Ariz. Rev. Stat. § 20-2402
C. A risk retention group that is licensed in this state shall comply with all of the following:
4. The board of directors of a risk retention group shall adopt a written policy in the plan of operation as approved by the board that requires the board of directors to do all of the following:
(e) Review and approve, at least annually, all of the following:
5. Each risk retention group shall have an audit committee composed of at least three independent board members. A nonindependent board member may participate in the activities of the audit committee, if invited by the members, but cannot be a member of that committee. The audit committee shall have a written charter that defines the committee's purpose, which, at a minimum, shall be to do all of the following:
7. The board of directors shall adopt and disclose governance standards by making the information available through electronic means, such as posting the information on the risk retention group's website, or other means, and providing that information to members and insureds on request. The information shall include all of the following:
8. The board of directors shall adopt and disclose a code of business conduct and ethics for board directors, officers and employees and promptly disclose to the board of directors any waivers of the code for board directors or executive officers, including all of the following topics:
D. For the purposes of this section:
3. "Material relationship" means a person's relationship with the risk retention group, including any of the following: