Risk and Compliance Committee Charter

DOWNLOAD RISK AND COMPLIANCE COMMITTEE CHARTER

I. Purpose

The purpose of the Risk and Compliance Committee (the “Committee”) of the Board of Directors (the “Board”) is to assist the Board in the oversight of enterprise risk and operational compliance across California Water Service Group (the “Company”) and its subsidiaries generally, including (i) risk assessment and risk management programs and practices of the Company and (ii) compliance with laws, regulations and policies applicable to the Company.</p> <p style=" text-indent:="" 50px;"="">Monitoring of risk and compliance relating to the Company’s financial reporting and internal controls is the responsibility of the Audit Committee. Monitoring of risk with respect to executive compensation is the responsibility of the Organization and Compensation Committee. Monitoring of risk with respect to corporate governance is the responsibility of the Nominating and Corporate Governance Committee. The Committee shall communicate with other Board Committees with respect to any areas of overlap.

II. Committee Membership

The Committee will consist of at least three independent directors appointed by the Board on the recommendation of the Nominating/Corporate Governance Committee. At least one Committee member shall be a member of the Audit Committee to help facilitate coordination between the committees on financial risk and compliance matters with legal and regulatory requirements. Each Committee member shall be selected based upon their related areas of expertise in areas that can aid the Company in improving performance and mitigating risk, as determined by the Board. The Board will designate a Committee Chair(s).

III. Meetings

The Committee will meet as often as may be deemed necessary or appropriate, in its judgment, and at such times and places as the Committee or its Chair determines. The majority of the members of the Committee constitutes a quorum. The Committee will report no less than annually to the full Board, inclusive of the Audit Committee, with respect to its activities.

IV. Subcommittees

The Committee may delegate its duties and responsibilities to one or more subcommittees, consisting of not less than two members of the Committee, as it determines appropriate.

V. Outside Advisors

In discharging its oversight role and responsibilities, the Committee is empowered to investigate any matter brought to its attention within the scope of its responsibilities or assigned by the Board of Directors. The Committee may require Company personnel to assist in any such investigations, and it is empowered to engage and retain outside legal counsel and other experts and advisors to assist in such investigations or other matters as it deems necessary. The Committee shall receive appropriate funding from the Company, as determined by the Committee, for payment of compensation to and any such experts and advisors retained by the Committee, and for the payment of ordinary administrative expenses that are necessary and appropriate in carrying out the Committee’s duties.

VI. Responsibilities of the Committee

The Committee provides an oversight function for risk and compliance, including enterprise risk management, safety, physical security, environmental and general risk and compliance. The Company’s management retains responsibility for assuring the Company’s compliance with applicable laws and regulations and executing the Company’s Enterprise Risk Management program. In fulfilling these responsibilities, management is ultimately accountable to the Committee and the Board. To fulfill its responsibilities, the Committee shall:

A. With Respect to Enterprise Rise Management

Discuss with management the identification of principal risks arising out of the Company’s business, including Operations and Facilities; review the effectiveness of the process used to identify and analyze major risks, as well as the effectiveness of the programs to manage and mitigate risks.
Review with management the Company’s risk assessments, the steps management has taken, or would consider taking, to manage or mitigate major, identified risks or exposures and safeguard assets, and the Company's policies and procedures for risk assessment, management and asset protection.
Discuss with the Company current and emerging matters that present risks to the business, strategy, operations, performance, or public image of the Company, or are otherwise pertinent to the Company and its stakeholders.
Review the Company’s Emergency Preparedness and Business Continuity Risk program, including emergency response training, tabletop exercises, and other such coordinated activities conducted with the appropriate authorities.

B. With Respect to Safety

Review the Company’s goals, programs, policies, and practices and the effectiveness of such programs with respect to promoting a strong culture of safety for employees and protecting the public.

C. With Respect to Physical Security

Review the Company’s goals, programs, policies, and practices and the effectiveness of such programs with respect to physical safety and security and the protection of Company assets.
Review the key elements of the Company’s physical safety and security programs and the nature and extent of preventive, detective, and remedial controls and processes that management uses to protect the Company’s assets.

D. With Respect to Environmental and Water Quality

Review the Company’s goals, programs, policies, and practices and the effectiveness of such programs with respect to environmental contamination risk, natural or human-caused disaster risk and water quality risk.
Review the key elements of the Company’s environmental programs and the nature and extent of preventive, detective, and remedial controls and processes that management uses to address such risks.

E. Responsibilities Applicable to Compliance

Oversee the Company’s compliance program with respect to legal and regulatory requirements (together with the Audit Committee with respect to legal and regulatory requirements that may have a material impact on the Company’s financial statements or that are otherwise required to be overseen by the Audit Committee pursuant to the rules of the New York Stock Exchange), including the Company’s code of conduct for executive officers and employees, and oversee the Company’s policies and procedures for monitoring compliance. At least annually discuss with the Audit Committee any legal and regulatory compliance matters that may have a material impact on the Company’s financial statements. At least annually, review the implementation and effectiveness of the Company’s compliance program with the Chief Financial Officer and Vice President, General Counsel, who shall have the authority to communicate directly to the Committee, promptly, about reports of actual and alleged violations of the code of conduct, including any matters involving criminal conduct or potential criminal conduct.
Oversee the Company’s other compliance programs (other than those relating to accounting, internal accounting controls, auditing, cybersecurity risk and third-party supplier risk, which are reviewed by the Audit Committee), as well as the Company’s policies and procedures for monitoring compliance.
Review reports of complaints received by the Company from internal and external sources regarding any ethics or compliance matters that are operational in nature (all other complaints are reviewed by the Audit Committee). There also shall be procedures for the Committee Chair, or the Independent Lead Director to investigate these matters.
Make such recommendations to management and the Board with respect to any of the above matters as the Committee deems necessary or appropriate.

VII. Annual Performance Evaluation and Other Matters

The Committee will annually evaluate its performance and the adequacy of its charter and recommend changes to the Board as appropriate. Nothing in this Charter shall relieve the Audit Committee of its obligations under applicable law or the rules of the New York Stock Exchange.

Board approved: April 29, 2026