Banca Generali S p A : Independent Auditors' Report on the consolidated non financial statements

KPMG S.p.A.

Revisione e organizzazione contabile Via Pierluigi da Palestrina, 12

34133 TRIESTE TS Telefono +39 040 3480285 Emailit-fmauditaly@kpmg.itPECkpmgspa@pec.kpmg.it

(This independent auditors' report has been translated into English solely for the convenience of international readers. Accordingly, only the original Italian version is authoritative.)

Independent auditors' report on the consolidated non-financial statement pursuant to article 3.10 of Legislative decree no. 254 of 30 December 2016 and article 5 of the Consob Regulation adopted with Resolution no. 20267 of 18 January 2018

To the board of directors of

Banca Generali S.p.A.

Pursuant to article 3.10 of Legislative decree no. 254 of 30 December 2016 (the "decree") and article 5.1.g) of the Consob (the Italian Commission for listed companies and the stock exchange) Regulation adopted with Resolution no. 20267 of 18 January 2018, we have been engaged to perform a limited assurance engagement on the 2023 consolidated non-financial statement of the Banca Generali Group (the "group") prepared in accordance with article 4 of the decree, presented in the specific section of the Directors' Report in Operations and approved by the board of directors on 5 March 2024 (the "NFS").

Our procedures did not cover the information set out in the "Regulation (EU) No. 2020/852 on Taxonomy disclosure" and the related "Annex 2 - Disclosure pursuant to Annex VI of Commission Delegate Regulation (EU) No. 2021/2178" section of the NFS required by article 8 of Regulation (EU) 852 of 18 June 2020.

Responsibilities of the directors and board of statutory auditors ("Collegio Sindacale") of Banca Generali S.p.A. (the "parent") for the NFS

The directors are responsible for the preparation of an NFS in accordance with articles 3 and 4 of the decree and the "Global Reporting Initiative Sustainability Reporting Standards" issued by GRI - Global Reporting Initiative (the "GRI Standards"), which they have identified as the reporting standards.

The directors are also responsible, within the terms established by the Italian law, for such internal control as they determine is necessary to enable the preparation of an NFS that is free from material misstatement, whether due to fraud or error.

Moreover, the directors are responsible for the identification of the content of the NFS, considering the aspects indicated in article 3.1 of the decree and the group's business and characteristics, to the extent necessary to enable an understanding of the group's business, performance, results and the impacts it generates.

KPMG S.p.A. è una società per azioni di diritto italiano e fa parte del network KPMG di entità indipendenti affiliate a KPMG International Limited, società di diritto inglese.

Ancona Bari Bergamo Bologna Bolzano Brescia Catania Como Firenze Genova Lecce Milano Napoli Novara Padova Palermo Parma Perugia Pescara Roma Torino Treviso Trieste Varese Verona

Società per azioni Capitale sociale

Euro 10.415.500,00 i.v.

Registro Imprese Milano Monza Brianza Lodi e Codice Fiscale N. 00709600159

R.E.A. Milano N. 512867

Partita IVA 00709600159 VAT number IT00709600159 Sede legale: Via Vittor Pisani, 25 20124 Milano MI ITALIA

The directors' responsibility also includes the design of an internal model for the management and organisation of the group's activities, as well as, with reference to the aspects identified and disclosed in the NFS, the group's policies and the identification and management of the risks generated or borne.

The Collegio Sindacale is responsible for overseeing, within the terms established by the Italian law, compliance with the decree's provisions.

Auditors' independence and quality control

We are independent in compliance with the independence and all other ethical requirements of the International Code of Ethics for Professional Accountants (including International Independence Standards, the IESBA Code) issued by the International Ethics Standards Board for Accountants, which is founded on fundamental principles of integrity, objectivity, professional competence and due care, confidentiality and professional behaviour. Our company applied International Standard on Quality Control 1 (ISQC Italia 1) and, accordingly, maintained a system of quality control including documented policies and procedures regarding compliance with ethical requirements, professional standards and applicable legal and regulatory requirements.

Auditors' responsibility

Our responsibility is to express a conclusion, based on the procedures performed, about the compliance of the NFS with the requirements of the decree and the GRI Standards. We carried out our work in accordance with the criteria established by "International Standard on Assurance Engagements 3000 (revised) - Assurance Engagements other than Audits or Reviews of Historical Financial Information" ("ISAE 3000 revised"), issued by the International Auditing and Assurance Standards Board applicable to limited assurance engagements. This standard requires that we plan and perform the engagement to obtain limited assurance about whether the NFS is free from material misstatement. A limited assurance engagement is less in scope than a reasonable assurance engagement carried out in accordance with ISAE 3000 revised, and consequently does not enable us to obtain assurance that we would become aware of all significant matters and events that might be identified in a reasonable assurance engagement.

The procedures we performed on the NFS are based on our professional judgement and include inquiries, primarily of the parent's personnel responsible for the preparation of the information presented in the NFS, documental analyses, recalculations and other evidence gathering procedures, as appropriate.

Specifically, we carried out the following procedures:

• 1. Analysing the material aspects based on the group's business and characteristics disclosed in the NFS, in order to assess the reasonableness of the identification process adopted on the basis of the provisions of article 3 of the decree and taking into account the reporting standards applied.

• 2. Analysing and assessing the identification criteria for the reporting scope, in order to check their compliance with the decree.

• 3. Comparing the financial disclosures presented in the NFS with those included in the group's consolidated financial statements.

• 4. Gaining an understanding of the following:

-

the group's business management and organisational model, with reference to the management of the aspects set out in article 3 of the decree;

• - the entity's policies in connection with the aspects set out in article 3 of the decree, the achieved results and the related key performance indicators;

• - the main risks generated or borne in connection with the aspects set out in article 3 of the decree.

Moreover, we checked the above against the disclosures presented in the NFS and carried out the procedures described in point 5.a).

5. Understanding the processes underlying the generation, recording and management of the significant qualitative and quantitative information disclosed in the NFS.

Specifically, we held interviews and discussions with the parent's management personnel. We also performed selected procedures on documentation to gather information on the processes and procedures used to gather, combine, process and transmit non-financial data and information to the office that prepares the NFS.

Furthermore, with respect to significant information, considering the group's business and characteristics, at parent and subsidiaries level:

• a) we held interviews and obtained supporting documentation to check the qualitative information presented in the NFS and, specifically, the business model, the policies applied and main risks for consistency with available evidence,

• b) we carried out analytical and limited procedures to check, on a sample basis, the correct aggregation of data in the quantitative information;

• c) we obtained documentary evidence supporting the correct application of the procedures and methods used to calculate the indicators.

Conclusion

Based on the procedures performed, nothing has come to our attention that causes us to believe that the 2023 consolidated non-financial statement of the Banca Generali Group has not been prepared, in all material respects, in accordance with the requirements of articles 3 and 4 of the decree and the GRI Standards.

Our conclusion does not extend to the information set out in the "Regulation (EU) No. 2020/852 on Taxonomy disclosure" and the related "Annex 2 - Disclosure pursuant to Annex VI of Commission Delegate Regulation (EU) No. 2021/2178" section of the NFS required by article 8 of Regulation (EU) 852 of 18 June 2020.

Trieste, 27 March 2024

KPMG S.p.A.

(signed on the original)

Pietro Dalle Vedove Director of Audit