Cybersecurity Risk Management and Strategy Disclosure |
12 Months Ended |
|---|---|
Mar. 31, 2026 | |
| Cybersecurity Risk Management, Strategy, and Governance [Line Items] | |
| Cybersecurity Risk Management Processes for Assessing, Identifying, and Managing Threats [Text Block] | Our cybersecurity program is designed to assess, identify and manage material risks from cybersecurity threats, and is a component of our overall enterprise risk program. Our cybersecurity program is based on the National Institute of Standards and Technology Cybersecurity Framework, version 2.0. We conduct regular scans, penetration tests, and vulnerability assessments to identify potential threats or vulnerabilities in our systems. Our processes to assess, identify and manage material risks from cybersecurity threats include potential threats associated with third party service providers, including cloud-based platforms. We believe we have invested in monitoring practices to reduce cybersecurity risks and continue to monitor our systems on an ongoing basis for compliance with applicable privacy regulations and any current or potential threats. We engage third-party service providers to enhance our risk prevention and mitigation efforts. We have periodically engaged third parties to serve in a consultative and advisory manner to review current and future strategies. We also purchase insurance to help protect us against the risk of cybersecurity breaches.
|
| Cybersecurity Risk Management Processes Integrated [Flag] | true |
| Cybersecurity Risk Management Processes Integrated [Text Block] | Our cybersecurity program is designed to assess, identify and manage material risks from cybersecurity threats, and is a component of our overall enterprise risk program. Our cybersecurity program is based on the National Institute of Standards and Technology Cybersecurity Framework, version 2.0. We conduct regular scans, penetration tests, and vulnerability assessments to identify potential threats or vulnerabilities in our systems. Our processes to assess, identify and manage material risks from cybersecurity threats include potential threats associated with third party service providers, including cloud-based platforms.
|
| Cybersecurity Risk Management Third Party Engaged [Flag] | true |
| Cybersecurity Risk Third Party Oversight and Identification Processes [Flag] | true |
| Cybersecurity Risk Materially Affected or Reasonably Likely to Materially Affect Registrant [Flag] | false |
| Cybersecurity Risk Board of Directors Oversight [Text Block] | Board and Committee Oversight - Our Board of Directors has ultimate oversight of the Company’s cybersecurity programs and strategy, with the Audit Committee maintaining oversight responsibility in reviewing cybersecurity and other information technology risks. The Audit Committee assesses the steps management has taken to monitor, minimize or control such risks or exposures. The Company’s Chief Information Officer (“CIO”) presents a cybersecurity report to the Audit Committee each quarter. The report includes updates of recent cybersecurity threats, current key performance indicators of security controls and summaries of any recent incidents at the Company. |
| Cybersecurity Risk Board Committee or Subcommittee Responsible for Oversight [Text Block] | The Company’s Chief Information Officer (“CIO”) presents a cybersecurity report to the Audit Committee each quarter. The report includes updates of recent cybersecurity threats, current key performance indicators of security controls and summaries of any recent incidents at the Company. |
| Cybersecurity Risk Process for Informing Board Committee or Subcommittee Responsible for Oversight [Text Block] | Board and Committee Oversight - Our Board of Directors has ultimate oversight of the Company’s cybersecurity programs and strategy, with the Audit Committee maintaining oversight responsibility in reviewing cybersecurity and other information technology risks. The Audit Committee assesses the steps management has taken to monitor, minimize or control such risks or exposures. The Company’s Chief Information Officer (“CIO”) presents a cybersecurity report to the Audit Committee each quarter. The report includes updates of recent cybersecurity threats, current key performance indicators of security controls and summaries of any recent incidents at the Company. |
| Cybersecurity Risk Role of Management [Text Block] | Board and Committee Oversight - Our Board of Directors has ultimate oversight of the Company’s cybersecurity programs and strategy, with the Audit Committee maintaining oversight responsibility in reviewing cybersecurity and other information technology risks. The Audit Committee assesses the steps management has taken to monitor, minimize or control such risks or exposures. The Company’s Chief Information Officer (“CIO”) presents a cybersecurity report to the Audit Committee each quarter. The report includes updates of recent cybersecurity threats, current key performance indicators of security controls and summaries of any recent incidents at the Company. Management’s Role - The Company’s CIO, supported by the Director of IT Security and Compliance, manages cybersecurity risk. Our CIO has over 25 years of experience in information technology and eight years of experience with the Company. The Company’s enterprise-wide cybersecurity strategy is supported by policies, procedures, security controls and training designed to protect the Company’s IT systems, operations and sensitive data. Specifically, our Cyber Incident Response Plan provides a process by which our Company is informed about and monitors the prevention, detection, mitigation and remediation of cybersecurity incidents and includes engaging the Cybersecurity and Risk Management Committee (“CRMC”). The CRMC is a management committee established to identify, assess and manage material cybersecurity incidents, including the incident recovery process within the Company. Depending on the significance of the incident, the Cyber Incident Response Plan could include engaging affected internal and external parties, escalating the issue to executive management, notifying one or more members of our Audit Committee, maintaining communication with users and notifying law enforcement and government agencies as warranted. For additional information regarding cybersecurity risks, see the risk factor captioned “Cybersecurity incidents may threaten our confidential information, disrupt operations and result in harm to our reputation and adversely impact our business and financial performance” under Part I, Item 1A “Risk Factors”.
|
| Cybersecurity Risk Management Positions or Committees Responsible [Flag] | true |
| Cybersecurity Risk Management Positions or Committees Responsible [Text Block] | The Audit Committee assesses the steps management has taken to monitor, minimize or control such risks or exposures. The Company’s Chief Information Officer (“CIO”) presents a cybersecurity report to the Audit Committee each quarter. The report includes updates of recent cybersecurity threats, current key performance indicators of security controls and summaries of any recent incidents at the Company. |
| Cybersecurity Risk Management Expertise of Management Responsible [Text Block] | Management’s Role - The Company’s CIO, supported by the Director of IT Security and Compliance, manages cybersecurity risk. Our CIO has over 25 years of experience in information technology and eight years of experience with the Company. The Company’s enterprise-wide cybersecurity strategy is supported by policies, procedures, security controls and training designed to protect the Company’s IT systems, operations and sensitive data. Specifically, our Cyber Incident Response Plan provides a process by which our Company is informed about and monitors the prevention, detection, mitigation and remediation of cybersecurity incidents and includes engaging the Cybersecurity and Risk Management Committee (“CRMC”). The CRMC is a management committee established to identify, assess and manage material cybersecurity incidents, including the incident recovery process within the Company. Depending on the significance of the incident, the Cyber Incident Response Plan could include engaging affected internal and external parties, escalating the issue to executive management, notifying one or more members of our Audit Committee, maintaining communication with users and notifying law enforcement and government agencies as warranted. |
| Cybersecurity Risk Process for Informing Management or Committees Responsible [Text Block] | Management’s Role - The Company’s CIO, supported by the Director of IT Security and Compliance, manages cybersecurity risk. Our CIO has over 25 years of experience in information technology and eight years of experience with the Company. The Company’s enterprise-wide cybersecurity strategy is supported by policies, procedures, security controls and training designed to protect the Company’s IT systems, operations and sensitive data. Specifically, our Cyber Incident Response Plan provides a process by which our Company is informed about and monitors the prevention, detection, mitigation and remediation of cybersecurity incidents and includes engaging the Cybersecurity and Risk Management Committee (“CRMC”). The CRMC is a management committee established to identify, assess and manage material cybersecurity incidents, including the incident recovery process within the Company. Depending on the significance of the incident, the Cyber Incident Response Plan could include engaging affected internal and external parties, escalating the issue to executive management, notifying one or more members of our Audit Committee, maintaining communication with users and notifying law enforcement and government agencies as warranted. |
| Cybersecurity Risk Management Positions or Committees Responsible Report to Board [Flag] | true |