Better Health for All

CACI's principal goods and services, which are primarily IT solutions for government, have a neutral direct health impact. The company provides healthcare data services to NHS organizations

and has developed a tele-radiology system for mobile healthcare units to improve diagnosis and treatment access for vulnerable populations. CACI demonstrates strong healthcare data responsibility, with data handling procedures, including sources, storage, and sharing, complying with regulations such as GDPR, the Data Protection Act 2018, and NHS data governance policies. The company emphasizes patient data integrity and privacy. CACI's products and services do not have direct safety implications, health risks requiring disclosure, or addiction potential. Its operations do not generate significant health externalities, nor do they directly involve preventative health, treatment activities, or health crisis response. The company is not a pharmaceutical or food producer, does not conduct clinical trials, and its business activities do not substantially affect mental health outcomes.

Fair Pay & Worker Respect

The company's CEO-to-median employee pay ratio was 130:1 for Fiscal Year 2024.

The rate of recordable work-related injuries for U.S.-based employees was 0.12 in Calendar Year 2023. The employee engagement survey for Fiscal Year 2023 showed a 90% favorable sustainable engagement score.

Fair Trade & Ethical Sourcing

No quantitative data or specific facts related to Fair Trade & Ethical Sourcing metrics are provided in the available articles. The articles outline CACI's policies and commitments regarding ethical and legal business practices

, supplier expectations , and supply chain transparency , but do not include performance data such as certification percentages, audit frequencies, incident counts, traceability coverage, remediation times, ethical clause coverage, high-risk material spend, or supplier diversity spend.

Honest & Fair Business

CACI operates a hotline program for reporting ethics violations, covering areas such as law, corporate policy, and accounting, with information kept confidential to the extent possible

. However, there is no evidence provided regarding independent investigation processes for these reports. The company also has a formal anti-bribery policy, committing to compliance with U.S. and international anti-bribery laws, including the FCPA . A comprehensive trade compliance program, which includes training, is in place . The available information does not detail the frequency of this training or provide metrics on its effectiveness.

Kind to Animals

No specific, concrete data points were found in the provided articles regarding CACI.US's performance against any of the 'Kind to Animals' KPIs. The articles did not contain information on cruelty-free certifications, animal testing practices, humane certifications for animal operations, wildlife conservation impact, ethical input substitution, supplier audits for animal welfare, cage-free sourcing, animal agriculture ethics, or engagement in animal welfare policy and innovation for CACI.US.

Information related to Charles River Laboratories in one article was not attributed to CACI.US, and information about FDA policies was not specific to CACI.US.

No War, No Weapons

CACI derived 51.8% of its revenue from the Department of Defense for the three months ended December 31, 2025.

The company develops electronic warfare solutions, Counter-Unmanned Aircraft Systems (C-UAS) technology, and Signals Intelligence (SIGINT) sensors, including remote modular terminals to intercept adversarial satellite communication for a Department of Defense customer. These dual-use technologies are consistently presented in a military context, with no evidence of civilian safeguards or civilian-first focus. CACI also delivers AI-enabled operating systems for the U.S. Army, with no mention of ethical or technical safeguards for these military AI applications. Furthermore, the company is involved in military surveillance activities, specifically intercepting satellite communication for a Department of Defense customer, without public disclosures or transparency measures regarding these contracts.

Respect for Cultures & Communities

No specific, quantifiable data points were found in the provided articles that directly address CACI's performance against the defined KPIs for 'Respect for Cultures & Communities'. The articles offer general information about training services, CSR/ESG overviews, and discussions on ethnic diversity in the tech industry, but lack concrete evidence such as the number of formal partnerships, percentage of revenue reinvested locally, cultural appropriation incidents, or cultural impact assessment protocols specific to CACI.US. While CACI holds Diwali desk yoga and Black History Month webinars

, this is not evidence of a response to cultural incidents or controversies, nor does it provide data for cultural training completion percentages.

Safe & Smart Tech

CACI had two incidents on legacy networks where no customer personal identifiable information (PII) or CACI proprietary information was disclosed or exfiltrated, and neither incident was considered material.

The company states that no identified cybersecurity threats have materially affected its business operations or financial condition. CACI holds extensive certifications, including enterprise-wide ISO/IEC 27001:2022 (recertified and transitioned, held since 2006), CyberVadis Platinum status (960/1000), CyberGRX Tier-2 assessment as Mature, CMMC Level 2, Cyber Essentials Plus, and the Data and Marketing Association’s DataSeal. It was also the first organization in the U.S. to complete an appraisal under the CMMI Institute’s CMMI-DEV V3.0 Maturity Level 3. CACI does not sell, lease, rent, or license personal information to third parties. Users can unsubscribe from company news and information emails and contact CACI to access or amend their information. CACI states it complies with applicable legal requirements, industry standards, new SEC standards, government requirements including DFAR 252.204-7012 and NIST 800-171, the Foreign Corrupt Practices Act (FCPA), U.S. trade control laws (ITAR, EAR, OFAC), and addresses data transfers from the EEA.