Corporate Law · Board & Corporate Governance Advisory
Corporate Governance Framework Design
A Corporate Governance Framework is the operating system that determines whether your Board actually governs or merely rubber-stamps management decisions.
Chartered Accountants · Chennai · Hyderabad · Bangalore · Dubai · Since 1986
A Corporate Governance Framework is the operating system that determines whether your Board actually governs or merely rubber-stamps management decisions. At PNPC Global, we design governance frameworks for private companies preparing for institutional capital, listed companies navigating SEBI's Listing Obligations and Disclosure Requirements, and family-run businesses professionalising ahead of succession. We do not hand you a policy template — we build the committee structure, the delegation of authority, the risk oversight cadence, and the documentation discipline that stands up to investor due diligence, statutory audit, and regulatory scrutiny alike.
What it costs
No hidden charges. The exact figure is set in your engagement letter.
A Corporate Governance Framework is the structured set of policies, committee charters, delegation matrices, reporting lines, and control mechanisms through which a company's Board of Directors directs and oversees management on behalf of shareholders and other stakeholders. In India, the statutory foundation for governance sits in the Companies Act 2013 — Board composition under Section 149, independent director criteria under Section 149(6), Audit Committee under Section 177, Nomination and Remuneration Committee under Section 178, Corporate Social Responsibility Committee under Section 135, related-party transaction approval under Section 188, and directors' duties under Section 166. For listed companies, the SEBI (Listing Obligations and Disclosure Requirements) Regulations, 2015 layer on substantially more prescriptive requirements — Board composition thresholds, committee quorum rules, related-party transaction materiality thresholds, disclosure timelines, and the annual Corporate Governance Report that must be filed with stock exchanges and included in the Annual Report.
Governance framework design is distinct from routine secretarial compliance. Secretarial compliance ensures the correct forms are filed by the correct deadlines. Governance framework design determines whether the Board, committees, and management actually function the way the law and good practice intend — whether independent directors have genuine access to information, whether related-party transactions are scrutinised rather than nodded through, whether risk is identified and escalated before it becomes a crisis, and whether the delegation of financial and operational authority matches the size and complexity of the business. A company can be fully compliant on paper — every filing made, every meeting minuted — and still have a governance framework that fails the moment it is tested by a related-party dispute, a whistleblower complaint, or investor due diligence.
PNPC's governance framework engagements typically produce: a Board Charter defining the Board's role, reserved matters, and delegation boundaries; committee charters for Audit, Nomination & Remuneration, CSR, Stakeholder Relationship, and Risk Management Committees as applicable; a Delegation of Authority (DoA) matrix mapping financial and operational sign-off limits by designation; a Related Party Transaction Policy with materiality thresholds and approval workflows; a Whistleblower/Vigil Mechanism Policy under Section 177(9); a Risk Management Policy; a Code of Conduct for directors and senior management; and — for listed entities — the full SEBI LODR-compliant policy suite including Insider Trading Code (SEBI PIT Regulations), Material Events disclosure policy, and Succession Planning policy. Each document is drafted to the company's actual size, sector, and stage — not adapted from a generic template that does not reflect how the business actually operates.
Governance maturity typically evolves in stages. An early-stage private company needs a functioning Board and Audit Committee discipline appropriate to its size. A company approaching a Series B/C round or private equity investment needs investor-grade governance — independent directors, a functioning Audit Committee with a financial expert, documented related-party transaction approval, and management information systems that produce reliable Board reporting. A company approaching an IPO must meet the full SEBI LODR framework at least one year before listing, since regulators and merchant bankers scrutinise governance track record, not just governance documents drafted for the offer document. A listed company must sustain this framework continuously, with the Corporate Governance Report, related-party disclosures, and Board evaluation forming part of annual compliance that both SEBI and shareholders review.
When a formal governance framework is essential
Preparing for a Series A/B/C funding round or private equity investment — institutional investors require a functioning Audit Committee, independent Board representation, and documented related-party transaction discipline before signing a term sheet
Planning an IPO within 12–24 months — SEBI LODR governance requirements (Board composition, committee structure, disclosure policies) must be operating in practice, not just drafted, well before the offer document stage
Crossing statutory thresholds that trigger mandatory governance requirements — independent directors, Audit Committee, or CSR Committee become mandatory once a company crosses the paid-up capital, turnover, or net worth thresholds prescribed under the Companies Act and applicable Rules
Family-run or promoter-led businesses professionalising ahead of a succession event, external CEO hire, or generational transition — a formal Board Charter and DoA prevent authority disputes and clarify who decides what
Multiple related entities transacting with each other regularly — a documented Related Party Transaction Policy with materiality thresholds and Audit Committee approval workflow is essential to avoid Section 188 non-compliance and shareholder disputes
A listed company preparing its annual Corporate Governance Report or responding to a SEBI/stock exchange observation on governance disclosures
Post-investment or post-acquisition — new investors or an acquirer typically require the target company's governance framework to be upgraded to institutional standards within a defined period after closing
A whistleblower complaint, related-party dispute, or Board-level disagreement has exposed the absence of a clear escalation, investigation, or decision-making mechanism
When a lighter-touch approach may be more appropriate
A very early-stage startup with 2 founder-directors, no external investors, and no near-term funding plans — basic Board meeting and minute-keeping discipline (covered under routine secretarial compliance) is sufficient until the company scales or raises capital
A wholly-owned subsidiary of a larger group where governance policies are set and cascaded from the parent entity — a bespoke framework may duplicate what group policy already covers, though local statutory Board/committee requirements still apply
A dormant or near-dormant company with no active operations — resources are better spent on a strike-off or restructuring decision than on governance framework design
A sole proprietorship, partnership, or LLP with no Board structure under the Companies Act — governance in these structures is addressed through the partnership deed or LLP agreement, not a Companies Act governance framework
A company that already has a mature, SEBI LODR-compliant governance framework in place and simply needs an annual policy refresh — this is better scoped as a governance health-check or secretarial audit rather than a full framework design engagement
Governance obligations by company category under the Companies Act 2013 and SEBI LODR
| Requirement | Private Company (unlisted) | Public Company (unlisted, meeting thresholds) | Listed Company (SEBI LODR) |
|---|---|---|---|
| Independent Directors | Not mandatory unless thresholds under Sec 149(4) read with Rule 4 are met | Mandatory once paid-up capital / turnover / borrowings thresholds are crossed — at least 2 | Mandatory — at least 1/3rd of Board if Chairperson is non-executive, at least 1/2 if there is no regular non-executive Chairperson, and more than 1/2 if the non-executive Chairperson is a promoter or related to a promoter, under LODR Reg 17 |
| Audit Committee | Not mandatory unless thresholds under Sec 177 are triggered | Mandatory once thresholds are crossed — minimum 3 directors, majority independent | Mandatory — minimum 3 members, 2/3rd independent, financially literate Chairperson (Independent Director) under LODR Reg 18 |
| Nomination & Remuneration Committee | Not mandatory unless thresholds are triggered | Mandatory once thresholds are crossed under Sec 178 | Mandatory — composition and role prescribed in detail under LODR Reg 19 |
| CSR Committee | Mandatory if net worth ≥ Rs 500 crore, turnover ≥ Rs 1,000 crore, or net profit ≥ Rs 5 crore (Sec 135) | Same thresholds apply regardless of listing status | Same thresholds apply; CSR policy disclosure additionally required in Annual Report and Business Responsibility Report |
| Related Party Transaction Policy | Good practice; approval required under Sec 188 for specified transactions | Same Sec 188 requirement applies | Mandatory written policy + Audit Committee approval + materiality-based shareholder approval under LODR Reg 23 |
| Woman Director | Not mandatory | Mandatory once thresholds under Sec 149(1) proviso are crossed | Mandatory — at least 1 woman director, and 1 independent woman director for top listed entities under LODR Reg 17 |
| Vigil Mechanism / Whistleblower Policy | Mandatory only if the company accepts deposits or has borrowed above prescribed limits, or is listed | Same trigger conditions apply | Mandatory for all listed companies under LODR Reg 22 |
| Corporate Governance Report | Not applicable | Not applicable | Mandatory annual report to stock exchanges and inclusion in Annual Report under LODR Schedule V |
| Secretarial Audit | Not triggered by turnover for a standalone private company — applies only if outstanding loans/borrowings from banks or public financial institutions are Rs 100 crore or more, or if the company is a deemed public company (e.g. subsidiary of a public company) meeting public-company thresholds (Sec 204 read with applicable Rules) | Mandatory if paid-up capital ≥ Rs 50 crore or turnover ≥ Rs 250 crore or borrowings ≥ Rs 100 crore (Sec 204) | Mandatory for every listed entity and its material unlisted subsidiaries, irrespective of size, under LODR Reg 24A |
| Board Evaluation | Good practice only | Good practice, becomes formal once independent directors are appointed (Sch IV) | Mandatory annual Board, committee, and individual director evaluation disclosed in Annual Report |
| Risk Management Committee | Not mandatory | Not mandatory unless sector-specific regulator requires it | Mandatory for top 1,000 listed entities by market capitalisation under LODR Reg 21 |
| Insider Trading Code | Not applicable (no listed securities) | Not applicable | Mandatory Code of Conduct under SEBI (Prohibition of Insider Trading) Regulations, 2015 |
Thresholds for mandatory committees and independent directors are prescribed under Section 149, Section 177, Section 178, and the Companies (Appointment and Qualification of Directors) Rules, 2014 — they change based on paid-up share capital, turnover, and outstanding loans/borrowings/debentures/deposits, and should be checked against the company's latest financials each year, not assumed static. This table is directional; PNPC confirms applicable thresholds during the scoping consultation.
| # | Stage & What PNPC Does | What Generic Templates Miss | Timeline |
|---|---|---|---|
| 1 | Governance Diagnostic — Assess current state against statutory and investor-grade benchmarks | We map your current Board composition, committee structure (if any), existing policies, and decision-making practice against Companies Act thresholds, SEBI LODR (if listed or listing-bound), and what institutional investors typically expect at your funding stage. Most companies discover gaps they did not know existed — a missing DoA, an RPT policy that exists on paper but is never actually followed, or a committee that has never met. | Week 1 |
| 2 | Board Composition Review — Right-sizing the Board and identifying independent director needs | We assess whether your current Board composition meets statutory minimums, whether independent directors (if any) meet the independence criteria under Section 149(6) — no pecuniary relationship, no relative in the promoter group, cooling-off periods for former employees — and whether the skills matrix of the Board (finance, sector expertise, legal, ESG) matches what investors and regulators will expect. | Week 1–2 |
| 3 | Board Charter Drafting — Defining the Board's role, reserved matters, and delegation boundaries | A Board Charter lists the specific decisions the Board itself must approve — M&A above a threshold, capital expenditure above a limit, related-party transactions, senior leadership appointments — versus what is delegated to management. Without this document, every significant decision either goes to the Board unnecessarily (slowing the business) or gets made by management without Board oversight (a governance failure investors specifically test for in diligence). | Week 2–3 |
| 4 | Committee Charter Design — Audit, NRC, CSR, Stakeholder Relationship, Risk Management as applicable | Each committee charter defines composition requirements, quorum, frequency of meetings, and the specific matters within its remit — for the Audit Committee: internal financial controls review, auditor oversight, whistleblower complaint review; for the NRC: remuneration policy, senior appointment criteria, performance evaluation framework. We draft only the committees your company actually needs at its current stage and threshold status — not a maximal SEBI LODR suite for a company two funding rounds away from listing. | Week 3–4 |
| 5 | Delegation of Authority (DoA) Matrix — Financial and operational sign-off limits by role | This is the document that operationalises governance day-to-day. Who can approve a Rs 5 lakh vendor payment versus a Rs 50 lakh capital purchase versus a Rs 5 crore acquisition? Who can sign a lease, open a bank account, hire above a certain salary band? Without a documented DoA, authority defaults to whoever is willing to sign — a control gap that internal auditors, statutory auditors, and investors flag immediately. | Week 3–4 |
| 6 | Related Party Transaction Policy — Materiality thresholds and approval workflow | We define what counts as a related party (per Section 2(76) and, for listed entities, the broader LODR Reg 2(1)(zb) definition), set materiality thresholds for Audit Committee versus shareholder approval, and build the practical workflow — how an RPT is identified, documented, priced at arm's length, and approved before (not after) execution. This is one of the most commonly deficient areas we find in governance diagnostics of promoter-run businesses. | Week 4–5 |
| 7 | Risk Management Policy & Framework — Identification, escalation, and Board reporting cadence | We design a risk register template, an escalation matrix (which risks go to management, which go to the Audit/Risk Committee, which go to the full Board), and a reporting cadence. For companies below the LODR Reg 21 threshold, a Risk Management Committee is not mandatory, but a functioning risk oversight process at Board or Audit Committee level remains essential governance practice. | Week 4–5 |
| 8 | Whistleblower / Vigil Mechanism Policy — Section 177(9) compliant complaint and investigation process | The policy must provide a mechanism for directors and employees to report genuine concerns, protection against victimisation, and — critically — direct access to the Audit Committee Chairperson in appropriate cases. We design the intake, investigation, and Board-reporting workflow, not just the policy document. | Week 5 |
| 9 | Code of Conduct — Directors and Senior Management | Covers conflict of interest disclosure, confidentiality, related-party dealing, gifts and entertainment, and — for listed companies — insider trading restrictions aligned to the SEBI PIT Regulations Code of Conduct requirements. We tailor this to sector-specific risk (e.g., data privacy obligations for a technology company, FSSAI-adjacent conduct for a food business). | Week 5 |
| 10 | Listed-Entity Policy Suite (where applicable) — Insider Trading Code, Material Events Policy, Succession Planning, Document Preservation, Familiarisation Programme | For companies listed or preparing to list, SEBI LODR Schedule requires a specific set of policies to be disclosed on the company website. We draft the full suite, cross-check consistency between policies (a common audit finding is contradictory provisions across policies drafted at different times by different advisors), and prepare the Corporate Governance Report format. | Week 5–7 (listed entities only) |
| 11 | Board & Committee Meeting Calendar — Building the annual governance cadence into practice | We build the actual meeting calendar — Board meetings (minimum 4/year, gap not exceeding 120 days under Section 173), Audit Committee meetings (minimum 4/year, gap not exceeding 120 days, per Secretarial Standards and, for listed companies, LODR Reg 18), and other committees — mapped against your existing statutory filing calendar so governance and compliance run on one integrated timeline, not two disconnected tracks. | Week 6 |
| 12 | Implementation Support & First-Cycle Facilitation — Making the framework operate, not just exist | We support the first Board meeting conducted under the new charter, the first Audit Committee meeting reviewing the new RPT policy in practice, and the first application of the DoA matrix to a real transaction. A framework that is only ever tested on paper fails the first time it meets a real decision — we make sure the first real test happens with us in the room. | Week 6–8 |
| 13 | Annual Governance Review & Refresh — Keeping the framework current as the company evolves | Governance frameworks age quickly — a new funding round changes the Board composition requirement; crossing a turnover threshold triggers mandatory committees; a new related-party arrangement needs policy application. PNPC reviews and refreshes the framework annually as part of ongoing engagement, rather than leaving it static until the next funding round or listing forces a rebuild. | Ongoing — annual cycle |
Realistic engagement timeline for a private company: 6–8 weeks from diagnostic to a fully operational framework with first-cycle facilitation. Listed-entity engagements with the full SEBI LODR policy suite typically run 8–10 weeks. Timelines depend on Board availability for review sessions and the complexity of existing related-party arrangements.
Existing Memorandum of Association and Articles of Association — governance design must be consistent with AoA provisions on Board powers, committee delegation, and shareholder approval matters
Existing Board resolutions and minutes for the last 2–3 financial years — to understand actual decision-making practice versus documented policy
Any existing policies — Related Party Transaction Policy, Risk Management Policy, Whistleblower Policy, Code of Conduct — even if outdated or inconsistently followed
Shareholders' Agreement (SHA), if any — investor rights, veto matters, and Board composition rights agreed with existing investors must be reflected in the new framework, not contradicted by it
Organisation chart and current reporting lines — to assess whether the delegation of authority matches actual operational structure
Latest audited financial statements — paid-up capital, turnover, net worth, and borrowings determine which committees and independent directors are mandatory under the Companies Act thresholds
Latest annual return (MGT-7/MGT-7A) and shareholding pattern — to confirm shareholder categories and any threshold-triggering shareholding structure
List of related parties — subsidiaries, associates, promoter-controlled entities, and any entity with common directors or key managerial personnel with the company
Details of any existing or proposed related-party transactions — nature, value, and frequency — to calibrate the RPT policy's materiality thresholds realistically
CSR applicability assessment — whether net worth, turnover, or net profit thresholds under Section 135 have been crossed in the immediately preceding financial year
List of current directors with DIN, appointment date, and category (Executive / Non-Executive / Independent)
For proposed independent directors — declaration of independence under Section 149(6), disclosure of other directorships and pecuniary relationships, and Independent Directors' Databank registration (IICA) status
Director skills matrix or CVs — to assess coverage of finance, legal, sector, technology, and ESG expertise on the Board
Details of any director interlocks — common directors across group companies — relevant to related-party transaction identification and conflict-of-interest policy design
Current SEBI LODR compliance status — existing Corporate Governance Report, if any, and any stock exchange observations or show-cause notices received
Merchant banker / lead manager correspondence on governance readiness, if an IPO process has commenced
Existing Insider Trading Code and Unpublished Price Sensitive Information (UPSI) list, if any
Registrar and Share Transfer Agent (RTA) details and Stakeholder Relationship Committee complaint records, if applicable
Secretarial Audit Report (Form MR-3) from the preceding year, if applicable under Section 204
Description of business operations, sector, and any sector-specific regulatory overlay (RBI for NBFCs, IRDAI for insurance intermediaries, SEBI for market intermediaries) that adds governance requirements beyond the Companies Act baseline
Funding stage and cap table — to calibrate governance maturity to what the next round of investors will realistically expect
Any pending or anticipated litigation, regulatory notices, or whistleblower complaints — these shape the urgency and specific focus areas of the framework
Group structure chart, if the company is part of a larger group — to identify related-party relationships and any group-level governance policy that must be reconciled with entity-level policy
Board Charter — reserved matters, delegation boundaries, Board composition and tenure policy
Committee Charters — Audit, Nomination & Remuneration, CSR, Stakeholder Relationship, and Risk Management as applicable, each with composition, quorum, and remit defined
Delegation of Authority (DoA) Matrix — financial and operational sign-off limits mapped to designation
Related Party Transaction Policy with materiality thresholds and approval workflow diagram
Risk Management Policy and risk register template
Vigil Mechanism / Whistleblower Policy with intake and investigation workflow
Code of Conduct for Directors and Senior Management
Board and committee meeting calendar for the year, integrated with the statutory compliance calendar
For listed entities — Insider Trading Code, Material Events Disclosure Policy, Succession Planning Policy, Document Preservation Policy, Familiarisation Programme for Independent Directors, and Corporate Governance Report template
| Phase | Triggered By | PNPC CA/CS Guidance | Risk If Ignored |
|---|---|---|---|
| Baseline Governance (Early Stage) | Company incorporation with 2+ founder-directors | Basic Board and minute-keeping discipline; a simple written record of who can approve what, even informally, before a formal DoA is warranted. Founders agree on reserved matters requiring joint sign-off. | Undocumented authority leads to disputes between co-founders on who approved what; no audit trail if a decision is later challenged. |
| Threshold Crossing | Paid-up capital, turnover, or borrowings cross Companies Act thresholds | Mandatory Audit Committee, Nomination & Remuneration Committee, and independent director appointment triggered under Sections 177, 178, and 149. PNPC monitors financial statements each year to flag threshold crossing before the statutory deadline for compliance. | Non-compliance with mandatory committee/independent director requirements attracts penalties under the Companies Act and is flagged in the statutory auditor's report and secretarial audit, if applicable. |
| Pre-Funding Round | Term sheet received or funding process initiated | Governance upgrade to investor-grade standard — functioning Audit Committee, RPT policy actually followed (not just drafted), clean related-party transaction history, and DoA matrix that shows operational discipline. Investors' legal and financial due diligence tests all of this directly. | Governance gaps discovered during diligence delay the round, reduce valuation leverage, or in serious cases (undisclosed RPTs, no Board oversight of large transactions) cause investors to walk away. |
| Post-Investment | Funding round closes | New investor Board/observer rights are incorporated into the Board Charter. Reserved matters list is updated to reflect any investor veto rights agreed in the Shareholders' Agreement. Reporting cadence to the Board is formalised — MIS packs, quarterly financials, key metrics dashboards. | SHA-agreed governance rights not reflected in actual Board practice creates disputes with investors and potential breach of contractual obligations under the SHA. |
| Scaling / Pre-IPO | Revenue and headcount growth, IPO consideration within 12–24 months | Full SEBI LODR-readiness assessment — Board composition, all mandatory committees operating with a real track record (not freshly constituted weeks before the offer document), Risk Management Committee if within the applicable market-cap band, and at least 12–18 months of demonstrable governance history for merchant banker and SEBI comfort. | Governance framework built only at the offer-document stage lacks the track record SEBI and merchant bankers expect, which can delay or complicate the IPO timeline and invite additional regulatory queries. |
| Listed Company — Ongoing | Listing on stock exchange | Continuous SEBI LODR compliance — quarterly Corporate Governance Report, related-party transaction disclosures, Board and committee meeting cadence per Regulation 17-27, annual Board evaluation, and Secretarial Audit under Section 204 read with LODR Reg 24A. | LODR non-compliance attracts stock exchange fines that escalate for continuing default, adverse disclosure in the Corporate Governance Report, and reputational damage with institutional shareholders and proxy advisory firms. |
| Governance Incident | Whistleblower complaint, related-party dispute, regulatory notice, or Board-level conflict | Framework is tested in practice — vigil mechanism investigation process activated, Audit Committee reviews the complaint per its charter, and any RPT under dispute is assessed against the documented policy and arm's-length pricing evidence. PNPC supports the investigation process and Board reporting. | Without a pre-existing, documented process, the response to a governance incident is improvised — increasing legal exposure, regulatory risk, and reputational damage, and often triggering exactly the litigation or regulatory scrutiny a proper framework is designed to prevent. |
| Succession / Exit | Founder transition, M&A, or generational handover | Board Charter and DoA are reviewed and updated for the incoming leadership structure. Related-party arrangements involving outgoing promoters are reassessed and, where necessary, unwound or re-approved under the RPT policy. Governance continuity is documented for the incoming Board. | Poorly managed governance transition during succession or M&A creates authority vacuums, disputed transactions, and — in M&A contexts — becomes a specific diligence finding that affects deal terms or price. |
What exactly is a Corporate Governance Framework, in practical terms?
It is the complete set of documents and practices — a Board Charter, committee charters, a Delegation of Authority matrix, a Related Party Transaction Policy, a Risk Management Policy, a Whistleblower Policy, and a Code of Conduct — that together define who in your company can decide what, how significant transactions are approved and disclosed, and how risk is identified and escalated to the Board. It converts abstract Companies Act and SEBI LODR obligations into documents your company actually uses to run itself.
Does my private company need a formal governance framework if we are not listed?
It depends on your stage and thresholds. If your paid-up capital, turnover, or borrowings cross the levels prescribed under Sections 149, 177, and 178 of the Companies Act, mandatory committees and independent directors are triggered regardless of listing status. Even below those thresholds, any company planning institutional funding, an eventual IPO, or professionalising ahead of a leadership transition benefits significantly from a documented framework — investors and acquirers assess governance maturity as part of due diligence.
What triggers mandatory independent directors and an Audit Committee under the Companies Act?
Under Section 149(4) read with Rule 4 of the Companies (Appointment and Qualification of Directors) Rules, 2014, public companies crossing prescribed paid-up share capital, turnover, or aggregate outstanding loans/borrowings/debentures/deposits thresholds must appoint at least 2 independent directors. Section 177 mandates an Audit Committee for the same category of companies once thresholds are crossed. Private companies are generally exempt from these specific triggers unless they are subsidiaries of a public company that itself meets the thresholds.
What is a Delegation of Authority (DoA) matrix and why does PNPC treat it as central to governance design?
A DoA matrix is a structured document mapping specific financial and operational decisions — payment approvals, vendor contracts, capital expenditure, hiring above a salary band, real estate leases — to the designation or individual authorised to approve them, often on a tiered basis (e.g., CFO up to Rs 25 lakh, CEO up to Rs 1 crore, Board above that). It is the single most operational document in a governance framework because it is used daily, not just referenced at Board meetings.
What is a Related Party Transaction (RPT) and why does the policy matter so much?
A related party, under Section 2(76) of the Companies Act (and more broadly under SEBI LODR Regulation 2(1)(zb) for listed companies), includes directors, key managerial personnel, their relatives, and entities in which they or the promoter group hold significant influence or control. Section 188 requires Board (and in some cases shareholder) approval for specified RPTs, and pricing must be at arm's length. A documented RPT Policy with clear materiality thresholds ensures these transactions are identified, priced defensibly, and approved before execution — not discovered and justified after the fact.
How is a governance framework different from what our Company Secretary already does for secretarial compliance?
Secretarial compliance — Board meeting notices, minutes, annual filings, statutory registers — is necessary but procedural. Governance framework design addresses the substance behind those procedures: what should the Board actually be deciding, what should be delegated, how should risk and related-party exposure be identified and escalated, and whether the committee structure reflects real oversight or exists only on paper. PNPC works alongside your Company Secretary — we design the framework; ongoing secretarial compliance keeps it correctly filed and documented.
We are planning a Series B round. What governance gaps do investors typically find?
The most common findings in our experience: no documented DoA (authority is informal), an RPT policy that exists on paper but was never applied to actual intercompany transactions, a Board that meets the statutory minimum of 4 times a year but exercises no real oversight of strategy or risk, and no independent Board perspective at all. Investors read these as signals of execution risk beyond the specific gap itself — if governance discipline is weak, diligence teams look harder at financial and operational claims too.
Is CSR Committee formation mandatory for our company?
Under Section 135 of the Companies Act 2013, a CSR Committee and CSR spending obligation is mandatory for any company that, in the immediately preceding financial year, had a net worth of Rs 500 crore or more, turnover of Rs 1,000 crore or more, or net profit of Rs 5 crore or more. If the company ceases to meet any of these thresholds for three consecutive financial years, the CSR Committee is not mandatory and the CSR provisions do not apply until the thresholds are met again.
What is the difference between an Independent Director and a Non-Executive Director?
A Non-Executive Director is simply a director who is not involved in day-to-day management — this could include a promoter's family member or a nominee of an investor. An Independent Director must additionally satisfy the specific independence criteria under Section 149(6) — no pecuniary relationship with the company or its promoters beyond permitted director remuneration, no relative who is or was a KMP or employee in specified periods, no material pecuniary relationship with the company's auditors or advisors, and other conditions. Only a genuinely independent director qualifies for statutory Audit Committee and Independent Directors' roles under the Act.
Do independent directors need to register on the Independent Directors' Databank?
Yes. Under the Companies (Appointment and Qualification of Directors) Rules, every individual intending to be appointed as an Independent Director of a company must register with the Indian Institute of Corporate Affairs (IICA) databank, and — unless exempted based on years of prior relevant experience — must pass the online proficiency self-assessment test within the prescribed period from the date of inclusion in the databank.
What is SEBI LODR and when does it start applying to a company?
The SEBI (Listing Obligations and Disclosure Requirements) Regulations, 2015 apply once a company's equity shares (or other specified securities) are listed on a recognised stock exchange. From the date of listing, the company must comply with the full LODR framework — Board composition (Regulation 17), Audit Committee (Regulation 18), Nomination & Remuneration Committee (Regulation 19), related-party transaction approval and disclosure (Regulation 23), the annual Corporate Governance Report (Schedule V), and a substantial set of continuous and periodic disclosure obligations to the stock exchanges.
What is a Whistleblower Policy or Vigil Mechanism, and is it mandatory for us?
A Vigil Mechanism under Section 177(9) of the Companies Act is mandatory for listed companies and for companies that accept deposits from the public or have borrowed money from banks and public financial institutions in excess of prescribed limits. It provides directors and employees a channel to report genuine concerns about unethical behaviour, fraud, or violation of the company's Code of Conduct, with protection against victimisation and, in appropriate cases, direct access to the Audit Committee Chairperson.
How does PNPC price a governance framework engagement?
PNPC scopes each engagement based on company stage, whether the framework must be SEBI LODR-compliant (listed or IPO-bound) or Companies Act-baseline (private/unlisted public), the number of committees and policies required, and whether historical related-party transactions need to be reviewed and regularised as part of the work. A fixed fee is confirmed in writing after the initial diagnostic — before drafting begins.
Can PNPC serve as an independent director on our Board?
PNPC's role is advisory — we design your governance framework, support committee functioning, and provide ongoing CA/CS guidance. We generally do not serve as independent directors on client Boards, as this can create a conflict between our advisory and audit-adjacent roles and the fiduciary duties of a sitting director. We can, however, assist you in identifying, vetting, and onboarding suitable independent director candidates from our professional network.
What is a Board Evaluation and is it mandatory for us?
Board Evaluation is a structured annual assessment of the performance of the Board as a whole, its committees, and individual directors — typically conducted through a questionnaire or facilitated discussion covering strategic oversight, risk management, and governance effectiveness. It becomes a formal requirement once independent directors are appointed under Schedule IV of the Companies Act, and is mandatory with detailed disclosure requirements for listed companies under SEBI LODR.
Our family business is bringing in a professional CEO for the first time. How does governance framework design help?
This is one of the most common triggers for engagement. A Board Charter and DoA clarify, in writing, exactly what decisions remain with the founder/promoter Board versus what is delegated to the new CEO and their management team — preventing the common friction of a professional CEO being hired with an implied mandate that the founder then informally overrides. It also typically surfaces related-party arrangements (family members on payroll, shared premises, intercompany loans) that need to be formalised or unwound before an outside CEO takes charge.
What happens if we ignore governance requirements and just keep filing our statutory returns on time?
You will likely remain in technical compliance for routine filings, but you accumulate governance risk that surfaces at the worst possible moment — during investor due diligence, at the point of a related-party dispute, when a whistleblower complaint has nowhere formal to go, or when SEBI or a stock exchange queries your Corporate Governance Report post-listing. The risk is not usually an immediate penalty; it is a compounding structural weakness that becomes expensive to fix under external pressure or deadline.
Does a Nomination and Remuneration Committee (NRC) set our salaries, or does it do something different?
The NRC, under Section 178, is responsible for formulating the criteria for determining qualifications, positive attributes, and independence of directors, recommending a policy on remuneration for directors, KMP, and senior management, and — for listed companies — devising a policy on Board diversity and carrying out performance evaluation. It sets the policy and framework for remuneration decisions; it does not necessarily negotiate every individual employment contract, though for KMP and director remuneration, its recommendation is a required step before Board approval.
How often should the Audit Committee meet, and what should it actually review?
Market practice — reinforced by the Secretarial Standards and, for listed companies, SEBI LODR Regulation 18 — is for the Audit Committee to meet at least 4 times a year (aligned with quarterly financial reporting where applicable), with the gap between two meetings not exceeding 120 days. Its remit includes reviewing financial statements before Board approval, overseeing the statutory auditor's independence and scope, reviewing internal financial controls and internal audit findings, examining related-party transactions, and reviewing whistleblower complaints referred to it.
What documents does SEBI or a stock exchange actually look at to assess our governance compliance?
Primarily the quarterly Corporate Governance Report filed under LODR Regulation 27, the Annual Report's Corporate Governance section (Schedule V), related-party transaction disclosures filed under Regulation 23(9), the Secretarial Audit Report and Secretarial Compliance Report, disclosures of Board and committee composition changes, and any material event disclosures under Regulation 30. Persistent gaps or inconsistencies across these filings are what typically trigger a stock exchange query or SEBI scrutiny.
We are an NBFC / insurance intermediary / SEBI-registered entity. Does sector regulation change our governance framework?
Yes, materially. RBI's governance guidelines for NBFCs (including the Scale Based Regulation framework), IRDAI's corporate governance guidelines for insurance intermediaries, and SEBI's specific requirements for market intermediaries each layer additional, sector-specific governance requirements on top of the Companies Act baseline — often including fit-and-proper criteria for directors, additional committees (e.g., a Risk Management Committee mandated at a lower threshold for NBFCs than the general LODR requirement), and sector-specific disclosure obligations.
Can a governance framework be too heavy for a small or early-stage company?
Yes — over-engineering governance for a 5-person, pre-revenue startup wastes management time on committee meetings and approval layers the business does not yet need. PNPC scopes the framework to the company's actual stage: an early-stage company typically gets a lightweight Board Charter and a simple DoA; the full committee suite and LODR-grade policies are built only as the company approaches the thresholds or funding stage that actually require them.
How does a governance framework interact with our existing Shareholders' Agreement (SHA)?
The SHA is a private contract between specific shareholders that often includes investor rights — Board seats, veto rights on specified matters, information rights — that must be reflected in the Board Charter's reserved matters list and, where relevant, the Articles of Association. A governance framework that contradicts SHA-agreed rights creates both a breach-of-contract risk with investors and internal confusion about which document governs. We reconcile the two explicitly as part of framework design.
What is a Material Events Disclosure Policy and who needs one?
Mandatory for listed companies under SEBI LODR Regulation 30, this policy defines what constitutes a 'material event' (M&A, change in KMP, litigation above a threshold, credit rating change, and a list of deemed-material events) that must be disclosed to stock exchanges within prescribed timelines — typically within 24 hours for most events, with a narrower window for specified categories. The policy also designates the Key Managerial Personnel responsible for determining materiality and authorising disclosure.
Does our governance framework need to address ESG (Environmental, Social, Governance) reporting?
For the top 1,000 listed companies by market capitalisation, SEBI mandates a Business Responsibility and Sustainability Report (BRSR) under LODR Regulation 34, which requires structured ESG disclosure including governance-specific metrics. For companies outside this bracket, ESG reporting is not currently mandatory but is increasingly expected by institutional investors, larger enterprise customers, and export markets with ESG-linked supply chain requirements.
What is the role of the Company Secretary versus the Board in governance framework implementation?
The Board approves the governance framework and is ultimately accountable for its effectiveness. The Company Secretary, as the compliance officer under the Companies Act, is typically responsible for the administrative implementation — scheduling committee meetings per the charter, ensuring proper notice and quorum, maintaining minutes and statutory registers reflecting the framework's operation, and flagging when practice deviates from the documented policy.
How does PNPC handle governance framework design for a company with operations in both India and the UAE?
PNPC's Chennai, Bangalore, Hyderabad, and Dubai offices coordinate on cross-border governance design. The Indian entity's framework is built against the Companies Act 2013 and, if applicable, SEBI LODR. The UAE entity's governance is separately assessed against the relevant Free Zone authority or Mainland Commercial Companies Law requirements. Where the two entities have common directors, shared services, or intercompany transactions, we build a consistent related-party transaction and conflict-of-interest framework across both, coordinated from a single engagement rather than two disconnected advisors.
Is a Risk Management Committee mandatory for our company?
Under SEBI LODR Regulation 21, a Risk Management Committee is mandatory for the top 1,000 listed entities by market capitalisation, and for certain categories of NBFCs and other regulated entities under sector-specific RBI or SEBI guidelines. Outside these categories, it is not statutorily mandatory, but many companies choose to establish a Risk Management Committee or assign its function to the Audit Committee as a matter of good governance practice, particularly once the business has meaningful operational, credit, or regulatory risk exposure.
What happens during a governance framework 'health check' versus a full design engagement?
A health check is a shorter diagnostic engagement — we review existing policies, Board minutes, and committee practice against statutory and investor-grade benchmarks, and produce a gap report with prioritised recommendations, without drafting the full policy suite. A full design engagement includes the health check as its first phase, followed by drafting every required document, building the DoA and RPT workflows, and supporting first-cycle implementation.
Can governance framework documents be amended after they are adopted?
Yes, and they should be — a governance framework is not a static, one-time document. Board Charters, committee charters, and policies are typically reviewed annually (and are formally required to be reviewed periodically under SEBI LODR for listed entities) and amended as the company's stage, thresholds, shareholding, or regulatory environment changes. Amendments are approved by Board resolution and, for policies required to be shareholder-approved or disclosed, updated on the company website and in the next Annual Report.
What is the cost of not having a proper Related Party Transaction Policy in practice — beyond statutory penalty?
Beyond the statutory exposure under Section 188 (which can include the transaction being voidable at the option of the Board, and liability for the interested director), the practical costs are often larger: a due diligence red flag that reduces valuation or delays a funding round, minority shareholder disputes if an RPT is later seen as favouring the promoter, and — for listed companies — proxy advisory firm objections at the AGM that can result in shareholders voting down RPT-related resolutions.
Why should we engage PNPC rather than have our in-house legal team or Company Secretary draft the governance framework alone?
In-house teams are well-placed to implement and maintain a governance framework, but designing one requires calibrating it against Companies Act thresholds that change with your financials, SEBI LODR requirements if you are listed or listing-bound, sector-specific regulatory overlays, and the specific expectations of the investors or acquirers you are preparing for — a breadth of comparative experience across many companies at similar stages that is hard to replicate from inside a single company. PNPC brings that comparative pattern recognition, plus integrated CA and CS expertise so the governance framework and the tax/financial-reporting implications of related-party transactions and remuneration structuring are addressed together.
How long does a governance framework typically remain adequate before it needs a significant rebuild?
With annual review and incremental updates, a well-designed framework can scale with the company for several years. A significant rebuild is usually triggered by a step-change event — crossing a major statutory threshold, a new funding round with materially different investor rights, an IPO process commencing, or a sector regulatory change — rather than by simple time elapsed.
PNPC governance framework engagement vs typical alternatives
| Aspect | Generic Legal Template / Downloaded Policy | Standalone Company Secretary Filing Service | PNPC Governance Framework Engagement |
|---|---|---|---|
| Calibration to actual company stage and thresholds | No — generic, one-size document | Focused on filings, not framework design | Yes — diagnostic against Companies Act/LODR thresholds and investor expectations for your stage |
| Related Party Transaction workflow tailored to your group structure | No — boilerplate policy only | Not typically in scope | Yes — historical RPTs reviewed, materiality thresholds set, live approval workflow built |
| Delegation of Authority matrix | Rarely included | Not typically in scope | Yes — core deliverable, built to your actual organisation structure |
| Integration with tax and financial reporting implications | No | No | Yes — CA expertise means remuneration structuring and RPT pricing are assessed for tax impact too |
| SEBI LODR readiness for IPO-bound companies | Generic, not stage-calibrated | Limited to routine listed-company filings | Yes — 12-18 month readiness roadmap with track-record building, not last-minute drafting |
| Implementation support (first Board/committee cycle) | No — document handed over, not tested | Limited to minute-taking for existing meetings | Yes — PNPC supports the first real cycle of Board and committee decisions under the new framework |
| Cross-border (India-UAE) coordination | No | No | Yes — Chennai/Bangalore/Hyderabad/Dubai offices coordinate group-wide governance and RPT treatment |
| Ongoing annual review as company scales | No — static document | Limited to statutory filing calendar | Yes — annual governance review built into ongoing engagement |
A downloaded template or a filing-only Company Secretary service both serve a purpose — but neither is designed to produce a governance framework that survives investor due diligence or a genuine governance incident. PNPC's engagement is built to do both.
What the PNPC package includes
- 01
Governance diagnostic against Companies Act thresholds, SEBI LODR (if applicable), and investor-grade benchmarks for your funding stage
- 02
Board Charter with reserved matters and delegation boundaries, drafted for your actual business — not adapted from an unrelated template
- 03
Committee charters for Audit, Nomination & Remuneration, CSR, Stakeholder Relationship, and Risk Management Committees as applicable to your thresholds
- 04
Delegation of Authority (DoA) matrix mapping financial and operational sign-off limits to designation
- 05
Related Party Transaction Policy with materiality thresholds, arm's-length pricing guidance, and a practical approval workflow
- 06
Risk Management Policy and risk register template with a defined Board/committee escalation and reporting cadence
- 07
Vigil Mechanism / Whistleblower Policy with an intake and investigation workflow, and direct Audit Committee access where required
- 08
Code of Conduct for directors and senior management, tailored to sector-specific conduct risk
- 09
For listed and IPO-bound entities — full SEBI LODR policy suite including Insider Trading Code, Material Events Disclosure Policy, and Succession Planning Policy
- 10
Implementation support through the first Board and committee meeting cycle conducted under the new framework
- 11
Integrated coordination with PNPC's tax, secretarial compliance, and cross-border (India-UAE) advisory teams so governance, compliance, and tax structuring stay aligned
Governance built to survive due diligence, not just to sit in a policy folder — talk to a PNPC CA or CS before your next funding round, audit, or Board meeting exposes the gap.