Why Governance Is Confused With Compliance

Ask a founder or CFO of a fast-growing Indian private company what "corporate governance" means to their business, and the answer usually arrives in the language of compliance: annual returns filed with the Registrar of Companies, statutory audits closed on time, board meetings held at the required frequency. All of that is necessary. None of it is governance.

Compliance asks whether a form was filed. Governance asks whether the decision behind that form was made properly — with the right people in the room, the right disclosures on the table, and the right process followed before money moved, a related party was paid, or a director was appointed. A company can be fully compliant on paper and still be governed badly enough to lose a funding round, trigger a shareholder dispute, or expose its directors to personal liability.

This distinction matters more than most Indian businesses realise, because governance failures rarely announce themselves early. A related party transaction that was never placed before the audit committee. A board resolution passed by circulation without the quorum the articles actually require. A related-party lease renewed on the same terms for six years without anyone asking whether it still reflects market value. Individually, each looks like a minor procedural gap. Collectively, they are exactly the pattern that due diligence teams, auditors, and eventually courts are trained to find.

Governance Debt Is Invisible Until It Isn't

Unlike a missed tax filing, a governance gap does not generate a penalty notice on its own. It sits quietly in board minutes, shareholder agreements, and related party ledgers — until a Series B term sheet, a strategic acquirer's due diligence team, or a disgruntled co-founder's lawyer goes looking for it. By then, the cost of fixing it is measured in valuation discounts and legal fees, not filing fees.

The Indian Governance Framework, Briefly

Corporate governance in India rests on a layered set of obligations, and which layers apply to a given company depends entirely on its structure and status.

Every company incorporated under the Companies Act, 2013 — private or public, small or large — is subject to a baseline governance framework: a validly constituted board, minimum meeting frequency, maintenance of statutory registers, director disclosure obligations, and rules governing related party transactions. This baseline applies whether or not the company has ever thought of itself as needing "governance" in the corporate-governance-report sense of the word.

Listed companies carry an additional and considerably heavier layer under the SEBI (Listing Obligations and Disclosure Requirements) Regulations — independent director quorums, mandatory board committees, related party transaction approval thresholds tied to turnover, and public disclosure timelines measured in hours, not weeks.

Companies crossing specified thresholds of paid-up capital, turnover, or borrowings — a category that includes many well-funded private companies and most large private limited companies — pick up obligations that founders frequently do not anticipate: mandatory independent directors, a functioning Audit Committee, a Nomination and Remuneration Committee, secretarial audit, and CSR compliance if the profitability threshold is met. A company can cross these thresholds mid-year, simply by growing, and the governance obligations activate automatically — irrespective of whether anyone in the business noticed.

These thresholds are not abstract. A company that raises a round taking its paid-up capital past the prescribed limit, or that closes a financial year with turnover or borrowings above the specified level, moves from the light-touch baseline framework into the heavier bracket overnight — the trigger is the balance sheet, not a regulatory notification. Independent director appointment, once triggered, typically has to be completed within a defined window from the end of the relevant financial year, and a company that misses that window is technically non-compliant from the day the deadline passes, whether or not anyone has flagged it internally. This is precisely why a governance review timed to the annual financial close, rather than left to whenever someone remembers, is one of the simplest risk controls a growing company can put in place.

This is the structural reality LexWin sees most often: a private company that has scaled past its original governance design, still operating with the informal decision-making habits of its five-person-founding-team days, while quietly carrying obligations that were designed for a considerably more formal organisation. The company usually discovers this not through an internal audit, but through an external party — an investor's legal team, a bank's credit committee, or a statutory auditor — asking a question the company was not prepared to answer.

The Board — Composition, Duties, and the Committees That Matter

The board of directors is the legal and practical centre of corporate governance. Under Indian law, directors owe the company — not any single shareholder, founder, or investor — fiduciary duties of care, loyalty, and independent judgment. This is a frequently misunderstood point: a nominee director appointed by an investor still owes their primary duty to the company, not to the investor who nominated them.

This creates a genuine tension in practice. A nominee director sits on the board partly to protect the interests of the investor who appointed them, yet the law requires that director to exercise independent judgment in the interest of the company as a whole — which may not always align with what their appointing investor prefers. Boards that fail to appreciate this distinction often see it surface at the worst possible moment: during a down round, a restructuring, or a dispute between founders and investors, when a nominee director's dual loyalty is suddenly tested and the minutes of that meeting become critical evidence of whether the director acted properly.

A properly governed board in India typically requires attention to the following, in escalating order of formality as the company grows:

1

Board composition and disclosure

Every director must file disclosures of interest annually and whenever circumstances change, so that related party transactions can actually be identified before, not after, they are approved. A board that has never asked directors to update Form MBP-1 is a board that cannot reliably detect a conflict of interest when one arises.

2

Independent directors, where required

Companies crossing prescribed capital or turnover thresholds must appoint independent directors who meet statutory independence criteria — no material pecuniary relationship with the company, no relation to promoters, and a genuine ability to exercise objective judgment. Appointing a friendly acquaintance who technically satisfies the criteria on paper but exercises no independent scrutiny defeats the purpose the law is trying to achieve, and increasingly draws regulatory attention.

3

Audit Committee

Where mandated, the Audit Committee reviews financial statements before board adoption, oversees the statutory and internal auditors, and — critically — approves related party transactions before they proceed. A related party transaction approved by the full board without first passing through a properly constituted Audit Committee is a procedural defect that a diligence exercise will find immediately.

4

Nomination and Remuneration Committee

This committee governs how directors and senior management are appointed and paid, and its existence prevents remuneration decisions from being made informally between a promoter-director and their own management team.

5

Minute-keeping and resolution discipline

Board and shareholder resolutions must be minuted accurately, circulated within statutory timelines, and — for matters requiring shareholder approval — passed through the correct mechanism, whether at a general meeting or by postal ballot. Investors and acquirers read minute books closely; gaps or inconsistencies are one of the most common findings in Indian due diligence exercises.

Minimal Compliance vs. Real Governance

The distance between a company that merely files its returns on time and one that is genuinely well governed shows up clearly when the two are placed side by side.

DimensionMinimal ComplianceReal Governance
Board meetings Held at the statutory minimum frequency, often as a formality Held with a genuine agenda, pre-circulated papers, and substantive discussion
Related party transactions Approved informally, documented after the fact if at all Identified proactively, approved through the correct committee before execution
Director disclosures Filed once at appointment and rarely updated Refreshed annually and whenever a director's circumstances change
Independent directors Appointed to satisfy the numerical requirement Selected for genuine independence and actively engaged in committee work
Statutory registers Maintained retroactively before an audit or diligence request Maintained contemporaneously as transactions occur

Related Party Transactions — Where Boards Get Hurt

If there is a single governance failure point that recurs most often in LexWin's advisory work, it is related party transactions — payments, leases, loans, or service arrangements between the company and its promoters, directors, their relatives, or entities they control.

The law does not prohibit related party transactions. Many are entirely legitimate — a promoter-owned property leased to the company at fair market rent, for instance. What the law requires is that such transactions be identified, disclosed, and approved through the correct process — Audit Committee approval where applicable, board approval, and shareholder approval by ordinary or special resolution once transaction value crosses prescribed thresholds. It is the absence of process, not the existence of the transaction, that creates exposure.

A Common Pattern

A company pays market rent to a promoter-owned entity for its registered office. The arrangement is commercially fair. But it was never placed before the board as a related party transaction, was never disclosed in the financial statement notes correctly, and no director ever filed the disclosure that would have flagged the relationship. Three years later, an investor's diligence team finds the arrangement, and what should have been a non-issue becomes a negotiating point that delays the round and reduces the founders' leverage.

The practical mechanics matter here. A related party transaction that is not in the ordinary course of business, or is not on an arm's length basis, generally requires prior approval of the board — and, once value crosses the prescribed thresholds, the prior approval of shareholders by ordinary resolution, with interested shareholders excluded from voting. Companies that transact repeatedly with the same related party — a recurring management services fee, for instance — can put an omnibus approval in place through the Audit Committee, which removes the need to seek fresh approval for every individual instance while still keeping the arrangement within a pre-approved, monitored framework. The absence of such a framework is usually what forces a company into reactive, transaction-by-transaction scrambling once a related party relationship is finally identified.

Directors also carry a personal dimension to this obligation that is easy to overlook. A director who is a party to a related party transaction, or interested in one, is generally required to abstain from participating in the board's discussion and voting on that item. A board that routinely allows an interested director to remain in the room, participate in the discussion, and vote on their own transaction is not merely creating a procedural irregularity — it is creating a resolution that can be challenged as invalid, with consequences that extend well beyond the transaction itself.

What Happens When Governance Is Tested

Governance gaps rarely surface during ordinary operations. They surface at precisely the moments a company can least afford them.

Scenario: The Funding Round

A Series A investor's legal team runs due diligence on a company's board minutes and discovers that several resolutions — including one approving a related party loan to a director — were passed by circular resolution without the statutorily required directors actually signing off within the prescribed timeline. The round does not collapse, but the investor insists on a governance remediation plan and a reduced valuation to price in the risk of unwinding the defective resolutions.

Scenario: The Co-Founder Exit

A departing co-founder disputes the validity of a board decision that diluted their shareholding, arguing they were not given adequate notice of the meeting where the resolution was passed. Because the company cannot produce evidence of proper notice under the Companies Act, the resolution's validity becomes genuinely contestable — turning what should have been a clean exit into prolonged, expensive litigation.

Scenario: The Regulatory Inspection

An ROC inspection following an unrelated complaint uncovers that the company's Audit Committee, though listed on paper, has not actually met independently of full board meetings for two years — meaning related party approvals that should have gone through the committee never did. The company faces penalties under the Companies Act, and the directors involved face personal exposure, because the statutory duty runs to them individually, not just to the company.

Scenario: The Strategic Acquisition

A larger company acquiring a founder-led business finds, during confirmatory diligence, that several senior management appointments and a material vendor contract with a director's relative were never approved by the Nomination and Remuneration Committee or disclosed as related party arrangements. The acquirer does not walk away, but escrows a portion of the purchase price against the risk of these arrangements being challenged post-completion — money the founders do not see for eighteen months, if at all.

What These Scenarios Have in Common

None of these companies set out to violate the law. Each simply treated governance as a formality to be handled after the fact rather than a discipline to be built into how decisions are actually made. The remedy in every case would have cost a fraction of what the eventual dispute, delay, or penalty cost — had it been addressed before the transaction, not after the inspection.

India's Evolving Governance Landscape

Corporate governance obligations in India have been tightening steadily, and the trend shows no sign of reversing. SEBI has progressively lowered the materiality thresholds that trigger mandatory disclosure and shareholder approval for related party transactions among listed companies, and has increased scrutiny of promoter-linked entities. The Ministry of Corporate Affairs has expanded the scope of secretarial audit to cover a wider band of unlisted public and private companies, meaning governance practices that were once reviewed only informally are now subject to a formal, filed audit trail.

Beneficial ownership disclosure — identifying the individuals who ultimately control a company through layered shareholding structures — has also become significantly more rigorous, driven partly by anti-money-laundering obligations and partly by a broader regulatory push toward transparency in corporate structures. Companies with holding structures involving multiple layers, family trusts, or overseas entities are increasingly expected to demonstrate, on request, exactly who sits at the top of the ownership chain.

For companies planning a listing, a fundraise from institutional investors, or an acquisition, this direction of travel matters practically: governance standards that look adequate today are being assessed against a rising bar, and remediation is considerably cheaper when done proactively than when done under the time pressure of a transaction.

There is also a growing overlap between governance and data protection compliance. As boards increasingly oversee data-heavy businesses, questions about who approved a data-sharing arrangement with a related entity, or whether a data processing agreement with an affiliate was reviewed for arm's-length terms, are starting to appear in the same diligence checklists that once asked only about financial related party transactions. Governance and compliance functions that used to operate separately are converging, and companies that treat them as separate workstreams risk gaps at the seams.

Common Governance Mistakes We See

Across LexWin's advisory work with Indian companies, a small number of governance mistakes recur far more often than the range of possible errors would suggest. Recognising them is often enough to prevent them.

How LexWin Approaches Corporate Governance

LexWin's corporate governance advisory is built around the reality that most Indian companies do not need a governance overhaul — they need a small number of structural fixes, applied correctly and maintained consistently. Our engagement typically covers a governance health assessment against the company's actual statutory thresholds, board and committee restructuring where required, related party transaction identification and approval workflows, director disclosure and statutory register clean-up, and ongoing compliance calendar management so that governance discipline does not lapse the moment the initial engagement ends.

We work with founder-led private companies preparing for a fundraise, companies that have crossed governance thresholds without realising it, and boards that want a periodic independent check rather than waiting for a diligence exercise to surface the gaps for them.

A typical engagement starts with a threshold assessment against the company's current paid-up capital, turnover, and borrowings to establish exactly which obligations apply today and which are likely to apply within the next financial year. From there, we work through board and committee composition, review the last two to three years of minutes and resolutions for procedural defects, map existing related party relationships against the company's approval and disclosure trail, and put a related party transaction policy and an annual compliance calendar in place so that the fixes made during the engagement do not quietly lapse once it ends. Where gaps are found, we prioritise remediation by exposure — the resolutions most likely to be challenged, and the transactions most likely to surface in diligence, are addressed first.

Who Needs This — and When

Governance obligations scale with a company's size and structure, but the moments that most often trigger a governance review are predictable — and addressing them proactively is always less costly than addressing them reactively.

Company ProfilePrimary Risk AreasPriority Actions
Early-Stage Startups Informal decision-making; founders acting without board resolutions; undocumented related party arrangements Board process discipline, statutory register set-up, related party identification
Companies Approaching a Fundraise Diligence exposure from defective resolutions, undisclosed related party transactions, incomplete minute books Pre-diligence governance audit, resolution ratification, register clean-up
Companies Crossing Statutory Thresholds Mandatory independent directors, Audit Committee, and NRC obligations activating without the company's awareness Committee constitution, independent director appointment, threshold monitoring
Foreign Companies Entering India Applying home-jurisdiction governance norms to an Indian subsidiary incorrectly India-specific board process design, related party transaction framework, FEMA-aligned governance
Family-Owned or Multi-Generational Businesses Governance decisions concentrated informally with family members; unclear separation between ownership and management Board formalisation, related party policy, succession-linked governance planning

Governance Health Check — 10 Questions Every Board Should Ask

Before commissioning a full governance review, run this quick diagnostic. If the honest answer to more than three of these is "no" or "unsure," the company is carrying meaningful governance risk.

How LexWin Can Help

As a corporate lawyer and legal consultant to Indian companies and their boards, LexWin provides end-to-end corporate governance advisory — from board process design and committee constitution to related party transaction frameworks, statutory register clean-up, and ongoing compliance calendar management. Our work as legal consultants combines company law expertise with a practical understanding of how growing businesses actually operate, so the governance structures we build are rigorous enough to withstand diligence and simple enough for a board to actually follow. We serve as trusted corporate lawyers to Indian companies at every growth stage, and to Indian subsidiaries of foreign companies establishing governance practices for the first time.

Tags

Corporate GovernanceCorporate LawyerCompanies Act 2013Board of DirectorsRelated Party TransactionsIndependent DirectorsSecretarial ComplianceSEBI LODRLexWin