

provide agencies with guidance on implementation, including measuringregulatory costs.No regulation shall be added to

or removed from the Unified Regulatory Agenda without the approvalof the OMB Director.Regulations and rules are

broadly defined as:

…an agency statement of general or particular applicability and future effectdesigned to implement, interpret, or

prescribe law or policy or to describe the procedure or practice requirements ofan agency, including, without

limitation, regulations, rules, memoranda, administrative orders, guidancedocuments, policy statements, and

interagency agreements, regardless of whether the same were enactedthrough the processes in the Administrative

Procedure Act

The hiring freeze provides that no Federal civilian position that is vacant at noonon January 20, 2025, may be filled, and no

new position may be created, subject to certain exceptions.The hiring freeze apparently has resulted in the rescission of

offers to 200 new FDIC examiners.In addition to the hiring freeze, the Office of Personnel Managementstarted the

VoluntarySeparation Incentive Payment Authority (the “buyout authority”), which allows agenciesthat are downsizing or

restructuring to offer employees lump-sum payments upto $25,000 as an incentive to voluntarily separate.It has been

reported that over 2 million federal workers may be eligible to accept such retirementbuyouts.The program is subject to

litigation, and deadlines for acceptance by employees were temporarilystayed by a federal court.

DOGE or the “USDS” is in the Executive Office of the President andis headed by an Administrator.Its purpose is to

“implement the President’sDOGE Agenda, by modernizing Federal technology and software to maximize governmental

efficiency and productivity.”The Executive Order includes a U.S. DOGE Service TemporaryOrganization, which shall be

dedicated to advancing the President’s18-month DOGE agenda.The U.S. DOGE Service TemporaryOrganization shall

terminate on July 4, 2026.The Executive Order also directs each agency head, in consultation with the USDS

administrator, to establish a “DOGE team” ofat least four employees within each agency.These teams will “typically

include” a team lead, an engineer, a humanresources specialist, and an attorney.According to the Executive Order, agency

team members may include current agency personnel or new hires designatedas “special government employees.”Each

agency’s team is directed to coordinatewith USDS and advise its agency head on implementing the DOGE agenda, with an

apparent focus on information technology and human resource management.Among other things, the USDS Administrator

shall work with Agency Heads to promote inter-operabilitybetween agency networks and systems, ensure data integrity,

and facilitate responsible data collection and synchronization.Agency Heads are directed to take all necessary steps, in

coordination with the USDS Administrator,and to the maximum extent consistent with law,provide USDS full and prompt

access to all unclassified agency records, software systems, and informationtechnology systems.USDS must adhere to

rigorous data protection standards.

The Executive Order “Establishing and Implementing the President’s‘Department of Government Efficiency’ Workforce

Optimization Initiative” requires the OMB Director to submit a plan toreduce the size of the Federal government's

workforce through efficiency improvements and attrition (Plan).The Plan shall require that each agency,subject to certain

exceptions, hire no more than one employee for every four employeesthat depart.Each Agency Head is required, in

consultation with its DOGE TeamLead, among other things, to (i) hire in the highest need areas, (ii) fill vacancies unless

the DOGE Team Leaddetermines such positions need to be filled.Agency Heads shall promptly prepare to initiate large-

scale reductions in force (RIFs) to separate from Federal service temporary employeesand reemployed annuitants working

in areas that will likely be subject to the RIFs. All offices that performfunctions not mandated by statute or other law shall

be prioritized in the RIFs, including all agency diversity,equity, and inclusion () initiatives.Within 30 days, each Agency

Head shall submit a report to the OMB Director that that identifies any statutes that establishthe agency, or subcomponents

of the agency, as statutorilyrequired entities. The report shall discuss whether the agency or any of its subcomponents

should be eliminated or consolidated.

The new Acting Comptroller of the Currency and Acting CFPB Director will serveon the five person FDIC Board of

Directors.The FDIC is currently headed by an Acting Chairman. No person has been nominatedto serve as the FDIC

Chair.FDIC director Jonathan McKernan resigned on February 11,2025, and was nominated to be CFPB Director.

Jonathan Gould was nominated to be Comptroller of the Currency on thesame day.These nominations are subject to

Senate confirmation.

 

 

35

The current Acting CFPB Director, on February8, 2025, ordered all CFPB employees to suspend substantially all

activities, including all supervision, examination and stakeholderengagement activities, and closed the agency's

headquarters for the week of February 10, 2025.The Acting CFPB Director also said the CFPB had excessive funding on

hand and would not take the next scheduled drawdown of funds from the FederalReserve.

Executive Order 14178 states the Administration’spolicy “to support the responsible growth and use of digital assets,

blockchain technology,and related technologies across all sectors of the economy.”“Digital assets” include “any digital

representation of value that is recorded on a distributed ledger,including cryptocurrencies, digital tokens, and stablecoins.”

This order revoked Executive Order 14067 “Ensuring Responsible Developmentof Digital Assets” (March 9, 2022) and

directed the Secretary of the Treasury is directedto immediately revoke the Department of the Treasury's “Frameworkfor

International Engagement on Digital Assets,” (July 7, 2022).

These new policies include the following that are applicable to banks:

•

protecting and promoting fair and open access to banking services for all law-abidingindividual citizens and

private-sector entities alike; and

•

providing regulatory clarity and certainty built on technology-neutralregulations, frameworks that account for

emerging technologies, transparent decision making,and well-defined jurisdictional regulatory boundaries, all of

which are essential to supporting a vibrant and inclusive digital economyand innovation in digital assets,

permissionless blockchains, and distributed ledger technologies

The Executive Order Reforming the Federal Workforceto Better Serve Americansrequires:

•

Agency Heads to coordinate and consult with DOGE to shrink the size of the federalworkforce and limit hiring to

essential positions;

•

The Office of Personnel Management to initiate a rulemakingto ensure federal employees are held to the highest

standards of conduct;

•

Upon expiration of the Day 1 hiring freeze and implementation ofthe hiring plan, agencies to hire no more than

one employee for every four employees that depart from federal service (withappropriate immigration, law

enforcement, and public safety exceptions);

•

Agencies to plan for large-scale reductions in force and determinewhich agency components (or agencies

themselves) may be eliminated or combined because their functions aren’trequired by law.

The Executive Order “Restoring Democracy and Accountability in Government”requires all agencies to submit draft

regulations for White House review with no carveout for so-called independentagencies, except for the monetary policy

functions of the Federal Reserve; and consult with the White House on their priorities andstrategic plans.The White

House will set their performance standards.The Office of Management and Budget will adjust so-calledindependent

agencies’ apportionments of funds.The President and the Attorney General (subject to the President’ssupervision and

control) will interpret the law for the executive branch, instead of havingseparate agencies adopt conflicting interpretations.

The Executive Order “Ensuring Lawful Governance and Implementingthe President’s ‘Department of Government

Efficiency’ Deregulatory Initiative” requires AgencyHeads, in coordination with their DOGE TeamLeads and the OMB

Director, to initiate a process to review,with priority on “significant regulatory actions,” as defined in Executive Order

12866 (Sept. 30, 1993) (“E.O. 19866”), all regulations subject to theirsole or joint jurisdiction for consistency with law and

Administration policy and within 60 days:

1.

Identify the following classes of regulations:

•

unconstitutional regulations and regulations that raise serious constitutionaldifficulties, such as exceeding the

scope of the power vested in the Federal Government by the Constitution;

•

regulations that are based on unlawful delegations of legislative power;

•

regulations that are based on anything other than the best reading of the underlyingstatutory authority or

prohibition;

•

regulations that implicate matters of social, political, or economic significancethat are not authorized by clear

statutory authority

•

regulations that impose significant costs upon private parties that arenot outweighed by public benefits;

36

•

regulations that harm the national interest by significantly and unjustifiablyimpeding technological

innovation, infrastructure development, disaster response, inflationreduction, research and development,

economic development, energy production, land use,and foreign policy objectives; and

•

regulations that impose undue burdens on small business and impedeprivate enterprise and entrepreneurship.

2.

Provide OMB a list of all regulations identified by the above classes and consult with the OMB todevelop a

Unified Regulatory Agenda that seeks to rescind or modify these regulations.

Agency Heads shall determine whether ongoing enforcement ofany regulations identified in their regulatory review is

compliant with law and Administration policy.Agency Heads shall de-prioritize (i) actions to enforce regulations that are

based on anything other than the best reading of a statute and (ii) enforcement of regulationsthat go beyond the powers

vested in the Federal Government by the Constitution.Agency heads, in consultation with the OMB Director,shall, on a

case-by-case basis, as appropriate, direct the termination of all such enforcementproceedings that do not comply with law

or Administration policy.Agency Heads shall consult with their DOGE TeamLeads and OMB on potential new

regulations in accordance with E.O. 19866’sprocesses.

Tariffsgenerally make goods more expensive, and therefore may have inflationaryeffects that would be expected to slow

consumer spending.Changes in tariffs may also cause changes in supply chains to reduce the effectsof the tariffs and such

changes may result in disruptions to the supply chains away from countriesand producers to alternatives with higher costs

but more advantageous tariff rates.As of February 12, 2025, the 25% tariffs on all imported steel and aluminummay have

the most immediate effects, especially on the automobile industryand its suppliers.This industry and its suppliers are large

employers in Lee County and nearby areas served by the Bank.

ITEM 1A. RISK FACTORS

Any of the following risks could harm our business, results of operations andfinancial condition and an investment in our

stock.The risks discussed below also include forward-looking statements, and ouractual results may differ substantially

from those discussed in these forward-looking statements.

Risk Factor Summary

The following summarizes the risks provided after this summary and is qualifiedby the more detailed discussion of “Risk

Factors” that follows this Summary,and which should be read in their entirety.Our risks include operational risks,

financial risks and legal and regulatory risks, which are related andintertwined as discussed more fully in the Risk Factors

that follow this summary.

Operational risks are inherent in our business, and include:

●

The effects of local, national and regional market and economic conditionsand cyclicality, including thelevels

and rates of change in inflation and interest rates, and the effects on depositors,borrowers and markets, including

the real estate and securities markets;

●

Our allowance for credit losses is based on estimates and judgments and may proveto be inadequate to our credit

risks;

●

The risks and costs of nonperforming assets

●

The soundness of other financial institutions and perceptions regarding ourindustry, especially when otherbanks

experience difficulties or fail;

●

Our concentrations in commercial real estate loans in our market;

●

We operate ina highly competitive market and compete against a number of larger national andregional

competitors, as well as smaller institutions, nonbanks and credit unions;

●

Our ability to attract and retain key people;

●

Inflation and strong labor markets may affect our non-interest expenses;

●

Technological changesaffect our business, and we may have fewer resources than ourlarger regulated and

unregulated competitors, both in and outside our market area, which may increasethe competition we face;

●

Potential gaps in our risk management, including managing the risks relatedto maintaining our data security and

cybersecurity and those of our third-party service providers;

37

●

Continuity risks to us and our service providers due to power,information technology and telecommunication

disruptions and outages, could affect our customer service,reputation and our results of operations, financial

condition, customer relationship and reputation;

●

Risks of severe weather, natural disasters, climate changes,epidemics and severe health issues in the population,

wars and acts of terrorism and other events; and

●

Future acquisitions may disrupt our business, dilute shareholder valueand adversely affect our operating results

and financial condition, among other risks.

Financial risks result in part from our operational risks and the risk of our business,and include:

●

Increases in costs of funds due to inflation, monetary and fiscal policies, changesin costumer behaviors and

competitive pressures;

●

Our results of operations and financial condition, including the values of ourassets and liquidity, may beaffected

by changes in interest rates and interest rate levels, the shape of the yield curve andeconomic conditions;

●

Liquidity risks, including the costs and availability of funding, and theliquidity of our assets, including our

investment securities portfolio, and institutional lending sources;

●

Changes in accounting and tax rules;

●

The adequacy of our capital and availability of capital, if needed;

●

Potentially excessive risk taking by our associates;

●

Our ability to pay dividends depends on our earnings, liquidity and regulatoryrequirements related to our capital

and our risks; and

●

Our common stock trades in limited volumes.

Legal and regulatory risks include:

●

The Company is a legal entity separate and distinct from the Bank, andtransactions between the Bank and the

Company are limited by law;

●

The Company is required to be a source of financial and managerial strengthto the Bank, even in circumstances

where further investment in the Bank may not be warranted;

●

Privatization of Fannie Mae and Freddie Mac incident to the ending of their conservatorshipsand the resulting

effects on the costs and availability of mortgage loans and the mortgagemarkets, generally, andthe Company as a

mortgage originator, and seller andservicer of residential mortgage loans;

●

The scope, volume, complexity and clarity of regulations and regulatoryand legal changes affect us, increase the

time and costs of compliance and may limit our business and adverselyaffect our financial condition and results of

operations;

●

The pace and volume of regulatory changes and interpretations, especially bythe bank regulators, the CFPB and

the SEC, and well as numerous Executive Orders, and changes in governmentleadership, personnel and policies.

Even where changes ultimately will benefit the Company,changes in regulation and policies require time and

attention, and involve costs to implement;

●

Litigation, investigations and other claims by government agenciesand private parties and regulatory actions,

including those related to assertions of compliance failures;

●

The amounts and changes in the capital we are required to maintain in respectof our business and risks, and

regulatory perceptions of us and our industry; and

●

Liquidity requirements and changes in rules that affect brokeredand reciprocal deposits and other sources and

measures of liquidity.

Additional Executive Orders and Administration and regulatorydecisions, directives and actions, including modifications

or changes to those discussed in this report, may occur at any time with currentlyunpredictable effects.

Operational Risks

Market conditions and economic cyclicality may adversely affect our industry.

We believe thefollowing, among other things, may affect us in 2025:

38

●

Extraordinary monetary and fiscal stimulus in 2020 and in early 2021 offsetcertain of the COVID-19 pandemic’s

adverse economic effects, but together with supply chain disruptions,continued consumer demand, Russia’s war

in Ukraine and its effects on energy and food prices,and tight labor markets, resulted in inflation.Inflation began

running at levels unseen in decades and well above the Federal Reserve’slong term inflation goal of 2.0%

annually.Beginning in March 2022, the Federal Reserve raised its target federalfunds interest rates and reduced

its securities holdings in an effort to reduce inflation.Inflation subsided in 2024.In February 2025 inflation

remains above the Federal Reserve’starget rate, the labor market remains strong and the Federal Reserve cut its

target federal funds rate in September through December 2024100 basis points from 5.25-5.50% to 4.25%-4.50%,

and reduced the rate of decline in reinvestments of maturing securities proceeds.

●

The new presidential Administration that took office in January2025 has established DOGE to increase

government efficiency and reduce fiscal expenditures, imposedand threatened tariffs, and proposed tax cuts and

tax cut extensions, the net effect of which is unknown.The nature and timing of any future changes in monetary

and fiscal policies, government policies and their administration and personnel,and their effects on us cannot be

predicted.

●

Market developments, including unemployment, inflationand price levels, stock and bond market volatility,and

changes, including those resulting from Russia’swar in Ukraine and governmental fiscal, operational and

monetary policies affect consumer confidencelevels, economic activity and interest rates.Increases in market

interest rates and inflation, and adverse changes in consumer and business confidencemay change customers’

savings and payment behaviors, including potential increases in loan delinquenciesand default rates.These could

affect our credit quality,and our results of operations and financial condition.

●

Our ability to assess the creditworthiness of our customers and those we do business with,and the values of our

assets and loan collateral may be adversely affected and less predictableas a result of inflation and fluctuating

market interest rates and changes in monetary and fiscal policies.We adoptedCECL on January 1, 2023 as

required by generally accepted accounting principles (“GAAP”).CECL changed the loss model to take into

account current expected credit losses in place of the incurred loss method used historicallyunder GAAP,and how

to estimate losses inherent in our credit exposures.The process for estimating expected losses requires difficult,

subjective, and complex judgments, including forecasts of economicconditions, unemployment levels in Alabama,

and how those economic predictions might affect the ability of ourborrowers to repay their loans or the value of

assets.Changes in economic conditions and factors used in our CECL models mayincrease the variability of our

provisions for loan losses and our earnings.

●

Changes in market interest rates and the shape of the yield curve affectthe value of our investment securities and

our other accumulated other comprehensive income or “AOCI.”

Our allowance for loan losses may prove inadequateor we may be negatively affected by credit risk exposures.

We periodicallyreview the allowance for loan losses for adequacy considering economic conditionsand trends, collateral

values and credit quality indicators, including past charge-offexperience and levels of past due loans and nonperforming

assets.We cannot becertain that our allowance for loan losses will be adequate over time to cover creditlosses in our

portfolio because of unanticipated adverse changes in the economy,including fiscal and monetary policy changes, inflation,

market conditions or events adversely affecting specific customers,industries or markets, including disruptions of supply

chains, the war in Ukraine, changes in taxes and regulations and changes in borrowerbehaviors.Certain borrowers and their

businesses and real estate and commercial projects and businesses may be adverselyaffected by inflation and higher interest

rates, and economic slowdowns arising from tighter monetary policies, andmay request or need loan modifications and

deferrals.Variousbusinesses will be unable to fully pass on increased costs due to inflation, supplychain disruptions and

changes and other factors, and their profits may shrink.If the credit quality of our customer base materially decreases, if the

risk profile of the market, industry or group of customers changes materiallyor weaknesses in the real estate markets

worsen, borrower payment behaviors change, or if our allowance for loanlosses is not adequate, our business, financial

condition, including our liquidity and capital, and results of operationscould be materially adversely affected.CECL, the

accounting standard for estimating expected future loan losses, became effectivefor the Company beginning January 1,

2023, and its effects upon the Company over a full business cycleare unknown.The CECL model incorporates various

economic condition factors, where changes in fiscal and monetary policy,as well as market interest rates and unemployment

rates in our markets, among other factors, could result in more volatility inour provisions for loan losses under CECL, which

could adversely affect our net income.See Note 1 to our Financial Statements –

“Allowance for Credit Losses – Loans.”

39

Nonperforming and similar assets take significant time to resolveand may adversely affect our results of operationsand

financial condition.

Our nonperforming loans were 0.09% of total loans as of December 31, 2024,and we had no other real estate owned as

result of foreclosures or otherwise in full or partial payments in respect of loans (“OREO”).Non-performing assets may

adversely affect our net income in various ways.We do not recordinterest income on nonaccrual loans or OREO and these

assets require higher loan administration and other costs, thereby adverselyaffecting our income.Decreases in the value of

these assets, or the underlying collateral, or in the related borrowers’ performanceor financial condition, whether or not due

to economic and market conditions beyond our control, could adverselyaffect our business, results of operations and

financial condition.In addition, the resolution of nonperforming assets requires commitments of time frommanagement,

which can be detrimental to the performance of their other responsibilities.Loan deferrals and modifications made to help

resolve borrower issues and avoid foreclosures may not be successful.There can be no assurance that we will not

experience increases in nonperforming loans in the future, much of whichis affected by the economy and the levels of

interest rates, generally.

Changes in the real estate markets, including thesecondary market for residential mortgage loans,may continue to

adversely affect us.

Beginning in March 2022, inflation and the Federal Reserve increases in interest rates tofight inflation have caused

mortgage rates to increase significantly.Higher interest rates and the increased level of housing costs since 2020 have

slowed housing sales.Although short term interest rates decreased in last half of 2024, longer term rates, including

mortgage rates, have remained elevated.Inventories of existing homes for sale have remained generally low,and many

believe that higher mortgage rates discourage potential sellers from sellingtheir existing houses and incurring higher

mortgage costs on replacement homes.These conditions have adversely affected housing affordabilityand increased

monthly mortgage payments.These conditions adversely affect our mortgage loan productionand may affect the value of

residential mortgage collateral.Commercial real estate projects’ economic assumptions may be adverselyaffected by

higher interest rates, and certain projects with short term and/or unhedgedvariable rate debt may be especially affected by

increased interest rates and/or a slower economy.

The CFPB’s mortgage and servicingrules, including TRID rules for closed end credit transactions, enforcement actions,

reviews and settlements, affect the mortgage markets and our mortgageoperations.

The Tax Cuts andJobs Act’s (the “2017 TaxAct”) limitations on the deductibility of residential mortgage interest and state

and local property and other taxes often called “SALT,”could adversely affect consumer behaviors and the volumes of

housing sales, mortgage and home equity loan originations, as well as the valueand liquidity of residential property held as

collateral by lenders such as the Bank, and the secondary markets forsingle and multi-family loans.Acquisition,

construction and development loans for residential development may be similarlyadversely affected.The new Trump

administration has indicated it is considering increasing the amount ofSALT permittedto be deducted for federal income

taxes.Unless extended, many provisions of the 2017 TaxAct, including the cap on SALTdeductions expire at the end of

2025, and the marginal individual tax brackets will increase.

Fannie Mae and Freddie Mac have been in conservatorship since September2008.The newly appointed Secretary of

Housing and Urban Development has stated that coordinating the effortto privatize these GSEs would be his priority.

Since these GSEs dominate the residential mortgage markets, any changesin their operations and requirements, as well as

their respective restructurings and capital and the costs of their borrowingsas private institutions, could adversely affect the

primary and secondary mortgage markets, and our residential mortgagebusinesses, our results of operations and the returns

on capital deployed in these businesses.Resolution of these extremely large GSEs will be complex,and the timing and

effects of such resolution and the effects onmortgage originators and the mortgage markets and their participants, including

the Company, cannot bepredicted.

We maybe contractually obligated to repurchasemortgage loans we sold to third parties on terms unfavorableto us.

As part of its routine business, the Company originates mortgage loansthat it subsequently sells in the secondary market,

generally to Fannie Mae.In connection with such loan sales, the Company makes customary representations and

warranties, the breach of which may result in the Company being requiredto repurchase the loan or loans.Furthermore, the

amount paid may be greater than the fair value of the loan or loans at the time of therepurchase.Although mortgage loan

repurchase requests made to us have been limited historically,if these increased, we may have to establish reserves for

possible repurchases and adversely affect our results ofoperation and financial condition.

 

 

40

Mortgage servicing rights requirementsmay change and requireus to incur additional costs and risks.

The CFPB’s residential mortgageservicing standards may adversely affect our costs to service residentialmortgage loans.

Reduced mortgage activity due to higher market interest rates has decreased ourgeneration of new mortgage loans and

related MSRs.This may be offset partially by decreases in mortgageprepayments and refinancings, and corresponding

increases in the duration of our existing MSRs and their values.This net effect could reduce our aggregate income from

servicing these types of loans and make it more difficult and costly totimely realize the value of collateral securing such

loans upon a borrower default.The Basel III Capital Rules relating to MSRs may also increase the potentialcapital

required as a result of MSRs, when considered with other capital rule adjustmentsand deductions.

The soundness of other financial institutions could adversely affect us.

We routinelyexecute transactions with counterparties in the financial services industry,including brokers and dealers,

central clearinghouses, banks, including our correspondent banks andother financial institutions.Our ability to engage in

routine investment and banking transactions, as well as the quality and values of ourinvestments in holdings of obligations

of other financial institutions such as the FHLB-Atlanta, could be adversely affectedby the actions, financial condition,

profitability and regulation of such other financial institutions, includingthe FHLB-Atlanta and our correspondent banks.

Financial services institutions are interrelated as a result of sharedcredits, trading, clearing, counterparty and other

relationships.

The failures of Silicon ValleyBank, Signature Bank and First Republic Bank in March and May 2023 dueto concentrations

of deposits and depositors holding large amounts of deposits inexcess of FDIC insurance limits, as well as flawed business

models and management, adversely affected the financialsystem and public confidence.These resulted in increased

regulatory scrutiny of bank liquidity,funding and capital, depressed bank stock values generally,and higher FDIC deposit

insurance premiums on the largest banks.

The federal bank regulators have been advocating more use of the FederalReserve discount window to improve bank

liquidity.At the same time, the 2023 bank failures have also led to calls to reduce Federal Home Loan Bank lendingto

banks.Traditionally,the Federal Home Loan Banks have been stable sources of liquidity and funding for banks.The

Federal Housing Finance Agency (“FHFA)regulates the Federal Home Loan Banks.The FHFA’s

FHLBank System at

100: Focusing on the Future

(Nov. 2023) indicates less traditionalFederal Home Loan Bank lending to banks, especially

banks experiencing financial stress.Sandra Thompson, the FHFADirector retired on January 19, 2025 and Bill Pulte has

been nominated to succeed her, subject toSenate confirmation.Mr. Pulte’sviews on Federal Home Loan Bank lending to

banks are unknown.

These changes, together with any exposures that other institutions mayhave to crypto or digital assets, or cybersecurity and

data breaches, could cause disruption and unexpected changes in the industry.The Trump Administration has issued

Executive Order “Strengthening American Leadership in Digital FinancialTechnology”and Congressional hearings on

“debanking” may increase the use of digital assets and the volume of digitalasset transactions with, and the risks to, banks.

Any losses, defaults by, orfailures of, the institutions we do business with could adversely affect our holdingsof the equity

in such other institutions, our participation interests in loans originated byother institutions, and our business, including our

liquidity, financial conditionand earnings.

Failures ofseveral banksin 2023resulted inincreasedmarket volatilityfor financialservice companies’securities andin

changes in regulatory views and emphases thatmay adversely affect us and may not be disclosable under law.

ThefailuresofSiliconValleyBank,SignatureBank,FirstRepublicandHeartlandTri-StateBankin2023caused

significantmarketvolatilityforbankstocks,anduncertaintyintheinvestorcommunityandamongbankcustomers,

generally,greaterbankregulatoryscrutinyofbankingorganizations,especiallythoseexperiencingrapidgrowthand

regional bankswith $100billion ormore inassets.Similarly,concerns aboutcredit qualityand capitaladequacyat New

YorkCommunityBankfollowingtwoacquisitionsraisedmarketconcernsandledtoreplacementofmanagementanda

dilutive equity capital raise.

41

These failureshave resultedin bank regulatorsfocusing supervisoryactivities, generally,on capital adequacyand liquidity

inlightofgrowth;asset,liabilityandcustomerconcentrationsandrisks;CRE;levelsofuninsureddeposits;crypto

businessesandcustomers;third-partyvendorsor“partners”providingdigital,electronicandotherservicesknownas

bankingasaservice(“BaaS”)andfintechrelationships;strategic,capitalandliquidity plansandcontingencyplans;and

vendordiligenceandriskmanagement.Suchenhancedscrutinyisoftenappliedaspartoftheregulatoryexamination

processes,aswellasthroughavarietyofnonpublicsupervisoryactionssuchas“mattersrequiringattention,”boardof

director resolutions,memoranda ofunderstanding, andother regulatorycriticism, andformal, publicenforcement actions.

Thebankandbankholdingexaminationprocesses,aswellasanynonpublicsupervisoryactions,are“confidential

supervisoryinformation”forregulatorypurposes,whoseexistenceandterms,ifany,maynotbedisclosedbybanking

organizations.

Changesinregulationshavebeenproposedas partof theBasel IIIendgametothecapital, liquidity,longterm debtand

resolution planning of banking organizations with over$100 billion in assets.

Our concentration of commercial realestate loans could result in further increasedloan losses, and adversely affect our

business, earnings, and financial condition.

Commercial real estate, or CRE, is cyclical and poses risks of possible loss dueto concentration levels and the risks of the

assets being financed, which include loans for the acquisition and developmentof land and residential construction.The

federal bank regulatory agencies’ issued guidance on “Concentrationsin Commercial Real Estate Lending” in 2006 (the

“CRE Guidance”).The CRE Guidance defines CRE loans as exposures secured by raw land, land developmentand

construction loans (including 1-4 family residential constructionloans), multi-family property,and non-farm non-

residential property,where the primary or a significant source of repayment is derived from rental income associatedwith

the property (that is, loans for which 50% or more of the source of repayment comes from thirdparty, non-affiliated,rental

income) or the proceeds of the sale, refinancing, or permanent financing of theproperty.Loans to REITs and unsecured

loans to developers that closely correlate to the inherent risks in CRE markets are also CRE loans.Loans on owner

occupied commercial real estate are generally excluded from CRE for purposes ofthis guidance.

Excluding owner occupied commercial real estate, we had 42% of our loan portfolioin CRE loans at year-end 2024

compared to 40% at year-end 2023.The bank regulators continue to scrutinize CRE lending and require banks with

elevated CRE under the CRE Guidance, to implement improved underwriting,internal controls, risk management policies

and portfolio stress testing, as well as higher levels of allowances for possible losses andcapital levels as a result of CRE

lending growth and exposures.Increases in interest rates beginning in March 2022 and reduced markettransactions may

adversely affect the assumptions and performance of CRE, especiallyfor projects financed with short term or unhedged

variable rate debt, and the ability of CRE borrowers to refinance on terms that theirprojects can support.Lower demand

for CRE and fewer CRE purchase and sale transactions, and reduced availabilityof, and higher interest rates and costs for,

CRE loans could adversely affect CRE values and liquidity,our CRE loans and sales of OREO, and therefore our earnings

and financial condition, including our capital and liquidity.

Our future success is dependent on our abilityto compete effectively in highly competitive markets.

The East Alabama banking markets where we operate are highly competitiveand our future growth and success will

depend on our ability to compete effectively in these markets.This MSA is served by 19 banks, 10 of which are

headquartered outside of Alabama.Other banks have 35 offices in our MSA.National and regional competitors that have

offices in our market include J.P.Morgan Chase, WellsFargo, Truist, PNC, Regions,ValleyNational, SouthState and

Cadence.We compete forloans, deposits and other financial services and products with local, regional and national

commercial banks, thrifts, credit unions, mortgage lenders, andsecurities and insurance brokerage firms.Variousnon-local

competitors offer services through the mail, by telephoneand over the Internet.The national and regional financial banks

and financial services companies we compete with have substantially greaterresources, and numerous offices and affiliates

operating over wide geographic areas.Lenders operating nationwide over the internet are growing rapidly.Many of our

competitors offer products and services differentfrom ours, and have substantially greater resources, name recognitionand

advertising than we do, which helps them attract business.In addition, larger competitors may be able to price loans and

deposits more aggressively than we are able to and have broader and more diversecustomer and geographic bases to draw

upon.Out of state banks may branch into our markets.Fintech and other non-bank competitors also compete for our

customers, and may partner with other banks and/or seek to enter the payments system.The failures or sales of other banks

with offices in our markets could also lead to the entrance of new,stronger competitors in our markets.

42

Our success depends on local economic conditions.

Our success depends on the general economic conditions in East Alabama,including Lee County,Alabama.Local

economic conditions in our markets have a significant effect onour commercial, real estate and construction loans, the

ability of borrowers to repay these loans and the value of the collateral securingthese loans.Adverse changes in the

economic conditions of the Southeastern United States in general, or in one or moreof our local markets, including the

effects of higher market interest rates and inflation, supplychain disruptions, changes in customer behaviors and in the

workforce and demand for space since the COVID-19 pandemic, and the timingand magnitude of future inflation and

interest rates, as well as federal healthcare and education funding, could negativelyaffect our results of operations and our

profitability.Our local economy is also affected by the growth of automobile manufacturingand related suppliers located

in our markets and nearby.Auto sales and housing sales are cyclical and generally are affected adverselyby higher sticker

prices and interest rates, and may be adversely affected by tariffs,especially the 25% tariffs on imported steel and

aluminum and autos, as well as threatened (i) tariffs on automakersuppliers in Canada and Mexico and (ii) reciprocal tariffs

on countries that impose tariffs on U.S. goods.Major employers in our market include education and healthcare, which

may be adversely affected by changes in Federal governmentpolicies and funding.

Attractive acquisition opportunities may not be available to us in thefuture.

While we seek continued organic growth, including loangrowth, we also may consider the acquisition of other businesses.

We expect thatother banking and financial companies, many of which have significantly greaterresources, will compete

with us to acquire financial services businesses.This competition could increase prices for potential acquisitions that we

believe are attractive.Also, acquisitions are subject to various regulatory approvals.If we fail to receive the appropriate

regulatory approvals, we will not be able to consummate an acquisition thatwe believe is in our best interests, and

regulatory approvals could contain conditions or commitments that reducethe anticipated benefits of any transaction.

Among other things, our regulators consider our capital, liquidity,profitability, regulatory complianceand levels of

goodwill and intangibles when considering acquisition and expansionproposals.Any acquisition could be dilutive to our

earnings and shareholders’ equity per share of our common stock.The regulatory agencies carefully review and analyze

financial institution mergers, and the mergerapplication process has lengthened.

Future acquisitions and expansion activities maydisrupt our business, dilute shareholdervalue and adversely affect our

operating results and financial condition.

We regularlyevaluate potential acquisitions and expansion opportunities, includingnew branches and other offices.To the

extent that we grow through acquisitions, we cannot assure you that we will beable to adequately or profitably manage this

growth.Acquiring other banks, branches, or businesses, as well as other geographic and productexpansion activities,

involve various risks including:

●

risks of unknown or contingent liabilities, and potential asset quality issues;

●

unanticipated costs and delays, including the regulatory application process;

●

risks that acquired new businesses will not perform consistently with our growthand profitability expectations;

●

risks of entering new markets or product areas where we have limited experience;

●

risks that growth will strain our infrastructure, staff, internal controlsand management, which may require

additional personnel, time and expenditures;

●

difficulties, expenses and delays of integrating the operations andpersonnel of acquired institutions, including the

desirability of closing duplicative or overlapping facilities;

●

potential disruptions to our business;

●

possible loss of key employees and customers of acquired institutions;

●

potential short-term decreases in profitability; and

●

diversion of our management’s timeand attention from our existing operations and business.

43

Technologicalchanges affect our business, and we may have fewer resourcesthan many competitors to invest in

technological improvements.

The financial services industry is undergoing rapid technologicalchanges with frequent introductions of new technology-

driven products and services and growing demands for mobile and user-basedbanking applications. The effective use of

technology may help us better analyze our customers and their needs better,and the effective use of technology may

increase efficiency and reduce our operating costs.At the same time the initial costs of acquiring and implementing

technology may be material, and such technology may entail fraud, compliancewith the AML/CFT anti-money laundering

laws and rules, among others, and various operational and other risks.Largely unregulated “fintech” businesses have

increased their participation in the lending and payments businesses, and haveincreased competition in these businesses.

Our future success will depend, in part, upon our ability to use technologyeffectively to provide products and services that

meet our customers’ preferences and create additional efficienciesin operations, while avoiding cyber-attacks and

disruptions, data breaches, violations of AML/CFT laws, and other potentialviolations of law.Remote work has

accelerated electronic banking activity and the need for increased operationalefficiencies and data security in our electronic

and mobile banking services.We may needto make significant additional capital investments in technology,including

artificial intelligence, cyberand data security, and we may not beable to effectively implement new technology-driven

products and services, or such technology may prove less effective and/ormore costly than anticipated.Many larger

competitors have substantially greater resources to invest in technologicalimprovements and, increasingly,non-banking

firms are using technology to compete for loans, payments, andother banking services.As a result, our competition from

service providers not located in our markets has increased.

Operational risks are inherentin our businesses.

Operational risks and losses can result from internal and external fraud;gaps or weaknesses in our risk management or

internal audit procedures; errors by employees or third parties, includingour vendors, failures to document transactions

properly or obtain proper authorizations; failure to comply with applicableregulatory requirements in the various

jurisdictions where we do business or have customers; failures in our estimates orthe models that we rely on; equipment

failures, including those caused by natural disasters, or by electrical, telecommunicationsor other essential utility outages;

business continuity and data security system failures, including those caused bycomputer viruses, cyberattacks, unforeseen

problems encountered while implementing major new computer systems orupgrades, failures to timely and properly

upgrade and patch existing systems or inadequate access to data or poor responsecapabilities in light of business continuity

plans in the event of data security system failures; or the inadequacy or failureof systems and controls, including those of

our vendors or counterparties.The COVID-19 pandemic presented operational challenges to maintainingcontinuity of

operations of customer services while protecting our employees’ andcustomers’ safety, and similar situationsmay occur in

the future.In addition, we face certain risks inherent in the ownership and operation of our bank premisesand other real-

estate, including liability for accidents on our properties.Although we have implemented risk controls and loss mitigation

actions, and substantial resources are devoted to developing efficientprocedures, identifying and rectifying weaknesses in

existing procedures and training staff, it is not possible to be certain thatsuch actions have been or will be effective in

controlling these various operational risks that evolve continuously.

44

Potential gaps in our risk management policies and internal audit proceduresmay leave us exposed to unidentified or

unanticipated risk, which could negatively affect our business.

Our enterprise risk management and internal audit program are designedto mitigate material risks and losses to us. We

have developed and continue to develop risk management and internalaudit policies and procedures to reflect the ongoing

review of our risks and expect to continue to do so in the future. Nonetheless, ourpolicies and procedures may not be

comprehensive and may not anticipate and identify timely every riskto which we are exposed, and our internal audit

process may fail to detect such weaknesses or deficiencies timely in our riskmanagement framework. Many of our risk

management models and estimates use observed historical marketbehavior to model or project potential future exposure.

The models used by our business, including our CECL models, are based onassumptions and projections. These models

may not operate properly,or our inputs and assumptions may be inaccurate, or changes in economicand market conditions,

customer behaviors or regulations may adversely affectthe accuracy or usefulness of the models.As a result, these

methods may not fully or timely predict future exposures, which can besignificantly greater and/or faster than historically.

Other risk management methods depend upon the evaluation of informationregarding markets, clients, or other matters that

are publicly available or otherwise accessible to us. This informationmay not always be accurate, complete, up-to-date or

properly evaluated.Furthermore, there can be no assurance that we can effectively review and monitorall risks or that all

of our employees will closely follow our risk management policies and procedures,nor can there be any assurance that our

risk management policies and procedures will enable us to accuratelyidentify all risks and limit our exposures based on our

assessments.

In addition, we may have to implement more extensive and perhaps differentrisk management policies and procedures as

our regulation and technology uses changes.All of these could adversely affect our costs, and our financial conditionand

results of operations.

Any failure to protectthe confidentiality of customer information could adversely affect our reputationand have a material

adverse effect on our business, financial condition and resultsof operations

.

Variouslaws enforced by the bank regulators and other agencies protect the privacyand security of customers’ non-public

personal information. Many of our employees have access to, and routinelyprocess personal information of clients through

a variety of media, including information technology systems.Our internal processes, policies and controls are designed to

protect the confidentiality of customer information we hold and thatis accessible to us and our employees.It is possible

that an employee could, intentionally or unintentionally,disclose or misappropriate confidential client information or our

data could be the subject of a cybersecurity attack.Such personal data could also be compromised via intrusions into our

systems or those of our service providers or other persons we do business with suchas credit bureaus, data processors and

merchants who accept credit or debit cards for payment.If we fail to maintain adequate internal controls, or if our

employees fail to comply with our policies and procedures, misappropriationor inappropriate disclosure or misuse of client

information could occur.Such internal control inadequacies or non-compliance could materially damageour reputation,

lead to remediation costs and civil or criminal penalties.These could have a material adverse effect on our business,

financial condition and results of operations.See Item 1C. of this report for more information about cybersecurity and our

management and strategies.

Our information systems may experience interruptions andsecurity breaches.

We rely heavilyon communications and information systems, including those of third-party serviceproviders, to conduct

our business.Any failure, interruption, or security breach of these systems could result in failuresor disruptions which

could affect our business, our customers’ privacy and our customerrelationships, generally.Our business continuity plans,

including those of our service providers, for back-up and service restoration,may not be effective in the case of widespread

outages due to severe weather, natural disasters, pandemics,or power, communications and other failures.See Item 1C. of

this report for more information about cybersecurity and our managementand strategies.

45

Our systems and networks, as well as those of our third-party service providers,are subject to security risks and could be

susceptible to disruption through cyber-attacks,such as denial of service attacks, hacking, terrorist activities, or identity

theft.Cybercrime risks have increased as electronic and mobile banking activities haveincreased, and may increase further

as a result of the Russia’s war in Ukraine,tensions with mainland China and other countries, and foreign government

sponsored cybercrime and theft.Other financial service institutions and their service providers have reportedmaterial

security breaches in their websites or other systems, some of which have involvedsophisticated and targeted attacks,

including use of stolen access credentials, malware, ransomware, phishingand distributed denial-of-service attacks, among

other means.Such cyber-attacks may also seek to disrupt the operations of publiccompanies or their business partners,

effect unauthorized fund transfers, obtain unauthorizedaccess to confidential information, destroy data, disable or degrade

service, or sabotage systems.Any of these, including hacking and identity theft risks, could cause seriousreputational

harm.

Despite our cybersecurity policies and procedures and our Boardof Directors and management’s effortsto monitor and

ensure the integrity of the systems we and our third-party service providersuse, we may not be able to anticipate the rapidly

evolving security threats, nor may we be able to implement preventive measureseffective against all such threats.The

techniques used by cyber criminals change frequently,may not be recognized until launched and can originate from a wide

variety of sources, including external service providers, organizedcrime affiliates, terrorist organizations orhostile foreign

governments.These risks may increase in the future as the use of mobile banking, other internet electronicbanking.While

artificial intelligence may be useful generally,it may be used by cyber criminals and may require us to seek additional

defenses.

Security breaches or failures may have serious adverse financial and otherconsequences, including significant legal and

remediation costs, disruptions to operations, misappropriation of confidentialinformation, damage to systems operated by

us or our third-party service providers, as well as damages to our customers andour counterparties.In addition, these

events could damage our reputation, result in a loss of customer business, subjectus to additional regulatory scrutiny,or

expose us to civil litigation and possible financial liability,any of which could have a material adverse effect on our

financial condition and results of operations.

The SEC adopted rules, effective June 15, 2024 for smallerreporting companies, such as the Company,which require

reporting companies to disclose material cybersecurity incidents theyexperience on SEC Form 8-K within four business

days, including the nature, scope, and timing of the incident, and thematerial impact or reasonably likely material impact

on the registrant, including its financial condition and results of operations.Annually, reporting companiesare required to

disclose material information regarding their cybersecurity risk management,strategy, and governance.

We maybe unable to attract and retain key people to support our business.

Our success depends, in large part, on our ability to attract and retainkey people. Wecompete with other financial services

companies for people primarily on the basis of compensation and benefits,support services and financial position. Intense

competition exists for key employees with demonstrated ability,and we may be unable to hire or retain such employees.

Effective succession planning is also important to ourlong-term success. The unexpected loss of services of one or more of

our key persons and failure to ensure effective transferof knowledge and smooth transitions involving such persons could

have a material adverse effect on our business due to loss of theirskills, knowledge of our business, their years of industry

experience and the potential difficulty of promptlyfinding qualified replacement employees.

Proposed rules implementing the executive compensation provisionsof the Dodd-Frank Act may limit the type and

structure of compensation arrangements and prohibit the payment of“excessive compensation” to our executives.These

restrictions could negatively affect our ability to compete with othercompanies in recruiting and retaining key personnel.

Severe weather and natural disasters, includingas a result of climate change, pandemics, epidemics,acts of war or

terrorism or other external events could have significanteffects on our business.

Severe weather and natural disasters, including hurricanes, tornados,drought and floods, epidemics and pandemics, acts of

war or terrorism or other external events could have a significant effecton our ability to conduct business.Such events

could affect the stability of our deposit base, impair the ability ofborrowers to repay outstanding loans, impair the value of

collateral securing loans, cause significant property damage, result inloss of revenue and/or cause us to incur additional

expenses.Although management has established disaster recovery and business continuitypolicies and procedures, the

occurrence of any such event could have a material adverse effecton our business, which, in turn, could have a material

adverse effect on our financial condition and results of operations.

46

The COVID-19 pandemic, trade wars, tariffs, supply chaindisruptions and changes, wars, sanctions and similar events and

disputes, domestic and international, have adversely affected,and may continue to adversely affect economic activity

globally, nationallyand locally.Market interest rates have changed significantly and suddenly.The Federal Reserve’s

target federal funds rates declined to 0-0.25% in March2020, where these remained until March 17 2022.The Federal

Reserve increased the target federal funds rates 11from March 17, 2022 through July 27, 2023 to 5.25-5.50% due to

inflation.After three rate cuts during the last four months of 2024, this range was 4.25-4.50% at December31, 2024, but

such target rates and inflation remain above the Federal Reserve’starget rate of 2%.Such events also may adversely affect

business and consumer confidence, generally.We and our customers, andour respective suppliers, vendors and processors

may be adversely affected by shortages of needed equipment andsupplies, rising prices and tight labor markets.The

continuation or worsening of these conditions may adversely affectour profitability, growth asset qualityand financial

condition.

Financial Risks

Our cost of funds may increase as a resultof general economic conditions, interest rates, inflationand changes in customer

behaviors and competitive pressures.

Our costs of funds have increased as a result of general economic conditions,increased market interest rates and

competitive pressures, and inflation, and anticipated future changes intarget short-term interest rates by the Federal

Reserve to reduce inflation.Traditionally,we have obtained funds principally through local deposits and borrowings from

other institutional lenders such as the FHLB-Atlanta.We believe depositsare a cheaper and more stable source of funds

than other borrowings, generally.Increases in interest rates have caused consumers to shift their funds to more interest-

bearing instruments and to increase the competition for and costs of deposits.If customers move money out of bank

deposits and into other investment assets or from transaction deposits tohigher cost, interest-bearing time deposits, we

could lose relatively low-cost sources of funds, increasing our funding costs andpotentially reducing our net interest

income and net income. Additionally,any such loss of funds could result in lower loan originations and growth, which

could materially and adversely affect our results of operations andfinancial condition.See “Supervision and Regulation –

Fiscal and Monetary Policy.”

Our profitability and liquidity may be affectedby changes in interest rates and interestrate levels, the shape of the yield

curve and economic conditions.

Our profitability depends upon net interest income, which is the differencebetween interest earned on interest-earning

assets, such as loans and investments, and interest expense on interest-bearingliabilities, such as deposits and borrowings.

Our income is primarily driven by the spread between these rates. Net interest incomewill be adversely affected if market

interest rates and the interest we pay on our deposits and borrowings increasefaster than the interest earned on loans and

investments.Interest rates, and consequently our results of operations, are affectedby general economic conditions

(national, international and local) and fiscal and monetary policies, as well as expectationsregarding interest rate changes,

fiscal and monetary policies and the shape of the yield curve.As a result, a steeper yield curve, meaning long-term interest

rates are significantly higher than short-term interest rates, would providethe Bank with a better opportunity to increase net

interest income.Conversely, a flattening yield curvecould further pressure our net interest margin as our cost of funds

increases relative to the spread we can earn on our assets.In addition, net interest income could be affected by

asymmetrical changes in the different interest rate indexes,given that not all of our assets or liabilities are priced with the

same index.Higher market interest rates and continuing run-off of maturingsecurities held by the Federal Reserve in its

SOMA in furtherance of its quantitative tightening policy to fightinflation, generally reduce economic activity and may

reduce loan demand and growth.Conversely, the slowingof the run-off of maturing Treasurysecurities held in SOMA

from $60 billion per month to $25 billion that commenced in June 2024,may reduce the tightening effect of such decreases

in SOMA.

The production of mortgages and other loans and the value of collateralsecuring our loans are dependent on demand within

the markets we serve, as well as interest rates.Lower interest rates typically increase mortgage originations, decrease MSR

values and promote economic growth.Increases in market interest rates tend to decrease mortgage originations,increase

MSR values, decrease the value and liquidity of collateral securing loans, resultin unrealized losses on our investment

securities and accumulated other comprehensive losses, and potentiallyincrease net interest spread depending upon the

yield curve and the magnitude and duration of interest rate increase, andconstrain economic growth, generally.Reductions

in short term target interest rates by the Federal Reserve in the second halfof 2024 did not have much effect on reducing

longer term mortgage rates.

47

Increases in market interest rates also have caused unrealized losses in our investmentsecurities, all of which are held as

available for sale and carried at fair market values.Market prices of our investment securities holdings decline as market

interest rates increase for comparable securities and maturities.Although these unrealized losses do not adversely affect

our regulatory capital, these do reduce our reported income and GAAP tangiblestockholders’ equity.Sales of securities

with unrealized losses would result in realized losses for GAAP,regulatory capital and tax purposes.Increases in interest

rates may also change depositor behaviors as customers seek higher yieldingdeposits.This may adversely affect our costs

of funds, growth, net interest income and net income, and may also adverselyaffect our liquidity,results of operations and

financial condition.

Liquidity risks could affect operations and jeopardizeour financial condition.

The COVID-19 pandemic and related monetary and fiscal stimuli generallyincreased our bank deposits, including at the

Bank, while reducing the interest rates earned on loans and securities.Such excess liquidity and the resulting balance sheet

growth reduced returns on assets and equity.The growth in deposits exceeded our loan growth, and the differencewas

invested in high-quality,marketable U.S. government and government agency securities, includingagency mortgage-

backed securities.Inflation and tightening monetary policies beginning in early 2022 have partiallyreversed these trends.

Liquidity is essential to our business.An inability to raise funds through deposits, borrowings, proceeds fromloan

repayments or sales proceeds from maturing loans and securities, and othersources could have a negative effect on our

liquidity.Our funding sources include deposits (primarily core deposits), federal funds purchased,securities sold under

repurchase agreements, and short- and long-term debt.We maintain a portfolio ofmarketable high-quality securities that

are all held as available for sale, and can be used as a source of liquidity.As market interest rates rose prior to Fall 2024,

however, we have experienced unrealizedlosses on such securities, which would become realized losses uponthe sale of

such securities, and such sales at a loss would reduce our net income and ourregulatory capital.

We are also membersof the FHLB-Atlanta and the Federal Reserve Bank of Atlanta, and we can obtainadvances from

them collateralized with eligible assets, and maintain uncommittedfederal funds lines of credit with other banks.

Other sources of liquidity available to the Company or the Bank, if needed,include our ability to acquire additional non-

core deposits.We may be able, dependingupon market conditions, to borrow money or issue and sell debt and preferred or

common securities in public or private transactions.Our access to funding sources in amounts adequate to finance or

capitalize our activities on terms which are acceptable to us could be impairedby factors that affect us specifically,or the

financial services industry,the economy, market interest rates andfiscal and monetary policies.General conditions that are

not specific to us, such as disruptions in the financial markets, failures of otherbank, such as Silicon ValleyBank,

Signature Bank and First Republic Bank in 2023, or negative views and expectationsabout the prospects for the financial

services industry could adversely affect us and our liquidity.

Our ability to realize our deferredtax assets may be reduced in the futureif our estimates of future taxable incomefrom

our operations and tax planning strategies do not support this amount, and the amountof net operating loss carry-forwards

realizable for income tax purposes may be reducedunder Section 382 of the Internal Revenue Code by sales of our capital

securities.

We are allowedto carry-back losses for two years for Federal income tax purposes.As of December 31, 2024, we had a

net deferred tax asset of $10.2 compared to $10.3 million one year earlier.These and future deferred tax assets may be

further reduced in the future if our estimates of future taxable income from our operationsand tax planning strategies do not

support the amount of the deferred tax asset.The amount of net operating loss carry-forwards realizable for income tax

purposes potentially could be further reduced under Section 382of the Internal Revenue Code by a significant offering

and/or other sales of our capital securities.Current bank capital rules also reduce the regulatory capital benefits of deferred

tax assets.

Changes in accounting and tax rules applicable to banks could adverselyaffect our financial conditions and results of

operations.

From time to time, the FASBand the SEC change the financial accounting and reporting standards that governthe

preparation of our financial statements.These changes can be difficult to predict and can materially impact howwe record

and report our financial condition and results of operations.In some cases, we could be required to apply a new or revised

standard retroactively,resulting in us restating prior period financial statements

.

48

We mayneed to raise additional capital in the future, but that capitalmay not be available when it is needed or on

favorable terms.

We anticipate thatour current capital resources will satisfy our capital requirements for the foreseeablefuture under

currently effective rules.We may,however, need to raise additional capital tosupport our growth or currently

unanticipated losses, or to meet the needs of our communities, resulting fromfailures or cutbacks by our competitors.Our

ability to raise additional capital, if needed, will depend, among otherthings, on conditions in the capital markets at that

time, which are limited by events outside our control, and on our financialperformance.If we cannot raise additional

capital on acceptable terms when needed, our ability to further expandour operations through internal growth and

acquisitions could be limited.

Our associates may take excessive risks which could negatively affect our financialcondition and business.

Banks are in the business of accepting certain risks.Our executive officers and other members of management,sales

intermediaries, investment professionals, product managers, andother associates, make decisions and choices that may

expose us to risk. Weendeavor, in the design and implementationof our compensation programs and practices, to avoid

giving our associates incentives to take excessive risks; however,associates may nonetheless take such risks.Similarly,

although we employ controls and procedures designed to preventmisconduct, to monitor associates’ business decisions and

prevent them from taking excessive risks, these controls and procedures maynot be effective.If our associates take

excessive risks, risks to our reputation, financial condition and results ofoperations could be materially and adversely

affected.

Our ability to continue to pay dividends to shareholders,repurchase stock andpay discretionary bonuses in the futureis

subject to our profitability,capital, liquidity and regulatory requirementsand these limitations may prevent or limit future

dividends.

Cash available to pay dividends to our shareholders is derived primarily fromdividends paid to the Company by the Bank.

The ability of the Bank to pay dividends, as well as our ability to pay dividendsto our shareholders, will continue to be

subject to and limited by laws limiting dividend payments by the Bank,the results of operations of our subsidiaries and our

need to maintain appropriate liquidity and capital at all levels of our business consistentwith regulatory requirements and

the needs of our businesses.We can onlypay dividends, repurchase stock and pay discretionary bonuses, if our capital

conservation buffer exceeds 2.5% and from our eligible retainedincome over the last four calendar quarters.See

“Supervision and Regulation - Dividends and Distributions.”

The Federal Reserve expects bank holding companies to inform andconsult with Federal Reserve supervisory staff

sufficiently in advance of (i) declaring and paying a dividend thatcould raise safety and soundness concerns, such as

declaring and paying a dividend that exceeds earnings for the periodfor which the dividend is being paid); (ii) redeeming or

repurchasing regulatory capital instruments when the bank holdingcompany is experiencing financial weaknesses; or (iii)

redeeming or repurchasing common stock or perpetual preferredstock that would result in a net reduction as of the end of a

quarter in the amount of such equity instruments outstanding comparedwith the beginning of the quarter in which the

redemption or repurchase occurred.

Further, the Company is also requiredto maintain sufficient capital, liquidity and resources to serve as a source of

managerial and financial strength to the Bank, which may limit its capacity to paydividends on Company common stock.

The Federal Reserve may require the Company to commit resources to theBank, even where it is not otherwise in the

interests of the Company or its shareholders or creditors.

Our common stock trades in limited volumes, which could resultin price volatility.

Yourability to sell or purchase common shares depends upon the existence of an activetrading market for our common

stock.Although our common stock is quoted on the Nasdaq Global Market underthe trading symbol “AUBN,” our trading

volume has been limited historically.The limited trading volume of our common stock may cause fluctuationsin the

market value of our common stock to be exaggerated, leading to price volatilityin excess of that which would occur in a

more active trading market.As a result, you may be unable to sell or purchase shares of our common stockat the volume,

price and time that you desire.Additionally, whetherthe market prices of our common stock reflect a reasonable valuation

of our common stock also is affected by the limited market volumes,and thus the price you receive may not reflect its true